$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133312e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3133312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: JAVqSFf0WxTzhM6QnJ1wz6cN0rMaZSGGLM6QIfgqmAg= Subject key identifier: AA:8C:9F:5F:76:CD:09:1B:3F:98:80:FF:3A:3C:B9:A5:22:03:91:99 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 083D7B06D343CE1FD6A7AFB218952D068715316B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133312e302f32342d3234203d3e2039373934.roa Signing time: Thu 10 Jul 2025 10:00:01 +0000 ROA not before: Thu 10 Jul 2025 09:55:01 +0000 ROA not after: Thu 09 Jul 2026 10:00:01 +0000 asID: 9794 IP address blocks: 115.178.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:3d:7b:06:d3:43:ce:1f:d6:a7:af:b2:18:95:2d:06:87:15:31:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 10 09:55:01 2025 GMT Not After : Jul 9 10:00:01 2026 GMT Subject: CN=AA8C9F5F76CD091B3F9880FF3A3CB9A522039199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a3:7b:80:72:bd:bc:4f:c3:bb:b3:2c:ff:9f: 6d:64:2f:31:39:a2:5c:4f:82:33:3f:54:ec:f8:da: 31:ab:20:2d:2c:38:fc:16:76:71:8b:fb:0d:fd:e9: 21:e7:36:8f:90:d4:38:48:7d:7f:bd:8a:de:5b:1e: a5:37:da:da:15:14:f0:fd:f3:af:cd:c9:8b:8b:ff: 67:b7:0a:a1:35:38:40:da:ed:ce:b1:7f:94:64:9e: 6c:bd:2e:ee:23:16:76:11:ee:94:7a:b5:e3:96:47: 70:80:4e:b5:14:40:33:61:7f:48:08:ce:ca:10:68: 19:4c:c2:f5:a4:4c:27:58:2e:36:7b:42:aa:7b:29: 3f:cd:d3:3b:55:de:99:0c:9f:85:7c:13:81:91:b5: ec:05:af:60:bf:1d:70:61:2d:07:99:9b:1c:9a:a6: 5d:d2:18:5d:86:5b:5a:cf:57:90:00:69:c9:6a:26: fd:52:ff:8c:d1:74:2d:74:90:b1:bc:d1:41:71:dc: bc:72:64:b4:69:7d:2c:27:ee:e9:13:79:be:31:5b: d6:f1:3b:fc:13:28:eb:0d:15:a7:4e:6d:dc:b9:91: 05:25:5a:07:31:d8:f8:bd:f1:10:ee:80:df:76:b4: 23:bb:54:17:7f:0b:c6:f9:e7:96:1c:b7:a5:e7:32: 21:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8C:9F:5F:76:CD:09:1B:3F:98:80:FF:3A:3C:B9:A5:22:03:91:99 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.131.0/24 Signature Algorithm: sha256WithRSAEncryption 46:ed:7d:d6:fb:42:0e:30:7c:c0:6c:89:9d:27:e7:63:7a:6e: 47:a8:aa:14:3f:43:0c:8f:81:ee:c2:aa:dd:f6:ad:f8:38:ba: 3e:d6:31:c7:d0:96:8a:d9:de:3e:85:5b:f3:d3:98:f5:1a:a0: 23:75:5c:29:e3:2c:32:24:bf:e5:bf:fa:7c:49:be:f8:71:d3: 94:cf:58:e8:b0:c6:f6:44:70:03:ee:a5:db:d6:15:4d:8e:93: 8e:1d:76:ca:3c:e2:d7:07:08:1d:c7:2b:0d:b3:25:fa:92:ca: 0d:82:be:f0:37:46:72:37:f2:15:43:68:9e:db:3a:23:97:00: 2b:be:d0:cc:2c:e5:31:06:a9:d4:97:62:83:6d:6c:16:4e:ed: 60:38:69:89:f7:3b:47:1c:c5:1e:64:25:c9:89:fb:38:0d:d1: 68:73:37:e9:69:80:9d:81:38:eb:3e:e6:33:24:0e:93:42:31: 1b:8b:45:e2:73:9e:a5:b8:9c:53:5a:22:e8:bc:7b:76:e3:50: 3e:1b:d7:a7:31:3c:18:14:d9:24:5a:4e:04:60:a7:b1:22:85: e4:5b:07:10:f3:2a:b8:cb:a8:cb:a5:8d:30:bc:e6:f1:41:13: 82:bd:dc:9d:91:4e:d6:07:2c:9f:b5:28:b8:8a:8b:f0:f6:1d: d7:77:ee:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCD17BtNDzh/Wp6+yGJUtBocVMWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA3MTAwOTU1MDFaFw0yNjA3MDkxMDAwMDFaMDMxMTAvBgNV BAMTKEFBOEM5RjVGNzZDRDA5MUIzRjk4ODBGRjNBM0NCOUE1MjIwMzkxOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJo3uAcr28T8O7syz/n21kLzE5 olxPgjM/VOz42jGrIC0sOPwWdnGL+w396SHnNo+Q1DhIfX+9it5bHqU32toVFPD9 86/NyYuL/2e3CqE1OEDa7c6xf5Rknmy9Lu4jFnYR7pR6teOWR3CATrUUQDNhf0gI zsoQaBlMwvWkTCdYLjZ7Qqp7KT/N0ztV3pkMn4V8E4GRtewFr2C/HXBhLQeZmxya pl3SGF2GW1rPV5AAaclqJv1S/4zRdC10kLG80UFx3LxyZLRpfSwn7ukTeb4xW9bx O/wTKOsNFadObdy5kQUlWgcx2Pi98RDugN92tCO7VBd/C8b555Yct6XnMiGdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqoyfX3bNCRs/mID/Ojy5pSIDkZkwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOygzANBgkqhkiG 9w0BAQsFAAOCAQEARu191vtCDjB8wGyJnSfnY3puR6iqFD9DDI+B7sKq3fat+Di6 PtYxx9CWitnePoVb89OY9RqgI3VcKeMsMiS/5b/6fEm++HHTlM9Y6LDG9kRwA+6l 29YVTY6Tjh12yjzi1wcIHccrDbMl+pLKDYK+8DdGcjfyFUNonts6I5cAK77QzCzl MQap1Jdig21sFk7tYDhpifc7RxzFHmQlyYn7OA3RaHM36WmAnYE46z7mMyQOk0Ix G4tF4nOepbicU1oi6Lx7duNQPhvXpzE8GBTZJFpOBGCnsSKF5FsHEPMquMuoy6WN MLzm8UETgr3cnZFO1gcsn7UouIqL8PYd13fuWA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:32 2025 by rpki-client