$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: VbBpgy8ijcIzPkchw1AAG3EQ23+mfiaAMkk+6He7RJ4= Subject key identifier: 9D:F0:7F:1A:C4:64:13:EE:26:0C:A5:D1:BC:03:D2:78:C0:02:E6:D2 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 46D4C5FCCCE3C92FA84962A48BD21A18FE94ABBF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa Signing time: Sun 31 Aug 2025 06:00:00 +0000 ROA not before: Sun 31 Aug 2025 05:55:00 +0000 ROA not after: Sun 30 Aug 2026 06:00:00 +0000 asID: 55818 IP address blocks: 119.110.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:d4:c5:fc:cc:e3:c9:2f:a8:49:62:a4:8b:d2:1a:18:fe:94:ab:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 05:55:00 2025 GMT Not After : Aug 30 06:00:00 2026 GMT Subject: CN=9DF07F1AC46413EE260CA5D1BC03D278C002E6D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:0a:ef:c8:74:31:8d:2c:c6:b4:c3:90:39: 73:81:1e:e3:19:24:7a:5f:78:de:ac:8c:d9:ec:85: 61:8c:e0:51:24:7f:50:7a:21:c3:59:8a:b8:a7:03: 78:c0:22:23:42:6e:fd:4a:a7:76:86:d1:5c:8e:90: 6e:70:dc:8a:1c:93:38:e8:21:8e:69:af:ed:2d:9b: e4:28:1f:1d:8c:c1:ac:1e:16:5f:8a:97:c3:09:a4: 4a:c7:81:5b:15:06:d1:11:ce:ef:3e:9d:b2:95:42: 49:52:fa:00:f1:91:9d:c4:75:b8:1f:ca:cc:ac:03: bc:c1:78:ba:be:01:a9:95:78:87:b6:79:2e:52:7a: 5f:28:68:71:e9:6e:24:ea:7e:e6:0c:b8:90:dc:d1: bc:4a:77:86:4c:2e:23:72:c3:ae:c8:73:d9:7c:4f: a2:75:d3:ad:12:4f:64:c1:9d:fd:a8:5a:0b:96:48: 13:01:42:56:86:f5:a7:f2:85:92:ee:b8:8c:76:78: 98:db:af:80:38:a6:c1:aa:9a:5c:df:40:45:fc:0a: 5e:4e:61:2e:e4:03:4d:a8:81:e6:8d:c1:03:88:4a: 64:61:f6:50:6b:07:0e:8f:9e:55:77:e0:67:82:31: dd:cc:e5:95:ec:b6:e2:12:11:e6:36:f3:37:f6:58: 93:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F0:7F:1A:C4:64:13:EE:26:0C:A5:D1:BC:03:D2:78:C0:02:E6:D2 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131352e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.115.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:a6:65:4d:00:7a:df:fb:ca:fd:d5:f8:02:0f:36:c2:ee:f6: 93:e8:0c:34:a7:04:1e:a1:7c:c4:f4:82:a7:0e:4a:d2:11:b8: f7:41:e3:c9:55:49:69:c9:ec:b6:ef:eb:17:61:db:e0:8d:b1: 34:e2:fd:29:58:93:52:fd:f2:5c:ac:e3:97:4d:0b:38:bc:d5: d0:9a:ef:b3:90:c7:d4:4a:66:d4:f2:29:38:b3:8f:90:e0:e2: f3:24:d9:a9:a4:c7:60:67:35:97:5e:36:23:29:c5:5d:83:0d: 8d:c7:b8:eb:6a:6c:bc:19:5a:c2:22:27:61:15:3d:f0:7c:f6: f4:03:df:05:46:dc:0c:b3:86:8a:d8:28:ab:ac:d9:9f:c1:ff: a6:68:24:ed:1f:53:af:56:f0:d9:97:89:c1:19:b7:f4:ae:cd: 76:4d:f9:64:51:98:bf:08:90:78:99:ca:73:d7:76:ae:cb:56: c0:84:7c:c5:f2:b1:08:6b:41:37:0c:2c:1b:cc:77:e0:3f:1b: 7a:f9:b0:7e:9a:ce:31:8f:9b:0f:d6:12:06:36:9a:f8:69:1a: 22:03:d0:f6:aa:ff:95:c5:23:91:bc:d3:b2:83:35:51:b9:0d: 37:0a:25:49:74:14:b4:e7:63:11:46:17:b0:64:fc:4f:60:34: 97:44:c9:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURtTF/MzjyS+oSWKki9IaGP6Uq78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNTU1MDBaFw0yNjA4MzAwNjAwMDBaMDMxMTAvBgNV BAMTKDlERjA3RjFBQzQ2NDEzRUUyNjBDQTVEMUJDMDNEMjc4QzAwMkU2RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6YArvyHQxjSzGtMOQOXOBHuMZ JHpfeN6sjNnshWGM4FEkf1B6IcNZirinA3jAIiNCbv1Kp3aG0VyOkG5w3Iockzjo IY5pr+0tm+QoHx2MwaweFl+Kl8MJpErHgVsVBtERzu8+nbKVQklS+gDxkZ3Edbgf ysysA7zBeLq+AamVeIe2eS5Sel8oaHHpbiTqfuYMuJDc0bxKd4ZMLiNyw67Ic9l8 T6J1060ST2TBnf2oWguWSBMBQlaG9afyhZLuuIx2eJjbr4A4psGqmlzfQEX8Cl5O YS7kA02ogeaNwQOISmRh9lBrBw6PnlV34GeCMd3M5ZXstuISEeY28zf2WJM3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnfB/GsRkE+4mDKXRvAPSeMAC5tIwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25zMA0GCSqG SIb3DQEBCwUAA4IBAQCNpmVNAHrf+8r91fgCDzbC7vaT6Aw0pwQeoXzE9IKnDkrS Ebj3QePJVUlpyey27+sXYdvgjbE04v0pWJNS/fJcrOOXTQs4vNXQmu+zkMfUSmbU 8ik4s4+Q4OLzJNmppMdgZzWXXjYjKcVdgw2Nx7jramy8GVrCIidhFT3wfPb0A98F RtwMs4aK2CirrNmfwf+maCTtH1OvVvDZl4nBGbf0rs12TflkUZi/CJB4mcpz13au y1bAhHzF8rEIa0E3DCwbzHfgPxt6+bB+ms4xj5sP1hIGNpr4aRoiA9D2qv+VxSOR vNOygzVRuQ03CiVJdBS052MRRhewZPxPYDSXRMko -----END CERTIFICATE-----Generated at Mon Sep 8 09:38:10 2025 by rpki-client