$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: q0I8QnNPKr7xdoOHG5vNpy7q5o4OtJKLxrDewRpLLW4= Subject key identifier: F4:AB:0A:E4:26:DD:25:E8:BC:BA:A3:A9:96:02:21:19:02:48:F0:4E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 54B4D6DB2D0E70CFD0222DBDA90819ED0F92DDC0 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 08:00:01 +0000 ROA not before: Sun 31 Aug 2025 07:55:01 +0000 ROA not after: Sun 30 Aug 2026 08:00:01 +0000 asID: 45147 IP address blocks: 119.110.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b4:d6:db:2d:0e:70:cf:d0:22:2d:bd:a9:08:19:ed:0f:92:dd:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:01 2025 GMT Not After : Aug 30 08:00:01 2026 GMT Subject: CN=F4AB0AE426DD25E8BCBAA3A9960221190248F04E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7b:8d:06:21:4d:26:40:44:38:96:78:61:78: ee:fb:43:6e:26:23:eb:e6:2a:32:d0:18:e2:51:53: 99:ad:57:9f:6c:b5:2b:d7:cd:d1:f5:0c:45:25:18: 33:60:26:f9:cb:08:46:c3:0c:34:7c:49:d9:c8:2d: 58:ef:02:70:39:08:28:cf:61:b0:9c:87:e4:7f:6c: da:20:1b:46:f6:a3:1c:42:27:ca:33:88:cb:f1:8f: 82:a6:7b:ef:39:9c:65:69:69:61:cd:06:44:ce:15: 26:79:90:29:9f:10:71:79:29:76:6d:a7:26:68:d3: 27:c9:b5:d6:ac:53:69:6e:bc:f4:00:d3:f0:a6:02: 35:3c:fc:a7:64:f1:2b:63:bb:db:34:20:e4:87:57: e4:e7:d5:36:45:7b:c3:07:f2:68:ea:db:92:ab:14: b3:dd:3c:a2:da:56:97:a1:a0:64:37:70:da:de:c4: 40:3d:1f:ba:ab:f8:47:5d:9f:af:e1:00:ce:62:c2: 45:b4:ed:65:2a:50:9a:85:cf:aa:e0:f2:28:ff:32: 28:46:ec:83:9b:fc:82:eb:65:9a:bc:fd:0a:bf:c7: 18:aa:6e:e8:2c:c6:eb:2b:60:7c:9d:1e:71:a4:f4: 7b:8d:79:6a:b0:19:dd:f1:79:e6:94:0d:da:c8:86: 88:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AB:0A:E4:26:DD:25:E8:BC:BA:A3:A9:96:02:21:19:02:48:F0:4E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132332e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.123.0/24 Signature Algorithm: sha256WithRSAEncryption 57:31:06:74:18:0f:ad:39:68:72:44:59:76:62:1f:84:d1:76: 6a:1e:8c:c5:f3:94:ba:ec:2e:01:86:3b:9b:53:32:c4:97:68: 6a:ca:f6:3a:36:84:c3:a7:d1:27:a9:bb:44:b3:b6:61:fe:2d: 20:0f:e7:28:67:17:ed:ff:39:3c:25:54:c0:f3:79:32:92:1f: b7:76:82:bb:fe:84:08:6d:5f:ff:36:b8:54:c2:e0:9f:af:41: 71:8b:e4:cb:cb:7f:b9:9f:37:be:76:29:56:b1:a2:b1:43:1d: e8:14:c2:fa:f4:37:7b:64:6d:dd:a5:e8:3d:5f:18:88:91:42: 51:17:60:d1:2b:16:c4:2c:89:c6:f1:9b:0d:21:45:cd:08:79: a9:da:19:04:2b:5a:2b:b8:19:d4:dc:c7:38:74:05:cb:ad:37: b9:70:a2:b1:e6:d0:7c:5e:4d:9b:ee:44:a3:2c:b1:6e:f3:bb: ef:bc:2b:99:d2:d1:5b:c9:28:42:5d:9e:5f:95:86:d0:4c:57: 15:06:f3:f8:49:69:d4:f0:2d:83:ed:b6:37:6b:2d:58:27:ee: c0:04:d0:09:40:62:af:c1:3a:88:8f:f9:6e:df:81:63:56:5c: d6:e8:f0:c2:b9:84:5e:4f:24:8d:bc:61:00:78:d6:e7:6c:5a: 7c:1a:b5:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVLTW2y0OcM/QIi29qQgZ7Q+S3cAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDFaFw0yNjA4MzAwODAwMDFaMDMxMTAvBgNV BAMTKEY0QUIwQUU0MjZERDI1RThCQ0JBQTNBOTk2MDIyMTE5MDI0OEYwNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSe40GIU0mQEQ4lnhheO77Q24m I+vmKjLQGOJRU5mtV59stSvXzdH1DEUlGDNgJvnLCEbDDDR8SdnILVjvAnA5CCjP YbCch+R/bNogG0b2oxxCJ8oziMvxj4Kme+85nGVpaWHNBkTOFSZ5kCmfEHF5KXZt pyZo0yfJtdasU2luvPQA0/CmAjU8/Kdk8Stju9s0IOSHV+Tn1TZFe8MH8mjq25Kr FLPdPKLaVpehoGQ3cNrexEA9H7qr+Eddn6/hAM5iwkW07WUqUJqFz6rg8ij/MihG 7IOb/ILrZZq8/Qq/xxiqbugsxusrYHydHnGk9HuNeWqwGd3xeeaUDdrIhoi9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9KsK5CbdJei8uqOplgIhGQJI8E4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd257MA0GCSqG SIb3DQEBCwUAA4IBAQBXMQZ0GA+tOWhyRFl2Yh+E0XZqHozF85S67C4BhjubUzLE l2hqyvY6NoTDp9EnqbtEs7Zh/i0gD+coZxft/zk8JVTA83kykh+3doK7/oQIbV// NrhUwuCfr0Fxi+TLy3+5nze+dilWsaKxQx3oFML69Dd7ZG3dpeg9XxiIkUJRF2DR KxbELInG8ZsNIUXNCHmp2hkEK1oruBnU3Mc4dAXLrTe5cKKx5tB8Xk2b7kSjLLFu 87vvvCuZ0tFbyShCXZ5flYbQTFcVBvP4SWnU8C2D7bY3ay1YJ+7ABNAJQGKvwTqI j/lu34FjVlzW6PDCuYReTySNvGEAeNbnbFp8GrUy -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:41 2025 by rpki-client