$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: FCjtjlFjJJIGzAxj+CG7qnf6+rKl7GjwSegbqAJttD8= Subject key identifier: 91:9F:30:A3:FF:87:4E:8B:E5:18:D0:FC:FB:C7:C4:94:08:94:48:D1 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 23BF63C9DCE2F8F5B2F8A86F56244D06524AA614 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 06:00:00 +0000 ROA not before: Sun 31 Aug 2025 05:55:00 +0000 ROA not after: Sun 30 Aug 2026 06:00:00 +0000 asID: 45147 IP address blocks: 119.110.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:bf:63:c9:dc:e2:f8:f5:b2:f8:a8:6f:56:24:4d:06:52:4a:a6:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 05:55:00 2025 GMT Not After : Aug 30 06:00:00 2026 GMT Subject: CN=919F30A3FF874E8BE518D0FCFBC7C494089448D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a1:e5:18:0a:f2:46:44:6f:71:34:19:9f:ed: 66:fa:d8:f6:47:fa:fb:48:cb:4e:05:c7:55:dd:82: 5d:0f:81:89:b0:19:69:83:97:00:68:ce:c7:fd:1e: 60:c4:b0:08:a5:78:38:a7:82:c5:be:1f:9e:5a:eb: 61:01:98:56:f7:bc:6a:f9:e3:d2:9c:10:86:e8:89: e3:de:d0:ea:7e:a6:6a:0e:c4:d1:3e:0d:45:a2:50: bd:33:1d:d8:91:dc:6d:6b:f7:b4:06:5f:d3:34:0f: 20:4c:7d:9f:05:b0:48:8a:95:4c:ac:92:95:fe:0b: 4e:f1:35:6e:c9:8b:78:b4:99:76:0b:40:53:87:02: f0:d2:67:31:b1:b3:55:98:3a:29:7f:85:3d:9f:7a: 41:93:e1:14:8d:53:2d:08:6b:b5:8d:4c:3d:e0:55: 96:39:0c:7d:63:f0:9f:1f:08:76:1f:1b:cc:c6:e4: 72:3c:e5:fa:36:46:e7:3c:e1:fe:2c:0b:d2:a0:cd: 71:9c:1e:46:a0:e5:25:29:97:17:1e:2e:55:34:b2: 83:71:12:58:b0:52:89:49:23:84:5a:de:a3:a9:7c: 5c:da:87:a1:66:19:66:57:ae:18:7b:df:c1:35:18: b9:8b:79:d9:20:b1:8b:57:90:2a:25:e2:2c:4b:87: ee:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9F:30:A3:FF:87:4E:8B:E5:18:D0:FC:FB:C7:C4:94:08:94:48:D1 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132362e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.126.0/24 Signature Algorithm: sha256WithRSAEncryption 78:76:ac:ef:43:f2:ec:ef:31:5b:3c:1f:51:94:0d:8b:20:3b: b4:93:f0:0e:eb:c7:2a:6d:86:d9:a2:c7:61:28:24:58:7c:a3: 50:5a:05:45:9b:e2:3e:9a:dc:46:06:d5:6d:1e:4c:c5:0c:70: 6c:31:bd:ff:68:5b:8d:30:69:c3:fa:62:bc:98:96:40:de:cd: 04:87:7c:54:3e:3f:0c:b3:c1:cc:98:e3:15:8a:93:58:32:c1: 8f:78:c7:bd:d2:69:46:33:92:b1:08:df:22:88:95:55:50:99: 48:6e:a7:b0:bf:e6:e6:23:33:58:51:8c:c1:58:43:73:8d:ff: 9b:e3:42:71:85:cc:17:d4:33:c9:41:86:26:f3:0f:14:90:9b: 9a:24:e0:13:23:60:d2:1f:d4:73:38:8f:f9:29:b0:f3:fe:66: 22:e3:07:fe:8d:1e:38:5a:fd:92:09:4d:50:29:fd:73:98:eb: b3:f0:fa:3c:cc:51:c0:90:b4:da:c5:ff:08:75:39:2d:5a:0c: a1:58:b2:dc:0f:b8:5a:f1:dc:06:fc:fa:c3:25:06:53:9a:6f: 67:82:38:eb:f3:14:e3:ce:13:dc:3a:e0:df:4d:81:1c:0e:6c: d4:82:23:c1:75:79:a6:3b:56:c2:19:4a:96:21:4b:02:cd:39: ad:9e:9f:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI79jydzi+PWy+KhvViRNBlJKphQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNTU1MDBaFw0yNjA4MzAwNjAwMDBaMDMxMTAvBgNV BAMTKDkxOUYzMEEzRkY4NzRFOEJFNTE4RDBGQ0ZCQzdDNDk0MDg5NDQ4RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDToeUYCvJGRG9xNBmf7Wb62PZH +vtIy04Fx1Xdgl0PgYmwGWmDlwBozsf9HmDEsAileDingsW+H55a62EBmFb3vGr5 49KcEIboiePe0Op+pmoOxNE+DUWiUL0zHdiR3G1r97QGX9M0DyBMfZ8FsEiKlUys kpX+C07xNW7Ji3i0mXYLQFOHAvDSZzGxs1WYOil/hT2fekGT4RSNUy0Ia7WNTD3g VZY5DH1j8J8fCHYfG8zG5HI85fo2Ruc84f4sC9KgzXGcHkag5SUplxceLlU0soNx EliwUolJI4Ra3qOpfFzah6FmGWZXrhh738E1GLmLedkgsYtXkCol4ixLh+4JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkZ8wo/+HTovlGND8+8fElAiUSNEwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25+MA0GCSqG SIb3DQEBCwUAA4IBAQB4dqzvQ/Ls7zFbPB9RlA2LIDu0k/AO68cqbYbZosdhKCRY fKNQWgVFm+I+mtxGBtVtHkzFDHBsMb3/aFuNMGnD+mK8mJZA3s0Eh3xUPj8Ms8HM mOMVipNYMsGPeMe90mlGM5KxCN8iiJVVUJlIbqewv+bmIzNYUYzBWENzjf+b40Jx hcwX1DPJQYYm8w8UkJuaJOATI2DSH9RzOI/5KbDz/mYi4wf+jR44Wv2SCU1QKf1z mOuz8Po8zFHAkLTaxf8IdTktWgyhWLLcD7ha8dwG/PrDJQZTmm9ngjjr8xTjzhPc OuDfTYEcDmzUgiPBdXmmO1bCGUqWIUsCzTmtnp+h -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:43 2025 by rpki-client