$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3131372e32302e34382e302f32302d3234203d3e203233393531.roa File: 3131372e32302e34382e302f32302d3234203d3e203233393531.roa (raw, json) Hash identifier: jzYSflbMwJIU7OJmfhxLLNRmLBX8xfDaE+EvcpXWcPM= Subject key identifier: A6:9C:99:56:9D:20:20:7C:4C:F2:25:0D:E4:A0:54:78:DF:78:90:5B Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 42BFDDB94B1D2BDCE5B86A331B0582909E3B2685 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3131372e32302e34382e302f32302d3234203d3e203233393531.roa Signing time: Tue 22 Jul 2025 04:02:51 +0000 ROA not before: Tue 22 Jul 2025 03:57:51 +0000 ROA not after: Tue 21 Jul 2026 04:02:51 +0000 asID: 23951 IP address blocks: 117.20.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 09:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:bf:dd:b9:4b:1d:2b:dc:e5:b8:6a:33:1b:05:82:90:9e:3b:26:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 22 03:57:51 2025 GMT Not After : Jul 21 04:02:51 2026 GMT Subject: CN=A69C99569D20207C4CF2250DE4A05478DF78905B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:79:87:d0:b1:09:2a:14:21:2f:f1:06:7c:68: c5:c1:b1:de:f5:ea:76:b9:e9:a9:80:5c:b0:c9:81: 3e:21:49:ac:48:81:2f:6f:9e:22:b1:44:15:64:4b: 5c:11:9f:2e:ec:5e:f1:86:58:44:0d:b5:01:0c:fb: c2:b9:40:79:01:45:94:4c:06:a0:46:52:f8:49:d1: c8:c4:1c:6e:78:55:3e:d9:d0:7a:dd:e4:cb:8f:4c: d5:cd:d7:40:b3:0a:9a:9b:ef:ea:e7:8d:c4:24:e3: 14:85:9f:50:fa:bd:fe:ad:87:81:56:4b:d2:5d:d2: e9:b9:ba:92:ee:dd:9c:bd:75:b0:12:f7:d1:8f:21: d0:b0:c4:da:86:85:85:73:da:7e:e9:f5:c3:be:07: 88:e8:8f:28:bb:d7:a9:7c:2c:49:61:51:84:fc:1b: 2e:9f:fa:85:59:07:49:22:85:cf:1c:15:94:97:64: 1c:83:e1:d6:3b:33:7c:c6:0d:27:a0:31:5d:67:c4: e2:12:db:08:4a:3b:da:d0:eb:35:32:0f:6d:e1:f1: a1:24:14:ca:18:8d:11:5a:08:35:4d:12:6f:3a:d1: d9:ff:40:a0:50:da:e5:03:71:a2:29:00:b2:f3:9f: dc:26:fc:7d:fe:6a:fa:32:ef:36:95:9a:cb:cf:42: e6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9C:99:56:9D:20:20:7C:4C:F2:25:0D:E4:A0:54:78:DF:78:90:5B X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3131372e32302e34382e302f32302d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.20.48.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:19:89:30:4e:6b:33:86:36:c3:7f:26:5a:1f:90:aa:85:ad: e2:2a:1d:7d:4b:2c:68:2c:80:aa:02:1b:71:db:c2:c7:d6:07: b2:4d:f1:9a:53:82:fe:b3:0d:12:b9:b7:03:e1:1b:16:b2:a6: 52:78:6a:f5:29:e5:ee:c3:14:55:31:f4:d8:19:77:79:da:8a: 4a:44:5b:f4:a4:b2:05:aa:74:ac:bc:21:2e:8f:4f:0c:24:2a: 3b:26:7c:7a:48:5a:a7:65:08:03:57:40:81:4b:14:9e:4f:c7: 5d:36:bf:9b:38:4f:17:bc:35:2f:ef:45:bb:c1:e1:4d:4a:e9: f0:73:df:86:56:5d:3c:24:cc:7e:ed:2a:53:8c:af:2d:01:32: b2:9c:d0:82:18:b8:bb:f2:f8:a6:dd:5a:c4:12:c1:7b:bf:73: e8:75:dd:54:0e:92:83:11:93:05:ca:7a:8a:f0:27:ea:83:d8: 8b:7f:6a:24:eb:9e:df:e8:93:59:2f:5c:86:5f:7d:de:9c:26: 06:a9:22:bd:ca:f4:5c:6b:05:0e:c3:ad:07:f6:1d:f9:9e:fe: 51:70:d6:a2:6d:dd:f6:5a:3e:8a:00:fd:8f:97:92:7b:fa:16: af:09:27:b1:c0:64:78:81:16:63:bd:f8:e4:c4:3f:7d:1a:6a: 07:43:c4:82 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQr/duUsdK9zluGozGwWCkJ47JoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjIwMzU3NTFaFw0yNjA3MjEwNDAyNTFaMDMxMTAvBgNV BAMTKEE2OUM5OTU2OUQyMDIwN0M0Q0YyMjUwREU0QTA1NDc4REY3ODkwNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4eYfQsQkqFCEv8QZ8aMXBsd71 6na56amAXLDJgT4hSaxIgS9vniKxRBVkS1wRny7sXvGGWEQNtQEM+8K5QHkBRZRM BqBGUvhJ0cjEHG54VT7Z0Hrd5MuPTNXN10CzCpqb7+rnjcQk4xSFn1D6vf6th4FW S9Jd0um5upLu3Zy9dbAS99GPIdCwxNqGhYVz2n7p9cO+B4jojyi716l8LElhUYT8 Gy6f+oVZB0kihc8cFZSXZByD4dY7M3zGDSegMV1nxOIS2whKO9rQ6zUyD23h8aEk FMoYjRFaCDVNEm860dn/QKBQ2uUDcaIpALLzn9wm/H3+avoy7zaVmsvPQubpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUppyZVp0gIHxM8iUN5KBUeN94kFswHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzEzNzJlMzIzMDJlMzQzODJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMyMzMzOTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR1FDAwDQYJKoZIhvcN AQELBQADggEBADoZiTBOazOGNsN/JlofkKqFreIqHX1LLGgsgKoCG3HbwsfWB7JN 8ZpTgv6zDRK5twPhGxayplJ4avUp5e7DFFUx9NgZd3naikpEW/SksgWqdKy8IS6P TwwkKjsmfHpIWqdlCANXQIFLFJ5Px102v5s4Txe8NS/vRbvB4U1K6fBz34ZWXTwk zH7tKlOMry0BMrKc0IIYuLvy+KbdWsQSwXu/c+h13VQOkoMRkwXKeorwJ+qD2It/ aiTrnt/ok1kvXIZffd6cJgapIr3K9FxrBQ7DrQf2Hfme/lFw1qJt3fZaPooA/Y+X knv6Fq8JJ7HAZHiBFmO9+OTEP30aagdDxII= -----END CERTIFICATE-----Generated at Tue Oct 28 06:14:44 2025 by rpki-client