$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa File: 3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa (raw, json) Hash identifier: JPYapDBTyTePbdwtE88+heXxGhufXE50JBbJ2fq7FKo= Subject key identifier: E1:C9:A9:18:EE:E4:41:EE:E8:DC:F7:13:D2:97:22:24:E7:59:F3:A2 Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA Certificate serial: 491FF29CDA72845C186A34491192E22629DBA100 Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa Signing time: Sun 13 Jul 2025 11:46:09 +0000 ROA not before: Sun 13 Jul 2025 11:41:09 +0000 ROA not after: Sun 12 Jul 2026 11:46:09 +0000 asID: 59282 IP address blocks: 116.206.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:1f:f2:9c:da:72:84:5c:18:6a:34:49:11:92:e2:26:29:db:a1:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA Validity Not Before: Jul 13 11:41:09 2025 GMT Not After : Jul 12 11:46:09 2026 GMT Subject: CN=E1C9A918EEE441EEE8DCF713D2972224E759F3A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:75:ff:98:46:84:3f:5d:f6:06:5f:a3:06: f3:fd:ac:4e:c4:95:85:9c:12:fa:48:8b:da:77:55: 4d:6e:e7:b3:a4:b8:12:70:12:66:f6:9c:8b:49:a0: 13:67:c9:7d:2e:b3:6a:c9:01:5c:d8:00:b7:e4:a8: 23:09:16:19:50:c8:2e:0d:76:c7:01:5d:39:af:e5: 44:33:f6:f3:5f:99:79:6e:af:2c:dc:6c:c8:ba:70: 0e:d6:06:b0:59:91:0f:b4:70:8b:5a:bd:bc:3c:c3: 05:d6:f2:8d:40:2f:29:a1:ad:01:60:73:87:5f:ba: fd:fe:5b:46:1c:d7:63:d3:b9:7f:29:f3:9b:11:fd: 3e:62:a0:fc:5f:2f:3e:4d:97:4a:ba:f1:f1:cd:b2: 97:a7:84:8d:93:ca:8b:64:5e:0f:00:c4:37:4c:a3: 3c:a5:d3:f6:05:bc:88:da:ec:0f:80:23:0c:73:96: be:d4:4a:13:ce:cc:10:f5:cb:e9:7b:d8:73:8b:3c: 2e:11:ee:ac:21:e0:3e:b3:a7:5a:2d:76:93:a3:91: c4:c7:d3:8b:5d:58:38:57:29:1b:3d:20:69:26:e2: 90:98:25:61:fd:36:80:4b:1a:fe:ab:11:a0:04:f0: 61:24:5d:2f:7a:28:d9:52:60:14:41:06:7c:57:6b: 55:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C9:A9:18:EE:E4:41:EE:E8:DC:F7:13:D2:97:22:24:E7:59:F3:A2 X509v3 Authority Key Identifier: keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.206.213.0/24 Signature Algorithm: sha256WithRSAEncryption c3:13:2c:f4:10:dc:3c:78:45:13:2f:cc:3d:ec:a7:e1:a3:5f: bc:7e:fa:15:55:cb:49:64:43:8f:c6:fb:ca:41:fa:9c:49:66: 27:64:b3:28:f6:40:fa:73:81:a8:cf:7d:13:15:3c:8d:4a:45: dc:79:df:57:13:57:be:ea:b4:60:94:e8:4d:58:a4:e7:1e:3d: 97:4b:d4:ae:8b:68:f9:52:0f:13:55:2a:bc:5d:a1:cc:68:6f: ce:b9:d1:c9:b8:d4:8e:15:0e:93:e0:6d:b6:65:1c:50:34:99: d2:ce:42:96:9d:ee:4f:db:ce:d3:6d:10:b7:f1:f9:94:e6:dc: b6:25:cd:04:b8:f5:a2:b6:15:4e:73:ae:28:a5:eb:70:33:7b: e9:99:01:2e:56:d7:d6:29:f8:41:64:00:53:57:bf:ab:8f:0f: 70:7f:47:74:da:7f:5f:cb:bf:ea:df:a0:fb:45:80:00:4e:a9: f1:e2:a6:62:87:cf:7d:4b:e8:d2:26:94:f9:8e:f7:3c:e6:a3: 6d:7c:09:db:78:55:f6:ff:a0:a9:2f:28:3c:ab:a0:34:34:dc: ad:0f:ef:d3:47:08:bd:95:eb:2d:ba:c3:75:05:f0:96:1b:70: 8a:bb:b7:5c:9e:90:c3:d5:96:c7:31:fa:e4:01:28:50:85:e7: eb:6a:11:4f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSR/ynNpyhFwYajRJEZLiJinboQAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG MDBFNzFBQTAeFw0yNTA3MTMxMTQxMDlaFw0yNjA3MTIxMTQ2MDlaMDMxMTAvBgNV BAMTKEUxQzlBOTE4RUVFNDQxRUVFOERDRjcxM0QyOTcyMjI0RTc1OUYzQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7IHX/mEaEP132Bl+jBvP9rE7E lYWcEvpIi9p3VU1u57OkuBJwEmb2nItJoBNnyX0us2rJAVzYALfkqCMJFhlQyC4N dscBXTmv5UQz9vNfmXluryzcbMi6cA7WBrBZkQ+0cItavbw8wwXW8o1ALymhrQFg c4dfuv3+W0Yc12PTuX8p85sR/T5ioPxfLz5Nl0q68fHNspenhI2TyotkXg8AxDdM ozyl0/YFvIja7A+AIwxzlr7UShPOzBD1y+l72HOLPC4R7qwh4D6zp1otdpOjkcTH 04tdWDhXKRs9IGkm4pCYJWH9NoBLGv6rEaAE8GEkXS96KNlSYBRBBnxXa1XlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4cmpGO7kQe7o3PcT0pciJOdZ86IwHwYDVR0j BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMxMzEzNjJlMzIzMDM2MmUzMjMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdM7VMA0GCSqG SIb3DQEBCwUAA4IBAQDDEyz0ENw8eEUTL8w97Kfho1+8fvoVVctJZEOPxvvKQfqc SWYnZLMo9kD6c4Goz30TFTyNSkXced9XE1e+6rRglOhNWKTnHj2XS9Sui2j5Ug8T VSq8XaHMaG/OudHJuNSOFQ6T4G22ZRxQNJnSzkKWne5P287TbRC38fmU5ty2Jc0E uPWithVOc64opetwM3vpmQEuVtfWKfhBZABTV7+rjw9wf0d02n9fy7/q36D7RYAA Tqnx4qZih899S+jSJpT5jvc85qNtfAnbeFX2/6CpLyg8q6A0NNytD+/TRwi9lest usN1BfCWG3CKu7dcnpDD1ZbHMfrkAShQhefrahFP -----END CERTIFICATE-----Generated at Mon Jul 21 14:36:26 2025 by rpki-client