$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: fPtntOAip7kYkqDmDgecD/nwnWdLCAWvv9Q6phQWRGQ= Subject key identifier: 20:01:F3:60:7D:60:66:43:30:F2:98:C7:B8:EE:5B:54:A1:2B:0B:7C Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 527DE9849FC1ED351D15B17CF89A514F99DDEA10 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa Signing time: Sun 31 Aug 2025 08:00:00 +0000 ROA not before: Sun 31 Aug 2025 07:55:00 +0000 ROA not after: Sun 30 Aug 2026 08:00:00 +0000 asID: 55818 IP address blocks: 119.110.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 06:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:7d:e9:84:9f:c1:ed:35:1d:15:b1:7c:f8:9a:51:4f:99:dd:ea:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:00 2025 GMT Not After : Aug 30 08:00:00 2026 GMT Subject: CN=2001F3607D60664330F298C7B8EE5B54A12B0B7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:00:f9:f0:5d:f1:b1:80:9a:f9:af:82:97:cb: 31:02:ae:b6:49:14:63:45:07:9c:eb:ab:3b:32:df: c1:69:26:23:02:bc:bd:9d:e8:9a:53:b2:f6:ec:ce: 5c:ee:77:fc:b0:6c:a2:4f:12:6b:fb:72:36:36:64: 85:43:d6:89:d0:31:23:92:83:be:7e:b8:33:ed:37: 71:25:e0:ce:dd:09:4d:8a:32:03:99:8c:60:3d:4c: 40:7f:96:33:7d:ba:61:2e:eb:d2:15:a6:91:4d:21: cb:02:c5:4e:02:3e:dc:7a:5e:a6:6c:3e:dc:8c:ad: 64:0c:70:c6:f2:06:b8:a1:e3:07:4f:bd:8c:b4:1c: 44:d9:54:54:f2:23:34:b7:1d:1f:4e:ca:c1:69:4e: 2d:1a:86:9f:9a:7b:34:5c:6a:22:d9:a5:c1:ce:9c: 87:9f:74:c7:42:d9:27:5e:e4:a1:57:f9:2c:4c:62: 5a:bd:6b:eb:d7:1a:df:91:c4:05:99:7e:7f:d5:52: 3b:b5:02:f7:7e:74:35:19:15:b3:8e:66:a6:91:0d: 34:81:23:b0:28:c0:e1:bd:bf:0b:de:a4:ec:ad:57: 62:28:34:b9:fe:c6:79:75:4c:87:ba:a8:6c:62:52: aa:0c:94:a7:3b:0e:ac:de:7c:93:37:07:56:b1:00: ca:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:01:F3:60:7D:60:66:43:30:F2:98:C7:B8:EE:5B:54:A1:2B:0B:7C X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.116.0/24 Signature Algorithm: sha256WithRSAEncryption bd:78:5b:ca:8d:3f:be:f9:e0:6a:cb:6c:cd:c7:4a:33:b6:d8: 34:e3:76:16:81:2f:7d:87:a1:ac:78:51:e9:76:61:4f:3f:11: ed:2c:98:48:fb:6f:52:2d:b9:70:d8:ec:ad:61:94:01:b3:12: fe:dd:85:67:f3:56:65:9b:6e:f5:34:d0:c5:00:43:4d:f0:9d: 08:bc:ad:6a:e8:5e:04:db:15:22:e1:d3:80:f6:2b:8c:96:55: 28:99:0b:b1:fb:c9:ce:be:e7:f5:17:5a:db:69:72:a7:d2:5c: ab:e1:b4:b7:8a:9b:74:e3:c2:7a:f1:36:2b:6c:93:67:a9:45: 0e:2a:24:c2:6c:dd:74:cd:73:2d:db:5d:49:14:19:62:7e:c3: 07:d4:23:28:10:72:71:94:fd:d9:98:94:cd:5a:6b:73:20:e1: 9e:37:84:ce:de:15:9a:0e:61:fc:e9:ec:84:cb:0b:ae:d6:b6: 60:17:5a:51:04:ab:20:c0:47:32:5b:a6:db:ce:73:34:c6:4f: 80:98:bf:e7:67:34:81:61:b6:60:0f:50:a3:0f:f1:63:21:c8: af:37:18:37:3c:4d:54:6b:da:37:a0:af:c3:0e:ae:dd:b9:16: 91:fd:d4:76:4d:2e:11:b8:64:a9:11:3e:81:a9:d7:05:31:83: 7d:c2:c5:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUn3phJ/B7TUdFbF8+JpRT5nd6hAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDBaFw0yNjA4MzAwODAwMDBaMDMxMTAvBgNV BAMTKDIwMDFGMzYwN0Q2MDY2NDMzMEYyOThDN0I4RUU1QjU0QTEyQjBCN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9APnwXfGxgJr5r4KXyzECrrZJ FGNFB5zrqzsy38FpJiMCvL2d6JpTsvbszlzud/ywbKJPEmv7cjY2ZIVD1onQMSOS g75+uDPtN3El4M7dCU2KMgOZjGA9TEB/ljN9umEu69IVppFNIcsCxU4CPtx6XqZs PtyMrWQMcMbyBrih4wdPvYy0HETZVFTyIzS3HR9OysFpTi0ahp+aezRcaiLZpcHO nIefdMdC2Sde5KFX+SxMYlq9a+vXGt+RxAWZfn/VUju1Avd+dDUZFbOOZqaRDTSB I7AowOG9vwvepOytV2IoNLn+xnl1TIe6qGxiUqoMlKc7DqzefJM3B1axAMqVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIAHzYH1gZkMw8pjHuO5bVKErC3wwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd250MA0GCSqG SIb3DQEBCwUAA4IBAQC9eFvKjT+++eBqy2zNx0ozttg043YWgS99h6GseFHpdmFP PxHtLJhI+29SLblw2OytYZQBsxL+3YVn81Zlm271NNDFAENN8J0IvK1q6F4E2xUi 4dOA9iuMllUomQux+8nOvuf1F1rbaXKn0lyr4bS3ipt048J68TYrbJNnqUUOKiTC bN10zXMt211JFBlifsMH1CMoEHJxlP3ZmJTNWmtzIOGeN4TO3hWaDmH86eyEywuu 1rZgF1pRBKsgwEcyW6bbznM0xk+AmL/nZzSBYbZgD1CjD/FjIcivNxg3PE1Ua9o3 oK/DDq7duRaR/dR2TS4RuGSpET6BqdcFMYN9wsUJ -----END CERTIFICATE-----Generated at Sun Oct 26 12:56:53 2025 by rpki-client