$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3132322e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: dWc1/L+qGPjeJdQ4O7AyFtAL3BueA4M+lPn+gqPhGl4= Subject key identifier: F7:48:9D:9E:27:9D:4D:D6:3B:C9:AD:B7:1F:01:C5:57:D2:FE:D3:67 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5F8DABED5D335D9DB2A32F3A0835211986EAB82E Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32342d3234203d3e2034373837.roa Signing time: Tue 15 Jul 2025 06:15:09 +0000 ROA not before: Tue 15 Jul 2025 06:10:09 +0000 ROA not after: Tue 14 Jul 2026 06:15:09 +0000 asID: 4787 IP address blocks: 114.199.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:8d:ab:ed:5d:33:5d:9d:b2:a3:2f:3a:08:35:21:19:86:ea:b8:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jul 15 06:10:09 2025 GMT Not After : Jul 14 06:15:09 2026 GMT Subject: CN=F7489D9E279D4DD63BC9ADB71F01C557D2FED367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2c:98:f8:95:98:5b:f5:22:d7:d1:24:1c:bb: bf:78:7e:ab:12:a7:0f:6a:56:f3:04:c7:79:ab:1b: 5d:dd:39:a2:2d:52:c1:22:cc:05:7d:f2:b3:f9:76: 11:3d:b7:88:aa:cc:da:11:7c:12:e7:a1:ac:78:19: 93:7d:c1:a4:d6:7b:87:5c:4e:78:5e:f3:bc:a0:c2: e4:6a:ea:0f:7b:ee:e5:c9:12:e3:4a:76:03:ad:9d: 7e:68:2e:52:be:4e:ac:d5:fc:95:db:7f:92:ad:c2: 32:d7:8b:8c:cd:f8:cc:1c:52:32:76:37:b5:12:7d: 92:d8:2c:94:0f:a1:af:69:31:ee:51:6f:31:6c:9e: 81:24:6f:89:93:1b:b4:e2:43:63:38:5f:d2:90:2a: 28:f5:5b:f4:9d:25:36:95:0f:80:71:ce:d8:ae:8f: d9:68:1c:2c:d4:f9:c1:78:c1:d4:93:f7:fc:1c:45: bd:46:f3:d4:7d:c2:e9:d8:89:6d:7f:20:5a:ac:0c: 7a:b1:d5:6c:20:80:9d:1b:13:6b:04:be:cb:ca:24: 32:8a:09:3d:95:19:c7:21:20:c7:79:97:8a:fa:75: 02:4b:62:f5:b5:49:0e:bb:95:6f:2b:e3:77:34:31: 3e:eb:63:8a:77:86:34:7b:70:96:a1:66:e3:7b:cb: 52:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:48:9D:9E:27:9D:4D:D6:3B:C9:AD:B7:1F:01:C5:57:D2:FE:D3:67 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.122.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:d7:ad:d8:97:f1:b5:41:82:8d:2f:a5:26:25:0c:ad:73:1d: 12:08:ee:fc:b7:bc:01:71:1d:d4:83:5f:63:44:cf:54:dd:e1: f4:01:78:de:ec:57:b8:6d:fc:7f:9b:94:63:16:8a:01:1a:67: fa:40:78:7a:03:93:69:b2:c3:b2:77:9f:64:1f:6c:d6:66:80: 2b:0f:be:15:77:1e:f1:fe:00:bd:0b:13:df:e8:b8:0b:1e:a6: 85:1e:79:60:ed:39:a7:55:95:5d:5b:57:e5:40:c8:be:2c:99: e2:3b:8b:7f:6d:bc:7a:18:c5:fb:1d:c9:14:4d:55:91:e1:2e: ca:61:76:c3:2c:7f:58:e8:a6:5d:1e:bc:61:f6:d6:93:20:cc: 66:58:48:31:9d:7d:e7:61:40:ef:db:de:ff:4d:2d:15:87:fd: 5c:b2:ea:82:5b:24:29:d8:fa:6f:2d:49:13:f4:c1:89:02:cd: e9:d6:ad:09:b3:21:fd:c5:75:30:87:b3:1d:91:25:47:04:94: 3d:2d:0b:27:68:96:e6:9c:6c:3b:9e:b8:23:70:14:35:0d:41: d3:21:21:b0:05:ba:57:19:3d:84:c0:93:38:51:db:dd:f2:83: 38:57:47:bf:8a:0a:f5:3e:7f:a3:8f:11:41:40:22:97:44:c5: 41:b3:19:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX42r7V0zXZ2yoy86CDUhGYbquC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA3MTUwNjEwMDlaFw0yNjA3MTQwNjE1MDlaMDMxMTAvBgNV BAMTKEY3NDg5RDlFMjc5RDRERDYzQkM5QURCNzFGMDFDNTU3RDJGRUQzNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyLJj4lZhb9SLX0SQcu794fqsS pw9qVvMEx3mrG13dOaItUsEizAV98rP5dhE9t4iqzNoRfBLnoax4GZN9waTWe4dc Tnhe87ygwuRq6g977uXJEuNKdgOtnX5oLlK+TqzV/JXbf5KtwjLXi4zN+MwcUjJ2 N7USfZLYLJQPoa9pMe5RbzFsnoEkb4mTG7TiQ2M4X9KQKij1W/SdJTaVD4Bxztiu j9loHCzU+cF4wdST9/wcRb1G89R9wunYiW1/IFqsDHqx1WwggJ0bE2sEvsvKJDKK CT2VGcchIMd5l4r6dQJLYvW1SQ67lW8r43c0MT7rY4p3hjR7cJahZuN7y1JxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU90idniedTdY7ya23HwHFV9L+02cwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHejANBgkqhkiG 9w0BAQsFAAOCAQEADdet2JfxtUGCjS+lJiUMrXMdEgju/Le8AXEd1INfY0TPVN3h 9AF43uxXuG38f5uUYxaKARpn+kB4egOTabLDsnefZB9s1maAKw++FXce8f4AvQsT 3+i4Cx6mhR55YO05p1WVXVtX5UDIviyZ4juLf228ehjF+x3JFE1VkeEuymF2wyx/ WOimXR68YfbWkyDMZlhIMZ1952FA79ve/00tFYf9XLLqglskKdj6by1JE/TBiQLN 6datCbMh/cV1MIezHZElRwSUPS0LJ2iW5pxsO564I3AUNQ1B0yEhsAW6Vxk9hMCT OFHb3fKDOFdHv4oK9T5/o48RQUAil0TFQbMZlA== -----END CERTIFICATE-----Generated at Mon Jul 21 23:23:24 2025 by rpki-client