$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: iOKyMXKAF2bG6eh+93CL0xa93cbHZmlMQOshix1qfy0= Subject key identifier: A7:37:42:D1:FB:01:0B:93:27:5A:0D:EC:2F:4A:F9:A0:14:9E:D5:67 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 6017C093CDB9865EEFACF7AD745C3FDFC67E65C7 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa Signing time: Sun 31 Aug 2025 08:00:02 +0000 ROA not before: Sun 31 Aug 2025 07:55:02 +0000 ROA not after: Sun 30 Aug 2026 08:00:02 +0000 asID: 45147 IP address blocks: 119.110.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:17:c0:93:cd:b9:86:5e:ef:ac:f7:ad:74:5c:3f:df:c6:7e:65:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:02 2025 GMT Not After : Aug 30 08:00:02 2026 GMT Subject: CN=A73742D1FB010B93275A0DEC2F4AF9A0149ED567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c6:d3:f5:be:94:df:15:1f:68:5c:d7:80:21: 69:6a:8f:0d:94:c3:10:58:ed:22:c4:74:85:69:14: a7:56:52:81:5c:cd:58:4b:96:03:5d:31:9c:02:31: 50:2a:21:46:96:97:6f:98:69:a9:68:c4:ce:f5:50: 51:d3:c6:c6:24:36:1f:96:f3:58:8a:eb:ee:c2:37: d7:5e:b8:a2:6a:cc:39:19:6a:0e:24:9a:a7:e3:28: 79:3f:ea:ce:4a:fd:39:37:39:e0:7d:4e:c1:0e:7c: 5e:57:27:8a:00:2d:94:0e:a9:2b:ed:7a:6b:15:4d: bc:bf:28:f5:68:c9:72:69:25:ec:6d:6c:e9:43:cd: 6e:f5:56:ae:37:cb:b8:42:90:19:bd:80:b4:75:21: ad:24:30:19:e5:62:45:a6:fa:30:76:65:e0:ac:71: e0:6f:f8:60:92:93:8c:c0:ef:84:68:99:34:43:bb: dc:ec:85:f9:bd:54:63:62:1c:ee:31:75:be:8e:ac: 70:f9:9f:c4:22:35:30:92:31:4f:d8:a8:ac:fd:1b: 8a:79:25:f1:03:e9:ed:98:81:64:e4:3d:7e:c8:1f: 2b:ef:87:b7:3a:a2:89:b8:3f:e2:6d:2b:a4:de:08: 88:1a:cc:7d:a9:b6:7d:c8:8f:2e:af:ab:4c:8d:e6: a9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:37:42:D1:FB:01:0B:93:27:5A:0D:EC:2F:4A:F9:A0:14:9E:D5:67 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132372e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.127.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ad:26:66:6c:b1:52:42:c5:43:95:2a:03:45:ef:88:ad:67: 8b:f7:83:65:8e:ba:48:6f:52:76:b3:f3:d7:64:7e:60:1d:c1: ea:47:36:03:2d:b1:d8:0c:4a:c5:43:52:44:17:5d:da:04:ad: 5c:07:e2:d6:e7:f5:45:ea:90:40:a1:eb:f8:47:56:66:dd:af: 42:b0:b3:65:6e:f5:cb:f4:f0:36:8e:15:73:93:98:f4:19:14: b9:86:e6:2a:de:e6:f8:61:5f:a9:7b:08:f8:28:df:99:73:d1: 70:ea:c3:7f:69:6c:14:cd:e0:7c:52:bf:8d:e2:0e:36:1b:64: 59:c0:07:f2:38:05:38:cc:71:aa:5e:09:ed:23:9b:93:7d:a4: 1f:f2:ee:0a:2b:cf:51:ee:a2:9e:a7:e8:99:44:72:d3:db:f1: 7a:ad:7d:30:8e:7b:1d:41:18:9c:77:b0:58:0f:8f:0e:19:bb: 21:4e:f6:09:57:95:20:9a:84:5d:80:e0:51:f7:87:37:44:64: 78:6e:65:fe:d9:c9:af:31:88:d9:57:8d:27:16:b4:96:3b:b6: f8:7c:ac:32:1d:f2:98:27:29:83:9e:30:03:01:1b:b2:02:7d: e7:2e:c1:61:95:0b:9b:8c:65:07:5e:de:60:2b:96:c4:a5:78: 00:9e:84:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYBfAk825hl7vrPetdFw/38Z+ZccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDJaFw0yNjA4MzAwODAwMDJaMDMxMTAvBgNV BAMTKEE3Mzc0MkQxRkIwMTBCOTMyNzVBMERFQzJGNEFGOUEwMTQ5RUQ1NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8xtP1vpTfFR9oXNeAIWlqjw2U wxBY7SLEdIVpFKdWUoFczVhLlgNdMZwCMVAqIUaWl2+YaaloxM71UFHTxsYkNh+W 81iK6+7CN9deuKJqzDkZag4kmqfjKHk/6s5K/Tk3OeB9TsEOfF5XJ4oALZQOqSvt emsVTby/KPVoyXJpJextbOlDzW71Vq43y7hCkBm9gLR1Ia0kMBnlYkWm+jB2ZeCs ceBv+GCSk4zA74RomTRDu9zshfm9VGNiHO4xdb6OrHD5n8QiNTCSMU/YqKz9G4p5 JfED6e2YgWTkPX7IHyvvh7c6oom4P+JtK6TeCIgazH2ptn3Ijy6vq0yN5qnfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpzdC0fsBC5MnWg3sL0r5oBSe1WcwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25/MA0GCSqG SIb3DQEBCwUAA4IBAQAarSZmbLFSQsVDlSoDRe+IrWeL94NljrpIb1J2s/PXZH5g HcHqRzYDLbHYDErFQ1JEF13aBK1cB+LW5/VF6pBAoev4R1Zm3a9CsLNlbvXL9PA2 jhVzk5j0GRS5huYq3ub4YV+pewj4KN+Zc9Fw6sN/aWwUzeB8Ur+N4g42G2RZwAfy OAU4zHGqXgntI5uTfaQf8u4KK89R7qKep+iZRHLT2/F6rX0wjnsdQRicd7BYD48O GbshTvYJV5UgmoRdgOBR94c3RGR4bmX+2cmvMYjZV40nFrSWO7b4fKwyHfKYJymD njADARuyAn3nLsFhlQubjGUHXt5gK5bEpXgAnoQw -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:48 2025 by rpki-client