$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa File: 3230322e31302e35312e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: Rjv6tIDKIsz+tV5NKRFWqs/fslBMHbaD5maSFYxqf0I= Subject key identifier: 87:37:E6:77:56:52:17:B4:39:32:5D:1B:E7:30:21:95:74:CF:7F:6B Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 0C8ED301E36F7A47E6EBD11ECCE72B04B9F2DC41 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa Signing time: Mon 27 Oct 2025 03:00:00 +0000 ROA not before: Mon 27 Oct 2025 02:55:00 +0000 ROA not after: Mon 26 Oct 2026 03:00:00 +0000 asID: 132634 IP address blocks: 202.10.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 10:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8e:d3:01:e3:6f:7a:47:e6:eb:d1:1e:cc:e7:2b:04:b9:f2:dc:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Oct 27 02:55:00 2025 GMT Not After : Oct 26 03:00:00 2026 GMT Subject: CN=8737E677565217B439325D1BE730219574CF7F6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fa:42:2c:46:e2:62:24:d3:87:46:90:f9:ca: ec:f6:bf:c7:c7:db:0f:e4:e6:74:f2:e4:49:d7:e3: 4a:35:ec:29:05:e5:28:58:83:34:be:36:5e:8d:21: 2b:a5:0a:4a:c4:67:6c:b5:4d:3a:42:20:e7:4c:f1: 20:48:23:ee:23:12:8c:73:ec:0f:d7:91:87:49:8b: 98:6a:33:5d:f9:5d:e2:71:66:cd:3a:a0:7c:be:b5: 9f:d9:b0:9e:04:f0:33:e5:1a:73:a7:9a:60:51:a4: 12:e8:f2:50:be:1a:0e:5f:6a:43:02:81:8d:38:82: 53:83:bb:17:a8:b7:0d:46:f0:15:c3:88:c5:7b:b3: b6:3b:7b:12:50:20:45:a8:56:34:0a:21:11:40:77: 1f:65:4b:02:bf:28:82:99:06:60:c9:c7:ee:35:a0: a8:68:a3:32:82:e8:ed:02:a2:a2:32:1a:bd:77:fb: e6:25:ad:d3:b0:40:9e:4b:fe:a6:5d:45:cb:22:2c: d5:72:5d:23:df:25:41:3d:2e:96:c9:d7:a6:77:78: 49:08:f2:4c:71:cf:e7:f3:4e:61:fd:fe:60:e4:28: 96:cb:30:db:52:2f:4c:e8:63:b8:2d:51:c8:27:61: 52:14:90:c4:42:ef:6d:c5:ca:3f:f0:75:1e:e8:9f: c7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:37:E6:77:56:52:17:B4:39:32:5D:1B:E7:30:21:95:74:CF:7F:6B X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.51.0/24 Signature Algorithm: sha256WithRSAEncryption 96:8b:11:10:5a:c1:da:fb:44:46:5c:dd:a3:5e:83:df:7c:78: 81:dc:c4:33:16:f6:24:00:20:f4:74:09:56:59:92:09:4e:6a: fd:cb:8c:0d:65:24:5d:bf:7d:e7:8d:f9:9c:a1:23:41:14:ba: d0:91:2f:36:5f:0b:0c:e1:a2:ab:e5:3d:72:32:7f:29:5d:f3: 67:47:a3:46:07:e4:c0:90:81:41:d0:46:d0:84:20:84:6b:db: 23:b0:81:dc:b9:a1:67:ef:d2:35:40:5c:58:95:1b:99:74:e9: c9:9f:d5:5b:4e:62:e1:f4:a0:6b:0f:26:d3:2f:27:de:6d:d7: 2e:0a:88:a6:0b:8e:85:fb:e5:44:02:22:4c:f7:ef:a7:28:1b: 8a:65:d2:a7:b1:b1:4c:ec:3e:b9:0a:37:f8:af:85:23:58:e0: d2:50:73:e9:04:36:b9:b1:f9:a4:50:c8:2b:e7:96:43:82:a2: 95:c2:1c:1e:65:0d:92:cf:ec:dd:31:5b:e4:c5:91:5b:8f:89: 1d:2d:cc:4a:ed:5f:7d:a9:47:7f:b3:66:1f:89:57:a6:bc:aa: 86:c0:69:4e:e9:8e:86:56:0e:c1:df:1f:9e:a4:4a:43:52:a2: dd:48:5e:e7:84:2b:3c:0e:17:57:02:78:22:49:f7:22:b2:2e: 56:77:5e:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDI7TAeNvekfm69EezOcrBLny3EEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTEwMjcwMjU1MDBaFw0yNjEwMjYwMzAwMDBaMDMxMTAvBgNV BAMTKDg3MzdFNjc3NTY1MjE3QjQzOTMyNUQxQkU3MzAyMTk1NzRDRjdGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo+kIsRuJiJNOHRpD5yuz2v8fH 2w/k5nTy5EnX40o17CkF5ShYgzS+Nl6NISulCkrEZ2y1TTpCIOdM8SBII+4jEoxz 7A/XkYdJi5hqM135XeJxZs06oHy+tZ/ZsJ4E8DPlGnOnmmBRpBLo8lC+Gg5fakMC gY04glODuxeotw1G8BXDiMV7s7Y7exJQIEWoVjQKIRFAdx9lSwK/KIKZBmDJx+41 oKhoozKC6O0CoqIyGr13++YlrdOwQJ5L/qZdRcsiLNVyXSPfJUE9LpbJ16Z3eEkI 8kxxz+fzTmH9/mDkKJbLMNtSL0zoY7gtUcgnYVIUkMRC723Fyj/wdR7on8ddAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhzfmd1ZSF7Q5Ml0b5zAhlXTPf2swHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKMzANBgkqhkiG 9w0BAQsFAAOCAQEAlosREFrB2vtERlzdo16D33x4gdzEMxb2JAAg9HQJVlmSCU5q /cuMDWUkXb995435nKEjQRS60JEvNl8LDOGiq+U9cjJ/KV3zZ0ejRgfkwJCBQdBG 0IQghGvbI7CB3LmhZ+/SNUBcWJUbmXTpyZ/VW05i4fSgaw8m0y8n3m3XLgqIpguO hfvlRAIiTPfvpygbimXSp7GxTOw+uQo3+K+FI1jg0lBz6QQ2ubH5pFDIK+eWQ4Ki lcIcHmUNks/s3TFb5MWRW4+JHS3MSu1ffalHf7NmH4lXpryqhsBpTumOhlYOwd8f nqRKQ1Ki3Uhe54QrPA4XVwJ4Ikn3IrIuVndexg== -----END CERTIFICATE-----Generated at Wed Oct 29 01:32:13 2025 by rpki-client