$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: GNPsk+jUHVrIvnoEgXtgcqEqDYfy6msaOedvQ3GycaQ= Subject key identifier: 30:28:0E:85:FC:54:6E:03:4F:C9:37:C8:0A:68:C1:C9:66:CA:02:E9 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 12AA8F76249D8A0FD18294FB6964FFAB7A487781 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 07:00:00 +0000 ROA not before: Sun 31 Aug 2025 06:55:00 +0000 ROA not after: Sun 30 Aug 2026 07:00:00 +0000 asID: 45147 IP address blocks: 119.110.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:aa:8f:76:24:9d:8a:0f:d1:82:94:fb:69:64:ff:ab:7a:48:77:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 06:55:00 2025 GMT Not After : Aug 30 07:00:00 2026 GMT Subject: CN=30280E85FC546E034FC937C80A68C1C966CA02E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bb:a2:d7:89:ee:00:12:0d:e1:86:72:20:55: fd:54:25:19:76:7a:02:a6:7d:b0:10:22:14:36:55: 4c:05:00:00:42:95:eb:4c:ce:ce:28:9d:12:49:a8: 40:e9:e3:ed:9a:44:b3:e2:02:db:58:7f:c5:69:c7: 07:03:72:15:ae:c4:a1:b6:3c:72:03:ea:4f:70:57: 36:ed:71:8a:41:69:13:42:e7:ef:0f:60:66:d8:be: e5:90:f1:35:81:d6:b3:30:a9:09:7f:b7:b8:06:8b: 7a:f8:8b:e9:ff:a7:60:47:96:c2:d1:39:34:7f:c1: 62:c1:87:4e:58:cd:17:f5:c2:aa:7e:5e:83:52:26: 58:f3:af:57:b4:ce:40:47:f1:de:9a:96:1b:6d:b2: 7f:17:b8:53:c2:75:63:81:60:b1:10:6b:e9:f1:77: d8:89:2e:b6:f7:bb:33:7d:77:d3:33:27:c7:62:e9: e5:f2:3a:6f:39:be:2a:57:22:8b:03:cf:4f:a9:23: 17:0f:df:48:90:0b:e7:fa:15:cc:f1:9c:9c:3f:fa: a6:55:37:be:cc:74:b7:5e:cf:21:88:ea:2d:56:97: b9:e8:0a:04:7f:6d:51:04:89:48:0f:ac:a2:be:be: 76:52:82:0b:52:d2:18:63:e4:40:b3:88:11:78:80: 5f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:28:0E:85:FC:54:6E:03:4F:C9:37:C8:0A:68:C1:C9:66:CA:02:E9 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132322e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.122.0/24 Signature Algorithm: sha256WithRSAEncryption 91:76:c4:26:e2:29:7b:a7:02:e7:b2:14:28:b2:1a:ae:cc:d8: e3:0f:e8:85:e3:9a:a5:e5:a2:b7:57:dc:fd:d2:a5:56:cc:30: ed:04:5d:46:55:64:b9:69:32:f2:61:16:9e:71:fe:3a:63:ad: 2d:65:63:45:f4:94:f9:2f:82:4c:1c:78:de:8f:32:94:3d:2a: 14:7e:36:c4:4f:36:2f:34:1c:56:6f:85:78:a9:66:f1:30:ee: b8:01:2a:42:80:aa:23:f7:72:46:b0:a6:4b:85:5e:45:19:46: 50:66:e9:bb:ad:76:13:a9:5c:35:19:bc:c5:bc:94:de:89:05: 99:ab:3d:70:08:72:21:40:8f:eb:01:aa:f5:32:44:1f:97:fb: 8e:0b:40:61:ee:8b:1d:74:a5:7e:14:45:c9:34:f9:b0:73:98: 5a:56:db:8e:d9:2b:56:5c:02:fb:7d:1f:fe:0a:c2:3b:28:77: ac:d6:35:e4:15:8f:ec:c1:58:c9:85:3a:ec:37:05:bb:09:a5: 32:ee:21:1c:98:b8:69:75:35:b1:d3:b8:28:9a:b9:f5:11:9d: 50:82:51:5a:be:61:ce:79:3c:8f:13:19:14:01:ed:dd:56:e1: ef:f3:b4:9e:28:48:8d:a9:1b:15:13:1b:71:cd:0c:24:f3:45: c9:c2:a2:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEqqPdiSdig/RgpT7aWT/q3pId4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNjU1MDBaFw0yNjA4MzAwNzAwMDBaMDMxMTAvBgNV BAMTKDMwMjgwRTg1RkM1NDZFMDM0RkM5MzdDODBBNjhDMUM5NjZDQTAyRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNu6LXie4AEg3hhnIgVf1UJRl2 egKmfbAQIhQ2VUwFAABCletMzs4onRJJqEDp4+2aRLPiAttYf8VpxwcDchWuxKG2 PHID6k9wVzbtcYpBaRNC5+8PYGbYvuWQ8TWB1rMwqQl/t7gGi3r4i+n/p2BHlsLR OTR/wWLBh05YzRf1wqp+XoNSJljzr1e0zkBH8d6alhttsn8XuFPCdWOBYLEQa+nx d9iJLrb3uzN9d9MzJ8di6eXyOm85vipXIosDz0+pIxcP30iQC+f6FczxnJw/+qZV N77MdLdezyGI6i1Wl7noCgR/bVEEiUgPrKK+vnZSggtS0hhj5ECziBF4gF9HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMCgOhfxUbgNPyTfICmjByWbKAukwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd256MA0GCSqG SIb3DQEBCwUAA4IBAQCRdsQm4il7pwLnshQoshquzNjjD+iF45ql5aK3V9z90qVW zDDtBF1GVWS5aTLyYRaecf46Y60tZWNF9JT5L4JMHHjejzKUPSoUfjbETzYvNBxW b4V4qWbxMO64ASpCgKoj93JGsKZLhV5FGUZQZum7rXYTqVw1GbzFvJTeiQWZqz1w CHIhQI/rAar1MkQfl/uOC0Bh7osddKV+FEXJNPmwc5haVtuO2StWXAL7fR/+CsI7 KHes1jXkFY/swVjJhTrsNwW7CaUy7iEcmLhpdTWx07gomrn1EZ1QglFavmHOeTyP ExkUAe3dVuHv87SeKEiNqRsVExtxzQwk80XJwqI6 -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:44 2025 by rpki-client