$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: wn2aLCaOP18GWhky36e0sD98Tul5H/RLclZJDEQhh6Q= Subject key identifier: 80:8D:FA:41:AB:9D:4D:89:B6:4A:F5:D0:60:5F:32:41:50:2C:BF:72 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 2EE1FC9725722E350E8B271FCAFD398BE5C2517D Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 05:00:00 +0000 ROA not before: Sun 31 Aug 2025 04:55:00 +0000 ROA not after: Sun 30 Aug 2026 05:00:00 +0000 asID: 45147 IP address blocks: 119.110.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e1:fc:97:25:72:2e:35:0e:8b:27:1f:ca:fd:39:8b:e5:c2:51:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 04:55:00 2025 GMT Not After : Aug 30 05:00:00 2026 GMT Subject: CN=808DFA41AB9D4D89B64AF5D0605F3241502CBF72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:de:28:c2:86:39:d6:1c:ab:6b:ed:41:96:ba: 65:21:81:c7:18:ee:cc:c3:3e:81:00:a8:35:4a:ae: c4:54:90:e4:37:d4:0c:a3:db:0a:1a:e0:dc:92:79: 16:40:50:d4:89:9e:0b:2e:55:94:22:49:6d:cb:33: 20:e5:d8:2b:22:3e:8b:b8:2e:e8:7c:35:a5:ed:32: 0f:e8:f7:4e:33:21:25:f5:45:73:d7:a8:42:46:26: c8:e2:b8:55:10:88:6e:d6:d3:dc:e5:64:bd:b1:ea: af:ef:f0:09:40:eb:0c:57:96:37:ff:29:bc:84:2a: 95:de:e0:64:51:38:f9:ba:28:e9:1a:ef:fd:6f:41: 2a:99:24:52:57:e3:fc:60:75:75:59:ad:03:d7:ba: fa:99:92:fc:26:d6:41:0c:1e:87:78:e9:aa:96:f4: d8:5c:09:e8:2a:bb:43:b3:62:c5:17:e7:0d:0a:7f: 0c:e7:03:09:c0:e6:ab:0f:1b:d6:29:1b:96:c2:1a: 00:21:d4:9f:88:ca:c0:bf:6d:52:ee:54:b8:1d:9a: ff:5c:17:bc:a6:9f:b5:67:d7:b7:ed:cb:3f:5b:1b: 06:9d:69:ff:e1:97:b6:2a:d5:17:34:51:e2:64:bc: b0:3e:78:bc:a5:e8:07:3f:35:05:f8:5e:05:36:7d: ae:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8D:FA:41:AB:9D:4D:89:B6:4A:F5:D0:60:5F:32:41:50:2C:BF:72 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131322e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.112.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:9d:f3:31:f7:47:4d:e9:89:51:15:d5:1c:8b:13:7e:31:78: be:d0:0a:c0:4e:87:12:71:9d:0f:94:81:ba:d8:f9:ea:8a:e3: 6c:99:a3:10:da:88:fc:e2:ea:d9:56:ec:56:43:76:15:f1:15: be:76:4a:80:a2:9a:d6:e6:04:76:2e:e9:b2:72:cd:5f:71:1d: 60:25:44:49:5a:f0:7b:52:76:95:78:87:e8:d0:9d:9d:a5:42: db:48:85:67:1a:ff:a8:8b:a2:67:0e:a2:c5:f7:76:d5:e5:87: e7:05:3e:e3:67:e6:38:58:7f:21:e5:04:60:b5:56:22:79:1b: ca:98:f5:b9:39:47:e0:8b:a2:af:14:08:98:08:3d:a6:b4:a7: 90:6d:8a:ad:f3:38:73:1a:1b:ce:fe:0a:35:17:e0:35:66:78: 89:9e:e3:b3:bd:33:c5:5e:cc:4b:e0:df:ce:b1:13:b2:fc:23: de:4a:69:ef:73:16:bc:5e:97:f9:11:71:ec:de:80:a5:1d:3a: 13:cd:82:11:7f:78:63:7a:81:4e:5d:1d:56:0f:24:c9:a9:ee: 47:25:e3:bd:05:1a:a8:03:e1:36:90:41:d0:05:a7:33:1a:43: bf:0d:89:d4:02:68:47:78:20:d4:d6:ac:12:36:62:7e:d1:ff: 26:7f:44:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULuH8lyVyLjUOiycfyv05i+XCUX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNDU1MDBaFw0yNjA4MzAwNTAwMDBaMDMxMTAvBgNV BAMTKDgwOERGQTQxQUI5RDREODlCNjRBRjVEMDYwNUYzMjQxNTAyQ0JGNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW3ijChjnWHKtr7UGWumUhgccY 7szDPoEAqDVKrsRUkOQ31Ayj2woa4NySeRZAUNSJngsuVZQiSW3LMyDl2CsiPou4 Luh8NaXtMg/o904zISX1RXPXqEJGJsjiuFUQiG7W09zlZL2x6q/v8AlA6wxXljf/ KbyEKpXe4GRROPm6KOka7/1vQSqZJFJX4/xgdXVZrQPXuvqZkvwm1kEMHod46aqW 9NhcCegqu0OzYsUX5w0KfwznAwnA5qsPG9YpG5bCGgAh1J+IysC/bVLuVLgdmv9c F7ymn7Vn17ftyz9bGwadaf/hl7Yq1Rc0UeJkvLA+eLyl6Ac/NQX4XgU2fa4NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgI36QaudTYm2SvXQYF8yQVAsv3IwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25wMA0GCSqG SIb3DQEBCwUAA4IBAQBunfMx90dN6YlRFdUcixN+MXi+0ArATocScZ0PlIG62Pnq iuNsmaMQ2oj84urZVuxWQ3YV8RW+dkqAoprW5gR2Lumycs1fcR1gJURJWvB7UnaV eIfo0J2dpULbSIVnGv+oi6JnDqLF93bV5YfnBT7jZ+Y4WH8h5QRgtVYieRvKmPW5 OUfgi6KvFAiYCD2mtKeQbYqt8zhzGhvO/go1F+A1ZniJnuOzvTPFXsxL4N/OsROy /CPeSmnvcxa8Xpf5EXHs3oClHToTzYIRf3hjeoFOXR1WDyTJqe5HJeO9BRqoA+E2 kEHQBaczGkO/DYnUAmhHeCDU1qwSNmJ+0f8mf0Qd -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:42 2025 by rpki-client