$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/3230332e3139302e34302e302f32312d3234203d3e203435333137.roa File: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (raw, json) Hash identifier: HofDLGmwqIsnj587taUbViIIFJnwZV6L29IBKkzVuIE= Subject key identifier: D3:62:51:A0:3C:92:32:AB:0A:16:3C:77:C7:65:3D:32:33:91:15:A4 Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 0FA88D9C22E8F4FD2EEEB41A1979AF9433CDC782 Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/3230332e3139302e34302e302f32312d3234203d3e203435333137.roa Signing time: Mon 27 Oct 2025 14:00:00 +0000 ROA not before: Mon 27 Oct 2025 13:55:00 +0000 ROA not after: Mon 26 Oct 2026 14:00:00 +0000 asID: 45317 IP address blocks: 203.190.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 19:17:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:a8:8d:9c:22:e8:f4:fd:2e:ee:b4:1a:19:79:af:94:33:cd:c7:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Oct 27 13:55:00 2025 GMT Not After : Oct 26 14:00:00 2026 GMT Subject: CN=D36251A03C9232AB0A163C77C7653D32339115A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d7:03:18:f0:73:aa:ea:95:f5:62:14:6b:71: a5:3e:2c:0f:ff:fb:69:98:08:a4:ba:49:cf:05:55: f2:aa:96:c2:49:8a:94:44:e3:bf:69:9c:e2:4d:5b: 0f:b0:ca:8f:56:30:8c:bb:9e:89:ac:dc:80:19:35: 6b:be:1f:a0:cd:79:f1:cd:e6:b5:d6:ec:18:5e:5f: c4:5b:8f:1d:5b:ac:93:6a:ea:46:f2:d0:80:a7:d6: 77:84:f8:22:8d:29:5d:45:57:5f:ac:c4:0a:21:e1: 54:c0:a3:26:30:33:9a:95:1f:fc:0f:89:0c:7f:1a: 32:af:ce:39:9a:68:bb:ea:50:28:0e:03:49:88:fe: 9e:d2:1a:db:6d:8f:72:f5:f2:26:10:2d:12:9e:57: 96:72:85:8f:d9:f5:83:64:f2:52:06:99:20:b3:4d: ff:58:7d:a5:f1:17:0c:f1:29:55:63:da:ab:6d:a7: 11:48:09:a6:7f:db:ff:fb:7f:13:61:91:c9:58:0b: 78:a0:a7:e7:ab:4a:27:62:92:c9:d3:4c:24:ba:18: 3f:cc:6b:38:23:87:6e:1b:8c:7c:fa:13:e4:f2:81: 06:c6:ce:ed:9e:cb:8a:40:ee:ed:cd:cd:0b:2c:65: 63:de:37:b5:19:4f:46:7d:37:51:bb:66:f8:3d:c5: 9c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:62:51:A0:3C:92:32:AB:0A:16:3C:77:C7:65:3D:32:33:91:15:A4 X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/3230332e3139302e34302e302f32312d3234203d3e203435333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.40.0/21 Signature Algorithm: sha256WithRSAEncryption 01:ef:8d:06:33:ac:fd:66:2d:f3:c8:52:78:7c:f4:0f:72:cc: ba:02:3b:49:3d:0d:cc:34:1b:9a:04:8c:88:f5:0a:95:22:0e: 57:e0:71:cd:eb:c1:31:76:58:b4:6c:aa:5f:25:c4:a3:78:8a: 03:45:12:6d:5c:54:79:79:ab:7f:62:16:76:e6:d1:7b:00:ce: 45:b6:20:ff:64:d9:3a:68:fc:5d:cb:97:9e:d1:3f:81:92:6e: 40:18:5f:d1:a9:3e:b6:59:68:8d:43:ed:b0:ba:80:ec:3c:5d: 27:5f:cd:d0:02:72:0e:11:d3:a9:f7:48:e1:f1:cc:e0:42:80: fb:c4:13:d4:b2:6f:c7:8b:0c:cd:cf:9c:8a:f8:ce:77:fb:b9: 60:be:c9:cd:e4:ae:89:47:64:c0:8d:69:ef:6d:c3:ed:c2:46: 29:2e:e7:63:0b:83:b6:bf:da:a2:33:f5:2a:26:c8:e6:c0:a0: da:56:8a:0a:40:ad:0e:ca:6c:79:c9:69:1d:0a:7a:2f:be:95: 17:b3:7f:ea:c2:87:ae:01:89:86:53:63:14:c7:2d:60:84:2e: 07:f8:10:b8:19:8b:df:5c:0d:4f:a6:e0:88:06:e8:56:12:b2: fa:41:92:30:d8:12:39:1f:f2:e7:ad:5c:fc:2d:59:2b:4a:8b: 4d:32:fa:1b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD6iNnCLo9P0u7rQaGXmvlDPNx4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNTEwMjcxMzU1MDBaFw0yNjEwMjYxNDAwMDBaMDMxMTAvBgNV BAMTKEQzNjI1MUEwM0M5MjMyQUIwQTE2M0M3N0M3NjUzRDMyMzM5MTE1QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC31wMY8HOq6pX1YhRrcaU+LA// +2mYCKS6Sc8FVfKqlsJJipRE479pnOJNWw+wyo9WMIy7noms3IAZNWu+H6DNefHN 5rXW7BheX8Rbjx1brJNq6kby0ICn1neE+CKNKV1FV1+sxAoh4VTAoyYwM5qVH/wP iQx/GjKvzjmaaLvqUCgOA0mI/p7SGtttj3L18iYQLRKeV5ZyhY/Z9YNk8lIGmSCz Tf9YfaXxFwzxKVVj2qttpxFICaZ/2//7fxNhkclYC3igp+erSidiksnTTCS6GD/M azgjh24bjHz6E+TygQbGzu2ey4pA7u3NzQssZWPeN7UZT0Z9N1G7Zvg9xZxXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU02JRoDySMqsKFjx3x2U9MjORFaQwHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYWNjMzY1LWUxOTQtNGFjMC05 NTNhLTRkZjNhNTkwMGIxNC8wLzMyMzAzMzJlMzEzOTMwMmUzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTMzMzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+KDANBgkqhkiG 9w0BAQsFAAOCAQEAAe+NBjOs/WYt88hSeHz0D3LMugI7ST0NzDQbmgSMiPUKlSIO V+BxzevBMXZYtGyqXyXEo3iKA0USbVxUeXmrf2IWdubRewDORbYg/2TZOmj8XcuX ntE/gZJuQBhf0ak+tllojUPtsLqA7DxdJ1/N0AJyDhHTqfdI4fHM4EKA+8QT1LJv x4sMzc+civjOd/u5YL7JzeSuiUdkwI1p723D7cJGKS7nYwuDtr/aojP1KibI5sCg 2laKCkCtDspseclpHQp6L76VF7N/6sKHrgGJhlNjFMctYIQuB/gQuBmL31wNT6bg iAboVhKy+kGSMNgSOR/y561c/C1ZK0qLTTL6Gw== -----END CERTIFICATE-----Generated at Wed Nov 5 17:55:10 2025 by rpki-client