$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: wGvUOymewyi+IlQO9MIml1LRcviqwDKVBd/x7M5WCPk= Subject key identifier: 97:B7:12:A8:76:AE:9B:02:38:46:89:0E:59:29:1C:A1:D2:83:C1:CB Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0DCB10472F00F9906CEC31F0DFFF01DF781E248C Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 08:00:01 +0000 ROA not before: Sun 31 Aug 2025 07:55:01 +0000 ROA not after: Sun 30 Aug 2026 08:00:01 +0000 asID: 45147 IP address blocks: 119.110.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:cb:10:47:2f:00:f9:90:6c:ec:31:f0:df:ff:01:df:78:1e:24:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:01 2025 GMT Not After : Aug 30 08:00:01 2026 GMT Subject: CN=97B712A876AE9B023846890E59291CA1D283C1CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c5:76:07:a6:53:5a:ec:1d:0a:46:f7:63:22: d2:82:a0:db:12:e1:a6:c5:81:ca:48:c7:34:2f:24: 89:b2:de:09:f8:bd:a7:11:a7:86:f9:ac:5d:df:cb: 75:62:92:05:b6:bd:9e:f4:9c:6f:c4:f1:ec:a8:da: cd:01:93:c3:03:a9:12:c8:11:18:e9:ce:f9:f7:03: 12:aa:60:71:f4:ee:26:41:d5:04:52:0b:43:52:b9: 20:fc:f1:59:08:5b:1d:4a:f6:2c:17:a2:36:c4:e5: 05:c6:ae:f9:bc:78:43:3f:f5:ae:56:50:06:10:99: 7f:dd:5c:d8:ed:c5:82:a8:f2:ae:a8:af:a2:a8:de: ab:34:97:f8:08:2d:69:94:17:b9:bc:7d:d9:5c:a8: a4:01:06:cb:09:de:c0:98:e6:cc:59:fb:3e:d0:39: 9f:1a:6d:84:a4:b3:da:a8:5e:16:a1:96:13:c5:5a: df:28:e5:02:15:00:cf:14:08:37:5f:d8:0f:1e:fa: e4:a1:c6:1a:d6:21:ef:e3:a6:b1:04:7b:1c:84:62: 52:c0:3d:9a:9d:69:9e:50:25:e2:c6:74:00:19:fc: ad:fd:a2:4e:d6:d0:d2:91:3d:5c:33:59:60:42:88: 12:31:41:5c:25:df:ea:da:2e:fc:f8:9c:31:e4:f5: 3c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B7:12:A8:76:AE:9B:02:38:46:89:0E:59:29:1C:A1:D2:83:C1:CB X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.121.0/24 Signature Algorithm: sha256WithRSAEncryption 86:c5:0d:a0:6a:38:aa:16:59:a6:a9:25:59:b5:9a:36:b3:e2: 3e:4a:48:4c:d0:9b:95:0f:2f:c1:91:1d:ba:55:0b:84:82:42: 24:8b:9b:2a:e5:7e:f2:e0:51:24:fb:bb:51:82:ca:ea:15:c7: 46:45:45:23:83:f4:78:6d:22:34:06:ba:90:3e:92:8a:82:5a: 1e:aa:88:4f:ff:2b:4f:75:2d:e4:75:8d:70:7c:27:9c:c3:5d: 85:66:6f:0b:e8:aa:93:57:37:e5:e0:68:43:56:6c:6d:27:43: e5:b2:c7:23:cc:e9:d4:bd:c5:f1:3c:b8:2b:f2:44:e7:58:85: ad:ba:85:7d:b4:c5:29:57:50:c6:e3:7d:8c:5a:9a:02:f3:a8: f3:d6:d3:3a:05:03:4d:9f:ea:c4:ad:b1:11:d2:7f:e5:fc:58: 5b:ff:5f:d9:e8:75:df:a5:da:52:82:c0:52:6b:8a:63:8f:3a: d7:65:d6:9c:86:4f:18:65:01:cd:d2:1c:e9:d7:97:b1:aa:19: a1:ce:9a:b1:74:34:b4:e1:f9:e7:46:70:b2:99:4d:14:33:a1: 49:0b:8e:46:85:9c:f8:e5:d2:5f:bb:e7:f4:b0:05:d0:f3:e9: 59:07:d9:96:e6:1c:81:5b:0e:70:4c:4b:48:39:6c:f6:3c:dd: 2a:76:37:a2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDcsQRy8A+ZBs7DHw3/8B33geJIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDFaFw0yNjA4MzAwODAwMDFaMDMxMTAvBgNV BAMTKDk3QjcxMkE4NzZBRTlCMDIzODQ2ODkwRTU5MjkxQ0ExRDI4M0MxQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnxXYHplNa7B0KRvdjItKCoNsS 4abFgcpIxzQvJImy3gn4vacRp4b5rF3fy3VikgW2vZ70nG/E8eyo2s0Bk8MDqRLI ERjpzvn3AxKqYHH07iZB1QRSC0NSuSD88VkIWx1K9iwXojbE5QXGrvm8eEM/9a5W UAYQmX/dXNjtxYKo8q6or6Ko3qs0l/gILWmUF7m8fdlcqKQBBssJ3sCY5sxZ+z7Q OZ8abYSks9qoXhahlhPFWt8o5QIVAM8UCDdf2A8e+uShxhrWIe/jprEEexyEYlLA PZqdaZ5QJeLGdAAZ/K39ok7W0NKRPVwzWWBCiBIxQVwl3+raLvz4nDHk9Tx5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUl7cSqHaumwI4RokOWSkcodKDwcswHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd255MA0GCSqG SIb3DQEBCwUAA4IBAQCGxQ2gajiqFlmmqSVZtZo2s+I+SkhM0JuVDy/BkR26VQuE gkIki5sq5X7y4FEk+7tRgsrqFcdGRUUjg/R4bSI0BrqQPpKKgloeqohP/ytPdS3k dY1wfCecw12FZm8L6KqTVzfl4GhDVmxtJ0PlsscjzOnUvcXxPLgr8kTnWIWtuoV9 tMUpV1DG432MWpoC86jz1tM6BQNNn+rErbER0n/l/Fhb/1/Z6HXfpdpSgsBSa4pj jzrXZdachk8YZQHN0hzp15exqhmhzpqxdDS04fnnRnCymU0UM6FJC45GhZz45dJf u+f0sAXQ8+lZB9mW5hyBWw5wTEtIOWz2PN0qdjei -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:44 2025 by rpki-client