$ rpki-client -vvf repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa File: 3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: yXTkW60GOZZ9N/VIjulkmadt8AvcqAL97NY/DZvxI1Q= Subject key identifier: 28:33:99:35:A1:6F:64:60:2B:19:21:4B:11:5F:B7:1A:8D:AB:57:88 Certificate issuer: /CN=4E4C9A47789406B9086713C5B821524B664E7C90 Certificate serial: 78041C8D0F70FE88D87FADA14805815FDCA7D546 Authority key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa Signing time: Wed 29 Oct 2025 00:00:02 +0000 ROA not before: Tue 28 Oct 2025 23:55:02 +0000 ROA not after: Wed 28 Oct 2026 00:00:02 +0000 asID: 139952 IP address blocks: 203.175.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:04:1c:8d:0f:70:fe:88:d8:7f:ad:a1:48:05:81:5f:dc:a7:d5:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E4C9A47789406B9086713C5B821524B664E7C90 Validity Not Before: Oct 28 23:55:02 2025 GMT Not After : Oct 28 00:00:02 2026 GMT Subject: CN=28339935A16F64602B19214B115FB71A8DAB5788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b2:ff:fb:9a:33:c6:c4:9f:7f:49:54:a7:73: 15:8b:63:7b:0d:c6:dc:94:df:59:4b:20:c8:c8:67: bd:0b:8b:ae:cc:59:9f:0d:88:e0:c4:f0:23:e7:f7: 1a:79:4d:21:cf:f2:75:df:14:ff:7b:a6:9d:07:14: 11:27:7a:b7:63:d3:9e:c8:f7:ea:06:40:d5:4b:e8: 00:c2:52:e2:d0:d7:92:90:13:49:ec:ba:36:79:d4: db:5b:5f:89:a8:d5:8f:5d:53:cc:93:87:91:72:b4: b9:59:a7:d0:90:d1:c4:0e:7f:ed:17:5d:8a:17:06: c6:e7:3b:c0:9a:26:e8:d1:ee:ec:31:80:ee:67:ed: 62:cf:19:ad:e9:c1:a1:52:78:15:2e:50:74:1f:51: f3:74:a0:92:56:51:da:ae:42:b9:21:b8:ac:4f:eb: fd:ef:68:6e:ff:93:db:e4:26:db:c1:a9:47:24:0e: 7e:d0:43:ff:22:86:bc:32:4f:d6:74:61:d7:ac:43: 45:20:69:cb:bf:d9:fc:86:0a:6e:8a:93:8e:ba:e7: 0b:a4:7a:94:e5:51:67:04:2b:5b:eb:78:46:1d:7c: fa:c6:fa:f2:e6:8f:de:16:8c:34:56:6d:ed:64:d5: 06:8e:ba:1f:1a:95:3e:38:a3:3c:2a:0b:da:59:64: 68:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:33:99:35:A1:6F:64:60:2B:19:21:4B:11:5F:B7:1A:8D:AB:57:88 X509v3 Authority Key Identifier: keyid:4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.124.0/23 Signature Algorithm: sha256WithRSAEncryption a4:86:07:72:63:2b:fd:9d:24:1a:02:a1:70:66:87:70:c2:d3: 6d:0a:9e:30:be:7b:84:6e:23:87:98:f8:8f:4d:1a:7d:d8:61: 6c:ee:cc:28:c7:cd:18:41:3b:69:fa:29:94:56:3f:48:3c:55: 12:31:dd:6c:47:8c:b9:12:46:01:33:48:69:a7:ec:1f:ec:95: 6e:51:db:08:a8:38:8b:5f:5b:56:f3:b8:ef:2c:ed:c5:43:7d: 46:df:24:21:7f:e8:dd:8c:49:bc:99:d1:75:81:49:51:99:ac: 42:32:b4:56:bc:e7:86:1c:dd:27:d6:07:e0:54:a1:1a:33:1b: 19:ec:b6:60:58:44:1f:17:13:4e:de:fb:fd:84:20:e1:2c:e0: 4b:47:03:46:6b:24:0d:4e:c0:a9:ce:d5:fd:29:18:1b:80:d8: 06:0f:3b:ef:22:e7:18:19:3a:b4:3f:3c:fe:14:08:c9:fc:d7: 36:81:8a:6e:a9:7e:38:c4:e4:bb:15:0c:2c:ca:7c:1a:93:ce: 2d:4b:45:cb:10:e3:f2:b0:23:33:57:c5:36:f7:21:bb:f9:b8: 9b:c9:39:6d:f5:dd:37:ca:fd:4d:51:4a:21:3f:25:12:3b:a7: f6:6c:64:8b:ec:0f:ca:30:84:ab:8c:6f:03:ec:31:32:5e:da: 4f:6a:a5:6b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeAQcjQ9w/ojYf62hSAWBX9yn1UYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2 NjRFN0M5MDAeFw0yNTEwMjgyMzU1MDJaFw0yNjEwMjgwMDAwMDJaMDMxMTAvBgNV BAMTKDI4MzM5OTM1QTE2RjY0NjAyQjE5MjE0QjExNUZCNzFBOERBQjU3ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCesv/7mjPGxJ9/SVSncxWLY3sN xtyU31lLIMjIZ70Li67MWZ8NiODE8CPn9xp5TSHP8nXfFP97pp0HFBEnerdj057I 9+oGQNVL6ADCUuLQ15KQE0nsujZ51NtbX4mo1Y9dU8yTh5FytLlZp9CQ0cQOf+0X XYoXBsbnO8CaJujR7uwxgO5n7WLPGa3pwaFSeBUuUHQfUfN0oJJWUdquQrkhuKxP 6/3vaG7/k9vkJtvBqUckDn7QQ/8ihrwyT9Z0YdesQ0Ugacu/2fyGCm6Kk4665wuk epTlUWcEK1vreEYdfPrG+vLmj94WjDRWbe1k1QaOuh8alT44ozwqC9pZZGhRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKDOZNaFvZGArGSFLEV+3Go2rV4gwHwYDVR0j BBgwFoAUTkyaR3iUBrkIZxPFuCFSS2ZOfJAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmIzOGY3OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMC80RTRDOUE0Nzc4 OTQwNkI5MDg2NzEzQzVCODIxNTI0QjY2NEU3QzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2NjRF N0M5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLr3wwDQYJ KoZIhvcNAQELBQADggEBAKSGB3JjK/2dJBoCoXBmh3DC020KnjC+e4RuI4eY+I9N Gn3YYWzuzCjHzRhBO2n6KZRWP0g8VRIx3WxHjLkSRgEzSGmn7B/slW5R2wioOItf W1bzuO8s7cVDfUbfJCF/6N2MSbyZ0XWBSVGZrEIytFa854Yc3SfWB+BUoRozGxns tmBYRB8XE07e+/2EIOEs4EtHA0ZrJA1OwKnO1f0pGBuA2AYPO+8i5xgZOrQ/PP4U CMn81zaBim6pfjjE5LsVDCzKfBqTzi1LRcsQ4/KwIzNXxTb3Ibv5uJvJOW313TfK /U1RSiE/JRI7p/ZsZIvsD8owhKuMbwPsMTJe2k9qpWs= -----END CERTIFICATE-----Generated at Tue Nov 4 07:44:19 2025 by rpki-client