$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: 3br4FnaBaWS3LEnmMSO2iz/29gIxNwspE8I2SxTGUTI= Subject key identifier: 4F:7C:13:54:A8:5B:E6:44:D8:AE:ED:D3:91:9F:5D:C4:8D:5B:21:39 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 73E5FB114946A00206AA0728F36105B2581AB415 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 06:00:00 +0000 ROA not before: Sun 31 Aug 2025 05:55:00 +0000 ROA not after: Sun 30 Aug 2026 06:00:00 +0000 asID: 45147 IP address blocks: 119.110.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e5:fb:11:49:46:a0:02:06:aa:07:28:f3:61:05:b2:58:1a:b4:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 05:55:00 2025 GMT Not After : Aug 30 06:00:00 2026 GMT Subject: CN=4F7C1354A85BE644D8AEEDD3919F5DC48D5B2139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b9:cd:c2:86:3e:2a:86:09:e4:9b:bd:83:60: a6:52:28:f3:e0:22:33:26:9e:c6:fd:56:61:97:a7: a4:64:28:f0:73:60:a7:fc:90:0f:42:94:78:0c:a3: e0:0d:e8:5a:fa:53:22:1d:b9:54:af:c1:9c:2f:ce: f5:86:f6:be:22:a5:05:f5:4d:09:e1:3c:5d:a3:bf: f7:fa:eb:da:bb:b7:0f:8f:c1:41:13:08:42:15:51: fc:ef:8f:15:71:0c:1b:0e:7f:be:25:42:d9:07:4d: d0:6c:97:34:92:bd:46:d8:c7:07:c2:c6:44:cf:86: db:c2:cf:ae:2b:be:7d:3e:b1:4c:29:49:bf:72:c6: 97:4d:ab:a7:61:75:fd:f5:41:15:8d:21:e3:7f:14: a5:cd:1d:98:8c:a1:59:29:0f:73:45:67:40:58:96: 09:c8:9e:a5:cb:87:88:0f:b5:e8:c3:a2:4c:c2:b9: 28:f6:08:f6:bf:ff:c0:8a:81:f0:23:3a:9c:91:d8: e7:24:99:62:71:0f:97:b9:d6:fd:83:7b:d5:ae:ef: b3:2d:b1:aa:78:dc:c9:d3:16:c6:7f:37:38:db:0e: 7f:7e:1f:c4:33:14:b7:30:f8:93:24:bd:7e:d2:85: 48:14:65:5c:ff:79:22:da:c2:cb:f9:ab:96:e6:83: 49:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7C:13:54:A8:5B:E6:44:D8:AE:ED:D3:91:9F:5D:C4:8D:5B:21:39 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132302e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.120.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:92:e7:a0:40:fd:5a:8b:77:c4:75:63:a1:1e:9c:96:c0:da: 97:a9:e5:2b:f2:dc:cc:28:42:05:dd:ab:16:2d:46:dc:6b:d5: fe:db:12:54:0c:6b:f8:04:d0:61:97:95:30:97:74:c9:5a:37: 3f:4b:99:13:8f:c9:39:bf:78:d2:9e:62:66:d7:4f:39:c3:d3: 3e:e9:79:cb:64:bf:11:83:ac:d5:b3:f5:aa:a2:83:3d:6d:f2: fd:07:fa:91:b0:01:f6:43:b3:74:6f:5f:a7:24:17:6e:e1:d8: 0f:12:8d:28:34:3a:75:d8:bb:04:d5:21:2d:ca:43:53:4f:e2: 2b:5b:6c:0e:4e:7d:e1:6a:9b:09:44:41:66:47:81:e6:03:8c: bc:36:6a:39:a5:20:80:92:90:59:25:06:f4:ac:59:6d:0b:eb: eb:20:a1:83:f0:f3:df:37:05:bc:b0:39:f1:41:9d:51:0d:36: 84:e5:bc:5b:e3:34:36:b7:26:f5:d2:77:05:f9:26:27:6c:63: 62:52:d7:cc:71:5c:e5:d6:fe:25:f4:09:10:8f:f0:cd:91:8e: f6:93:e3:a5:66:d4:0b:b9:5f:db:fc:74:29:d1:da:37:c9:3f: 8e:35:38:03:2f:10:c4:69:a8:bb:60:41:a1:0e:09:cb:4c:a1: 44:1b:13:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc+X7EUlGoAIGqgco82EFslgatBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNTU1MDBaFw0yNjA4MzAwNjAwMDBaMDMxMTAvBgNV BAMTKDRGN0MxMzU0QTg1QkU2NDREOEFFRUREMzkxOUY1REM0OEQ1QjIxMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUuc3Chj4qhgnkm72DYKZSKPPg IjMmnsb9VmGXp6RkKPBzYKf8kA9ClHgMo+AN6Fr6UyIduVSvwZwvzvWG9r4ipQX1 TQnhPF2jv/f669q7tw+PwUETCEIVUfzvjxVxDBsOf74lQtkHTdBslzSSvUbYxwfC xkTPhtvCz64rvn0+sUwpSb9yxpdNq6dhdf31QRWNIeN/FKXNHZiMoVkpD3NFZ0BY lgnInqXLh4gPtejDokzCuSj2CPa//8CKgfAjOpyR2OckmWJxD5e51v2De9Wu77Mt sap43MnTFsZ/NzjbDn9+H8QzFLcw+JMkvX7ShUgUZVz/eSLawsv5q5bmg0lRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT3wTVKhb5kTYru3TkZ9dxI1bITkwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd254MA0GCSqG SIb3DQEBCwUAA4IBAQAakuegQP1ai3fEdWOhHpyWwNqXqeUr8tzMKEIF3asWLUbc a9X+2xJUDGv4BNBhl5Uwl3TJWjc/S5kTj8k5v3jSnmJm1085w9M+6XnLZL8Rg6zV s/WqooM9bfL9B/qRsAH2Q7N0b1+nJBdu4dgPEo0oNDp12LsE1SEtykNTT+IrW2wO Tn3hapsJREFmR4HmA4y8Nmo5pSCAkpBZJQb0rFltC+vrIKGD8PPfNwW8sDnxQZ1R DTaE5bxb4zQ2tyb10ncF+SYnbGNiUtfMcVzl1v4l9AkQj/DNkY72k+OlZtQLuV/b /HQp0do3yT+ONTgDLxDEaai7YEGhDgnLTKFEGxPQ -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:52 2025 by rpki-client