$ rpki-client -vvf repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa File: 3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa (raw, json) Hash identifier: FSa5jhvEvK/r9qXQQGlnZIm8LVRjHW9YNMDzzN5f0xI= Subject key identifier: CB:C0:8D:AC:B0:3A:B0:E0:31:20:6E:1C:30:FC:D3:1F:62:30:03:F1 Certificate issuer: /CN=4FA812FE6A4A85F790CB2740EF08836883716912 Certificate serial: 276A58F054B4F5F7664F20B69125288E225D1D80 Authority key identifier: 4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa Signing time: Fri 11 Jul 2025 07:00:00 +0000 ROA not before: Fri 11 Jul 2025 06:55:00 +0000 ROA not after: Fri 10 Jul 2026 07:00:00 +0000 asID: 131767 IP address blocks: 175.106.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:6a:58:f0:54:b4:f5:f7:66:4f:20:b6:91:25:28:8e:22:5d:1d:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FA812FE6A4A85F790CB2740EF08836883716912 Validity Not Before: Jul 11 06:55:00 2025 GMT Not After : Jul 10 07:00:00 2026 GMT Subject: CN=CBC08DACB03AB0E031206E1C30FCD31F623003F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:13:d4:88:68:5c:62:0c:fa:5c:45:ee:fd:49: 32:c0:cd:d6:ab:89:08:cb:77:b3:fc:ee:89:c2:f5: e0:d2:7a:3f:3f:9a:d0:70:87:b7:e3:b1:8e:ea:cf: 0c:55:4a:fc:07:da:8c:55:48:12:72:05:bc:9b:a8: b5:cd:80:f9:42:be:c6:36:67:1d:a1:28:3d:05:b8: 21:ba:6f:82:74:19:bf:cc:3c:7a:92:eb:1f:9d:5d: a1:a2:3c:3d:42:65:24:03:53:e8:e9:49:8d:bb:1a: 09:16:b5:08:8e:26:a0:11:22:5d:84:3f:8c:8c:4c: 23:fb:4a:e5:92:b8:8f:4a:ab:43:7d:46:5f:a7:34: 93:da:0a:31:2b:61:e4:f1:ff:a6:15:95:61:e7:57: be:f0:e9:e5:03:e1:81:f7:b6:1c:cb:bc:d0:d9:7e: c8:7b:62:42:64:99:85:20:bf:e2:e0:91:a7:aa:39: 38:0a:60:7a:47:07:9f:1f:90:9f:ea:70:c4:ab:4a: 95:d2:df:2a:69:6a:16:11:20:99:9a:d9:d5:ae:53: 08:c7:d0:88:78:af:4b:b9:8a:ea:e3:ae:d3:12:f0: 72:0a:4d:dc:15:64:26:df:6a:90:29:44:23:f5:17: 05:6c:3f:24:89:45:bd:56:3d:a6:c1:43:97:c1:80: 36:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C0:8D:AC:B0:3A:B0:E0:31:20:6E:1C:30:FC:D3:1F:62:30:03:F1 X509v3 Authority Key Identifier: keyid:4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.106.16.0/22 Signature Algorithm: sha256WithRSAEncryption 47:a2:5d:cd:ca:e9:07:09:80:98:ae:d8:5c:87:06:45:10:62: 86:aa:4a:12:a5:2f:b1:78:21:60:20:83:ff:a8:44:9f:f0:21: a4:92:10:53:72:f2:14:67:53:21:cf:cd:d0:6a:70:d2:51:15: 43:26:03:fe:08:a3:ff:12:bf:2d:c3:f8:64:71:99:46:c9:cd: 92:4b:72:48:9e:69:77:18:73:37:84:51:4c:30:ff:0e:7c:1e: ca:4e:bc:0d:46:fa:99:90:1e:bc:dd:66:5a:54:74:b0:53:e6: 29:2b:b5:ba:d4:51:06:37:22:81:2e:dd:eb:96:25:85:ab:ff: 8c:88:8a:5b:b8:c0:a0:c9:7a:b2:4b:2b:40:81:d4:4a:d2:04: f7:a3:c6:4f:34:a1:fd:79:7b:9d:44:f6:4f:e0:b1:14:26:42: 94:ed:cc:8b:67:c3:6b:45:2a:15:c4:bc:ea:88:46:38:6c:02: 60:d5:f4:b8:73:9e:4d:eb:7b:f6:f3:0e:f4:6e:81:ab:73:24: f4:94:34:38:f1:7d:c3:a9:a3:7c:09:0f:83:85:06:b7:71:74: d0:d1:b3:de:19:fc:be:8a:b1:13:7b:46:bc:cd:a6:a4:34:4e: 82:d6:23:95:86:95:39:98:84:94:03:51:5f:7d:e3:ee:23:47: e8:62:d3:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ2pY8FS09fdmTyC2kSUojiJdHYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4 MzcxNjkxMjAeFw0yNTA3MTEwNjU1MDBaFw0yNjA3MTAwNzAwMDBaMDMxMTAvBgNV BAMTKENCQzA4REFDQjAzQUIwRTAzMTIwNkUxQzMwRkNEMzFGNjIzMDAzRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrE9SIaFxiDPpcRe79STLAzdar iQjLd7P87onC9eDSej8/mtBwh7fjsY7qzwxVSvwH2oxVSBJyBbybqLXNgPlCvsY2 Zx2hKD0FuCG6b4J0Gb/MPHqS6x+dXaGiPD1CZSQDU+jpSY27GgkWtQiOJqARIl2E P4yMTCP7SuWSuI9Kq0N9Rl+nNJPaCjErYeTx/6YVlWHnV77w6eUD4YH3thzLvNDZ fsh7YkJkmYUgv+LgkaeqOTgKYHpHB58fkJ/qcMSrSpXS3yppahYRIJma2dWuUwjH 0Ih4r0u5iurjrtMS8HIKTdwVZCbfapApRCP1FwVsPySJRb1WPabBQ5fBgDYbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy8CNrLA6sOAxIG4cMPzTH2IwA/EwHwYDVR0j BBgwFoAUT6gS/mpKhfeQyydA7wiDaINxaRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGQxMDhmNy0wOGIyLTQwOWYtOGE3MC1hOWM2N2FlNWVkMjIvMC80RkE4MTJGRTZB NEE4NUY3OTBDQjI3NDBFRjA4ODM2ODgzNzE2OTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4Mzcx NjkxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0ZDEwOGY3LTA4YjItNDA5Zi04 YTcwLWE5YzY3YWU1ZWQyMi8wLzMxMzczNTJlMzEzMDM2MmUzMTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCr2oQMA0GCSqG SIb3DQEBCwUAA4IBAQBHol3NyukHCYCYrthchwZFEGKGqkoSpS+xeCFgIIP/qESf 8CGkkhBTcvIUZ1Mhz83QanDSURVDJgP+CKP/Er8tw/hkcZlGyc2SS3JInml3GHM3 hFFMMP8OfB7KTrwNRvqZkB683WZaVHSwU+YpK7W61FEGNyKBLt3rliWFq/+MiIpb uMCgyXqySytAgdRK0gT3o8ZPNKH9eXudRPZP4LEUJkKU7cyLZ8NrRSoVxLzqiEY4 bAJg1fS4c55N63v28w70boGrcyT0lDQ48X3DqaN8CQ+DhQa3cXTQ0bPeGfy+irET e0a8zaakNE6C1iOVhpU5mISUA1FffePuI0foYtMv -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:30 2025 by rpki-client