$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: kNZFyPcoH7bVaO5NL0mDfPxQvjyxje0ghHxC0i6Crfc= Subject key identifier: 2B:D7:0A:33:C9:AF:08:49:F6:39:B8:BC:76:25:D9:9D:6E:3F:01:EF Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 5295DB19CE23193BC80F01877B8747DE08B7A6FF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 08:00:01 +0000 ROA not before: Sun 31 Aug 2025 07:55:01 +0000 ROA not after: Sun 30 Aug 2026 08:00:01 +0000 asID: 45147 IP address blocks: 119.110.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:95:db:19:ce:23:19:3b:c8:0f:01:87:7b:87:47:de:08:b7:a6:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:01 2025 GMT Not After : Aug 30 08:00:01 2026 GMT Subject: CN=2BD70A33C9AF0849F639B8BC7625D99D6E3F01EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ee:db:7b:6f:b5:b0:40:36:8f:82:e7:d8:ec: 00:af:18:c1:40:b4:6a:b3:ae:6a:7c:5f:92:60:fc: 1c:5f:fa:3d:22:72:36:7e:9a:81:95:a3:2a:f3:d0: 27:e2:b0:1e:cd:cf:a2:03:e3:ea:b2:c5:28:d9:ef: bd:bf:07:de:86:c3:2a:f5:20:4e:55:2d:56:d4:fd: 9a:c6:20:af:01:c2:1b:a4:07:12:fa:70:f2:e6:b2: 9d:bb:93:4b:81:68:3a:29:1e:9a:15:f2:1d:ca:33: 8d:73:1c:de:c5:32:49:7e:60:56:54:09:18:f0:73: 7f:81:46:e1:0b:fb:86:e0:de:cf:a9:61:e0:e9:6d: 52:7c:3a:14:3f:8b:32:cb:c4:4e:3d:04:f3:fd:88: c6:5c:4f:d5:5e:5d:2e:80:75:35:5a:73:db:7a:79: 0e:5b:a3:7f:df:38:20:28:e6:b7:fa:7f:b0:4e:42: f2:2e:27:aa:db:36:91:26:c2:eb:a9:85:b6:9e:ac: af:a5:41:74:1e:93:00:5c:58:ab:c1:ea:8f:d5:f0: 4b:7c:4e:fe:06:55:e1:ed:a7:ed:e3:57:5d:1b:2b: 61:5e:39:d4:55:8b:9d:62:ba:9b:0b:2f:5f:07:15: 2c:6f:97:93:44:fb:27:f8:99:c9:7d:80:cf:12:88: a4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D7:0A:33:C9:AF:08:49:F6:39:B8:BC:76:25:D9:9D:6E:3F:01:EF X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.119.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:0d:fa:d7:42:d8:be:6b:d5:e1:42:b5:ee:ad:2f:06:be:1c: e4:b8:21:d7:e8:e3:65:24:95:bd:60:3d:7f:e8:cd:68:67:01: 73:84:ac:a9:45:5e:cf:25:50:05:c2:16:e4:3e:9c:62:2f:f8: 6f:3a:c6:9a:26:fb:ce:21:7a:21:93:96:08:7a:a0:7e:35:1e: 7b:17:7d:a7:c4:43:be:fa:96:25:57:c7:f1:1c:ca:b3:7a:cf: 67:52:c1:80:59:6a:06:d8:ea:23:d4:83:e0:a5:11:d3:81:7d: 3f:3c:e4:c1:95:ad:4a:e9:82:de:fa:d4:38:6a:ff:56:03:6e: d7:e9:2b:29:73:df:fe:03:f4:1c:08:1e:ce:9c:be:83:9d:99: 7c:5e:8c:ad:58:fd:ce:0e:11:55:59:9a:0f:64:e3:90:f0:e6: 85:b7:c9:65:23:d1:80:93:06:e0:bf:23:f2:4b:0f:d0:52:09: a8:b4:2f:34:5d:75:90:f0:e6:de:39:c1:74:0c:cf:fb:cf:04: a4:ce:3e:b2:c6:32:6b:c6:20:6a:c4:ad:ba:9e:9e:b8:4b:35: 2c:e0:7a:38:ae:22:f1:ff:74:88:8e:ed:34:74:86:bf:46:4a: b9:ec:16:3d:56:aa:e9:c6:39:43:05:b2:f8:e1:5c:eb:5d:1e: b1:21:4b:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUpXbGc4jGTvIDwGHe4dH3gi3pv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDFaFw0yNjA4MzAwODAwMDFaMDMxMTAvBgNV BAMTKDJCRDcwQTMzQzlBRjA4NDlGNjM5QjhCQzc2MjVEOTlENkUzRjAxRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg7tt7b7WwQDaPgufY7ACvGMFA tGqzrmp8X5Jg/Bxf+j0icjZ+moGVoyrz0CfisB7Nz6ID4+qyxSjZ772/B96Gwyr1 IE5VLVbU/ZrGIK8BwhukBxL6cPLmsp27k0uBaDopHpoV8h3KM41zHN7FMkl+YFZU CRjwc3+BRuEL+4bg3s+pYeDpbVJ8OhQ/izLLxE49BPP9iMZcT9VeXS6AdTVac9t6 eQ5bo3/fOCAo5rf6f7BOQvIuJ6rbNpEmwuuphbaerK+lQXQekwBcWKvB6o/V8Et8 Tv4GVeHtp+3jV10bK2FeOdRVi51iupsLL18HFSxvl5NE+yf4mcl9gM8SiKT7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUK9cKM8mvCEn2Obi8diXZnW4/Ae8wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd253MA0GCSqG SIb3DQEBCwUAA4IBAQCNDfrXQti+a9XhQrXurS8GvhzkuCHX6ONlJJW9YD1/6M1o ZwFzhKypRV7PJVAFwhbkPpxiL/hvOsaaJvvOIXohk5YIeqB+NR57F32nxEO++pYl V8fxHMqzes9nUsGAWWoG2Ooj1IPgpRHTgX0/POTBla1K6YLe+tQ4av9WA27X6Ssp c9/+A/QcCB7OnL6DnZl8XoytWP3ODhFVWZoPZOOQ8OaFt8llI9GAkwbgvyPySw/Q UgmotC80XXWQ8ObeOcF0DM/7zwSkzj6yxjJrxiBqxK26np64SzUs4Ho4riLx/3SI ju00dIa/Rkq57BY9VqrpxjlDBbL44VzrXR6xIUuv -----END CERTIFICATE-----Generated at Mon Sep 8 12:38:28 2025 by rpki-client