$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa File: 3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa (raw, json) Hash identifier: AZYO50pcht7zbgRleVLHSfxxSeX3cLrYkpQk4y4IB8g= Subject key identifier: 77:BA:80:E9:11:0B:9F:71:C2:D7:D1:BD:17:8E:15:BE:77:0B:4A:B3 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 61951BBB2A3B856D67BE1C70722E67874002F7C6 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa Signing time: Sat 25 Oct 2025 21:00:00 +0000 ROA not before: Sat 25 Oct 2025 20:55:00 +0000 ROA not after: Sat 24 Oct 2026 21:00:00 +0000 asID: 46026 IP address blocks: 175.111.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 04:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:95:1b:bb:2a:3b:85:6d:67:be:1c:70:72:2e:67:87:40:02:f7:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Oct 25 20:55:00 2025 GMT Not After : Oct 24 21:00:00 2026 GMT Subject: CN=77BA80E9110B9F71C2D7D1BD178E15BE770B4AB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:75:9d:4a:b3:54:7b:6e:a8:09:5e:18:28:3f: 9a:88:1b:10:18:b0:c2:75:32:c7:dc:85:f7:82:02: b6:9d:7f:4d:df:07:14:3d:16:8e:80:ef:a8:e2:d5: f4:fd:81:4b:6a:dc:34:a2:0c:2a:d4:f5:53:ca:d2: 19:ef:ea:b2:25:d5:cd:a9:90:2e:d6:3f:1d:cf:64: b9:51:85:18:ec:bf:53:b2:d7:e6:ef:47:d4:58:b8: 73:57:a8:c5:fc:19:16:40:b4:3f:39:ca:2e:3b:71: 26:f8:f9:9b:22:1d:ec:32:77:e4:31:ee:8f:d5:09: a8:bc:95:d1:fa:89:64:16:6d:2c:4e:7b:e5:29:50: 67:1d:dc:3d:17:31:45:fe:3d:55:f9:91:26:eb:30: 90:b8:0c:08:99:ac:9d:0d:2c:d4:7a:30:29:0b:45: f9:c2:a9:71:d2:3a:09:5a:c7:da:cf:53:86:c4:93: 0d:42:5a:76:58:9b:67:50:8e:da:df:f2:f3:68:6c: c3:09:e0:43:79:04:2b:02:15:a6:ed:9f:78:64:19: 9a:96:82:d4:9e:a1:49:cc:39:11:f8:75:99:c0:32: 7c:53:74:02:e4:0e:4a:8d:67:06:f9:a2:19:d7:e5: 91:99:48:3b:39:5b:63:99:12:43:38:cf:f6:3c:ea: e9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BA:80:E9:11:0B:9F:71:C2:D7:D1:BD:17:8E:15:BE:77:0B:4A:B3 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.112.0/21 Signature Algorithm: sha256WithRSAEncryption a6:44:41:3f:e6:14:72:60:34:1f:a7:1b:26:23:90:e1:e2:6c: f9:25:82:db:ce:e7:4b:a6:bb:b8:2c:e2:c2:f4:57:2d:de:4a: 97:d1:a6:5b:2e:96:a5:ad:c3:1c:df:f2:82:5d:9f:48:a6:d3: 13:19:d3:9d:d5:9e:9c:0e:7a:a9:7a:01:87:ae:ea:64:81:09: d1:33:33:99:ef:0e:6c:82:40:6f:cb:09:3d:58:11:ce:e8:f8: 62:83:ea:3d:4c:fe:ff:c3:85:a0:13:90:e9:49:1c:fd:47:1b: d5:50:e5:20:73:5a:66:9a:53:bb:13:db:7d:25:0f:36:aa:76: 67:4f:98:1d:98:c1:3f:4c:52:26:77:ed:ab:72:25:e1:14:6b: 88:33:e7:15:49:80:32:46:ad:d2:33:56:2b:44:76:ff:4a:73: 61:ab:42:13:a9:4c:93:38:af:6d:67:6b:d2:21:24:69:6d:3a: bd:d9:24:e6:3e:16:0e:43:6f:e5:d5:07:95:b5:72:92:fa:a5: 0e:3c:37:33:9d:e0:c9:ec:5e:57:56:9a:f0:7a:78:ac:95:69: b8:ff:62:4c:68:a9:7b:ae:97:79:c5:f4:cf:e1:3c:43:8a:5c: 37:4c:46:0c:67:1b:60:8a:e3:21:21:a5:24:de:5c:14:e8:a7: 92:37:e7:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYZUbuyo7hW1nvhxwci5nh0AC98YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNTEwMjUyMDU1MDBaFw0yNjEwMjQyMTAwMDBaMDMxMTAvBgNV BAMTKDc3QkE4MEU5MTEwQjlGNzFDMkQ3RDFCRDE3OEUxNUJFNzcwQjRBQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsdZ1Ks1R7bqgJXhgoP5qIGxAY sMJ1MsfchfeCAradf03fBxQ9Fo6A76ji1fT9gUtq3DSiDCrU9VPK0hnv6rIl1c2p kC7WPx3PZLlRhRjsv1Oy1+bvR9RYuHNXqMX8GRZAtD85yi47cSb4+ZsiHewyd+Qx 7o/VCai8ldH6iWQWbSxOe+UpUGcd3D0XMUX+PVX5kSbrMJC4DAiZrJ0NLNR6MCkL RfnCqXHSOglax9rPU4bEkw1CWnZYm2dQjtrf8vNobMMJ4EN5BCsCFabtn3hkGZqW gtSeoUnMORH4dZnAMnxTdALkDkqNZwb5ohnX5ZGZSDs5W2OZEkM4z/Y86um9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd7qA6RELn3HC19G9F44VvncLSrMwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr29wMA0GCSqG SIb3DQEBCwUAA4IBAQCmREE/5hRyYDQfpxsmI5Dh4mz5JYLbzudLpru4LOLC9Fct 3kqX0aZbLpalrcMc3/KCXZ9IptMTGdOd1Z6cDnqpegGHrupkgQnRMzOZ7w5sgkBv ywk9WBHO6Phig+o9TP7/w4WgE5DpSRz9RxvVUOUgc1pmmlO7E9t9JQ82qnZnT5gd mME/TFImd+2rciXhFGuIM+cVSYAyRq3SM1YrRHb/SnNhq0ITqUyTOK9tZ2vSISRp bTq92STmPhYOQ2/l1QeVtXKS+qUOPDczneDJ7F5XVprwenislWm4/2JMaKl7rpd5 xfTP4TxDilw3TEYMZxtgiuMhIaUk3lwU6KeSN+d6 -----END CERTIFICATE-----Generated at Tue Oct 28 03:29:11 2025 by rpki-client