$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32382e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: IW6r/W1XpOxukCeWC1Ej9gDCCUBUajQutblQu77uUEE= Subject key identifier: BB:BC:65:29:F3:67:0F:A2:7F:67:CA:FE:FD:0D:3C:2C:76:4A:1A:F3 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 14093310DD8D1344A44F7CCE7EDC4539D2E29C47 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:05 +0000 ROA not before: Sat 03 May 2025 08:55:05 +0000 ROA not after: Sat 02 May 2026 09:00:05 +0000 asID: 24525 IP address blocks: 203.153.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:09:33:10:dd:8d:13:44:a4:4f:7c:ce:7e:dc:45:39:d2:e2:9c:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:05 2025 GMT Not After : May 2 09:00:05 2026 GMT Subject: CN=BBBC6529F3670FA27F67CAFEFD0D3C2C764A1AF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:fb:65:ac:8f:a1:d9:4f:5e:c8:e3:ff:e1: 97:ac:f3:6a:07:80:65:36:34:a2:6f:e3:c2:ed:a2: 3b:a6:99:1a:8d:19:55:94:87:50:74:30:f0:93:dc: 54:10:ee:3e:a6:1a:aa:d2:9f:91:47:06:b1:94:8c: 28:b5:a8:77:35:a7:f1:09:5c:8e:e5:a3:da:a6:cd: eb:60:cc:82:41:d2:2d:49:69:47:7d:7f:ac:fa:10: 3c:0b:12:08:f0:92:93:6d:ab:17:33:7f:58:d5:88: a8:9d:aa:32:e1:dd:e1:36:ab:43:81:1e:1d:57:1c: 64:b0:8e:e1:8f:a3:89:41:26:0e:23:4a:2e:6f:04: fa:95:e5:4a:e0:05:a1:b4:c8:8b:a9:74:34:fb:e3: a5:6c:f2:9c:75:45:f7:32:a8:fa:eb:d1:fa:d7:a1: c0:d0:d3:79:fb:d0:78:ad:e0:a5:d7:ef:00:78:9e: 96:2c:2e:11:74:4a:b7:06:2b:6b:c7:4c:99:a4:65: 8f:7b:cf:5f:f7:8e:a2:d6:49:ab:3a:78:0b:83:26: c0:69:ed:8d:d8:17:e5:b1:28:4a:80:ee:09:70:f4: d6:02:ca:ea:ab:40:3c:20:31:b3:58:5d:db:91:cd: a2:d7:5c:92:46:f4:31:90:aa:30:f3:28:09:a5:0b: 88:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:BC:65:29:F3:67:0F:A2:7F:67:CA:FE:FD:0D:3C:2C:76:4A:1A:F3 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.28.0/24 Signature Algorithm: sha256WithRSAEncryption 33:b5:86:4d:0c:99:ae:63:9b:0f:09:20:3a:dd:40:bd:5e:33: 59:02:81:f9:65:ab:23:ab:5b:a6:7e:24:08:54:07:e7:68:df: f3:1a:c9:cb:d6:59:26:d9:d2:ff:a1:32:b5:3a:e7:67:86:a5: d7:cd:89:79:ea:bd:73:ca:5f:c1:c0:07:66:38:82:fe:57:f5: 34:70:ce:0c:1e:56:46:86:e5:7e:55:7d:29:d4:74:13:4e:27: 47:d8:64:0d:9d:2d:cc:66:9d:0e:75:bd:93:2b:a3:98:46:9d: d5:f7:52:fc:ff:85:85:19:d6:62:59:c9:f2:69:3e:76:d5:7e: 55:29:66:a0:51:ec:e4:f7:29:46:2a:24:0a:be:90:d9:0f:49: 0d:55:fd:07:5e:f2:60:35:e6:f1:6c:9b:fc:e5:11:54:fc:28: 3c:0a:5a:fa:84:d9:20:97:54:03:c9:d9:5a:f3:ec:f7:54:41: a7:ac:fe:b9:f2:27:bb:0b:36:97:ed:8a:26:7c:ca:ab:06:f5: 9c:e9:82:a2:6e:4e:89:91:ca:f7:ab:4b:b5:91:1f:fd:aa:1f: 13:42:ec:2a:d2:0c:59:2c:20:a2:d7:c5:a9:0c:6b:b7:f3:8d: 60:83:f9:f4:ec:a1:91:0a:b5:7a:60:ea:17:b5:a3:e8:f1:9d: 54:8b:0c:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFAkzEN2NE0SkT3zOftxFOdLinEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDVaFw0yNjA1MDIwOTAwMDVaMDMxMTAvBgNV BAMTKEJCQkM2NTI5RjM2NzBGQTI3RjY3Q0FGRUZEMEQzQzJDNzY0QTFBRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHsftlrI+h2U9eyOP/4Zes82oH gGU2NKJv48LtojummRqNGVWUh1B0MPCT3FQQ7j6mGqrSn5FHBrGUjCi1qHc1p/EJ XI7lo9qmzetgzIJB0i1JaUd9f6z6EDwLEgjwkpNtqxczf1jViKidqjLh3eE2q0OB Hh1XHGSwjuGPo4lBJg4jSi5vBPqV5UrgBaG0yIupdDT746Vs8px1RfcyqPrr0frX ocDQ03n70Hit4KXX7wB4npYsLhF0SrcGK2vHTJmkZY97z1/3jqLWSas6eAuDJsBp 7Y3YF+WxKEqA7glw9NYCyuqrQDwgMbNYXduRzaLXXJJG9DGQqjDzKAmlC4glAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu7xlKfNnD6J/Z8r+/Q08LHZKGvMwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZHDANBgkqhkiG 9w0BAQsFAAOCAQEAM7WGTQyZrmObDwkgOt1AvV4zWQKB+WWrI6tbpn4kCFQH52jf 8xrJy9ZZJtnS/6EytTrnZ4al182Jeeq9c8pfwcAHZjiC/lf1NHDODB5WRoblflV9 KdR0E04nR9hkDZ0tzGadDnW9kyujmEad1fdS/P+FhRnWYlnJ8mk+dtV+VSlmoFHs 5PcpRiokCr6Q2Q9JDVX9B17yYDXm8Wyb/OURVPwoPApa+oTZIJdUA8nZWvPs91RB p6z+ufInuws2l+2KJnzKqwb1nOmCom5OiZHK96tLtZEf/aofE0LsKtIMWSwgotfF qQxrt/ONYIP59OyhkQq1emDqF7Wj6PGdVIsMpA== -----END CERTIFICATE-----Generated at Mon Oct 27 14:26:35 2025 by rpki-client