$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38312e302f32342d3234203d3e203137373237.roa File: 3131302e33352e38312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: UwtvzDZMnviCNKhQzhaCGX5qJNoshJ5bQPaAZH0MB4U= Subject key identifier: F0:4A:FB:10:64:31:2F:0B:C9:0E:01:F6:DC:01:81:C7:D9:75:1F:BB Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 1450D70B898DD4B421A78565615F0BDA43D49DA7 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38312e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 10:00:01 +0000 ROA not before: Sun 31 Aug 2025 09:55:01 +0000 ROA not after: Sun 30 Aug 2026 10:00:01 +0000 asID: 17727 IP address blocks: 110.35.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:50:d7:0b:89:8d:d4:b4:21:a7:85:65:61:5f:0b:da:43:d4:9d:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 09:55:01 2025 GMT Not After : Aug 30 10:00:01 2026 GMT Subject: CN=F04AFB1064312F0BC90E01F6DC0181C7D9751FBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b1:f9:db:8f:76:d3:dd:de:cc:cb:19:6b:f9: e4:65:c7:23:26:ab:87:70:7e:cd:40:84:92:33:78: 5d:d7:8f:aa:46:33:28:97:cf:a8:fd:e2:9c:e0:d5: 05:da:d2:04:de:9f:83:5c:3b:45:d8:fa:6f:44:81: ee:08:04:c9:ce:ee:28:3a:e8:ce:dd:95:7d:ad:97: 70:84:95:b2:6f:07:3d:14:54:6b:f1:81:08:a8:c9: 43:fd:d4:df:87:e3:eb:50:39:57:e4:8a:f3:26:4c: 2b:de:7a:64:40:77:68:88:7e:9e:c6:90:bc:9a:1d: 2b:df:9a:f9:08:10:f2:16:71:40:88:65:22:44:ef: f1:13:90:be:b7:46:72:17:d1:8d:54:0b:cb:cb:07: 47:5d:18:e1:5d:8e:07:ef:3b:10:55:4a:aa:46:a1: a4:bc:4c:a1:c7:23:35:65:ec:fd:88:0c:43:c7:7a: 38:a7:46:94:74:aa:e9:0e:30:23:11:fa:e6:62:26: cb:4c:ba:06:df:a6:e8:87:5f:a2:99:81:9d:45:d7: 4e:da:2a:7d:6a:74:00:01:8d:bc:c7:9a:8e:15:06: 3c:5c:26:35:ee:c9:7d:da:b8:03:c9:66:7d:ad:73: 38:94:70:b2:40:f9:34:d4:55:04:66:5a:e5:1b:f0: 0b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:4A:FB:10:64:31:2F:0B:C9:0E:01:F6:DC:01:81:C7:D9:75:1F:BB X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.35.81.0/24 Signature Algorithm: sha256WithRSAEncryption b2:7c:c4:4f:ab:57:b7:e9:3a:88:d1:63:5f:07:0a:71:6b:56: 6d:79:ef:d2:e0:92:a0:b5:9d:20:e9:2d:80:46:86:1d:7d:4b: 89:8a:ee:4b:57:02:fb:d4:fd:7a:b5:6e:e9:cc:ce:b8:d3:1b: 00:0e:f3:ba:d5:95:bc:1b:aa:09:20:56:25:c5:8f:d9:0d:c2: 21:ca:b2:ce:f9:5b:23:e5:89:c0:1f:52:ac:a6:b4:4a:21:47: 23:16:52:36:05:90:4d:54:2b:d2:93:dd:cd:17:37:7e:98:6a: 4c:81:76:b2:24:7a:f7:28:e2:3f:69:51:82:98:09:82:16:6e: 22:af:c0:ed:fc:5d:d2:f0:20:28:e3:6e:03:36:d6:f9:c4:3b: b5:70:0e:7c:ba:a8:f1:66:93:3d:90:fc:bb:88:c5:ea:33:a0: 66:ec:de:6f:04:c3:e4:cb:fc:4e:c6:80:26:4b:2a:bb:ff:98: 37:6f:74:1a:8a:23:85:b1:6a:4f:ee:b4:4e:7b:9e:1b:b2:a2: c3:ef:3f:f8:3b:9e:ea:be:20:a3:f1:c8:c0:db:b0:ff:44:f0: ee:69:a9:c3:9d:1f:43:db:c4:da:7c:be:6c:01:77:7c:3d:02: 5e:48:f8:76:ad:5a:61:12:12:77:76:bf:a1:93:fb:c1:32:57: 4f:dd:1f:d1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFFDXC4mN1LQhp4VlYV8L2kPUnacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwOTU1MDFaFw0yNjA4MzAxMDAwMDFaMDMxMTAvBgNV BAMTKEYwNEFGQjEwNjQzMTJGMEJDOTBFMDFGNkRDMDE4MUM3RDk3NTFGQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgsfnbj3bT3d7Myxlr+eRlxyMm q4dwfs1AhJIzeF3Xj6pGMyiXz6j94pzg1QXa0gTen4NcO0XY+m9Ege4IBMnO7ig6 6M7dlX2tl3CElbJvBz0UVGvxgQioyUP91N+H4+tQOVfkivMmTCveemRAd2iIfp7G kLyaHSvfmvkIEPIWcUCIZSJE7/ETkL63RnIX0Y1UC8vLB0ddGOFdjgfvOxBVSqpG oaS8TKHHIzVl7P2IDEPHejinRpR0qukOMCMR+uZiJstMugbfpuiHX6KZgZ1F107a Kn1qdAABjbzHmo4VBjxcJjXuyX3auAPJZn2tcziUcLJA+TTUVQRmWuUb8AuJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8Er7EGQxLwvJDgH23AGBx9l1H7swHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzMDJlMzMzNTJlMzgzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNzMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABuI1EwDQYJKoZIhvcN AQELBQADggEBALJ8xE+rV7fpOojRY18HCnFrVm1579LgkqC1nSDpLYBGhh19S4mK 7ktXAvvU/Xq1bunMzrjTGwAO87rVlbwbqgkgViXFj9kNwiHKss75WyPlicAfUqym tEohRyMWUjYFkE1UK9KT3c0XN36YakyBdrIkevco4j9pUYKYCYIWbiKvwO38XdLw ICjjbgM21vnEO7VwDny6qPFmkz2Q/LuIxeozoGbs3m8Ew+TL/E7GgCZLKrv/mDdv dBqKI4Wxak/utE57nhuyosPvP/g7nuq+IKPxyMDbsP9E8O5pqcOdH0PbxNp8vmwB d3w9Al5I+HatWmESEnd2v6GT+8EyV0/dH9E= -----END CERTIFICATE-----Generated at Mon Sep 8 09:43:56 2025 by rpki-client