$ rpki-client -vvf repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa File: 3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: NkDaIeWsM/gPXaHtYqNr3YcOAUXw5i1dgIsc199+Uh8= Subject key identifier: 88:3B:D9:A4:6E:A2:3B:89:6A:52:B1:22:AF:0E:86:D0:D2:B0:35:9D Certificate issuer: /CN=4E4C9A47789406B9086713C5B821524B664E7C90 Certificate serial: 4276052114B627668F5B18458F7B998C155F6CF8 Authority key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa Signing time: Wed 29 Oct 2025 00:00:02 +0000 ROA not before: Tue 28 Oct 2025 23:55:02 +0000 ROA not after: Wed 28 Oct 2026 00:00:02 +0000 asID: 139952 IP address blocks: 203.175.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:76:05:21:14:b6:27:66:8f:5b:18:45:8f:7b:99:8c:15:5f:6c:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E4C9A47789406B9086713C5B821524B664E7C90 Validity Not Before: Oct 28 23:55:02 2025 GMT Not After : Oct 28 00:00:02 2026 GMT Subject: CN=883BD9A46EA23B896A52B122AF0E86D0D2B0359D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2b:30:88:59:5c:4a:98:79:75:85:98:e1:98: d2:ea:ca:8c:ea:da:39:91:bb:ed:dd:81:02:ba:25: e0:d0:b7:3b:e3:37:88:f5:cb:8f:b9:6d:8b:fe:60: 06:59:2a:af:e2:0e:8b:b1:08:b7:8e:54:7e:82:02: 9f:ea:7d:4c:be:06:c6:df:d2:e1:02:fa:d0:ad:65: 68:87:b3:93:1c:84:ca:04:14:b2:0a:e8:a1:3e:b3: 9c:dc:ac:06:dc:f7:4e:8d:da:8f:3d:be:2d:7e:34: 29:60:54:21:73:a7:9a:a8:1e:92:8a:c2:9f:12:1c: 81:ac:99:2e:9c:d5:ef:a2:45:08:3a:db:31:6b:e0: 43:be:35:e4:c6:fa:9d:0b:bd:3c:c9:4f:b5:e2:0f: a8:c9:f5:9d:3b:0e:8e:b3:5f:04:f3:dd:98:f5:4f: 3a:37:58:a7:5c:d7:1c:d6:6c:4d:3f:7e:6e:77:7a: 8e:55:6e:e7:42:37:50:fd:02:a1:a8:1a:bb:aa:2d: 29:40:ea:69:5c:35:32:75:ff:6e:c1:99:6c:a2:35: 19:13:55:4f:27:5e:14:e1:c2:92:d6:51:95:80:6b: 0d:12:d1:52:4e:1a:69:6e:42:27:c6:67:85:35:99: 1d:d4:96:a6:f8:dd:ee:dc:5f:00:44:f9:c6:69:c2: 10:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3B:D9:A4:6E:A2:3B:89:6A:52:B1:22:AF:0E:86:D0:D2:B0:35:9D X509v3 Authority Key Identifier: keyid:4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.125.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:39:d0:e5:4c:a7:0c:f1:34:44:d1:4c:83:4b:76:f0:7c:60: c8:62:13:15:19:68:25:62:49:6f:63:29:20:dc:e5:40:6e:87: 7e:b7:df:6f:0d:74:41:38:5e:ae:18:e1:d1:27:65:04:d4:d7: 0a:99:d0:f4:5b:f7:3f:bc:fc:92:12:96:de:72:63:24:99:c9: 78:37:73:91:7d:9c:e8:77:c7:0b:c3:ab:d9:0d:a1:11:81:9f: 3b:bd:7f:dc:6f:27:1b:e6:44:7a:01:a5:aa:a1:af:f6:1d:d9: 7b:b5:0a:58:92:5a:83:0c:e9:00:14:9e:e7:a2:00:22:87:67: f5:64:d9:0f:ab:c3:79:61:33:ee:c1:15:b7:76:66:da:8c:cc: 9f:f2:ea:19:4f:d5:43:03:11:6f:b9:20:80:20:aa:16:bb:b5: 28:3d:75:d9:79:c0:0b:40:8e:e9:d1:fa:24:ee:da:09:f2:f1: e2:67:8d:43:0d:97:b0:59:bd:53:9b:84:42:fd:23:8d:0c:78: 65:2b:31:59:a9:bd:4d:84:45:cb:16:d5:ee:2e:9a:d8:c3:00: 93:b1:2d:e4:fd:f0:ed:db:16:7a:42:d6:7e:6b:f9:9f:78:c2: 90:c8:63:b9:43:e9:87:21:8e:ff:d4:ca:cd:60:ac:35:a2:36: 20:61:d4:d9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQnYFIRS2J2aPWxhFj3uZjBVfbPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2 NjRFN0M5MDAeFw0yNTEwMjgyMzU1MDJaFw0yNjEwMjgwMDAwMDJaMDMxMTAvBgNV BAMTKDg4M0JEOUE0NkVBMjNCODk2QTUyQjEyMkFGMEU4NkQwRDJCMDM1OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4KzCIWVxKmHl1hZjhmNLqyozq 2jmRu+3dgQK6JeDQtzvjN4j1y4+5bYv+YAZZKq/iDouxCLeOVH6CAp/qfUy+Bsbf 0uEC+tCtZWiHs5MchMoEFLIK6KE+s5zcrAbc906N2o89vi1+NClgVCFzp5qoHpKK wp8SHIGsmS6c1e+iRQg62zFr4EO+NeTG+p0LvTzJT7XiD6jJ9Z07Do6zXwTz3Zj1 Tzo3WKdc1xzWbE0/fm53eo5VbudCN1D9AqGoGruqLSlA6mlcNTJ1/27BmWyiNRkT VU8nXhThwpLWUZWAaw0S0VJOGmluQifGZ4U1mR3Ulqb43e7cXwBE+cZpwhApAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiDvZpG6iO4lqUrEirw6G0NKwNZ0wHwYDVR0j BBgwFoAUTkyaR3iUBrkIZxPFuCFSS2ZOfJAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmIzOGY3OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMC80RTRDOUE0Nzc4 OTQwNkI5MDg2NzEzQzVCODIxNTI0QjY2NEU3QzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2NjRF N0M5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLr30wDQYJ KoZIhvcNAQELBQADggEBAI850OVMpwzxNETRTINLdvB8YMhiExUZaCViSW9jKSDc 5UBuh363328NdEE4Xq4Y4dEnZQTU1wqZ0PRb9z+8/JISlt5yYySZyXg3c5F9nOh3 xwvDq9kNoRGBnzu9f9xvJxvmRHoBpaqhr/Yd2Xu1CliSWoMM6QAUnueiACKHZ/Vk 2Q+rw3lhM+7BFbd2ZtqMzJ/y6hlP1UMDEW+5IIAgqha7tSg9ddl5wAtAjunR+iTu 2gny8eJnjUMNl7BZvVObhEL9I40MeGUrMVmpvU2ERcsW1e4umtjDAJOxLeT98O3b FnpC1n5r+Z94wpDIY7lD6Ychjv/Uys1grDWiNiBh1Nk= -----END CERTIFICATE-----Generated at Tue Nov 4 07:42:54 2025 by rpki-client