$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: qn7clDGZVhpP1Oc9t3d7XB549ih4mTRHorcZ39Twbng= Subject key identifier: 83:92:45:E0:60:70:62:1A:02:F9:4A:78:4F:EA:AC:D2:DD:0E:14:41 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 300D9254A9A0C918A7ADCA58819586E40F9C8FAC Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 08:00:02 +0000 ROA not before: Sun 31 Aug 2025 07:55:02 +0000 ROA not after: Sun 30 Aug 2026 08:00:02 +0000 asID: 45147 IP address blocks: 119.110.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:0d:92:54:a9:a0:c9:18:a7:ad:ca:58:81:95:86:e4:0f:9c:8f:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:02 2025 GMT Not After : Aug 30 08:00:02 2026 GMT Subject: CN=839245E06070621A02F94A784FEAACD2DD0E1441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4a:d4:b7:03:e7:de:90:93:6c:f8:e4:5e:75: cc:d2:f6:35:bf:41:7e:d5:5b:5b:2f:28:a3:28:43: 6d:df:b2:b1:90:af:85:7c:a4:f7:04:cb:44:a2:cf: 8e:8f:83:3e:b4:5e:ae:94:cd:39:43:ee:cb:3d:4c: ba:62:c2:ff:a6:86:54:a9:8f:94:a8:60:79:b8:61: b1:e1:26:8d:cf:75:c4:c6:a5:e0:38:11:a2:bd:ef: 78:b3:49:db:fd:e7:23:81:41:70:40:3e:74:5f:3a: dc:4d:8b:e5:21:af:6d:09:d5:4f:a3:15:9f:74:72: 80:5d:28:f0:f5:68:f2:2d:4a:b2:90:c9:58:1c:36: c2:7a:36:16:92:73:ab:87:aa:9e:6a:17:34:89:e2: b7:87:21:b7:a5:81:a5:45:0e:33:80:22:00:c2:95: 6a:4e:2b:1c:98:ed:d4:38:68:1a:a1:f2:0b:c3:cb: 14:dd:a0:ac:27:04:0a:4a:32:37:f3:bb:4b:95:17: 4b:ca:a0:e1:98:bd:e3:53:42:06:57:db:05:5b:c8: ee:02:60:06:d7:3f:78:71:74:72:2a:39:82:ee:33: 55:23:3f:6d:e0:a3:db:8c:1f:1d:e9:25:6c:20:95: 9e:8d:1c:e2:ed:9e:9b:81:c0:ae:b3:cf:36:6d:82: 4e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:92:45:E0:60:70:62:1A:02:F9:4A:78:4F:EA:AC:D2:DD:0E:14:41 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132352e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.125.0/24 Signature Algorithm: sha256WithRSAEncryption 70:33:26:ba:be:e4:51:fd:48:90:86:8f:c6:bc:13:d8:1a:82: 05:e0:4e:0a:34:94:49:44:2b:3f:21:24:b9:44:ae:e6:8e:81: c6:66:8d:64:25:66:d4:6e:0e:35:fa:ed:4c:57:c2:95:fb:46: 13:66:12:87:7f:47:4a:1a:90:b2:88:c2:8f:7c:f7:e1:2c:98: d8:32:ff:d5:7e:cc:79:8b:e2:4f:22:20:3a:33:48:12:15:29: c7:c3:0a:c5:3e:62:a9:75:61:bb:be:05:8e:d2:1b:25:04:2c: 1c:6d:6d:dc:91:2f:b1:87:23:34:48:fc:1e:d4:6f:d9:2f:99: 56:db:5b:b6:55:6e:71:71:b2:5d:cd:e1:b5:d8:6b:41:e1:ed: 73:e9:ad:c6:be:52:41:40:03:1f:94:df:8d:60:0d:ef:34:1f: 4f:6a:89:6c:7c:83:b1:0c:4f:67:4e:88:80:5c:7b:bc:f0:e3: 90:ea:28:d5:1c:97:bb:3c:9b:f2:27:fe:29:0d:48:08:2a:28: 11:74:94:18:09:1d:ba:25:70:52:2a:aa:c4:26:71:1b:c3:37: 8d:8b:18:83:c6:63:dc:ab:9a:e2:34:46:9c:cf:9b:0a:7e:ab: ea:16:70:54:34:ad:e0:6e:4a:14:b3:02:33:fb:28:91:09:d3: e8:aa:35:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMA2SVKmgyRinrcpYgZWG5A+cj6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDJaFw0yNjA4MzAwODAwMDJaMDMxMTAvBgNV BAMTKDgzOTI0NUUwNjA3MDYyMUEwMkY5NEE3ODRGRUFBQ0QyREQwRTE0NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlStS3A+fekJNs+ORedczS9jW/ QX7VW1svKKMoQ23fsrGQr4V8pPcEy0Siz46Pgz60Xq6UzTlD7ss9TLpiwv+mhlSp j5SoYHm4YbHhJo3PdcTGpeA4EaK973izSdv95yOBQXBAPnRfOtxNi+Uhr20J1U+j FZ90coBdKPD1aPItSrKQyVgcNsJ6NhaSc6uHqp5qFzSJ4reHIbelgaVFDjOAIgDC lWpOKxyY7dQ4aBqh8gvDyxTdoKwnBApKMjfzu0uVF0vKoOGYveNTQgZX2wVbyO4C YAbXP3hxdHIqOYLuM1UjP23go9uMHx3pJWwglZ6NHOLtnpuBwK6zzzZtgk7tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUg5JF4GBwYhoC+Up4T+qs0t0OFEEwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd259MA0GCSqG SIb3DQEBCwUAA4IBAQBwMya6vuRR/UiQho/GvBPYGoIF4E4KNJRJRCs/ISS5RK7m joHGZo1kJWbUbg41+u1MV8KV+0YTZhKHf0dKGpCyiMKPfPfhLJjYMv/Vfsx5i+JP IiA6M0gSFSnHwwrFPmKpdWG7vgWO0hslBCwcbW3ckS+xhyM0SPwe1G/ZL5lW21u2 VW5xcbJdzeG12GtB4e1z6a3GvlJBQAMflN+NYA3vNB9PaolsfIOxDE9nToiAXHu8 8OOQ6ijVHJe7PJvyJ/4pDUgIKigRdJQYCR26JXBSKqrEJnEbwzeNixiDxmPcq5ri NEacz5sKfqvqFnBUNK3gbkoUswIz+yiRCdPoqjV2 -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:50 2025 by rpki-client