$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: n2Xru92t5iKUOsOnak2Ryayy2zsegIvdk5p9fkvgCrc= Subject key identifier: 7D:D4:CB:9D:9A:F4:A3:44:51:73:5F:80:EC:83:95:41:A1:1C:7D:DA Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 388F6EFC4A6811949BA278610671704CA4DB5DFB Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa Signing time: Thu 10 Jul 2025 10:00:00 +0000 ROA not before: Thu 10 Jul 2025 09:55:00 +0000 ROA not after: Thu 09 Jul 2026 10:00:00 +0000 asID: 9794 IP address blocks: 115.178.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:8f:6e:fc:4a:68:11:94:9b:a2:78:61:06:71:70:4c:a4:db:5d:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 10 09:55:00 2025 GMT Not After : Jul 9 10:00:00 2026 GMT Subject: CN=7DD4CB9D9AF4A34451735F80EC839541A11C7DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:14:f9:a0:af:14:46:df:f3:c7:7f:21:12:99: a8:67:d6:97:09:42:c0:80:63:e2:76:5e:88:3f:27: 13:ee:98:89:d8:32:53:48:ec:ec:fd:cb:31:d6:72: da:8b:ea:06:46:41:33:b9:2f:98:7d:c1:fd:f0:6c: ff:5b:f9:f1:9e:cf:a6:13:d2:12:93:c8:56:03:b1: fd:1c:c5:6c:38:b6:93:a2:ec:ec:51:20:92:9d:1a: fe:bc:00:4d:c2:83:f1:a2:2a:f5:6a:af:ea:7f:62: 4d:57:f6:f7:82:91:79:02:c5:49:6b:7e:8d:fd:bc: 0e:cb:58:16:c4:d7:04:bf:58:49:6a:c2:89:7b:3a: 05:2f:27:0b:60:4c:6c:ad:cb:2d:a3:49:90:87:76: 55:b1:82:53:0a:b5:ff:d2:db:d7:48:8f:c8:15:cf: b5:f8:48:05:3a:d7:03:4e:03:61:62:65:7e:36:e9: f4:fb:dd:c4:7b:7d:21:97:b1:c0:8e:19:2b:c3:8b: 5e:97:cf:27:cf:b8:df:7e:d6:d5:4f:37:0d:57:b3: 84:0d:0a:41:ff:c7:64:8c:5f:e6:ac:69:80:2a:0d: 42:4f:f6:a1:e5:15:de:c8:3f:1c:1f:90:92:61:cd: 1b:9f:08:24:bb:68:f7:6f:a3:95:6e:f9:50:61:5d: 68:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D4:CB:9D:9A:F4:A3:44:51:73:5F:80:EC:83:95:41:A1:1C:7D:DA X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.132.0/24 Signature Algorithm: sha256WithRSAEncryption 95:a3:03:b2:83:7f:6c:7d:88:b1:67:1e:84:50:9b:fe:92:52: df:ee:28:98:81:f3:34:c8:3e:2a:12:3a:48:81:ca:16:c8:2f: 90:84:1e:9b:b7:32:ab:ec:ce:fb:e3:d4:6e:43:25:1e:64:0f: a9:f1:bf:16:e8:59:13:4c:eb:9d:c4:25:7a:15:c8:02:24:bf: 5c:32:53:a1:b3:2f:0a:5f:c4:da:ce:37:ba:5d:62:93:7f:ad: b4:9f:c6:62:53:6b:20:44:a6:5f:17:07:99:eb:35:c7:b4:8e: 94:8f:3c:2a:80:5b:a6:8b:08:d9:1b:9a:2d:aa:a8:6f:19:2a: 49:01:97:eb:ea:0f:bb:c0:f6:d5:5e:bc:02:80:17:83:5d:dd: b1:8f:2e:6b:7e:ef:e3:36:7b:8e:b1:5d:2b:df:f7:63:3d:43: 2b:b7:d8:af:90:5d:84:f6:0e:9a:8a:5e:ec:97:20:5e:4c:4a: 86:ed:67:bd:18:55:80:8c:6c:91:bb:fa:32:6a:2f:39:b9:a4: 80:ee:23:fd:f1:64:0f:ab:74:db:b3:39:5d:df:12:be:cd:cf: 22:81:7d:a1:46:fe:c6:68:da:de:f2:8c:29:e9:54:8e:51:86: 9c:b7:3d:64:4a:c0:02:b7:09:67:3a:7a:f9:de:ca:14:26:c2: fa:04:dc:35 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOI9u/EpoEZSbonhhBnFwTKTbXfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA3MTAwOTU1MDBaFw0yNjA3MDkxMDAwMDBaMDMxMTAvBgNV BAMTKDdERDRDQjlEOUFGNEEzNDQ1MTczNUY4MEVDODM5NTQxQTExQzdEREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwFPmgrxRG3/PHfyESmahn1pcJ QsCAY+J2Xog/JxPumInYMlNI7Oz9yzHWctqL6gZGQTO5L5h9wf3wbP9b+fGez6YT 0hKTyFYDsf0cxWw4tpOi7OxRIJKdGv68AE3Cg/GiKvVqr+p/Yk1X9veCkXkCxUlr fo39vA7LWBbE1wS/WElqwol7OgUvJwtgTGytyy2jSZCHdlWxglMKtf/S29dIj8gV z7X4SAU61wNOA2FiZX426fT73cR7fSGXscCOGSvDi16XzyfPuN9+1tVPNw1Xs4QN CkH/x2SMX+asaYAqDUJP9qHlFd7IPxwfkJJhzRufCCS7aPdvo5Vu+VBhXWizAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfdTLnZr0o0RRc1+A7IOVQaEcfdowHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOyhDANBgkqhkiG 9w0BAQsFAAOCAQEAlaMDsoN/bH2IsWcehFCb/pJS3+4omIHzNMg+KhI6SIHKFsgv kIQem7cyq+zO++PUbkMlHmQPqfG/FuhZE0zrncQlehXIAiS/XDJTobMvCl/E2s43 ul1ik3+ttJ/GYlNrIESmXxcHmes1x7SOlI88KoBbposI2RuaLaqobxkqSQGX6+oP u8D21V68AoAXg13dsY8ua37v4zZ7jrFdK9/3Yz1DK7fYr5BdhPYOmope7JcgXkxK hu1nvRhVgIxskbv6MmovObmkgO4j/fFkD6t027M5Xd8Svs3PIoF9oUb+xmja3vKM KelUjlGGnLc9ZErAArcJZzp6+d7KFCbC+gTcNQ== -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:12 2025 by rpki-client