$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38332e302f32342d3234203d3e203137373237.roa File: 3131302e33352e38332e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 1yq7M15vYF+Z0PpAQFnG5RYfIiYCxPMKBtIgQ78DOPQ= Subject key identifier: 48:DD:AF:F4:9D:25:A6:37:59:84:20:94:27:56:66:D4:88:C5:BB:3B Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3C4EAE90377F74B5A48B0024CF3697D63EC186D4 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38332e302f32342d3234203d3e203137373237.roa Signing time: Sun 31 Aug 2025 08:00:01 +0000 ROA not before: Sun 31 Aug 2025 07:55:01 +0000 ROA not after: Sun 30 Aug 2026 08:00:01 +0000 asID: 17727 IP address blocks: 110.35.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:4e:ae:90:37:7f:74:b5:a4:8b:00:24:cf:36:97:d6:3e:c1:86:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:01 2025 GMT Not After : Aug 30 08:00:01 2026 GMT Subject: CN=48DDAFF49D25A63759842094275666D488C5BB3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b3:9c:c1:bb:bc:54:47:0f:29:81:85:91:c1: 71:ba:ea:37:98:7a:a6:ab:39:b8:29:a0:62:a3:c7: e1:6a:39:48:ae:20:d3:20:e1:25:95:de:0e:1f:24: e3:43:8c:ef:83:4c:cd:a0:36:d1:dc:4c:37:90:c9: 3d:02:9a:54:40:ae:a0:5d:8c:8b:41:cb:22:16:86: fa:36:25:ab:e2:5e:40:ee:0d:c7:06:c7:77:61:68: f7:d2:0f:9f:56:58:d4:3e:58:65:e5:95:a5:56:48: da:43:76:fb:ae:5d:c8:58:be:d9:29:0b:73:24:7d: 6d:6b:a3:23:ca:25:9e:40:48:32:dd:b1:26:c7:bd: c1:8a:e5:fa:0c:72:be:03:66:5b:55:a4:98:3f:81: 14:40:d1:de:24:3a:b4:23:f8:6b:89:ef:61:88:51: c0:2e:3e:f5:8f:cd:2b:5e:dc:aa:d5:f0:38:5b:31: 65:24:ac:1f:05:a7:7c:f5:cd:a0:cc:12:22:a8:36: 71:8b:9e:6b:25:29:f0:fa:9a:ca:58:a9:97:48:b1: 6e:50:58:e3:07:5b:09:f9:09:0a:90:14:78:54:f2: 6a:28:bf:c1:15:e5:1a:d7:84:f5:9c:de:09:d0:d3: c6:9e:87:c2:28:8b:b9:89:51:a4:79:b8:d3:aa:c5: 29:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DD:AF:F4:9D:25:A6:37:59:84:20:94:27:56:66:D4:88:C5:BB:3B X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38332e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.35.83.0/24 Signature Algorithm: sha256WithRSAEncryption b1:51:e5:90:2e:71:78:b7:7f:4b:10:26:e4:96:f7:81:12:7f: d2:5c:c1:ad:d4:14:ec:6d:2e:b9:ef:f5:9d:3e:0e:d3:cd:1a: 7f:ec:62:76:e1:9e:35:00:4c:8e:10:b2:a1:86:54:04:ab:21: a2:95:2f:a5:50:ce:24:fe:45:61:3c:a4:c3:b1:90:b2:cb:7f: 6f:11:8f:26:2f:15:5e:12:5b:13:af:35:38:6e:cf:24:14:e2: 9c:05:d8:f0:6c:48:cb:f7:81:dd:3f:aa:d6:32:32:cf:fd:61: 03:9b:07:ed:3c:10:82:aa:e9:cc:2d:a8:dd:07:f2:6e:16:30: 46:1e:1e:58:18:06:10:fe:f9:a6:c6:a1:cb:34:18:81:56:e8: 4b:e0:de:53:b5:35:a7:2d:ad:d4:62:82:97:d7:f8:90:c0:3f: ac:5b:5a:41:45:d9:6e:da:22:56:23:5c:8a:34:62:de:c2:44: 04:e2:d7:aa:d2:79:a1:ec:3b:d5:6c:36:e5:ce:2c:2c:01:9b: cd:19:19:d2:e4:d7:da:0f:05:e0:98:6c:78:7d:fd:30:4a:f2: 85:6e:4f:9c:39:6d:38:97:93:46:f7:83:62:e0:89:54:f4:4f: 88:ca:ad:04:3d:92:f1:14:09:ca:5f:3d:6a:97:3a:f8:9c:23: d4:e4:09:77 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPE6ukDd/dLWkiwAkzzaX1j7BhtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDFaFw0yNjA4MzAwODAwMDFaMDMxMTAvBgNV BAMTKDQ4RERBRkY0OUQyNUE2Mzc1OTg0MjA5NDI3NTY2NkQ0ODhDNUJCM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRs5zBu7xURw8pgYWRwXG66jeY eqarObgpoGKjx+FqOUiuINMg4SWV3g4fJONDjO+DTM2gNtHcTDeQyT0CmlRArqBd jItByyIWhvo2JaviXkDuDccGx3dhaPfSD59WWNQ+WGXllaVWSNpDdvuuXchYvtkp C3MkfW1royPKJZ5ASDLdsSbHvcGK5foMcr4DZltVpJg/gRRA0d4kOrQj+GuJ72GI UcAuPvWPzSte3KrV8DhbMWUkrB8Fp3z1zaDMEiKoNnGLnmslKfD6mspYqZdIsW5Q WOMHWwn5CQqQFHhU8moov8EV5RrXhPWc3gnQ08aeh8Ioi7mJUaR5uNOqxSmPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUSN2v9J0lpjdZhCCUJ1Zm1IjFuzswHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzMDJlMzMzNTJlMzgzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNzMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABuI1MwDQYJKoZIhvcN AQELBQADggEBALFR5ZAucXi3f0sQJuSW94ESf9Jcwa3UFOxtLrnv9Z0+DtPNGn/s YnbhnjUATI4QsqGGVASrIaKVL6VQziT+RWE8pMOxkLLLf28RjyYvFV4SWxOvNThu zyQU4pwF2PBsSMv3gd0/qtYyMs/9YQObB+08EIKq6cwtqN0H8m4WMEYeHlgYBhD+ +abGocs0GIFW6Evg3lO1NactrdRigpfX+JDAP6xbWkFF2W7aIlYjXIo0Yt7CRATi 16rSeaHsO9VsNuXOLCwBm80ZGdLk19oPBeCYbHh9/TBK8oVuT5w5bTiXk0b3g2Lg iVT0T4jKrQQ9kvEUCcpfPWqXOvicI9TkCXc= -----END CERTIFICATE-----Generated at Mon Sep 8 09:38:10 2025 by rpki-client