$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa File: 3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa (raw, json) Hash identifier: 5hlI5K/Zd6cztt6GagBhpilRPp9R7JGMqdcSMY/aeFI= Subject key identifier: 9B:CF:B5:AB:0A:43:E2:24:F5:46:81:93:CD:06:51:07:87:C7:F4:4C Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 092CA5099F6988CD9AD1E3C156A00B904E3768F3 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa Signing time: Mon 23 Jun 2025 17:00:00 +0000 ROA not before: Mon 23 Jun 2025 16:55:00 +0000 ROA not after: Mon 22 Jun 2026 17:00:00 +0000 asID: 4787 IP address blocks: 125.208.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 15:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:2c:a5:09:9f:69:88:cd:9a:d1:e3:c1:56:a0:0b:90:4e:37:68:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jun 23 16:55:00 2025 GMT Not After : Jun 22 17:00:00 2026 GMT Subject: CN=9BCFB5AB0A43E224F5468193CD06510787C7F44C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1d:09:0a:54:cc:08:e9:70:d3:d7:b9:63:31: fc:c4:4a:3f:ae:7e:52:5f:c5:38:77:fb:0a:9d:c5: 3e:27:cb:f0:5d:c6:be:6c:f2:94:d4:4e:a2:b8:d6: b2:53:e8:6e:fe:a7:d6:62:f0:22:78:e4:76:bf:0c: fc:53:b9:06:f2:31:4c:60:38:eb:0f:11:f3:86:67: 9c:89:c9:3e:c8:84:27:10:aa:c8:84:8f:36:b2:f9: ab:c1:2a:78:4a:34:b6:82:f0:6f:bb:2e:86:78:55: d9:d3:fb:ca:78:7f:8c:59:0e:9d:d0:8d:7f:ec:45: fe:2b:34:5f:71:c3:34:6f:91:8e:63:92:7a:1d:c5: 13:5e:8f:65:0c:fc:48:ba:aa:ef:c1:03:b3:d1:2d: 52:db:74:05:ea:e3:af:5f:a2:80:58:2f:99:bd:5e: c7:25:29:3b:db:a2:66:9e:a7:b7:ea:e1:13:c3:ce: 63:0e:57:45:dc:5e:0e:7a:fe:b7:a0:31:e0:ed:19: b9:ce:34:b1:cd:2d:ee:e6:e6:d9:2c:13:61:89:e2: f4:0a:fa:34:25:4f:54:2e:06:c7:24:03:2e:08:ff: f5:4c:05:97:49:a3:6c:04:db:7f:25:92:ab:43:50: 80:01:38:c3:7e:fc:d2:7e:fc:27:c0:d5:b2:89:38: f0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CF:B5:AB:0A:43:E2:24:F5:46:81:93:CD:06:51:07:87:C7:F4:4C X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.208.128.0/18 Signature Algorithm: sha256WithRSAEncryption 92:bd:3f:b3:24:3a:78:5c:bd:2c:70:4b:71:46:7f:e4:00:f4: dc:4e:ea:7d:fe:39:5c:af:39:d9:b3:42:35:dd:e3:05:a6:53: 70:ad:cc:59:c3:39:a9:21:4a:7b:f5:81:de:3a:60:c4:9c:4f: a2:51:5c:d2:94:cb:34:5d:0b:c2:5d:f3:fd:4a:3c:ce:13:e8: df:b9:bc:bf:28:85:bd:57:a5:c0:43:34:ee:19:13:0b:54:da: 2c:95:16:0e:da:db:80:4f:ef:43:d3:ec:66:19:8d:bf:56:59: 51:fd:0f:b6:ca:1f:01:69:ba:ff:01:cc:9a:9e:ce:d0:c5:0d: e1:c0:8f:5c:1a:33:ef:48:e1:40:8c:f0:a9:4e:1f:e1:6c:79: 7c:d8:e8:48:6f:17:1e:8a:1c:f9:72:14:0e:95:24:41:92:74: 55:d9:13:bb:9f:91:60:32:ad:e6:72:13:3f:8d:57:13:1b:ff: 68:c8:0d:56:f2:36:dd:36:b4:84:70:67:bf:c3:11:49:03:91: c8:96:82:a3:1e:28:5b:3c:cd:27:88:24:33:05:a6:76:e6:6a: 17:e6:72:29:1f:e6:cd:95:d0:f1:d4:b8:c4:e9:89:17:ab:c4: 3f:ca:40:99:ba:c1:5d:bd:b6:52:54:68:0c:fb:ae:a9:bd:56: ca:44:01:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCSylCZ9piM2a0ePBVqALkE43aPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA2MjMxNjU1MDBaFw0yNjA2MjIxNzAwMDBaMDMxMTAvBgNV BAMTKDlCQ0ZCNUFCMEE0M0UyMjRGNTQ2ODE5M0NEMDY1MTA3ODdDN0Y0NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGHQkKVMwI6XDT17ljMfzESj+u flJfxTh3+wqdxT4ny/Bdxr5s8pTUTqK41rJT6G7+p9Zi8CJ45Ha/DPxTuQbyMUxg OOsPEfOGZ5yJyT7IhCcQqsiEjzay+avBKnhKNLaC8G+7LoZ4VdnT+8p4f4xZDp3Q jX/sRf4rNF9xwzRvkY5jknodxRNej2UM/Ei6qu/BA7PRLVLbdAXq469fooBYL5m9 XsclKTvbomaep7fq4RPDzmMOV0XcXg56/regMeDtGbnONLHNLe7m5tksE2GJ4vQK +jQlT1QuBsckAy4I//VMBZdJo2wE238lkqtDUIABOMN+/NJ+/CfA1bKJOPCbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUm8+1qwpD4iT1RoGTzQZRB4fH9EwwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzIzNTJlMzIzMDM4MmUzMTMyMzgyZTMwMmYz MTM4MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBn3QgDANBgkqhkiG 9w0BAQsFAAOCAQEAkr0/syQ6eFy9LHBLcUZ/5AD03E7qff45XK852bNCNd3jBaZT cK3MWcM5qSFKe/WB3jpgxJxPolFc0pTLNF0Lwl3z/Uo8zhPo37m8vyiFvVelwEM0 7hkTC1TaLJUWDtrbgE/vQ9PsZhmNv1ZZUf0PtsofAWm6/wHMmp7O0MUN4cCPXBoz 70jhQIzwqU4f4Wx5fNjoSG8XHooc+XIUDpUkQZJ0VdkTu5+RYDKt5nITP41XExv/ aMgNVvI23Ta0hHBnv8MRSQORyJaCox4oWzzNJ4gkMwWmduZqF+ZyKR/mzZXQ8dS4 xOmJF6vEP8pAmbrBXb22UlRoDPuuqb1WykQB2Q== -----END CERTIFICATE-----Generated at Mon Oct 27 09:28:22 2025 by rpki-client