$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa File: 3130312e35302e31362e302f32302d3234203d3e2034373837.roa (raw, json) Hash identifier: NHdK+iKVttVEPrqO6Kcav9eiYXn2bDjiJdfed95C7xA= Subject key identifier: 7F:BC:F0:FA:6E:52:8F:79:32:FA:79:C5:6F:DC:3F:05:22:4C:AF:D7 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 61DD5D05952E4C66E7925C0D98FA3E11C4472732 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa Signing time: Mon 23 Jun 2025 17:00:00 +0000 ROA not before: Mon 23 Jun 2025 16:55:00 +0000 ROA not after: Mon 22 Jun 2026 17:00:00 +0000 asID: 4787 IP address blocks: 101.50.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 15:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:dd:5d:05:95:2e:4c:66:e7:92:5c:0d:98:fa:3e:11:c4:47:27:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jun 23 16:55:00 2025 GMT Not After : Jun 22 17:00:00 2026 GMT Subject: CN=7FBCF0FA6E528F7932FA79C56FDC3F05224CAFD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ed:8a:25:55:dc:15:bc:8f:b9:94:ba:ac:f3: b1:05:33:7c:aa:6e:53:3b:7a:5f:ff:a0:b0:8d:1d: 14:2d:3f:92:4f:71:76:ff:a7:7b:53:69:a5:a5:40: 8b:00:48:67:a3:21:d7:b8:95:4c:62:76:be:e4:fe: bb:12:fa:67:d8:1d:21:4f:39:df:79:a9:1f:4a:c7: 72:63:67:c4:ad:83:1b:1b:1f:0f:1f:c4:07:12:c9: 88:d7:a3:1b:49:7a:2a:71:da:ef:2c:76:bb:da:2c: 94:6f:6e:d6:4b:ed:e8:52:02:de:57:cb:4c:80:64: 84:a9:1d:3f:f6:c5:e5:f8:e2:ac:dc:c6:e9:5c:45: e8:fe:2b:17:7a:2e:7c:d0:93:54:3f:59:3b:40:e8: d9:e2:9a:24:04:c4:53:07:e2:c1:b2:de:1f:eb:c6: c1:2b:de:d0:6d:42:54:5c:99:03:6c:c5:17:4f:10: 3b:a5:45:34:34:f4:83:9c:b5:e2:6e:7d:24:37:91: c4:4e:ff:c9:11:b1:2e:64:cc:8d:6e:d1:9c:22:4c: 58:fa:cc:c6:3a:4d:b0:19:c6:0e:65:81:a4:5b:43: 3f:8c:e5:42:ca:ba:fb:18:91:93:a0:2e:92:bd:76: 6e:a2:49:5f:06:38:28:c0:13:6f:a6:a0:7a:57:12: ee:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:BC:F0:FA:6E:52:8F:79:32:FA:79:C5:6F:DC:3F:05:22:4C:AF:D7 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.50.16.0/20 Signature Algorithm: sha256WithRSAEncryption b6:20:5d:4e:71:74:74:50:56:d9:ca:57:9e:cf:ba:54:29:4b: 8c:b8:b8:75:42:54:40:1b:93:d4:3f:cc:69:a2:68:9c:dc:c2: e5:5c:e4:d4:a2:9a:21:e6:a9:e7:36:ce:43:a1:50:a8:f7:fa: ae:74:90:7e:5a:a6:a4:8f:95:e4:5c:3a:2e:ea:b2:af:b8:fc: fc:08:67:c0:3d:88:c3:32:f7:9e:13:4c:9d:9f:fa:fc:3d:29: 42:fa:f2:9f:b9:42:a7:d8:f4:20:4e:55:b8:9b:1a:aa:05:02: 5f:28:76:02:ea:56:93:2c:e4:bf:7a:07:81:c6:92:58:3a:38: a5:fc:32:29:2b:4b:18:c4:23:eb:b7:ec:8d:79:ff:19:fa:bd: a5:99:69:f3:45:03:3b:bf:dd:0b:5f:ca:9f:b4:cc:c3:69:21: ce:22:5c:22:f0:f8:8d:c2:04:a5:f9:d2:0a:b2:c8:99:e7:34: 46:98:ae:89:f6:ce:b9:4d:8b:31:4b:eb:49:28:af:17:7e:43: da:79:01:11:fc:27:6d:33:05:1d:90:cf:ae:77:ba:5f:bc:db: 1f:5f:ae:50:e1:5e:bc:b9:20:84:63:d9:1a:b2:a7:6b:cd:f1: fd:8b:55:bb:76:3a:98:b8:50:e3:02:7e:39:89:a5:06:f3:2a: da:53:e5:17 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUYd1dBZUuTGbnklwNmPo+EcRHJzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA2MjMxNjU1MDBaFw0yNjA2MjIxNzAwMDBaMDMxMTAvBgNV BAMTKDdGQkNGMEZBNkU1MjhGNzkzMkZBNzlDNTZGREMzRjA1MjI0Q0FGRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/7YolVdwVvI+5lLqs87EFM3yq blM7el//oLCNHRQtP5JPcXb/p3tTaaWlQIsASGejIde4lUxidr7k/rsS+mfYHSFP Od95qR9Kx3JjZ8StgxsbHw8fxAcSyYjXoxtJeipx2u8sdrvaLJRvbtZL7ehSAt5X y0yAZISpHT/2xeX44qzcxulcRej+Kxd6LnzQk1Q/WTtA6NnimiQExFMH4sGy3h/r xsEr3tBtQlRcmQNsxRdPEDulRTQ09IOcteJufSQ3kcRO/8kRsS5kzI1u0ZwiTFj6 zMY6TbAZxg5lgaRbQz+M5ULKuvsYkZOgLpK9dm6iSV8GOCjAE2+moHpXEu4tAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUf7zw+m5Sj3ky+nnFb9w/BSJMr9cwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWE3MDI3MjYtYjJjNi00NmZjLTgy OTctMmRiZGVjNmQ2ZDVkLzAvMzEzMDMxMmUzNTMwMmUzMTM2MmUzMDJmMzIzMDJk MzIzNDIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARlMhAwDQYJKoZIhvcNAQEL BQADggEBALYgXU5xdHRQVtnKV57PulQpS4y4uHVCVEAbk9Q/zGmiaJzcwuVc5NSi miHmqec2zkOhUKj3+q50kH5apqSPleRcOi7qsq+4/PwIZ8A9iMMy954TTJ2f+vw9 KUL68p+5QqfY9CBOVbibGqoFAl8odgLqVpMs5L96B4HGklg6OKX8MikrSxjEI+u3 7I15/xn6vaWZafNFAzu/3Qtfyp+0zMNpIc4iXCLw+I3CBKX50gqyyJnnNEaYron2 zrlNizFL60korxd+Q9p5ARH8J20zBR2Qz653ul+82x9frlDhXry5IIRj2Rqyp2vN 8f2LVbt2Opi4UOMCfjmJpQbzKtpT5Rc= -----END CERTIFICATE-----Generated at Mon Oct 27 09:32:12 2025 by rpki-client