$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa File: AS59281.roa (raw, json) Hash identifier: oAErYV3FTpou1ipawmWDN+VJRkdUkW0+slDAEnDHpRA= Subject key identifier: 76:6A:15:49:79:6C:68:DB:FC:B7:4C:6B:06:95:37:EA:CD:B6:30:64 Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F Certificate serial: 512C98367571A86393D3FC59635389175E9EC955 Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa Signing time: Fri 05 Sep 2025 16:00:00 +0000 ROA not before: Fri 05 Sep 2025 15:55:00 +0000 ROA not after: Fri 04 Sep 2026 16:00:00 +0000 asID: 59281 IP address blocks: 101.255.170.0/23 maxlen: 24 115.124.70.0/23 maxlen: 24 202.182.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 20:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2c:98:36:75:71:a8:63:93:d3:fc:59:63:53:89:17:5e:9e:c9:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F Validity Not Before: Sep 5 15:55:00 2025 GMT Not After : Sep 4 16:00:00 2026 GMT Subject: CN=766A1549796C68DBFCB74C6B069537EACDB63064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4d:ac:a5:6f:92:a9:ef:b4:6b:e7:1d:bb:e7: 99:4c:5d:8f:58:68:e8:9c:5c:d6:77:29:a5:61:15: 37:16:7b:30:0d:d3:08:33:62:7d:75:16:c9:64:4c: f9:2e:42:fd:ec:da:53:3d:49:62:5a:ba:51:1a:df: b9:dc:48:c6:be:30:e8:19:3a:98:69:22:32:f9:0c: 1f:b7:47:d6:3e:69:cf:67:ff:6d:f7:7f:3f:90:0a: e1:53:eb:9d:26:5b:44:b0:85:84:ca:98:56:da:66: 3f:3a:4b:d4:62:3c:7e:75:1d:b6:f0:4f:a4:de:cc: 9a:39:4a:b0:53:3b:72:6e:33:ce:7d:3a:a1:1a:3b: c4:9f:07:52:9a:6e:de:3f:90:87:4b:c0:09:d3:a8: 07:0b:44:a4:45:60:df:68:6c:b7:8b:3a:23:6e:3e: e0:a1:1f:73:a2:9e:18:fe:48:02:23:f0:34:8c:f1: 1d:ce:89:b8:23:81:45:6a:42:a6:55:41:2f:5b:25: d2:a4:05:29:1d:17:71:66:81:9d:8f:0f:a4:8e:19: 35:0e:1d:2e:d6:91:2d:d2:6e:e5:5e:b4:38:23:17: 29:12:5b:d3:4d:f2:c2:c6:bd:47:f2:87:b2:e4:9e: 4d:21:a5:0b:2b:1e:9e:af:f4:48:23:49:04:b8:f2: da:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6A:15:49:79:6C:68:DB:FC:B7:4C:6B:06:95:37:EA:CD:B6:30:64 X509v3 Authority Key Identifier: keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.255.170.0/23 115.124.70.0/23 202.182.49.0/24 Signature Algorithm: sha256WithRSAEncryption a5:6f:44:9a:c5:90:04:2b:5f:b0:f8:08:38:ce:50:47:48:b9: 33:5f:c4:7b:5a:28:a1:66:d4:17:bf:f9:14:b2:c8:8b:40:dc: 36:d9:f1:55:35:a5:a1:ea:30:07:d1:5c:24:e3:cf:80:4a:73: b4:1f:77:00:1a:54:61:55:67:3f:86:d0:b1:d2:11:e1:d4:fa: 32:2b:aa:96:21:7a:ce:9c:34:d1:e0:f7:0b:5a:ef:d3:50:2d: 78:ef:22:92:63:32:9f:49:a3:89:c8:ab:ea:0c:fb:2e:04:cb: 07:41:b1:37:56:e6:50:3b:dc:5d:67:8f:f8:16:78:b1:1c:11: b2:95:5a:f5:70:3b:e1:b8:4e:9b:2e:b4:3a:07:02:fb:11:47: 3c:67:ed:a6:07:e6:df:71:6d:f7:7f:19:75:77:3a:01:4a:54: 41:65:15:7c:ff:15:df:2e:de:44:38:79:f1:58:cc:68:30:49: 13:c3:9a:1b:a2:de:7b:11:ca:40:35:a4:80:b7:7c:99:10:3b: 7d:ad:77:e3:58:e7:5a:09:95:fc:7a:ab:32:93:fb:cb:31:2d: 67:d3:de:f9:30:fc:9a:9f:cb:ca:3b:66:a2:8e:77:fc:bd:51: 02:df:2b:82:d5:37:18:17:dc:d2:57:a2:c9:54:87:2a:f8:c0: aa:90:65:41 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUUSyYNnVxqGOT0/xZY1OJF16eyVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZF N0FCQzE3RjAeFw0yNTA5MDUxNTU1MDBaFw0yNjA5MDQxNjAwMDBaMDMxMTAvBgNV BAMTKDc2NkExNTQ5Nzk2QzY4REJGQ0I3NEM2QjA2OTUzN0VBQ0RCNjMwNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzTaylb5Kp77Rr5x2755lMXY9Y aOicXNZ3KaVhFTcWezAN0wgzYn11FslkTPkuQv3s2lM9SWJaulEa37ncSMa+MOgZ OphpIjL5DB+3R9Y+ac9n/233fz+QCuFT650mW0SwhYTKmFbaZj86S9RiPH51Hbbw T6TezJo5SrBTO3JuM859OqEaO8SfB1Kabt4/kIdLwAnTqAcLRKRFYN9obLeLOiNu PuChH3Oinhj+SAIj8DSM8R3OibgjgUVqQqZVQS9bJdKkBSkdF3FmgZ2PD6SOGTUO HS7WkS3SbuVetDgjFykSW9NN8sLGvUfyh7Lknk0hpQsrHp6v9EgjSQS48totAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUdmoVSXlsaNv8t0xrBpU36s22MGQwHwYDVR0j BBgwFoAUkWm5tlJs0UmE3eOkLiTdj+erwX8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0yMDc0YzU5ODA4OTgvMC85MTY5QjlCNjUy NkNEMTQ5ODREREUzQTQyRTI0REQ4RkU3QUJDMTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZFN0FC QzE3Ri5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby84OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0y MDc0YzU5ODA4OTgvMC9BUzU5MjgxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBZf+qAwQBc3xGAwQAyrYx MA0GCSqGSIb3DQEBCwUAA4IBAQClb0SaxZAEK1+w+Ag4zlBHSLkzX8R7WiihZtQX v/kUssiLQNw22fFVNaWh6jAH0Vwk48+ASnO0H3cAGlRhVWc/htCx0hHh1PoyK6qW IXrOnDTR4PcLWu/TUC147yKSYzKfSaOJyKvqDPsuBMsHQbE3VuZQO9xdZ4/4Fnix HBGylVr1cDvhuE6bLrQ6BwL7EUc8Z+2mB+bfcW33fxl1dzoBSlRBZRV8/xXfLt5E OHnxWMxoMEkTw5obot57EcpANaSAt3yZEDt9rXfjWOdaCZX8eqsyk/vLMS1n0975 MPyan8vKO2aijnf8vVEC3yuC1TcYF9zSV6LJVIcq+MCqkGVB -----END CERTIFICATE-----Generated at Tue Sep 9 09:36:20 2025 by rpki-client