$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f32332d3234203d3e20313335343738.roa File: 3130312e3132382e36342e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: lvLsw/JgXsHPnn5xNdpWH3sNZmW3Jv/0WzQ7Lo+ekl4= Subject key identifier: 16:80:BF:0A:B2:74:C3:C5:4C:82:CD:5E:83:F4:D5:6E:18:E7:7F:BC Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 34413AD2BE8F12A3A8B997E0163C2671D6C46753 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f32332d3234203d3e20313335343738.roa Signing time: Thu 16 Oct 2025 00:28:53 +0000 ROA not before: Thu 16 Oct 2025 00:23:53 +0000 ROA not after: Thu 15 Oct 2026 00:28:53 +0000 asID: 135478 IP address blocks: 101.128.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 10:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:41:3a:d2:be:8f:12:a3:a8:b9:97:e0:16:3c:26:71:d6:c4:67:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Oct 16 00:23:53 2025 GMT Not After : Oct 15 00:28:53 2026 GMT Subject: CN=1680BF0AB274C3C54C82CD5E83F4D56E18E77FBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a7:ee:3d:bf:62:2b:c0:af:78:4a:f0:d1:ad: 3b:df:e9:40:9b:d1:de:3d:e6:6e:be:5a:f1:78:6a: 9f:bc:3b:df:fb:ce:3d:03:b3:8a:8d:e8:44:ab:3d: d9:db:4e:ea:1a:f5:63:d4:03:63:48:ab:f7:d5:34: 21:9b:20:69:c3:41:4f:93:39:78:2a:df:63:d1:51: 7f:ee:ec:33:9a:3a:08:99:c5:d5:1a:42:39:01:e9: 8d:86:bb:ce:af:b4:70:1b:8c:04:d5:48:6d:9e:e7: 42:53:a3:54:ce:55:3e:a6:c6:32:48:c5:31:b9:92: bf:38:19:73:95:f0:fc:e0:a3:86:3c:90:ba:0d:f2: a9:78:0a:2d:b8:51:e6:c0:af:16:24:bf:4b:65:7a: 3e:7d:dc:ed:bf:a9:ec:e6:99:65:8c:cd:74:b4:26: 4c:38:b7:6e:f9:d7:8f:fd:f7:af:ba:79:d5:b2:24: 03:7b:43:9e:35:3b:02:b1:8c:3f:6a:60:cf:ae:d8: 59:50:9e:85:0c:13:d3:42:f4:56:dc:a2:e5:a3:0c: 42:e0:7d:e9:10:e3:2e:0f:6e:a3:71:bc:cf:d6:6a: cf:eb:b6:95:ff:f3:e4:5c:cb:69:ce:21:24:d8:21: d9:b6:3a:ae:cb:00:94:de:15:b2:46:0e:b0:df:1d: 38:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:80:BF:0A:B2:74:C3:C5:4C:82:CD:5E:83:F4:D5:6E:18:E7:7F:BC X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.64.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:b4:e6:28:6c:0e:6c:20:f0:18:44:c6:11:d7:2b:bf:b3:fe: 3b:82:39:d3:9e:fc:a1:7b:e6:71:e4:ce:41:18:d4:d7:e3:c5: 7f:e0:f2:7b:67:0d:35:2e:cb:53:82:9e:b6:72:4b:57:56:f0: 93:e8:7b:83:1b:8a:d0:b3:bf:6c:9b:db:7d:e0:88:ff:cd:c9: 26:53:aa:74:84:92:18:74:42:93:3b:73:68:fa:0f:20:ee:5c: 66:cd:a5:b4:04:be:f8:e7:23:5b:d3:10:25:0a:31:31:c0:61: a1:72:dd:f1:48:db:bc:10:a4:0d:d2:d1:c4:32:73:65:0c:72: e3:76:b9:cd:ed:1c:b3:ab:70:20:1e:50:73:a1:cc:f1:5c:20: 24:6f:92:c4:18:50:84:83:f3:0d:20:43:99:de:52:cc:b4:d0: 3e:5c:63:14:9b:bc:9c:2a:aa:01:e1:c5:25:94:cd:d7:16:85: 83:e6:ec:d7:92:e6:a9:40:fa:06:03:68:66:98:0f:61:e7:40: 0b:2b:fc:ad:5a:33:d5:27:6a:da:18:6b:72:19:66:dc:1d:7d: fd:c7:7c:74:56:09:b3:f1:75:f5:0e:6b:fa:73:b8:2d:f4:0f: 32:8a:d8:cd:17:f0:d0:bc:4c:c3:36:f1:38:e1:f5:7a:d8:64: 68:08:f9:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNEE60r6PEqOouZfgFjwmcdbEZ1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTEwMTYwMDIzNTNaFw0yNjEwMTUwMDI4NTNaMDMxMTAvBgNV BAMTKDE2ODBCRjBBQjI3NEMzQzU0QzgyQ0Q1RTgzRjRENTZFMThFNzdGQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgp+49v2IrwK94SvDRrTvf6UCb 0d495m6+WvF4ap+8O9/7zj0Ds4qN6ESrPdnbTuoa9WPUA2NIq/fVNCGbIGnDQU+T OXgq32PRUX/u7DOaOgiZxdUaQjkB6Y2Gu86vtHAbjATVSG2e50JTo1TOVT6mxjJI xTG5kr84GXOV8Pzgo4Y8kLoN8ql4Ci24UebArxYkv0tlej593O2/qezmmWWMzXS0 Jkw4t27514/996+6edWyJAN7Q541OwKxjD9qYM+u2FlQnoUME9NC9FbcouWjDELg fekQ4y4PbqNxvM/Was/rtpX/8+Rcy2nOISTYIdm2Oq7LAJTeFbJGDrDfHThXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFoC/CrJ0w8VMgs1eg/TVbhjnf7wwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzNjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZYBAMA0GCSqG SIb3DQEBCwUAA4IBAQBbtOYobA5sIPAYRMYR1yu/s/47gjnTnvyhe+Zx5M5BGNTX 48V/4PJ7Zw01LstTgp62cktXVvCT6HuDG4rQs79sm9t94Ij/zckmU6p0hJIYdEKT O3No+g8g7lxmzaW0BL745yNb0xAlCjExwGGhct3xSNu8EKQN0tHEMnNlDHLjdrnN 7Ryzq3AgHlBzoczxXCAkb5LEGFCEg/MNIEOZ3lLMtNA+XGMUm7ycKqoB4cUllM3X FoWD5uzXkuapQPoGA2hmmA9h50ALK/ytWjPVJ2raGGtyGWbcHX39x3x0Vgmz8XX1 Dmv6c7gt9A8yitjNF/DQvEzDNvE44fV62GRoCPlS -----END CERTIFICATE-----Generated at Thu Oct 16 08:30:38 2025 by rpki-client