$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa File: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (raw, json) Hash identifier: AmegGicy5qm/oTOOAYDY/mxE94xy3VzwbgGfQNAYu1w= Subject key identifier: 97:E7:97:37:70:73:AA:CF:A0:64:25:70:71:8F:46:CE:92:A4:A1:49 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 2A6A3A29460E17FE56F1FB568D3F9FFF8D4D8C0F Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa Signing time: Wed 01 Apr 2026 05:01:21 +0000 ROA not before: Wed 01 Apr 2026 04:56:21 +0000 ROA not after: Wed 31 Mar 2027 05:01:21 +0000 asID: 142379 IP address blocks: 123.253.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:6a:3a:29:46:0e:17:fe:56:f1:fb:56:8d:3f:9f:ff:8d:4d:8c:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Apr 1 04:56:21 2026 GMT Not After : Mar 31 05:01:21 2027 GMT Subject: CN=97E797377073AACFA0642570718F46CE92A4A149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c8:18:a9:be:87:ad:84:3f:61:1c:a8:05:c2: 01:a5:70:26:22:21:43:23:33:d2:e9:aa:90:ca:4e: 1d:85:14:71:0a:4b:01:09:0f:11:a5:96:b6:a1:dc: f3:84:f3:49:f6:ef:3a:45:41:b8:b8:d5:47:45:0c: 07:68:17:c8:d0:49:7c:09:cc:32:32:a0:80:b0:d3: 7d:1a:b5:ca:84:dd:b0:e5:22:dc:30:eb:b0:c5:4c: bb:fd:89:23:c3:c6:d3:f6:b0:43:85:67:01:7b:fe: f2:30:d6:f8:a1:7c:54:67:af:6c:41:73:1b:4a:78: aa:0d:c7:20:8a:44:fa:67:c4:b9:07:47:62:a5:b2: eb:23:e6:25:82:1a:19:5a:2c:f2:70:f6:06:41:45: b4:87:38:2d:df:03:b8:5b:5c:15:f4:a9:e9:db:42: 0b:0d:f2:c8:51:7c:0f:80:2a:c5:14:6b:ae:29:8f: c6:11:a6:82:65:50:e0:60:e4:25:19:09:19:27:b2: b3:e7:f5:8c:24:ef:ab:57:bb:2a:94:e7:60:f3:bc: 40:c1:f9:9c:3e:18:13:ad:de:d6:45:5a:9a:67:37: 76:1a:5a:a5:c6:0a:53:a9:bc:b5:4f:b8:ef:79:f1: ce:85:ba:34:11:04:6a:8f:1f:2c:b8:7d:36:67:97: 97:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E7:97:37:70:73:AA:CF:A0:64:25:70:71:8F:46:CE:92:A4:A1:49 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.248.0/23 Signature Algorithm: sha256WithRSAEncryption c0:a2:8b:39:28:19:04:3b:72:ff:60:e6:af:04:84:b4:21:d2: 58:cc:2f:6e:1f:11:05:ea:7b:ee:c5:4b:4a:57:e9:00:b8:b0: b8:dd:f7:61:32:aa:69:59:b2:98:8c:ce:77:78:62:bf:50:e0: e1:96:c0:84:00:e9:ad:50:f4:3e:91:c9:ae:32:fa:ca:68:d4: 1f:84:e8:71:5b:59:da:32:33:32:ca:99:a7:29:d7:24:11:70: 47:7a:0a:7c:ae:40:e9:e2:de:8f:0a:d0:9a:32:b9:71:2e:5b: 02:8e:b9:e3:11:a7:8f:1d:66:5b:90:f3:44:43:0f:96:c0:64: c7:03:fc:b0:f6:95:14:3e:de:9d:87:27:d6:3e:bc:12:1a:3e: 1f:2e:e1:b4:db:9b:79:83:d9:ac:f6:06:e9:f9:31:ee:c3:19: d8:dd:3e:ca:44:65:31:84:4c:49:aa:c9:b6:47:48:e8:1b:6b: 82:14:07:d9:36:06:66:82:56:53:60:7d:73:3a:74:c4:82:9a: ae:44:8e:6a:b0:38:5c:40:f0:08:20:40:df:d2:f8:5b:04:46: 1f:d7:a0:2a:c3:e1:3c:ac:21:da:2f:89:0e:36:1e:8c:4e:aa: d2:a3:ac:2d:6e:2a:2a:82:e7:6f:1f:eb:ce:a3:bf:84:01:13: 33:a2:04:bd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKmo6KUYOF/5W8ftWjT+f/41NjA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNjA0MDEwNDU2MjFaFw0yNzAzMzEwNTAxMjFaMDMxMTAvBgNV BAMTKDk3RTc5NzM3NzA3M0FBQ0ZBMDY0MjU3MDcxOEY0NkNFOTJBNEExNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8yBipvoethD9hHKgFwgGlcCYi IUMjM9LpqpDKTh2FFHEKSwEJDxGllrah3POE80n27zpFQbi41UdFDAdoF8jQSXwJ zDIyoICw030atcqE3bDlItww67DFTLv9iSPDxtP2sEOFZwF7/vIw1vihfFRnr2xB cxtKeKoNxyCKRPpnxLkHR2Klsusj5iWCGhlaLPJw9gZBRbSHOC3fA7hbXBX0qenb QgsN8shRfA+AKsUUa64pj8YRpoJlUOBg5CUZCRknsrPn9Ywk76tXuyqU52DzvEDB +Zw+GBOt3tZFWppnN3YaWqXGClOpvLVPuO958c6FujQRBGqPHyy4fTZnl5f9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl+eXN3Bzqs+gZCVwcY9GzpKkoUkwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YTc2NjVhLWI1MGItNGE0NS1h OGY5LTBkNjliZDdkNzQzZC8wLzMxMzIzMzJlMzIzNTMzMmUzMjM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7/fgwDQYJ KoZIhvcNAQELBQADggEBAMCiizkoGQQ7cv9g5q8EhLQh0ljML24fEQXqe+7FS0pX 6QC4sLjd92EyqmlZspiMznd4Yr9Q4OGWwIQA6a1Q9D6Rya4y+spo1B+E6HFbWdoy MzLKmacp1yQRcEd6CnyuQOni3o8K0JoyuXEuWwKOueMRp48dZluQ80RDD5bAZMcD /LD2lRQ+3p2HJ9Y+vBIaPh8u4bTbm3mD2az2Bun5Me7DGdjdPspEZTGETEmqybZH SOgba4IUB9k2BmaCVlNgfXM6dMSCmq5EjmqwOFxA8AggQN/S+FsERh/XoCrD4Tys IdoviQ42HoxOqtKjrC1uKiqC528f686jv4QBEzOiBL0= -----END CERTIFICATE-----Generated at Fri Apr 17 21:51:52 2026 by rpki-client