$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20393834.roa File: 3230332e38342e3133382e302f32342d3234203d3e20393834.roa (raw, json) Hash identifier: RIM66VLJ+IutCUCYbRqnouhrs+CI6ewP40KteCKvn9I= Subject key identifier: 02:A4:DB:65:43:F7:66:B2:9D:35:81:7A:17:39:A2:EB:E9:E7:96:C8 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 70A027C4A68687913DFD16DBE1ACA3F8695202E3 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20393834.roa Signing time: Mon 01 Sep 2025 09:00:00 +0000 ROA not before: Mon 01 Sep 2025 08:55:00 +0000 ROA not after: Mon 31 Aug 2026 09:00:00 +0000 asID: 984 IP address blocks: 203.84.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 12:19:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a0:27:c4:a6:86:87:91:3d:fd:16:db:e1:ac:a3:f8:69:52:02:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 1 08:55:00 2025 GMT Not After : Aug 31 09:00:00 2026 GMT Subject: CN=02A4DB6543F766B29D35817A1739A2EBE9E796C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c5:ef:d6:26:11:03:11:0d:bb:69:b1:39:b0: 1f:93:31:d9:e3:59:92:00:37:2c:28:27:06:af:42: 6d:5d:04:19:40:3e:8a:2f:fa:de:02:51:d4:c9:dd: 59:02:db:66:af:0a:b7:e9:6c:b1:91:de:23:a5:8e: 74:57:e5:94:c7:8c:e1:bf:99:a2:36:01:bd:8c:13: db:68:4a:cf:63:67:32:b4:d7:40:40:50:18:3d:1f: e8:58:5e:04:9c:9d:6a:cd:cb:45:b5:5c:97:7b:ca: 19:d2:2a:12:6a:7f:17:a5:45:88:4e:f2:9a:65:fb: c3:85:06:f9:be:9a:bd:8e:ca:c1:c9:0c:3c:94:12: ea:8e:c5:4e:70:66:e7:05:a4:00:67:22:1d:6a:ca: 6f:5f:8d:04:ec:89:e1:97:f9:c4:80:b9:9d:a8:e4: c5:6c:c1:4d:22:2b:a4:19:34:da:c7:d1:93:94:d6: 26:77:a5:c1:d4:9c:86:d0:2d:b5:a7:0b:dc:0f:5c: 6c:da:16:f3:e0:4b:cd:e8:96:e2:85:f6:6f:b6:79: 86:65:d5:2c:b6:80:2f:eb:a9:52:10:24:ae:61:5d: e6:35:a5:67:a2:4f:25:1d:34:84:a0:21:56:fb:0c: dc:8c:f1:63:73:52:23:88:db:26:72:6e:33:e9:8a: 99:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A4:DB:65:43:F7:66:B2:9D:35:81:7A:17:39:A2:EB:E9:E7:96:C8 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20393834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.138.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:b8:60:0c:27:0c:7e:84:41:e2:e1:08:4f:69:8d:21:b0:de: a8:ea:83:24:9f:01:5d:a2:ed:c5:a8:5c:65:34:16:48:b5:e7: be:50:b9:19:43:3e:8b:2b:4b:ba:57:29:16:c7:bd:b4:95:b3: a2:0b:7b:01:22:9b:59:62:6d:1e:58:be:3e:c3:2b:ae:c2:0e: 92:3b:d0:90:5f:b0:66:d8:3d:20:df:16:80:e2:d9:8c:4c:e4: c1:16:16:be:29:85:e0:49:89:e5:b9:aa:9c:9e:a0:d4:4a:23: 77:68:bf:00:2f:9c:39:d6:9d:da:69:f2:94:ae:ba:30:a0:b5: 96:d3:d1:5f:62:c9:6b:a7:41:e8:b4:58:27:d0:04:f3:ec:75: 6b:ba:42:9f:bf:80:74:ee:23:c8:a8:aa:6f:2e:87:79:f8:8f: 78:86:f1:e7:d5:b0:8e:fc:45:b2:d2:c3:52:dc:fd:4d:cc:5f: 2f:c2:5f:9d:28:d8:17:30:f9:b8:66:fe:53:ff:1a:b2:15:48: 15:5a:33:98:f1:0b:03:1e:97:e3:27:26:f1:bd:85:95:f5:8c: 54:5d:aa:74:60:34:29:c0:57:f6:33:f4:10:35:fd:d5:36:0f: 86:91:ac:5e:c9:8f:2c:02:0d:f4:20:1a:2a:af:7f:77:36:e9: 20:b4:16:08 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUcKAnxKaGh5E9/Rbb4ayj+GlSAuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA5MDEwODU1MDBaFw0yNjA4MzEwOTAwMDBaMDMxMTAvBgNV BAMTKDAyQTREQjY1NDNGNzY2QjI5RDM1ODE3QTE3MzlBMkVCRTlFNzk2QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCixe/WJhEDEQ27abE5sB+TMdnj WZIANywoJwavQm1dBBlAPoov+t4CUdTJ3VkC22avCrfpbLGR3iOljnRX5ZTHjOG/ maI2Ab2ME9toSs9jZzK010BAUBg9H+hYXgScnWrNy0W1XJd7yhnSKhJqfxelRYhO 8ppl+8OFBvm+mr2OysHJDDyUEuqOxU5wZucFpABnIh1qym9fjQTsieGX+cSAuZ2o 5MVswU0iK6QZNNrH0ZOU1iZ3pcHUnIbQLbWnC9wPXGzaFvPgS83oluKF9m+2eYZl 1Sy2gC/rqVIQJK5hXeY1pWeiTyUdNISgIVb7DNyM8WNzUiOI2yZybjPpipkhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUAqTbZUP3ZrKdNYF6Fzmi6+nnlsgwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTc5MjJmODktM2U5Yi00YjIxLTkx ODYtYTY0OGMyZGEzZjdiLzAvMzIzMDMzMmUzODM0MmUzMTMzMzgyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzOTM4MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLVIowDQYJKoZIhvcNAQEL BQADggEBAE64YAwnDH6EQeLhCE9pjSGw3qjqgySfAV2i7cWoXGU0Fki1575QuRlD PosrS7pXKRbHvbSVs6ILewEim1libR5Yvj7DK67CDpI70JBfsGbYPSDfFoDi2YxM 5MEWFr4pheBJieW5qpyeoNRKI3dovwAvnDnWndpp8pSuujCgtZbT0V9iyWunQei0 WCfQBPPsdWu6Qp+/gHTuI8ioqm8uh3n4j3iG8efVsI78RbLSw1Lc/U3MXy/CX50o 2Bcw+bhm/lP/GrIVSBVaM5jxCwMel+MnJvG9hZX1jFRdqnRgNCnAV/Yz9BA1/dU2 D4aRrF7JjywCDfQgGiqvf3c26SC0Fgg= -----END CERTIFICATE-----Generated at Fri Sep 5 08:36:49 2025 by rpki-client