$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32342d3234203d3e20313332363334.roa File: 3230322e31302e35302e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: /wpQsAwZKIww7skvfjYUPlEp6b6QcsNwO4f66PwBXCY= Subject key identifier: B4:E0:9D:E5:86:79:58:A1:13:96:52:2A:FA:4C:5E:13:5D:D9:0D:C2 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 35CF57150705D2D6BD5D3EE58225B3BBF019212F Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32342d3234203d3e20313332363334.roa Signing time: Mon 27 Oct 2025 03:00:00 +0000 ROA not before: Mon 27 Oct 2025 02:55:00 +0000 ROA not after: Mon 26 Oct 2026 03:00:00 +0000 asID: 132634 IP address blocks: 202.10.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 10:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:cf:57:15:07:05:d2:d6:bd:5d:3e:e5:82:25:b3:bb:f0:19:21:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Oct 27 02:55:00 2025 GMT Not After : Oct 26 03:00:00 2026 GMT Subject: CN=B4E09DE5867958A11396522AFA4C5E135DD90DC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0b:9a:6f:8a:c6:d5:d9:76:93:8f:8e:f1:0a: d9:fa:b3:58:a6:b9:84:8e:3a:79:cc:43:91:45:af: 54:2e:53:7a:b3:0a:7f:df:42:88:3f:12:b9:ab:d0: 94:d3:81:64:91:87:b2:a9:0e:f3:b9:b0:bc:83:9b: 10:f7:c2:3c:a6:0e:56:7f:7a:78:4d:6f:b1:ad:13: 34:6d:8a:9a:e9:18:ee:bc:b7:f6:67:b2:7e:54:10: ec:59:d0:41:66:3b:4f:c7:01:9b:d2:4e:48:49:a7: ba:95:55:21:a0:57:06:5d:a4:8b:93:5a:22:64:5d: b8:c6:b3:5c:b3:2e:7a:63:ef:81:02:65:01:93:4a: 66:c4:d7:6b:0c:88:ce:19:52:4a:cd:5a:66:95:20: 52:f2:cf:56:fd:47:d6:fa:35:b0:fa:22:a2:09:9e: 5b:1f:7e:bc:e6:40:cf:d7:43:a9:74:8d:ce:a1:bf: e2:0d:21:7d:11:f4:2e:d9:58:4c:d7:5b:e5:3e:5e: 06:e0:d0:09:12:25:e6:91:48:19:6e:c1:ca:ff:7d: 4d:67:5d:7b:fd:56:44:9e:43:a9:b9:dc:ff:67:8c: 6c:82:cc:d5:2f:56:60:24:7f:68:f6:c8:a7:34:92: e5:45:56:b5:e6:14:fa:8f:39:ea:69:6d:4d:f3:ed: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E0:9D:E5:86:79:58:A1:13:96:52:2A:FA:4C:5E:13:5D:D9:0D:C2 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.50.0/24 Signature Algorithm: sha256WithRSAEncryption 89:d2:4e:76:fa:86:2b:3c:1d:13:ca:0c:e8:ec:2e:5e:5d:b7: 0a:92:d7:61:24:24:df:c5:d9:60:bc:5d:09:97:81:72:7e:67: 4f:02:ba:dc:00:be:fe:40:8a:f6:38:94:72:3a:34:bd:dc:2c: 95:3b:45:62:91:fa:65:14:ad:29:7f:80:5e:cb:6d:ef:3f:9f: 73:31:87:4a:02:6f:dd:22:a7:9b:c1:6f:2b:47:0b:06:93:6e: a1:2a:3a:69:9a:61:9a:b5:62:7e:72:2d:98:e0:f1:d0:b3:50: 15:57:14:dd:c9:f3:14:cb:2b:78:bc:61:3d:80:cb:4a:14:26: ad:07:9f:3b:50:6b:43:0b:22:91:14:d5:39:e9:59:67:63:4b: f0:52:db:be:25:4f:15:05:fb:d5:f2:ba:ad:5c:f4:6d:de:25: bc:5e:e7:89:ae:a1:89:1a:d0:24:31:9c:9f:31:ec:97:9d:16: 0b:7c:06:f5:36:38:ea:9f:de:d9:25:03:d7:ae:d7:0b:00:57: 38:f4:1c:58:3b:78:ea:b4:b3:41:9a:f9:ba:2e:79:e4:32:0b: 4b:e9:35:88:30:e8:9c:d0:94:71:61:bb:a5:bf:da:6e:b1:d4: c0:f9:06:3e:7e:5b:0f:2c:91:31:60:de:c3:a1:d2:00:89:4d: 45:93:15:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNc9XFQcF0ta9XT7lgiWzu/AZIS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTEwMjcwMjU1MDBaFw0yNjEwMjYwMzAwMDBaMDMxMTAvBgNV BAMTKEI0RTA5REU1ODY3OTU4QTExMzk2NTIyQUZBNEM1RTEzNUREOTBEQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCC5pvisbV2XaTj47xCtn6s1im uYSOOnnMQ5FFr1QuU3qzCn/fQog/Ermr0JTTgWSRh7KpDvO5sLyDmxD3wjymDlZ/ enhNb7GtEzRtiprpGO68t/Znsn5UEOxZ0EFmO0/HAZvSTkhJp7qVVSGgVwZdpIuT WiJkXbjGs1yzLnpj74ECZQGTSmbE12sMiM4ZUkrNWmaVIFLyz1b9R9b6NbD6IqIJ nlsffrzmQM/XQ6l0jc6hv+INIX0R9C7ZWEzXW+U+Xgbg0AkSJeaRSBluwcr/fU1n XXv9VkSeQ6m53P9njGyCzNUvVmAkf2j2yKc0kuVFVrXmFPqPOeppbU3z7RbDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtOCd5YZ5WKETllIq+kxeE13ZDcIwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKMjANBgkqhkiG 9w0BAQsFAAOCAQEAidJOdvqGKzwdE8oM6OwuXl23CpLXYSQk38XZYLxdCZeBcn5n TwK63AC+/kCK9jiUcjo0vdwslTtFYpH6ZRStKX+AXstt7z+fczGHSgJv3SKnm8Fv K0cLBpNuoSo6aZphmrVifnItmODx0LNQFVcU3cnzFMsreLxhPYDLShQmrQefO1Br QwsikRTVOelZZ2NL8FLbviVPFQX71fK6rVz0bd4lvF7nia6hiRrQJDGcnzHsl50W C3wG9TY46p/e2SUD167XCwBXOPQcWDt46rSzQZr5ui555DILS+k1iDDonNCUcWG7 pb/abrHUwPkGPn5bDyyRMWDew6HSAIlNRZMV8Q== -----END CERTIFICATE-----Generated at Wed Oct 29 01:32:14 2025 by rpki-client