$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131392e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3131392e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: OE9QNMN5hIQz797dXxmwJp850ee0JvKnUWN982D0jAI= Subject key identifier: 62:AE:4F:C0:D3:46:49:72:BD:9C:87:3D:36:5F:E0:C6:0E:72:E5:AA Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 4C447AAA158437DA6B23BCAA30E2BFD36E04F693 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131392e302f32342d3234203d3e2034373837.roa Signing time: Tue 15 Jul 2025 06:14:19 +0000 ROA not before: Tue 15 Jul 2025 06:09:19 +0000 ROA not after: Tue 14 Jul 2026 06:14:19 +0000 asID: 4787 IP address blocks: 114.199.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 03:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:44:7a:aa:15:84:37:da:6b:23:bc:aa:30:e2:bf:d3:6e:04:f6:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jul 15 06:09:19 2025 GMT Not After : Jul 14 06:14:19 2026 GMT Subject: CN=62AE4FC0D3464972BD9C873D365FE0C60E72E5AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c9:6e:b0:f8:8f:d8:58:7e:0e:1e:0a:b5:90: 03:e8:93:30:b4:30:02:c7:1a:e0:36:e5:17:4f:08: 3a:58:57:09:eb:3f:91:08:c9:53:1a:7a:be:31:18: ca:40:e1:7b:d9:79:48:78:12:4d:2b:8f:28:85:44: cb:54:67:75:cf:0b:b3:ab:dd:0e:34:9e:c9:8a:e3: 33:89:94:50:77:af:63:b8:a9:f5:c4:6a:26:a9:d8: 68:e6:86:6c:29:31:f7:40:8f:07:72:de:4d:e5:06: 0f:be:2e:b2:18:ec:8b:c7:d2:3c:25:3c:9c:9c:c7: 53:4a:27:d2:b1:da:56:6c:ff:51:55:8e:e9:7f:fe: fa:48:5b:c7:36:38:55:f7:8d:99:67:de:06:42:8f: c4:79:84:95:6e:f3:b0:c8:b8:6f:5b:23:0d:d9:03: 47:8a:bd:fd:b7:55:bb:66:92:84:4f:f9:12:d2:d4: 1c:3c:4c:b4:68:6a:bb:87:80:4e:57:aa:ab:4f:2c: e4:8a:f1:7c:65:c8:fe:f6:55:de:b2:2d:84:95:b9: e1:87:74:88:0f:36:a2:15:5d:4f:fa:62:c9:77:6d: 75:95:29:b2:29:13:30:c3:18:d1:cd:2c:41:1d:5c: ba:bc:76:b1:46:c4:63:13:13:38:f8:19:51:56:33: f7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:AE:4F:C0:D3:46:49:72:BD:9C:87:3D:36:5F:E0:C6:0E:72:E5:AA X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131392e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.119.0/24 Signature Algorithm: sha256WithRSAEncryption 77:40:12:05:22:50:b8:c7:75:36:eb:f2:80:f5:dc:d9:54:31: ea:29:a6:f1:51:07:6c:5b:4c:7e:dd:19:5a:60:20:a6:fb:b6: f2:18:e4:e8:8c:cd:3a:eb:6c:b3:62:cb:7f:1b:84:a0:39:65: 9a:78:99:55:9f:af:8a:58:31:35:27:e7:d8:9e:b4:84:8c:a4: 9c:23:ff:44:d2:9a:e6:42:7d:11:1d:41:c3:60:53:bb:fa:9d: c1:93:d0:8e:45:7f:57:1a:12:43:12:fa:25:78:aa:d0:0b:24: 51:de:83:85:30:ce:fb:87:e8:1c:38:94:8f:d8:0a:8a:12:cc: 23:b6:0c:37:a1:e9:3f:dc:d5:d6:59:4f:3e:41:eb:79:06:0e: 84:b4:30:5a:40:f4:94:d1:21:3c:31:41:31:b2:75:ba:5f:b1: 05:b5:5d:63:74:8c:49:80:94:03:50:95:0a:f1:8f:be:7f:d5: 88:e7:12:c5:4d:1d:36:48:c2:44:ff:d5:c2:8a:29:25:00:b6: 65:a1:05:1c:81:30:74:90:d0:f2:e8:78:35:c8:64:37:39:dc: 1b:b0:8b:e3:04:cf:bc:79:05:d8:3f:65:3c:c9:84:4c:ef:fc: 98:44:80:1c:a3:d1:01:cc:69:e0:c4:4a:54:0b:87:fc:72:b4: ab:48:13:be -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTER6qhWEN9prI7yqMOK/024E9pMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA3MTUwNjA5MTlaFw0yNjA3MTQwNjE0MTlaMDMxMTAvBgNV BAMTKDYyQUU0RkMwRDM0NjQ5NzJCRDlDODczRDM2NUZFMEM2MEU3MkU1QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvyW6w+I/YWH4OHgq1kAPokzC0 MALHGuA25RdPCDpYVwnrP5EIyVMaer4xGMpA4XvZeUh4Ek0rjyiFRMtUZ3XPC7Or 3Q40nsmK4zOJlFB3r2O4qfXEaiap2GjmhmwpMfdAjwdy3k3lBg++LrIY7IvH0jwl PJycx1NKJ9Kx2lZs/1FVjul//vpIW8c2OFX3jZln3gZCj8R5hJVu87DIuG9bIw3Z A0eKvf23VbtmkoRP+RLS1Bw8TLRoaruHgE5XqqtPLOSK8XxlyP72Vd6yLYSVueGH dIgPNqIVXU/6Ysl3bXWVKbIpEzDDGNHNLEEdXLq8drFGxGMTEzj4GVFWM/cFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYq5PwNNGSXK9nIc9Nl/gxg5y5aowHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHdzANBgkqhkiG 9w0BAQsFAAOCAQEAd0ASBSJQuMd1NuvygPXc2VQx6imm8VEHbFtMft0ZWmAgpvu2 8hjk6IzNOutss2LLfxuEoDllmniZVZ+vilgxNSfn2J60hIyknCP/RNKa5kJ9ER1B w2BTu/qdwZPQjkV/VxoSQxL6JXiq0AskUd6DhTDO+4foHDiUj9gKihLMI7YMN6Hp P9zV1llPPkHreQYOhLQwWkD0lNEhPDFBMbJ1ul+xBbVdY3SMSYCUA1CVCvGPvn/V iOcSxU0dNkjCRP/VwoopJQC2ZaEFHIEwdJDQ8uh4NchkNzncG7CL4wTPvHkF2D9l PMmETO/8mESAHKPRAcxp4MRKVAuH/HK0q0gTvg== -----END CERTIFICATE-----Generated at Tue Jul 22 04:24:47 2025 by rpki-client