$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232352e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3232352e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: iVloZrBIKi8lO+ez3IilhigHeiC4/XBak2SIy/5eYbE= Subject key identifier: 5E:F6:7C:59:F9:25:DC:18:90:20:65:74:7B:1C:86:9F:1E:A6:EC:2E Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 20D57D8B499CFFE3BC4FD91EB7758363C90B6FB7 Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232352e302f32342d3234203d3e203338373634.roa Signing time: Wed 19 Feb 2025 11:00:02 +0000 ROA not before: Wed 19 Feb 2025 10:55:02 +0000 ROA not after: Wed 18 Feb 2026 11:00:02 +0000 asID: 38764 IP address blocks: 120.29.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d5:7d:8b:49:9c:ff:e3:bc:4f:d9:1e:b7:75:83:63:c9:0b:6f:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Feb 19 10:55:02 2025 GMT Not After : Feb 18 11:00:02 2026 GMT Subject: CN=5EF67C59F925DC18902065747B1C869F1EA6EC2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c8:6d:ed:e8:35:a0:aa:4a:ed:bb:cd:9f:93: 2d:3d:3b:f4:e5:44:af:b0:a9:b7:a1:65:99:c9:b8: 32:22:d5:35:88:ab:97:f1:00:a5:70:b4:d6:b0:00: 67:51:ce:ac:b0:0b:28:47:1d:47:78:00:7c:88:2d: 89:b8:12:41:72:35:b9:ee:c6:9a:2c:c2:53:05:c0: 26:68:64:aa:48:50:0f:62:93:93:06:14:9e:6d:50: 23:3f:dd:f4:d5:03:d2:ea:6e:4a:ce:e0:3e:60:e4: 80:41:86:98:6b:8e:f1:b0:62:1d:e0:e4:6b:48:5f: 0d:ba:95:4d:2e:2e:67:50:c4:e4:04:78:73:8c:5d: 9a:de:a7:1b:ec:58:8e:3e:14:c4:4e:67:b2:74:6f: 3e:e0:a2:8a:db:f8:5a:a4:52:5f:a5:39:c5:9d:0f: 30:0e:ee:97:3b:54:a4:99:46:b6:72:84:95:b7:e9: 6c:f8:5e:b3:f2:e2:2b:ac:6d:ee:3a:f7:64:2e:9d: e1:5b:39:4c:52:c8:73:3f:0b:7b:e3:9a:eb:ed:cd: a4:8a:0c:de:ad:08:83:3d:48:d1:48:27:5e:ee:9a: 11:e1:84:b2:71:47:15:88:0e:82:60:db:00:a5:8a: 35:13:4d:0f:08:ae:3a:81:ff:32:5b:33:2f:a5:37: 1e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F6:7C:59:F9:25:DC:18:90:20:65:74:7B:1C:86:9F:1E:A6:EC:2E X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232352e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.225.0/24 Signature Algorithm: sha256WithRSAEncryption 92:87:e5:1d:65:21:bb:21:a1:05:3f:aa:aa:9a:b2:81:23:26: 57:bf:86:8c:2a:ac:80:a3:a3:30:aa:87:dd:21:45:14:db:90: 18:fd:dc:0f:9b:16:ff:00:6e:06:b1:dd:18:4d:9d:7d:d7:8d: 4e:be:b8:77:26:5b:23:56:7e:90:e3:bb:6f:02:cb:14:46:1c: bd:f2:1f:2c:82:b8:74:e3:b7:4f:95:6c:7b:57:f1:77:7d:16: e5:e8:de:2e:fc:83:cb:40:76:a5:f8:cb:a0:cf:06:2f:ac:02: 0b:89:b0:2f:89:83:d8:cc:17:61:ed:3c:b9:f2:43:aa:2c:55: 53:88:10:ad:28:08:aa:15:2a:84:25:a6:f3:19:f3:68:b8:25: b9:62:d0:a8:c7:7b:dc:dc:ad:cd:da:51:a0:01:ab:c2:e5:1e: 9c:c8:2d:19:1f:74:80:05:8b:d6:2c:9f:b5:ae:43:dc:ec:e0: 94:cc:4e:18:9d:64:4d:c7:49:06:6d:b1:21:b4:82:8b:8c:0c: 31:e6:2a:14:d6:99:8c:8a:14:b4:64:c3:a7:97:8e:60:80:16: ec:07:44:2a:52:9c:a6:65:d6:e9:fd:fb:a2:15:1d:d8:aa:1f: d6:e8:9c:5d:02:c2:96:d3:88:82:1a:2d:d6:a9:d9:d4:fb:70: 18:46:ef:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUINV9i0mc/+O8T9ket3WDY8kLb7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNTAyMTkxMDU1MDJaFw0yNjAyMTgxMTAwMDJaMDMxMTAvBgNV BAMTKDVFRjY3QzU5RjkyNURDMTg5MDIwNjU3NDdCMUM4NjlGMUVBNkVDMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmyG3t6DWgqkrtu82fky09O/Tl RK+wqbehZZnJuDIi1TWIq5fxAKVwtNawAGdRzqywCyhHHUd4AHyILYm4EkFyNbnu xposwlMFwCZoZKpIUA9ik5MGFJ5tUCM/3fTVA9LqbkrO4D5g5IBBhphrjvGwYh3g 5GtIXw26lU0uLmdQxOQEeHOMXZrepxvsWI4+FMROZ7J0bz7goorb+FqkUl+lOcWd DzAO7pc7VKSZRrZyhJW36Wz4XrPy4iusbe4692QuneFbOUxSyHM/C3vjmuvtzaSK DN6tCIM9SNFIJ17umhHhhLJxRxWIDoJg2wClijUTTQ8IrjqB/zJbMy+lNx6dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXvZ8Wfkl3BiQIGV0exyGnx6m7C4wHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd4TANBgkqhkiG 9w0BAQsFAAOCAQEAkoflHWUhuyGhBT+qqpqygSMmV7+GjCqsgKOjMKqH3SFFFNuQ GP3cD5sW/wBuBrHdGE2dfdeNTr64dyZbI1Z+kOO7bwLLFEYcvfIfLIK4dOO3T5Vs e1fxd30W5ejeLvyDy0B2pfjLoM8GL6wCC4mwL4mD2MwXYe08ufJDqixVU4gQrSgI qhUqhCWm8xnzaLgluWLQqMd73NytzdpRoAGrwuUenMgtGR90gAWL1iyfta5D3Ozg lMxOGJ1kTcdJBm2xIbSCi4wMMeYqFNaZjIoUtGTDp5eOYIAW7AdEKlKcpmXW6f37 ohUd2Kof1uicXQLCltOIghot1qnZ1PtwGEbvYg== -----END CERTIFICATE-----Generated at Tue Nov 4 19:58:21 2025 by rpki-client