$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa File: 3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa (raw, json) Hash identifier: XBonl+MDq5JKpWntnVm6TMfayZbg8tQu2RWN6XgAyJw= Subject key identifier: 08:7B:45:EC:42:57:3D:AB:3C:3F:7A:AE:77:30:A4:C8:66:A0:97:9E Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 502AFBB897111E8E68F296BFEBA83CAC2109C101 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa Signing time: Wed 03 Sep 2025 03:01:35 +0000 ROA not before: Wed 03 Sep 2025 02:56:35 +0000 ROA not after: Wed 02 Sep 2026 03:01:35 +0000 asID: 138843 IP address blocks: 203.84.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Oct 2025 12:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:2a:fb:b8:97:11:1e:8e:68:f2:96:bf:eb:a8:3c:ac:21:09:c1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 3 02:56:35 2025 GMT Not After : Sep 2 03:01:35 2026 GMT Subject: CN=087B45EC42573DAB3C3F7AAE7730A4C866A0979E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:b3:7f:30:df:f4:fb:e3:84:05:22:49:db: 3c:43:81:34:4a:a7:0d:18:bf:ec:1e:0f:87:05:0c: 1e:57:08:3d:7a:ff:1c:3f:36:d1:28:24:aa:2f:2f: 7b:dd:e5:07:cd:3a:48:47:a0:29:34:53:90:1d:63: ac:28:68:0a:5e:bc:26:97:01:75:8a:46:4a:77:57: 30:b3:6c:e1:40:4b:fa:73:3d:cf:6a:1b:05:e9:90: 75:16:33:bc:1c:24:43:f7:8b:de:48:cf:38:49:91: 35:58:2e:4e:b9:d9:ae:e5:58:32:86:fb:ae:43:86: ac:49:58:10:65:a9:32:ae:54:59:3f:fd:5f:39:1c: 17:b5:94:ec:e7:6f:06:87:f9:33:d2:48:c6:f2:c2: d7:d0:3e:10:e0:c6:87:ad:d7:45:1c:f6:01:64:97: 52:ca:88:e2:50:e3:f4:a8:0d:1e:b1:e3:0e:3b:ba: ed:f6:36:ac:83:88:b7:91:32:4c:81:f6:ce:ca:67: f4:c3:cb:cb:65:85:0b:34:b0:9b:16:4b:a6:70:3d: a2:ab:c2:d2:2e:50:43:0a:91:95:73:4d:16:b7:46: 4a:a0:6e:eb:b6:5c:00:cc:1f:a3:e4:cf:0c:24:34: bf:05:ce:d6:96:9c:9f:3c:3c:d7:38:c9:ac:61:be: 20:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7B:45:EC:42:57:3D:AB:3C:3F:7A:AE:77:30:A4:C8:66:A0:97:9E X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.142.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:42:f8:86:f7:b3:5a:52:33:bf:fe:be:da:a2:8c:8a:08:e9: 5a:fd:cd:a4:3d:2f:08:e2:66:19:49:d0:c4:d0:9f:8d:e4:c5: f4:6b:98:95:21:1b:17:d0:0b:41:d9:e0:84:5e:3b:f4:1c:75: 02:df:0b:16:d0:23:5b:a6:9b:6f:15:59:df:51:8c:e3:fb:0b: a2:d6:06:bc:ac:88:13:1b:b6:1e:74:b8:80:f4:ab:d0:db:fc: 23:08:5f:90:50:d4:4e:03:7f:61:b5:b9:ea:37:b8:a7:f4:cc: 00:56:2c:09:cb:5c:36:c0:38:ba:37:f1:a1:f6:d4:a1:2e:b3: 5b:de:90:78:72:5c:d9:20:be:39:10:ee:84:0c:aa:db:c3:90: e8:d4:37:6e:dd:2b:c1:1e:eb:d8:d7:b9:b5:10:57:80:f0:4a: 01:40:2f:c4:e1:34:84:55:d3:6b:2a:98:77:cb:00:b6:31:a5: be:ec:c0:fe:7f:b3:1e:b8:36:96:48:44:34:f3:3e:c7:bb:6b: 75:e9:f4:7b:0f:74:93:63:17:ac:6c:6b:26:b7:52:29:8f:9c: 15:65:12:1f:eb:c1:b4:5b:38:43:92:b7:e2:8d:77:1a:9d:e7: 1e:21:e7:79:90:78:14:0a:a0:a0:65:88:f4:74:66:b0:6c:f1: e1:2c:71:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUCr7uJcRHo5o8pa/66g8rCEJwQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA5MDMwMjU2MzVaFw0yNjA5MDIwMzAxMzVaMDMxMTAvBgNV BAMTKDA4N0I0NUVDNDI1NzNEQUIzQzNGN0FBRTc3MzBBNEM4NjZBMDk3OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH1LN/MN/0++OEBSJJ2zxDgTRK pw0Yv+weD4cFDB5XCD16/xw/NtEoJKovL3vd5QfNOkhHoCk0U5AdY6woaApevCaX AXWKRkp3VzCzbOFAS/pzPc9qGwXpkHUWM7wcJEP3i95IzzhJkTVYLk652a7lWDKG +65DhqxJWBBlqTKuVFk//V85HBe1lOznbwaH+TPSSMbywtfQPhDgxoet10Uc9gFk l1LKiOJQ4/SoDR6x4w47uu32NqyDiLeRMkyB9s7KZ/TDy8tlhQs0sJsWS6ZwPaKr wtIuUEMKkZVzTRa3Rkqgbuu2XADMH6PkzwwkNL8FztaWnJ88PNc4yaxhviDHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCHtF7EJXPas8P3qudzCkyGagl54wHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SOMA0GCSqG SIb3DQEBCwUAA4IBAQBrQviG97NaUjO//r7aooyKCOla/c2kPS8I4mYZSdDE0J+N 5MX0a5iVIRsX0AtB2eCEXjv0HHUC3wsW0CNbpptvFVnfUYzj+wui1ga8rIgTG7Ye dLiA9KvQ2/wjCF+QUNROA39htbnqN7in9MwAViwJy1w2wDi6N/Gh9tShLrNb3pB4 clzZIL45EO6EDKrbw5Do1Ddu3SvBHuvY17m1EFeA8EoBQC/E4TSEVdNrKph3ywC2 MaW+7MD+f7MeuDaWSEQ08z7Hu2t16fR7D3STYxesbGsmt1Ipj5wVZRIf68G0WzhD krfijXcaneceIed5kHgUCqCgZYj0dGawbPHhLHFt -----END CERTIFICATE-----Generated at Fri Oct 17 04:43:49 2025 by rpki-client