$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: ZRoX34Xs9YFme1BxCCwPeR/aOYh49O0fIlyczEUluII= Subject key identifier: B2:3F:5F:01:0C:25:82:0D:86:37:6A:A7:F8:29:E4:97:00:5D:DC:F4 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 517719845F24C3A7A0205941B8FEB02D87C48603 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 08:00:01 +0000 ROA not before: Sun 31 Aug 2025 07:55:01 +0000 ROA not after: Sun 30 Aug 2026 08:00:01 +0000 asID: 45147 IP address blocks: 119.110.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:77:19:84:5f:24:c3:a7:a0:20:59:41:b8:fe:b0:2d:87:c4:86:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:01 2025 GMT Not After : Aug 30 08:00:01 2026 GMT Subject: CN=B23F5F010C25820D86376AA7F829E497005DDCF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:9b:19:ba:2e:8c:34:01:46:e9:0e:0f:38:06: 6f:27:c1:28:ac:86:c2:2f:c0:79:1a:59:f5:45:c7: a6:2d:20:14:1a:4d:61:eb:f5:61:60:4f:e9:0e:ff: a6:20:25:fb:ae:27:2b:b0:62:16:fc:94:31:44:1e: c7:27:87:06:1a:76:8a:19:13:a7:87:82:51:8d:3c: a4:45:1a:2b:d8:0d:ca:86:6b:78:97:28:e6:e4:d5: 19:5e:7d:29:2f:a2:be:e4:4e:e7:7b:a0:d7:36:7f: 53:bd:7b:25:6d:4c:68:0a:f7:3d:8e:15:c9:d4:6a: 8b:c9:04:91:fd:e3:db:59:46:cc:b9:51:b6:99:d8: 86:c1:b1:40:de:45:c4:66:8d:69:0a:5d:ea:49:46: 2a:a9:91:ce:5c:48:65:bf:3b:9a:eb:a0:fd:b4:fb: 49:16:63:35:eb:12:5d:9b:dd:43:5e:9c:af:27:cc: 30:bd:7d:a1:ba:05:c6:20:f5:82:d1:12:e7:f2:34: 8e:77:80:b5:47:e5:0f:5f:20:fe:e7:c2:03:0d:5a: 96:35:f4:69:4d:1a:46:44:47:7e:28:28:af:2d:8f: 9f:b8:76:65:1c:85:61:f2:e2:ef:87:1b:6a:5c:5c: 80:32:7a:ad:90:92:48:3b:95:c7:5f:23:0b:7f:f6: 54:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3F:5F:01:0C:25:82:0D:86:37:6A:A7:F8:29:E4:97:00:5D:DC:F4 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.114.0/24 Signature Algorithm: sha256WithRSAEncryption 14:7b:3d:95:7f:ca:ac:51:d1:0f:28:e9:2e:6f:f1:8e:7b:62: 86:69:82:9a:7d:5c:fd:63:93:12:55:21:d2:69:9b:22:50:16: 3b:7c:fb:75:e7:6a:65:4e:c0:54:d2:69:6a:5f:68:f5:93:18: 84:5a:3f:40:04:68:6f:08:1a:01:a5:15:54:e0:a3:1a:42:04: b6:ab:a2:27:ee:2e:c1:e5:c7:c4:e1:18:62:77:6c:95:a6:55: 9b:7b:62:ec:df:d4:01:f3:1d:f3:87:2d:55:f2:10:d7:e2:27: 79:86:e4:a9:13:c7:5c:ed:ce:99:5e:ba:04:ae:21:ae:09:8d: 80:cf:d4:f3:d2:86:60:e7:c9:e1:ab:86:be:7e:23:b4:56:c1: d4:19:b5:67:33:76:39:0f:73:dd:6e:6b:87:e1:b2:d6:b0:fc: a5:51:34:c2:41:fa:23:07:2b:4e:c9:33:ff:76:4c:07:74:ad: 6c:84:f0:be:fd:e4:c9:ad:de:98:84:4a:0e:b7:70:77:df:87: b7:1d:00:42:45:a0:f7:12:98:cd:b8:b5:09:53:35:83:ed:36: a7:68:65:fb:6d:83:68:66:d4:82:73:88:c5:20:63:20:3d:09: b3:5d:d3:6d:56:a5:8d:8b:f0:74:da:04:62:68:97:f6:ec:de: 9f:73:d8:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUXcZhF8kw6egIFlBuP6wLYfEhgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDFaFw0yNjA4MzAwODAwMDFaMDMxMTAvBgNV BAMTKEIyM0Y1RjAxMEMyNTgyMEQ4NjM3NkFBN0Y4MjlFNDk3MDA1RERDRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzmxm6Low0AUbpDg84Bm8nwSis hsIvwHkaWfVFx6YtIBQaTWHr9WFgT+kO/6YgJfuuJyuwYhb8lDFEHscnhwYadooZ E6eHglGNPKRFGivYDcqGa3iXKObk1RlefSkvor7kTud7oNc2f1O9eyVtTGgK9z2O FcnUaovJBJH949tZRsy5UbaZ2IbBsUDeRcRmjWkKXepJRiqpkc5cSGW/O5rroP20 +0kWYzXrEl2b3UNenK8nzDC9faG6BcYg9YLREufyNI53gLVH5Q9fIP7nwgMNWpY1 9GlNGkZER34oKK8tj5+4dmUchWHy4u+HG2pcXIAyeq2Qkkg7lcdfIwt/9lQPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsj9fAQwlgg2GN2qn+CnklwBd3PQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25yMA0GCSqG SIb3DQEBCwUAA4IBAQAUez2Vf8qsUdEPKOkub/GOe2KGaYKafVz9Y5MSVSHSaZsi UBY7fPt152plTsBU0mlqX2j1kxiEWj9ABGhvCBoBpRVU4KMaQgS2q6In7i7B5cfE 4Rhid2yVplWbe2Ls39QB8x3zhy1V8hDX4id5huSpE8dc7c6ZXroEriGuCY2Az9Tz 0oZg58nhq4a+fiO0VsHUGbVnM3Y5D3PdbmuH4bLWsPylUTTCQfojBytOyTP/dkwH dK1shPC+/eTJrd6YhEoOt3B334e3HQBCRaD3EpjNuLUJUzWD7TanaGX7bYNoZtSC c4jFIGMgPQmzXdNtVqWNi/B02gRiaJf27N6fc9hV -----END CERTIFICATE-----Generated at Sun Oct 26 12:56:53 2025 by rpki-client