$ rpki-client -vvf repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa File: 3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: XwTy3von9UfcQqdLvssnHX18UIYiFkJwOgDC3XKu89E= Subject key identifier: 3A:E8:8D:69:68:F7:97:2B:33:EA:7E:5B:D1:5F:BA:4E:13:2A:6D:90 Certificate issuer: /CN=4E4C9A47789406B9086713C5B821524B664E7C90 Certificate serial: 2A0129A56685D3CB8C07FFF4FCE54C19E6544787 Authority key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa Signing time: Wed 29 Oct 2025 00:00:02 +0000 ROA not before: Tue 28 Oct 2025 23:55:02 +0000 ROA not after: Wed 28 Oct 2026 00:00:02 +0000 asID: 139952 IP address blocks: 203.175.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:01:29:a5:66:85:d3:cb:8c:07:ff:f4:fc:e5:4c:19:e6:54:47:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E4C9A47789406B9086713C5B821524B664E7C90 Validity Not Before: Oct 28 23:55:02 2025 GMT Not After : Oct 28 00:00:02 2026 GMT Subject: CN=3AE88D6968F7972B33EA7E5BD15FBA4E132A6D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b9:4b:5d:2d:00:ee:77:ca:20:a0:0a:79:e4: fb:73:bf:7a:b5:76:62:95:81:f9:83:4f:1a:28:b2: c0:d1:4e:22:a8:59:38:0a:16:fb:0e:f4:0d:87:54: 68:a6:3a:ab:61:0e:fd:e1:3f:bf:5d:a9:13:ea:02: 63:07:5f:42:55:7b:4e:80:df:f6:c8:84:50:3e:62: d6:59:d1:91:38:d8:18:18:09:3e:9a:3c:64:e9:14: 97:fa:8f:6e:3d:09:e1:12:a0:31:c2:53:35:13:a8: c0:35:3d:18:23:d3:88:71:ab:7a:ae:c0:14:a2:67: 92:40:a0:75:c1:cf:d4:6c:33:6e:a8:fe:a6:5b:10: db:08:a4:ee:65:20:e3:a5:1d:94:9c:da:22:e2:10: 00:88:62:16:d8:0e:bc:9d:f2:1c:73:8b:59:aa:97: ef:35:02:62:17:0e:5b:1c:bf:b0:a7:67:ab:d8:dc: 03:f1:57:08:08:ef:08:2c:db:01:de:42:82:a8:f1: 9e:a0:c2:1d:59:dc:ae:78:33:b2:bd:3d:44:e4:41: 27:f6:3f:a1:db:fa:ed:b2:0a:ca:c2:a0:55:05:fd: 96:a8:a9:d9:5e:45:2f:5b:15:c3:70:ad:0b:7a:63: 2b:21:a5:67:c5:7d:47:40:54:c2:f8:b6:14:53:81: 45:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E8:8D:69:68:F7:97:2B:33:EA:7E:5B:D1:5F:BA:4E:13:2A:6D:90 X509v3 Authority Key Identifier: keyid:4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.124.0/24 Signature Algorithm: sha256WithRSAEncryption ab:72:d4:b7:ef:a1:e7:7a:17:d5:a8:22:eb:c4:8c:f8:90:dd: a7:f6:df:fa:59:61:48:96:50:de:ea:f2:92:f9:42:8b:a9:81: e8:ac:b5:62:e0:fb:86:65:4e:d2:16:45:00:b7:e1:78:3d:10: a4:48:95:8f:0b:dc:55:de:41:d5:4c:fc:a1:98:af:7d:65:55: 3a:11:d3:c3:88:a2:51:e9:41:4d:05:56:08:e2:5b:be:ff:8a: 58:97:e3:ee:9c:57:18:52:9f:ef:e8:31:c3:53:3a:02:50:87: 49:1e:c9:13:f7:65:d5:d8:78:c9:59:34:ef:1b:c7:fa:11:91: 88:fa:b5:b4:5c:e9:a5:b3:08:38:7d:19:6a:61:14:45:ec:0a: f0:3c:e3:62:7b:a0:72:22:79:86:94:7d:d5:70:72:1a:63:4d: 4e:5e:01:31:46:8f:61:22:c3:c1:34:06:98:74:59:72:4f:44: 22:69:b5:c6:ca:d9:fb:3c:e9:4b:35:e4:67:45:ab:2e:e0:3c: d0:89:19:0b:d3:60:c5:dd:d5:90:45:31:e5:61:6a:44:fe:b0: aa:3e:f3:09:91:08:d1:96:50:b2:7b:a6:ba:fd:e9:4a:84:de: 5a:2f:b3:8d:05:a0:77:03:6e:ca:91:cb:8c:04:72:e2:c5:83: e0:75:80:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKgEppWaF08uMB//0/OVMGeZUR4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2 NjRFN0M5MDAeFw0yNTEwMjgyMzU1MDJaFw0yNjEwMjgwMDAwMDJaMDMxMTAvBgNV BAMTKDNBRTg4RDY5NjhGNzk3MkIzM0VBN0U1QkQxNUZCQTRFMTMyQTZEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTuUtdLQDud8ogoAp55Ptzv3q1 dmKVgfmDTxoossDRTiKoWTgKFvsO9A2HVGimOqthDv3hP79dqRPqAmMHX0JVe06A 3/bIhFA+YtZZ0ZE42BgYCT6aPGTpFJf6j249CeESoDHCUzUTqMA1PRgj04hxq3qu wBSiZ5JAoHXBz9RsM26o/qZbENsIpO5lIOOlHZSc2iLiEACIYhbYDryd8hxzi1mq l+81AmIXDlscv7CnZ6vY3APxVwgI7wgs2wHeQoKo8Z6gwh1Z3K54M7K9PUTkQSf2 P6Hb+u2yCsrCoFUF/ZaoqdleRS9bFcNwrQt6YyshpWfFfUdAVML4thRTgUUhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOuiNaWj3lysz6n5b0V+6ThMqbZAwHwYDVR0j BBgwFoAUTkyaR3iUBrkIZxPFuCFSS2ZOfJAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmIzOGY3OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMC80RTRDOUE0Nzc4 OTQwNkI5MDg2NzEzQzVCODIxNTI0QjY2NEU3QzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2NjRF N0M5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLr3wwDQYJ KoZIhvcNAQELBQADggEBAKty1Lfvoed6F9WoIuvEjPiQ3af23/pZYUiWUN7q8pL5 QoupgeistWLg+4ZlTtIWRQC34Xg9EKRIlY8L3FXeQdVM/KGYr31lVToR08OIolHp QU0FVgjiW77/iliX4+6cVxhSn+/oMcNTOgJQh0keyRP3ZdXYeMlZNO8bx/oRkYj6 tbRc6aWzCDh9GWphFEXsCvA842J7oHIieYaUfdVwchpjTU5eATFGj2Eiw8E0Bph0 WXJPRCJptcbK2fs86Us15GdFqy7gPNCJGQvTYMXd1ZBFMeVhakT+sKo+8wmRCNGW ULJ7prr96UqE3lovs40FoHcDbsqRy4wEcuLFg+B1gFc= -----END CERTIFICATE-----Generated at Tue Nov 4 07:42:55 2025 by rpki-client