$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131352e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3131352e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: RRe1ZzuZTPL7kFU6PTfw63h9Tv0PNQCPMw0I5QxH0Vs= Subject key identifier: F6:EA:CC:73:4B:75:3B:9A:13:00:F7:99:4D:41:54:93:E4:97:79:F5 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 011D55311D65B4341A2AB5B68F237C6DACCE72B4 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131352e302f32342d3234203d3e2034373837.roa Signing time: Tue 15 Jul 2025 06:12:37 +0000 ROA not before: Tue 15 Jul 2025 06:07:37 +0000 ROA not after: Tue 14 Jul 2026 06:12:37 +0000 asID: 4787 IP address blocks: 114.199.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 03:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:1d:55:31:1d:65:b4:34:1a:2a:b5:b6:8f:23:7c:6d:ac:ce:72:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jul 15 06:07:37 2025 GMT Not After : Jul 14 06:12:37 2026 GMT Subject: CN=F6EACC734B753B9A1300F7994D415493E49779F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8e:e0:d9:1c:d9:0c:11:a4:eb:28:7a:37:ef: ce:c9:3d:af:67:0a:19:e7:56:53:44:ea:5d:d2:ad: 51:71:e9:70:64:20:c4:74:7f:69:e1:a8:d1:2e:17: 35:1a:23:a7:67:cd:5a:3b:72:07:6f:c7:d3:c5:67: e2:0c:14:72:21:92:5a:a2:6a:71:38:e6:00:c1:67: c2:7c:53:4e:99:5f:2b:1a:de:9b:ac:ca:da:37:2b: a3:e2:64:87:c9:62:b3:57:d7:76:b4:53:89:f2:fb: 34:16:b4:dd:50:b3:cb:88:75:fe:ed:6a:47:a7:07: 48:79:5e:fb:d0:5e:8a:ab:f8:d7:91:31:98:b3:a7: ec:bd:1c:73:c8:72:96:80:72:24:31:4f:10:f2:4b: 1a:a3:f1:46:b6:59:3c:bd:63:fe:0b:a3:c5:b6:d5: c5:94:b5:aa:6d:d4:82:77:34:4d:13:fd:21:ab:cc: 79:d4:40:c7:40:68:3f:79:f1:29:9c:ed:ee:ce:aa: d3:3c:8e:27:75:61:ab:28:86:1f:cb:86:c8:34:53: c4:b2:1e:07:47:39:9f:ae:13:cf:2a:ee:43:7a:83: 76:5a:ab:84:4e:68:f4:e9:83:e3:7c:4d:65:93:35: 70:48:84:41:58:5b:fe:81:0a:e5:cf:5e:be:59:4c: 0a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EA:CC:73:4B:75:3B:9A:13:00:F7:99:4D:41:54:93:E4:97:79:F5 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131352e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.115.0/24 Signature Algorithm: sha256WithRSAEncryption 40:56:b4:6a:2f:47:ff:5e:30:ac:39:6d:34:b7:8f:02:2d:12: f5:3d:ad:06:78:78:a1:d5:34:b0:5c:73:ee:89:44:43:5d:0e: 2d:d7:d9:57:77:c4:b5:ee:96:f2:d4:34:41:0c:12:c1:b2:70: 81:90:5b:a3:eb:dc:b1:86:55:26:e2:8b:57:f4:ef:02:91:b4: 09:2f:27:65:3e:63:d3:63:9c:64:4a:dd:7e:0f:e8:8b:79:e9: 0e:47:67:85:f9:cf:38:28:1c:54:5f:cf:99:2d:d0:95:6b:2a: ea:0f:c2:48:54:1a:f7:35:f0:da:96:12:47:40:73:e3:41:73: 65:42:2b:73:98:d4:f2:7f:e6:90:e3:99:77:f0:26:57:52:09: 95:67:e3:62:df:a7:c3:9b:af:a2:7f:54:e4:fd:45:16:57:3f: 9a:9b:22:16:65:09:b1:0a:e6:64:7d:d7:22:bf:50:07:41:56: 45:ff:ce:d3:26:35:e9:8f:49:cf:6a:12:96:cf:13:f3:0d:74: 42:94:90:2f:b3:2d:c9:32:55:5c:07:d8:69:3a:8c:86:70:0a: c9:ab:d2:9b:c6:45:ec:86:a6:c3:5b:57:cf:65:ef:05:59:e8: 5d:d2:d0:6c:84:e4:e3:d3:c5:04:cf:2e:dd:50:57:7c:03:85: 3d:9f:ce:0e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAR1VMR1ltDQaKrW2jyN8bazOcrQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA3MTUwNjA3MzdaFw0yNjA3MTQwNjEyMzdaMDMxMTAvBgNV BAMTKEY2RUFDQzczNEI3NTNCOUExMzAwRjc5OTRENDE1NDkzRTQ5Nzc5RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxjuDZHNkMEaTrKHo3787JPa9n ChnnVlNE6l3SrVFx6XBkIMR0f2nhqNEuFzUaI6dnzVo7cgdvx9PFZ+IMFHIhklqi anE45gDBZ8J8U06ZXysa3pusyto3K6PiZIfJYrNX13a0U4ny+zQWtN1Qs8uIdf7t akenB0h5XvvQXoqr+NeRMZizp+y9HHPIcpaAciQxTxDySxqj8Ua2WTy9Y/4Lo8W2 1cWUtapt1IJ3NE0T/SGrzHnUQMdAaD958Smc7e7OqtM8jid1Yasohh/Lhsg0U8Sy HgdHOZ+uE88q7kN6g3Zaq4ROaPTpg+N8TWWTNXBIhEFYW/6BCuXPXr5ZTAptAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9urMc0t1O5oTAPeZTUFUk+SXefUwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHczANBgkqhkiG 9w0BAQsFAAOCAQEAQFa0ai9H/14wrDltNLePAi0S9T2tBnh4odU0sFxz7olEQ10O LdfZV3fEte6W8tQ0QQwSwbJwgZBbo+vcsYZVJuKLV/TvApG0CS8nZT5j02OcZErd fg/oi3npDkdnhfnPOCgcVF/PmS3QlWsq6g/CSFQa9zXw2pYSR0Bz40FzZUIrc5jU 8n/mkOOZd/AmV1IJlWfjYt+nw5uvon9U5P1FFlc/mpsiFmUJsQrmZH3XIr9QB0FW Rf/O0yY16Y9Jz2oSls8T8w10QpSQL7MtyTJVXAfYaTqMhnAKyavSm8ZF7Iamw1tX z2XvBVnoXdLQbITk49PFBM8u3VBXfAOFPZ/ODg== -----END CERTIFICATE-----Generated at Tue Jul 22 04:27:26 2025 by rpki-client