$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3131372e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: IvuoIdlU7w6BuxDh+PHoswT+7rZQeMD6IPMuzTtYtKk= Subject key identifier: BB:8E:E3:6F:66:38:9C:DD:6A:DD:57:94:F5:38:BA:6D:C3:96:4F:42 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 4DD2ECF8D4BC0809CF52458BFB85E016D22A36C1 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e2034373837.roa Signing time: Tue 15 Jul 2025 06:13:50 +0000 ROA not before: Tue 15 Jul 2025 06:08:50 +0000 ROA not after: Tue 14 Jul 2026 06:13:50 +0000 asID: 4787 IP address blocks: 114.199.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d2:ec:f8:d4:bc:08:09:cf:52:45:8b:fb:85:e0:16:d2:2a:36:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jul 15 06:08:50 2025 GMT Not After : Jul 14 06:13:50 2026 GMT Subject: CN=BB8EE36F66389CDD6ADD5794F538BA6DC3964F42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:19:c0:77:0c:73:7b:3c:d0:50:e7:57:16:18: c8:0d:34:e6:f8:67:84:ac:8d:e9:06:a1:7a:aa:ff: 31:da:1e:cd:05:c5:87:71:97:ee:13:c7:33:ab:7f: b0:b8:95:a3:67:9b:e1:b9:40:5c:5b:17:da:bb:0d: 69:3d:cc:4a:cb:74:cb:cb:5f:97:1a:56:fe:1c:52: e4:62:e3:7b:22:bb:fc:d6:ec:eb:7b:39:53:0f:17: b7:82:6a:df:a7:d3:0d:bb:46:ee:d9:1a:a3:4d:e7: ee:0a:a0:13:0a:97:0d:b9:20:aa:7c:3b:65:d1:12: cb:2f:4c:59:c0:cf:1b:95:97:38:8b:54:4a:17:9f: ca:a3:3f:d1:88:f0:67:b7:94:7b:a0:17:ce:f1:fb: 23:a0:11:b2:74:ac:f2:2e:9e:61:7c:25:8a:35:3d: 4e:8e:22:82:1a:4d:a2:13:3c:7a:35:4d:3c:20:13: 62:64:a3:a9:4b:fb:33:21:b1:ae:06:dc:91:86:88: bf:b3:45:9b:6a:9f:6e:66:13:0e:c0:c4:a0:ea:dc: 9e:68:f1:63:94:47:c6:8c:a8:e5:c8:86:5b:b7:44: 25:3b:69:7c:d4:c7:64:17:2f:2b:70:f4:dd:6f:ec: a4:78:6f:c8:aa:2c:17:0c:2a:c7:4e:63:9a:5c:71: 12:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8E:E3:6F:66:38:9C:DD:6A:DD:57:94:F5:38:BA:6D:C3:96:4F:42 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.117.0/24 Signature Algorithm: sha256WithRSAEncryption 95:29:25:4c:61:10:ec:9a:0e:47:cb:bf:46:c9:ec:35:b4:ff: 05:10:15:b5:4d:99:f0:00:c4:18:47:cf:59:84:eb:d4:e5:ff: 42:b6:66:12:64:24:ef:ba:97:a8:99:54:66:02:19:f8:83:f7: 81:b9:ed:04:9d:f7:ac:7d:bd:7d:47:f4:4a:6c:58:bc:8d:cf: d0:05:1c:a8:36:87:61:d9:15:73:00:e8:74:3f:ad:8a:92:a9: f1:fc:d1:e8:bd:5c:96:de:82:fc:ae:05:9d:70:8f:9a:df:4d: 88:d8:9b:d5:4c:80:b8:09:fe:2e:ec:18:4f:78:94:fb:21:ac: ae:2b:5b:1f:e5:cc:1d:b0:38:41:dc:e6:df:81:40:dd:76:ff: 08:80:0c:1c:56:29:46:91:95:3e:4b:83:17:8b:9b:29:06:0e: ef:53:28:62:bb:11:2c:be:45:98:28:9f:2c:cc:56:c5:61:ee: e1:fa:45:90:dd:6b:ce:8a:ee:e3:6e:05:cd:18:f8:00:67:1a: 5b:52:b1:f5:ff:b6:c5:35:07:3c:73:1a:01:fe:e5:f9:55:ba: e5:2e:ba:0b:20:0d:6f:bd:f8:32:ff:b0:98:a3:21:17:5c:86: ab:29:42:e0:b7:d4:c3:9f:5e:59:19:9d:4a:25:0f:aa:8e:8f: 89:23:27:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTdLs+NS8CAnPUkWL+4XgFtIqNsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA3MTUwNjA4NTBaFw0yNjA3MTQwNjEzNTBaMDMxMTAvBgNV BAMTKEJCOEVFMzZGNjYzODlDREQ2QURENTc5NEY1MzhCQTZEQzM5NjRGNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyGcB3DHN7PNBQ51cWGMgNNOb4 Z4SsjekGoXqq/zHaHs0FxYdxl+4TxzOrf7C4laNnm+G5QFxbF9q7DWk9zErLdMvL X5caVv4cUuRi43siu/zW7Ot7OVMPF7eCat+n0w27Ru7ZGqNN5+4KoBMKlw25IKp8 O2XREssvTFnAzxuVlziLVEoXn8qjP9GI8Ge3lHugF87x+yOgEbJ0rPIunmF8JYo1 PU6OIoIaTaITPHo1TTwgE2Jko6lL+zMhsa4G3JGGiL+zRZtqn25mEw7AxKDq3J5o 8WOUR8aMqOXIhlu3RCU7aXzUx2QXLytw9N1v7KR4b8iqLBcMKsdOY5pccRKLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu47jb2Y4nN1q3VeU9Ti6bcOWT0IwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHdTANBgkqhkiG 9w0BAQsFAAOCAQEAlSklTGEQ7JoOR8u/RsnsNbT/BRAVtU2Z8ADEGEfPWYTr1OX/ QrZmEmQk77qXqJlUZgIZ+IP3gbntBJ33rH29fUf0SmxYvI3P0AUcqDaHYdkVcwDo dD+tipKp8fzR6L1clt6C/K4FnXCPmt9NiNib1UyAuAn+LuwYT3iU+yGsritbH+XM HbA4Qdzm34FA3Xb/CIAMHFYpRpGVPkuDF4ubKQYO71MoYrsRLL5FmCifLMxWxWHu 4fpFkN1rzoru424FzRj4AGcaW1Kx9f+2xTUHPHMaAf7l+VW65S66CyANb734Mv+w mKMhF1yGqylC4LfUw59eWRmdSiUPqo6PiSMnYw== -----END CERTIFICATE-----Generated at Mon Jul 21 19:05:00 2025 by rpki-client