$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa File: 3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: slxJrksLG/ugoCdz0xpYsZxbcTeP+M/3OR1Tilc8hic= Subject key identifier: CA:CB:32:A1:A4:90:97:A2:60:89:84:47:49:6F:79:9B:1F:99:0A:98 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 72C09E78EA68F0727BA856CACAA268F9684CEA76 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa Signing time: Fri 19 Sep 2025 07:01:17 +0000 ROA not before: Fri 19 Sep 2025 06:56:17 +0000 ROA not after: Fri 18 Sep 2026 07:01:17 +0000 asID: 138077 IP address blocks: 203.84.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Oct 2025 12:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:c0:9e:78:ea:68:f0:72:7b:a8:56:ca:ca:a2:68:f9:68:4c:ea:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 19 06:56:17 2025 GMT Not After : Sep 18 07:01:17 2026 GMT Subject: CN=CACB32A1A49097A260898447496F799B1F990A98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d4:d5:ed:50:49:94:49:e1:1e:7a:5a:71:56: 80:1a:2a:61:5b:51:48:58:65:df:5d:e5:fe:00:94: 13:f6:05:49:d9:df:a6:ea:91:7b:0d:52:1a:f3:1f: c6:45:36:01:f0:82:84:0d:39:39:fb:0b:fb:3b:4f: 10:80:b9:b4:38:c5:1a:ce:bd:b8:16:60:0d:03:52: c6:03:a8:00:51:e2:d2:36:27:11:20:44:d1:28:b5: dc:fd:b5:a7:79:6d:40:34:88:34:fc:a7:af:ce:01: 16:c8:64:7a:d0:cb:fd:57:b5:72:73:aa:31:1e:2a: 4d:c8:66:a5:cb:3e:49:5e:df:26:cd:a8:19:f7:96: 12:f3:32:06:10:95:fd:07:f8:b7:37:a8:25:9e:46: eb:dd:ec:4c:0b:ce:a5:52:de:f8:d4:63:0b:ea:43: 5f:b1:12:25:35:bf:31:a4:55:5d:81:24:61:01:d2: 10:47:d9:e5:ce:19:bd:02:60:dd:05:c7:44:78:3b: 6d:b1:c0:2d:d5:e0:f0:af:c8:44:5e:32:2f:ba:7e: 61:c2:b2:0b:69:e4:4c:b6:1d:bd:80:3e:5d:a3:6c: b4:23:e7:da:f4:7e:b4:9a:b4:48:58:8a:fe:e3:34: 34:9e:1d:32:8b:64:3f:bf:7e:09:c4:fe:9c:0a:73: ff:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:CB:32:A1:A4:90:97:A2:60:89:84:47:49:6F:79:9B:1F:99:0A:98 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.138.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f5:cb:6a:ed:e5:9d:6f:c8:f0:d9:8b:2f:fb:5d:a7:4d:c6: 81:17:b3:dd:f5:c1:bf:3f:2e:a8:fc:df:b3:35:92:f4:5a:54: 3c:c8:8d:44:f8:9f:9c:74:1a:d8:06:5e:96:13:b9:a5:be:84: 42:3d:c8:19:c3:c6:69:02:ba:8c:af:00:71:26:05:1d:ea:ce: cc:6b:ab:c1:a8:ed:76:03:bb:db:39:73:16:77:af:1c:08:6b: e4:67:f0:70:a8:2a:6c:a8:e0:56:7e:d0:b2:f8:fa:98:10:0a: 7c:b6:84:78:d7:22:98:d4:d4:fc:62:e1:f0:12:4a:04:38:bc: 1a:98:4c:db:cd:86:71:2d:71:b6:ff:9e:d4:8e:ee:ee:01:7d: ea:ef:ce:9b:93:15:ac:85:fd:bc:a1:fe:b0:0a:ca:56:56:89: 0a:69:57:4f:47:5d:35:33:e6:ef:70:34:bc:ab:f7:05:0a:f5: a9:f8:f9:18:d7:6c:76:bc:77:8a:7a:0b:c0:a5:ce:35:43:68: 75:3d:3a:f6:a1:cc:ba:42:a7:27:e3:1b:2a:73:d7:bc:bc:d2: 7a:d1:5b:7f:23:eb:af:b8:e8:f5:9b:a1:44:ad:d8:75:f5:5d: 18:a2:c3:e7:ae:fa:c3:03:8d:5f:e9:50:8f:9d:ae:3d:52:04: fa:9b:0f:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcsCeeOpo8HJ7qFbKyqJo+WhM6nYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA5MTkwNjU2MTdaFw0yNjA5MTgwNzAxMTdaMDMxMTAvBgNV BAMTKENBQ0IzMkExQTQ5MDk3QTI2MDg5ODQ0NzQ5NkY3OTlCMUY5OTBBOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr1NXtUEmUSeEeelpxVoAaKmFb UUhYZd9d5f4AlBP2BUnZ36bqkXsNUhrzH8ZFNgHwgoQNOTn7C/s7TxCAubQ4xRrO vbgWYA0DUsYDqABR4tI2JxEgRNEotdz9tad5bUA0iDT8p6/OARbIZHrQy/1XtXJz qjEeKk3IZqXLPkle3ybNqBn3lhLzMgYQlf0H+Lc3qCWeRuvd7EwLzqVS3vjUYwvq Q1+xEiU1vzGkVV2BJGEB0hBH2eXOGb0CYN0Fx0R4O22xwC3V4PCvyEReMi+6fmHC sgtp5Ey2Hb2APl2jbLQj59r0frSatEhYiv7jNDSeHTKLZD+/fgnE/pwKc/+TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyssyoaSQl6JgiYRHSW95mx+ZCpgwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SKMA0GCSqG SIb3DQEBCwUAA4IBAQBT9ctq7eWdb8jw2Ysv+12nTcaBF7Pd9cG/Py6o/N+zNZL0 WlQ8yI1E+J+cdBrYBl6WE7mlvoRCPcgZw8ZpArqMrwBxJgUd6s7Ma6vBqO12A7vb OXMWd68cCGvkZ/BwqCpsqOBWftCy+PqYEAp8toR41yKY1NT8YuHwEkoEOLwamEzb zYZxLXG2/57Uju7uAX3q786bkxWshf28of6wCspWVokKaVdPR101M+bvcDS8q/cF CvWp+PkY12x2vHeKegvApc41Q2h1PTr2ocy6Qqcn4xsqc9e8vNJ60Vt/I+uvuOj1 m6FErdh19V0YosPnrvrDA41f6VCPna49UgT6mw+w -----END CERTIFICATE-----Generated at Wed Oct 15 14:26:10 2025 by rpki-client