$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa File: 3230332e3135332e32342e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: fpbwhCRpBGcAPoy4NEnM49/ADYpBv+BklDA2/M0T4VM= Subject key identifier: 98:B1:11:41:0F:B5:5C:87:87:2C:BA:9B:86:4B:DE:49:C8:3B:A5:0D Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 648EB4CB76CC1EA5715D951817B80955098B617F Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:49 +0000 ROA not before: Tue 22 Apr 2025 07:58:49 +0000 ROA not after: Tue 21 Apr 2026 08:03:49 +0000 asID: 24525 IP address blocks: 203.153.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:8e:b4:cb:76:cc:1e:a5:71:5d:95:18:17:b8:09:55:09:8b:61:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:49 2025 GMT Not After : Apr 21 08:03:49 2026 GMT Subject: CN=98B111410FB55C87872CBA9B864BDE49C83BA50D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:80:7d:94:b3:d9:3e:77:9c:bb:b2:85:f7:93: 3c:70:29:77:c8:5a:b7:d9:52:e0:64:44:30:c3:3a: ff:91:e0:67:e7:d5:23:eb:68:86:aa:fa:e0:c0:c9: e3:5f:4a:8d:ff:d3:fb:25:f4:1a:39:c4:16:fe:ab: a5:66:4e:3b:19:35:3d:6a:1e:38:4c:5e:b7:8d:fb: 27:85:6a:c3:b9:ba:92:59:0f:7e:58:82:e1:c1:51: 1c:c4:ea:89:f8:fe:ac:4f:04:44:60:73:73:58:bf: 85:84:48:d0:23:e6:88:dc:dc:11:ad:ec:e9:b8:ce: 7d:0f:62:84:69:ca:72:fd:92:db:e5:46:96:4d:e0: 61:82:94:1c:da:7f:d4:d8:73:12:5c:80:f9:11:2f: 90:9f:5c:58:97:1c:d4:50:fc:ea:34:80:ac:dc:fe: 11:1a:c4:57:55:a5:8e:13:43:ea:af:2f:f8:4e:08: 36:6d:1a:36:aa:41:f3:52:89:84:20:31:ae:8c:fc: 5b:46:f1:02:f3:a1:08:e1:dc:b5:31:e3:a3:2f:3a: 74:bc:49:56:91:d6:ee:59:33:6d:21:8a:2f:d9:5b: c1:3c:60:eb:ce:24:55:0a:8c:38:f4:4d:e6:06:21: f0:83:e4:f7:25:6e:36:59:74:ef:2b:ae:bd:57:2f: f4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B1:11:41:0F:B5:5C:87:87:2C:BA:9B:86:4B:DE:49:C8:3B:A5:0D X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.24.0/21 Signature Algorithm: sha256WithRSAEncryption 37:9f:ec:ba:8a:c1:e7:25:7b:e0:6a:85:42:1c:4b:02:d7:0f: 98:63:92:1f:a0:5e:de:86:0f:c9:49:03:0e:f2:b3:98:1f:ac: 59:4d:d9:61:b3:d0:e4:cb:55:9d:7c:53:fd:5e:61:c4:62:2a: be:5c:2c:6d:fb:e3:68:30:95:d5:68:ab:0e:a5:3b:10:65:18: 6a:fd:52:f1:3e:f7:10:00:a4:74:be:50:84:c1:2c:9f:b6:6c: 76:41:61:f0:da:86:9b:da:f7:9f:04:7d:6c:a1:31:6f:f7:ee: 82:d6:9a:d3:ae:fc:dd:91:3a:7d:53:0a:f5:0c:66:78:ba:0b: d1:e3:b0:3d:30:67:96:db:7a:46:e6:49:6f:1f:7a:8f:b8:4e: b9:ea:a3:18:0e:c0:55:02:36:c5:61:57:64:b0:e3:2c:70:2d: f7:55:5f:de:2a:39:be:b9:74:e0:e8:57:b6:02:c7:36:ae:a0: 8b:de:1d:93:55:db:18:26:6c:ca:16:b9:fa:b9:04:19:3d:58: 2d:83:81:42:b6:33:ca:31:c2:b1:5e:a0:96:2c:23:53:39:35: b0:6c:aa:74:a0:c0:33:1e:41:ba:c1:51:66:fd:19:42:24:b4: 30:2c:64:67:eb:f3:3d:cf:f8:5f:ca:9b:03:f6:50:f3:5f:a4: 2d:d9:84:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZI60y3bMHqVxXZUYF7gJVQmLYX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDlaFw0yNjA0MjEwODAzNDlaMDMxMTAvBgNV BAMTKDk4QjExMTQxMEZCNTVDODc4NzJDQkE5Qjg2NEJERTQ5QzgzQkE1MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8gH2Us9k+d5y7soX3kzxwKXfI WrfZUuBkRDDDOv+R4Gfn1SPraIaq+uDAyeNfSo3/0/sl9Bo5xBb+q6VmTjsZNT1q HjhMXreN+yeFasO5upJZD35YguHBURzE6on4/qxPBERgc3NYv4WESNAj5ojc3BGt 7Om4zn0PYoRpynL9ktvlRpZN4GGClBzaf9TYcxJcgPkRL5CfXFiXHNRQ/Oo0gKzc /hEaxFdVpY4TQ+qvL/hOCDZtGjaqQfNSiYQgMa6M/FtG8QLzoQjh3LUx46MvOnS8 SVaR1u5ZM20hii/ZW8E8YOvOJFUKjDj0TeYGIfCD5PclbjZZdO8rrr1XL/RJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmLERQQ+1XIeHLLqbhkveScg7pQ0wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM0MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8uZGDANBgkqhkiG 9w0BAQsFAAOCAQEAN5/suorB5yV74GqFQhxLAtcPmGOSH6Be3oYPyUkDDvKzmB+s WU3ZYbPQ5MtVnXxT/V5hxGIqvlwsbfvjaDCV1WirDqU7EGUYav1S8T73EACkdL5Q hMEsn7ZsdkFh8NqGm9r3nwR9bKExb/fugtaa06783ZE6fVMK9QxmeLoL0eOwPTBn ltt6RuZJbx96j7hOueqjGA7AVQI2xWFXZLDjLHAt91Vf3io5vrl04OhXtgLHNq6g i94dk1XbGCZsyha5+rkEGT1YLYOBQrYzyjHCsV6gliwjUzk1sGyqdKDAMx5BusFR Zv0ZQiS0MCxkZ+vzPc/4X8qbA/ZQ81+kLdmE5Q== -----END CERTIFICATE-----Generated at Mon Oct 27 14:23:20 2025 by rpki-client