$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa File: 3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa (raw, json) Hash identifier: ouV3bgoYGCrnd4SJQPzzBWd2/p9nhOtY9GtgASI0dzY= Subject key identifier: A2:BB:13:F0:82:D3:21:65:B5:FE:B2:CF:A1:3C:50:D2:22:0B:6A:11 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 1145C4DA961B6A51052C790429D94E80C46E286D Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa Signing time: Fri 21 Mar 2025 09:02:23 +0000 ROA not before: Fri 21 Mar 2025 08:57:23 +0000 ROA not after: Fri 20 Mar 2026 09:02:23 +0000 asID: 18059 IP address blocks: 203.134.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 10:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:45:c4:da:96:1b:6a:51:05:2c:79:04:29:d9:4e:80:c4:6e:28:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Mar 21 08:57:23 2025 GMT Not After : Mar 20 09:02:23 2026 GMT Subject: CN=A2BB13F082D32165B5FEB2CFA13C50D2220B6A11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:45:09:61:13:ba:8e:33:ee:08:16:cc:bf:0a: f2:e1:e9:29:10:73:07:30:21:ca:d9:9c:30:d2:af: ee:54:d8:42:a6:89:31:71:09:1c:05:89:15:18:ea: 0f:6d:2d:a8:5a:ec:9e:02:91:d3:95:f2:0d:96:5f: 7c:c0:24:d4:87:fa:40:7e:d8:1a:b6:48:3b:65:68: a3:a6:01:cf:16:c5:fa:33:8f:22:72:82:d5:13:9e: 99:bd:f7:5a:ed:51:ce:8e:e7:cc:80:17:93:b9:de: 61:b5:2b:35:08:e9:3d:6a:b8:14:bf:ae:9a:b8:16: da:36:0e:8e:eb:72:15:53:f9:da:c1:d3:75:1a:32: 82:55:83:ca:2e:e8:9a:db:f4:72:70:45:fa:87:73: 1e:4e:46:f1:1c:32:af:92:c7:8c:25:42:52:ac:53: 62:01:0a:99:00:28:cd:25:84:5c:af:93:37:93:f2: cf:e9:e9:20:24:cc:df:09:e5:0f:6e:94:d4:d0:05: 9f:b3:8c:f7:50:61:df:b5:94:13:1c:f0:6b:9b:e9: 04:f7:83:cb:d5:15:0d:69:06:62:62:58:62:5a:af: b5:f7:59:68:11:ff:b5:6a:08:fe:b7:aa:32:b4:36: af:6c:25:40:fb:cb:d1:12:a5:15:13:e0:1d:b2:9f: 02:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BB:13:F0:82:D3:21:65:B5:FE:B2:CF:A1:3C:50:D2:22:0B:6A:11 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.232.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:8a:b4:69:99:2a:af:0d:b8:a4:96:8f:cb:fb:8e:24:1b:61: 2a:98:20:49:e1:c1:da:c5:05:86:9a:95:9b:42:27:fc:d0:d8: 82:17:47:f0:58:64:3e:a2:60:35:2a:96:22:92:58:92:e8:e9: 5b:d2:ad:3d:95:39:63:d0:68:73:bd:93:31:2d:0f:97:9d:7f: 55:9d:1f:ab:9e:a6:02:ce:05:f5:5a:bc:ea:29:79:a3:d9:56: 5f:ad:a5:f6:33:dd:4f:9e:85:7d:c8:7f:3f:2e:4c:16:17:fb: 80:8c:9f:58:48:dc:da:4b:c3:92:32:83:3f:f4:fe:74:27:69: a8:46:4f:55:1f:8e:5e:cf:9c:79:9f:2e:51:26:ca:2c:15:d4: 37:50:34:87:de:59:bb:75:a9:4d:dc:44:7f:a6:6e:73:6c:79: 8f:7a:85:10:e5:43:20:d2:66:20:a0:a2:b4:54:33:1c:a6:d9: d1:ab:4d:22:fb:a2:5e:ca:ab:17:78:a6:10:27:27:2a:58:89: 2b:c1:15:07:cd:be:d0:4f:0c:01:b2:85:d5:70:6d:3a:19:cb: 8c:de:48:16:41:34:34:fa:f5:38:05:f6:fd:1d:a6:cb:1a:0c: bf:00:46:68:22:30:91:dc:f7:c1:56:cf:62:67:7d:e0:b8:cc: 92:4c:2d:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEUXE2pYbalEFLHkEKdlOgMRuKG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTAzMjEwODU3MjNaFw0yNjAzMjAwOTAyMjNaMDMxMTAvBgNV BAMTKEEyQkIxM0YwODJEMzIxNjVCNUZFQjJDRkExM0M1MEQyMjIwQjZBMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcRQlhE7qOM+4IFsy/CvLh6SkQ cwcwIcrZnDDSr+5U2EKmiTFxCRwFiRUY6g9tLaha7J4CkdOV8g2WX3zAJNSH+kB+ 2Bq2SDtlaKOmAc8WxfozjyJygtUTnpm991rtUc6O58yAF5O53mG1KzUI6T1quBS/ rpq4Fto2Do7rchVT+drB03UaMoJVg8ou6Jrb9HJwRfqHcx5ORvEcMq+Sx4wlQlKs U2IBCpkAKM0lhFyvkzeT8s/p6SAkzN8J5Q9ulNTQBZ+zjPdQYd+1lBMc8Gub6QT3 g8vVFQ1pBmJiWGJar7X3WWgR/7VqCP63qjK0Nq9sJUD7y9ESpRUT4B2ynwLDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUorsT8ILTIWW1/rLPoTxQ0iILahEwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy4boMA0GCSqG SIb3DQEBCwUAA4IBAQCLirRpmSqvDbiklo/L+44kG2EqmCBJ4cHaxQWGmpWbQif8 0NiCF0fwWGQ+omA1KpYikliS6Olb0q09lTlj0GhzvZMxLQ+XnX9VnR+rnqYCzgX1 WrzqKXmj2VZfraX2M91PnoV9yH8/LkwWF/uAjJ9YSNzaS8OSMoM/9P50J2moRk9V H45ez5x5ny5RJsosFdQ3UDSH3lm7dalN3ER/pm5zbHmPeoUQ5UMg0mYgoKK0VDMc ptnRq00i+6JeyqsXeKYQJycqWIkrwRUHzb7QTwwBsoXVcG06GcuM3kgWQTQ0+vU4 Bfb9HabLGgy/AEZoIjCR3PfBVs9iZ33guMySTC0J -----END CERTIFICATE-----Generated at Tue Nov 4 16:41:09 2025 by rpki-client