$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3132332e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: D5hxOmaRlEpnXii6u3WJ9foRId+JDsySbPMgRr0J91g= Subject key identifier: FB:44:4A:EF:51:14:7A:07:94:34:42:37:30:69:21:70:76:D0:16:F1 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0538D5E91A2E733EB9710D30546D6451E3929566 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e2034373837.roa Signing time: Tue 15 Jul 2025 06:15:20 +0000 ROA not before: Tue 15 Jul 2025 06:10:20 +0000 ROA not after: Tue 14 Jul 2026 06:15:20 +0000 asID: 4787 IP address blocks: 114.199.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:38:d5:e9:1a:2e:73:3e:b9:71:0d:30:54:6d:64:51:e3:92:95:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jul 15 06:10:20 2025 GMT Not After : Jul 14 06:15:20 2026 GMT Subject: CN=FB444AEF51147A07943442373069217076D016F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0a:90:c1:9d:04:4b:a1:4f:31:19:cc:69:a7: e0:41:ef:87:ed:e5:95:fb:21:7a:bf:24:ee:36:3d: ab:0f:17:a6:41:cc:47:72:bb:c4:e2:3a:d7:3f:e9: c3:b0:cb:de:d1:76:ac:7e:8b:73:81:86:49:7e:77: 2a:9f:cd:82:15:57:f6:3e:8a:5e:e7:02:5d:d8:5d: 08:dc:06:95:82:91:20:ad:ff:17:d3:c9:c3:e2:1b: 54:4d:d5:ae:b4:72:6a:a8:20:69:fe:f0:15:a9:3f: 2e:7e:4f:e9:d3:21:4b:8b:b7:49:ae:d3:40:ba:05: 7f:a5:c4:88:fd:a6:73:25:a4:ac:59:30:c2:34:54: 00:19:df:e3:49:43:0f:b1:cf:70:bd:19:ff:f5:09: 00:54:8d:32:2c:90:71:e0:64:f0:07:20:ba:cd:59: ba:06:c8:61:d8:cc:14:2a:c6:1d:06:95:2c:25:34: 2b:b3:b1:fe:51:7d:0b:1f:15:0f:b4:88:d4:dc:eb: 82:31:0c:19:da:d2:cc:c5:56:33:83:fd:84:dd:55: d8:36:64:31:45:18:1e:3c:98:56:9b:8d:0a:4f:8f: 65:52:e6:15:52:d0:43:20:e6:2f:8d:28:9b:65:be: e2:3f:d1:cc:28:48:18:77:92:49:dc:8d:be:d4:b6: 67:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:44:4A:EF:51:14:7A:07:94:34:42:37:30:69:21:70:76:D0:16:F1 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132332e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.123.0/24 Signature Algorithm: sha256WithRSAEncryption 77:ae:2f:b6:43:79:b6:5b:ad:85:7e:48:8f:9f:77:b3:e9:20: 5d:3b:ba:13:67:69:82:7d:45:97:a0:16:ba:f4:96:83:ea:ab: 38:bd:5e:15:7a:01:fc:c4:f8:78:ec:ea:22:c5:ed:70:dc:1c: 6e:ac:9e:b7:c5:63:b9:78:26:0c:0e:52:95:42:e4:2c:81:28: dd:51:c1:02:52:43:ff:24:ee:14:5e:cb:ee:5b:08:53:a7:cb: f9:7b:c3:ff:65:77:7e:7e:58:1c:02:1b:53:36:a5:15:eb:a1: c7:cb:74:4f:ff:ff:f8:f9:ca:b4:04:f0:60:95:e8:4b:ff:ef: 94:1c:76:12:c4:7b:f5:f3:df:31:8c:cd:08:d3:14:d7:b4:f7: 98:ca:18:f4:45:f8:47:db:d2:59:ab:ce:06:9f:0d:3c:e1:d6: 1d:53:1b:24:de:ad:12:9b:dd:44:8a:1c:63:3a:27:93:b8:0b: d5:e0:0d:64:ad:ee:a4:a1:99:03:03:00:6a:48:31:80:cc:47: 21:fd:36:b9:8e:52:ee:98:6c:19:71:3a:cc:9b:93:09:67:10: 42:79:1e:57:5a:12:96:a1:1b:87:00:c5:54:90:04:b0:bc:cd: b5:78:a6:fd:62:96:e0:d6:ea:86:7d:29:24:09:da:57:52:20: aa:9e:5a:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBTjV6Roucz65cQ0wVG1kUeOSlWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA3MTUwNjEwMjBaFw0yNjA3MTQwNjE1MjBaMDMxMTAvBgNV BAMTKEZCNDQ0QUVGNTExNDdBMDc5NDM0NDIzNzMwNjkyMTcwNzZEMDE2RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeCpDBnQRLoU8xGcxpp+BB74ft 5ZX7IXq/JO42PasPF6ZBzEdyu8TiOtc/6cOwy97Rdqx+i3OBhkl+dyqfzYIVV/Y+ il7nAl3YXQjcBpWCkSCt/xfTycPiG1RN1a60cmqoIGn+8BWpPy5+T+nTIUuLt0mu 00C6BX+lxIj9pnMlpKxZMMI0VAAZ3+NJQw+xz3C9Gf/1CQBUjTIskHHgZPAHILrN WboGyGHYzBQqxh0GlSwlNCuzsf5RfQsfFQ+0iNTc64IxDBna0szFVjOD/YTdVdg2 ZDFFGB48mFabjQpPj2VS5hVS0EMg5i+NKJtlvuI/0cwoSBh3kkncjb7UtmcRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+0RK71EUegeUNEI3MGkhcHbQFvEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHezANBgkqhkiG 9w0BAQsFAAOCAQEAd64vtkN5tluthX5Ij593s+kgXTu6E2dpgn1Fl6AWuvSWg+qr OL1eFXoB/MT4eOzqIsXtcNwcbqyet8VjuXgmDA5SlULkLIEo3VHBAlJD/yTuFF7L 7lsIU6fL+XvD/2V3fn5YHAIbUzalFeuhx8t0T///+PnKtATwYJXoS//vlBx2EsR7 9fPfMYzNCNMU17T3mMoY9EX4R9vSWavOBp8NPOHWHVMbJN6tEpvdRIocYzonk7gL 1eANZK3upKGZAwMAakgxgMxHIf02uY5S7phsGXE6zJuTCWcQQnkeV1oSlqEbhwDF VJAEsLzNtXim/WKW4Nbqhn0pJAnaV1Igqp5apg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:40:42 2025 by rpki-client