$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa File: 3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa (raw, json) Hash identifier: LSJ3dW/L72sfuu1qVkAOSozK0MJ5EKrYayYlJX1/afc= Subject key identifier: 3D:A0:EC:33:51:01:02:39:5A:5F:7A:DF:08:CB:F0:A7:95:5B:99:7E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0BA655908D89010F717A12D80BEB4E6E4D89440A Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa Signing time: Sun 31 Aug 2025 06:00:00 +0000 ROA not before: Sun 31 Aug 2025 05:55:00 +0000 ROA not after: Sun 30 Aug 2026 06:00:00 +0000 asID: 55818 IP address blocks: 119.110.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:a6:55:90:8d:89:01:0f:71:7a:12:d8:0b:eb:4e:6e:4d:89:44:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 05:55:00 2025 GMT Not After : Aug 30 06:00:00 2026 GMT Subject: CN=3DA0EC33510102395A5F7ADF08CBF0A7955B997E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:33:c7:d8:a1:9b:63:2a:10:f5:48:84:e6: 6e:20:d0:1b:e4:0b:97:27:5f:3b:8f:7d:a4:44:3a: 2e:43:e9:9e:bb:dd:e8:9b:2b:7d:1a:3e:5c:02:ac: da:3e:ba:83:12:3a:a8:af:4c:3a:42:26:91:41:10: ba:88:05:0a:05:47:a0:03:a3:39:49:2f:51:59:a0: 9d:e0:b9:16:76:12:62:c8:dd:47:24:b6:6c:a5:c0: ca:55:82:6b:2b:7d:da:77:fa:6a:55:4b:53:ec:3d: a1:8f:5b:59:91:27:24:39:d9:53:7e:da:a0:97:57: 35:ad:8a:09:41:62:c5:59:89:1f:cf:15:e9:ab:a6: ab:e1:75:cb:a1:d6:47:b0:d2:9f:10:e8:04:ec:ee: 8a:59:ca:83:e0:d8:ed:9c:66:c7:a6:bd:10:05:e4: ce:ff:9d:2d:1f:10:03:c1:75:c2:f5:7d:7c:31:25: ec:0c:c6:c2:be:db:18:2d:10:44:ef:ae:04:04:c3: 96:bb:94:48:35:f0:70:f6:4e:aa:bd:34:7b:c4:97: 78:89:59:69:a1:b3:c8:04:1c:f9:ae:d9:72:49:ab: 15:aa:fd:c8:78:62:a3:79:65:cd:b6:14:75:48:6e: 77:73:50:95:1d:81:56:8f:67:74:fe:37:46:49:9e: ea:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A0:EC:33:51:01:02:39:5A:5F:7A:DF:08:CB:F0:A7:95:5B:99:7E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32332d3233203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.116.0/23 Signature Algorithm: sha256WithRSAEncryption 64:c8:72:2c:87:a4:38:b2:9b:2f:ba:14:b3:4f:83:42:ee:4b: 9a:af:9d:53:05:58:f3:c9:34:4b:d7:d2:0a:3c:84:c0:e0:e0: f6:46:91:db:58:28:6c:97:ff:1e:95:c3:f6:22:d4:74:76:3e: 04:f5:4b:09:fb:33:b4:b7:0a:d6:45:35:a8:ab:a2:15:6d:e3: 7d:37:04:79:9e:2b:22:ae:f1:a3:d7:e3:bb:57:78:bf:87:1c: 95:7d:b4:45:e0:ad:55:57:6a:73:d5:1a:41:b1:3c:69:0c:b4: ff:7b:1e:55:f3:ee:e0:11:3c:ad:75:6f:ce:86:58:9f:fd:b2: e5:33:c7:b4:8f:f0:18:c0:08:90:a8:30:86:d1:4d:e6:0e:ba: 61:fe:34:17:28:8d:03:8c:f1:9a:ed:16:78:2e:0b:a9:55:97: 27:f7:e0:08:58:83:ff:f0:1d:05:52:e1:2e:97:49:1b:d1:fd: 3f:7e:c6:3e:1f:2d:5f:db:1d:1d:84:02:a4:5a:70:b5:d9:7b: 62:6a:8f:84:6a:a4:01:28:31:35:d8:e3:ac:c1:09:a5:70:2a: 17:dc:25:c2:7e:1c:5d:5a:4a:1e:ea:d2:ac:9e:5c:87:5e:3e: 51:db:a8:1c:70:ba:7e:9e:81:ff:c4:f7:2c:6f:90:a5:b2:34: 54:d8:ae:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC6ZVkI2JAQ9xehLYC+tObk2JRAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNTU1MDBaFw0yNjA4MzAwNjAwMDBaMDMxMTAvBgNV BAMTKDNEQTBFQzMzNTEwMTAyMzk1QTVGN0FERjA4Q0JGMEE3OTU1Qjk5N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6YDPH2KGbYyoQ9UiE5m4g0Bvk C5cnXzuPfaREOi5D6Z673eibK30aPlwCrNo+uoMSOqivTDpCJpFBELqIBQoFR6AD ozlJL1FZoJ3guRZ2EmLI3UcktmylwMpVgmsrfdp3+mpVS1PsPaGPW1mRJyQ52VN+ 2qCXVzWtiglBYsVZiR/PFemrpqvhdcuh1kew0p8Q6ATs7opZyoPg2O2cZsemvRAF 5M7/nS0fEAPBdcL1fXwxJewMxsK+2xgtEETvrgQEw5a7lEg18HD2Tqq9NHvEl3iJ WWmhs8gEHPmu2XJJqxWq/ch4YqN5Zc22FHVIbndzUJUdgVaPZ3T+N0ZJnuqXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPaDsM1EBAjlaX3rfCMvwp5VbmX4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBd250MA0GCSqG SIb3DQEBCwUAA4IBAQBkyHIsh6Q4spsvuhSzT4NC7kuar51TBVjzyTRL19IKPITA 4OD2RpHbWChsl/8elcP2ItR0dj4E9UsJ+zO0twrWRTWoq6IVbeN9NwR5nisirvGj 1+O7V3i/hxyVfbRF4K1VV2pz1RpBsTxpDLT/ex5V8+7gETytdW/Ohlif/bLlM8e0 j/AYwAiQqDCG0U3mDrph/jQXKI0DjPGa7RZ4LgupVZcn9+AIWIP/8B0FUuEul0kb 0f0/fsY+Hy1f2x0dhAKkWnC12Xtiao+EaqQBKDE12OOswQmlcCoX3CXCfhxdWkoe 6tKsnlyHXj5R26gccLp+noH/xPcsb5ClsjRU2K7C -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:52 2025 by rpki-client