$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132362e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3132362e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: EiwjX6O/U859FkUOwAA31Lo2uTi+HD7WOMWiE1xX930= Subject key identifier: 01:75:5E:89:8A:ED:FF:EB:75:57:C3:68:0F:B9:AB:F0:D4:36:1E:F1 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5F87EA433F2C68FBB6E8BEF5BA5DBEC1FF43EDF1 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132362e302f32342d3234203d3e2034373837.roa Signing time: Tue 15 Jul 2025 06:16:18 +0000 ROA not before: Tue 15 Jul 2025 06:11:18 +0000 ROA not after: Tue 14 Jul 2026 06:16:18 +0000 asID: 4787 IP address blocks: 114.199.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:87:ea:43:3f:2c:68:fb:b6:e8:be:f5:ba:5d:be:c1:ff:43:ed:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jul 15 06:11:18 2025 GMT Not After : Jul 14 06:16:18 2026 GMT Subject: CN=01755E898AEDFFEB7557C3680FB9ABF0D4361EF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5b:c5:2e:cf:d4:d0:46:5d:b9:11:67:68:7d: d6:98:26:7a:f1:5e:41:56:ab:aa:a6:cf:c9:31:46: 2a:ca:6b:06:ac:4f:71:95:18:16:b5:6a:b4:9b:66: af:b5:f2:10:0e:73:c0:66:e4:c8:b4:10:36:49:74: 2c:01:a9:42:26:d9:cd:4f:06:23:78:4c:3c:49:fa: da:06:de:e1:79:85:e7:fb:c4:f2:a0:9c:fb:6c:73: f2:1e:66:06:10:cc:ea:6f:01:12:40:86:58:0a:e9: 58:51:fd:6b:05:81:2b:75:7c:5c:d0:71:9c:62:80: 67:d6:c1:3b:26:b6:4b:c2:9f:f3:4c:ec:16:a0:3d: a9:39:3e:33:0d:e1:59:8b:f6:f2:ee:4a:8f:da:bd: a0:40:67:85:51:ef:dd:f8:38:04:b5:89:2d:0b:49: 0e:66:ff:41:19:62:bd:64:27:34:0c:a5:0c:79:6e: 7a:91:b9:43:e3:74:3b:78:00:ae:bf:66:08:03:42: 61:b1:56:a6:9b:e0:ff:43:cc:97:e6:57:53:09:df: 6c:d5:5b:b1:b8:d8:a9:ee:96:c4:14:d7:69:0a:44: c9:18:0a:b1:d0:43:06:8e:84:3e:ac:62:92:bb:92: 45:db:89:aa:f7:69:0d:f1:5e:c3:06:31:a6:ad:59: d6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:75:5E:89:8A:ED:FF:EB:75:57:C3:68:0F:B9:AB:F0:D4:36:1E:F1 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132362e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.126.0/24 Signature Algorithm: sha256WithRSAEncryption af:6b:d0:6a:d4:f0:15:98:ed:cd:79:0e:d7:6f:09:13:ac:31: bd:e7:7b:61:3d:75:ed:0d:aa:27:33:ce:bb:f7:e9:84:59:e9: 9e:35:fc:8b:dd:6f:82:2b:47:27:98:d6:af:ac:4a:43:40:72: 11:43:c9:14:03:a9:57:77:51:79:64:c0:39:44:ee:10:85:8d: e4:41:64:74:05:9f:3a:4e:3e:c9:ec:1c:6d:ee:e5:ab:f3:56: 90:e3:af:76:f2:0c:59:6f:e1:0e:3f:91:e9:f3:0c:1e:36:86: be:7f:f7:2b:3d:71:3f:eb:54:91:4e:dd:7b:27:46:f1:d5:b7: 9a:2f:7c:df:4a:78:33:2e:ca:a3:7d:8d:08:aa:63:93:a2:84: 8b:23:1d:30:5e:cd:a1:0f:c3:ec:75:48:cf:ff:9a:a8:62:62: 89:42:9a:b2:58:d3:b8:95:4e:7c:e5:ec:50:70:7d:4d:85:78: 8c:cb:70:e3:1e:b0:50:1b:b0:6b:b6:a3:0f:fd:6f:73:e9:77: 20:46:cd:57:96:53:3c:50:42:12:e8:3c:cd:e7:d4:a2:f3:8e: 14:15:93:85:32:43:e0:ff:0f:86:0b:b5:4e:3a:8f:65:1e:57: 3c:66:a5:77:f6:bf:9b:ff:73:f3:c1:f8:ed:85:f6:2b:21:f7: c5:53:e5:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX4fqQz8saPu26L71ul2+wf9D7fEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA3MTUwNjExMThaFw0yNjA3MTQwNjE2MThaMDMxMTAvBgNV BAMTKDAxNzU1RTg5OEFFREZGRUI3NTU3QzM2ODBGQjlBQkYwRDQzNjFFRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpW8Uuz9TQRl25EWdofdaYJnrx XkFWq6qmz8kxRirKawasT3GVGBa1arSbZq+18hAOc8Bm5Mi0EDZJdCwBqUIm2c1P BiN4TDxJ+toG3uF5hef7xPKgnPtsc/IeZgYQzOpvARJAhlgK6VhR/WsFgSt1fFzQ cZxigGfWwTsmtkvCn/NM7BagPak5PjMN4VmL9vLuSo/avaBAZ4VR7934OAS1iS0L SQ5m/0EZYr1kJzQMpQx5bnqRuUPjdDt4AK6/ZggDQmGxVqab4P9DzJfmV1MJ32zV W7G42KnulsQU12kKRMkYCrHQQwaOhD6sYpK7kkXbiar3aQ3xXsMGMaatWdYfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAXVeiYrt/+t1V8NoD7mr8NQ2HvEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHfjANBgkqhkiG 9w0BAQsFAAOCAQEAr2vQatTwFZjtzXkO128JE6wxved7YT117Q2qJzPOu/fphFnp njX8i91vgitHJ5jWr6xKQ0ByEUPJFAOpV3dReWTAOUTuEIWN5EFkdAWfOk4+yewc be7lq/NWkOOvdvIMWW/hDj+R6fMMHjaGvn/3Kz1xP+tUkU7deydG8dW3mi9830p4 My7Ko32NCKpjk6KEiyMdMF7NoQ/D7HVIz/+aqGJiiUKasljTuJVOfOXsUHB9TYV4 jMtw4x6wUBuwa7ajD/1vc+l3IEbNV5ZTPFBCEug8zefUovOOFBWThTJD4P8Phgu1 TjqPZR5XPGald/a/m/9z88H47YX2KyH3xVPlMg== -----END CERTIFICATE-----Generated at Mon Jul 21 23:23:17 2025 by rpki-client