$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38302e302f32302d3234203d3e203137363731.roa File: 3131342e3139392e38302e302f32302d3234203d3e203137363731.roa (raw, json) Hash identifier: DQZbAqbZ2I0qbK8uPFs0DHGVDv3X2XlrbYWS072ZRbg= Subject key identifier: 55:65:8D:A8:D3:C3:2A:FF:BB:3C:4B:48:3F:6E:E2:BA:17:F8:82:BB Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5CC32CF9896D5432D3D21554359505316E68B7AB Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38302e302f32302d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 11:02:27 +0000 ROA not before: Sat 17 May 2025 10:57:27 +0000 ROA not after: Sat 16 May 2026 11:02:27 +0000 asID: 17671 IP address blocks: 114.199.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c3:2c:f9:89:6d:54:32:d3:d2:15:54:35:95:05:31:6e:68:b7:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 10:57:27 2025 GMT Not After : May 16 11:02:27 2026 GMT Subject: CN=55658DA8D3C32AFFBB3C4B483F6EE2BA17F882BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:04:0a:e8:c7:e7:6f:17:ca:47:e1:56:74:0a: 34:37:ae:75:d6:05:38:3a:25:b4:6a:15:0e:b9:45: 3b:80:4e:14:c4:91:62:8d:a4:40:f7:e6:e2:3d:69: 99:64:bc:bb:fa:cc:dd:cb:56:71:11:00:91:70:f2: a0:67:5c:a7:52:63:79:13:85:1d:bc:83:e6:3e:fa: 68:56:5c:d1:0c:ad:5d:21:90:9b:67:93:65:a6:e2: f6:b4:5b:fa:d4:4a:d2:05:e7:2c:9c:bd:cf:ef:23: 3f:17:82:83:2f:3c:de:94:94:6f:0d:c3:60:be:d8: 1f:48:89:94:16:5b:83:a6:43:f1:6f:30:c4:e2:28: 95:8f:20:24:f1:b9:c9:8a:de:f9:b0:c6:68:df:12: a0:17:e4:3a:74:29:b0:44:a5:fc:89:6b:9a:93:6b: 47:37:97:8e:03:17:8e:f1:b0:00:24:89:20:75:b6: 34:70:52:85:de:6a:9f:ce:46:b4:05:2a:f5:08:a2: c1:18:a4:e9:a7:d2:9f:54:4a:c0:6d:e6:36:50:9a: 32:ef:f1:ca:c9:c6:c5:30:36:1c:50:ac:ba:b6:07: e7:42:5f:0c:c9:a6:9c:ed:c6:7a:06:8c:47:f6:cb: 0e:29:15:9c:e3:26:2a:31:97:a2:dc:97:00:7e:53: e5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:65:8D:A8:D3:C3:2A:FF:BB:3C:4B:48:3F:6E:E2:BA:17:F8:82:BB X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38302e302f32302d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.80.0/20 Signature Algorithm: sha256WithRSAEncryption 9b:25:d2:19:19:6f:a4:58:a4:33:d3:72:b9:78:f3:95:c5:d5: 9e:56:c1:ed:74:ed:47:a8:f1:c6:ca:4e:dd:49:12:6d:27:7b: c1:d4:10:30:35:1d:4a:e9:ab:d5:5f:b9:4a:78:90:63:63:59: aa:6c:ea:27:13:fa:2d:84:00:c6:cd:25:e1:ca:ba:b8:27:59: e1:3a:83:9c:73:1a:40:9b:ea:14:a9:2c:f8:10:ed:56:66:80: 3c:dd:9e:89:e9:cc:a9:b6:d3:c5:a4:a6:d7:d3:58:59:94:d8: 5f:ef:04:e7:44:52:e3:9a:a0:5d:f7:a6:1a:f9:cb:bb:dc:72: a2:29:89:2a:d9:56:1a:aa:43:dc:e6:06:9a:1d:bd:1e:22:75: 49:fa:c2:95:d9:bf:f1:d7:87:40:87:06:a7:2e:79:31:8b:60: fd:d2:15:0e:45:00:95:6f:06:31:28:be:89:ae:4a:39:63:3e: 86:eb:23:4b:6b:4a:63:18:1d:1d:63:bf:29:5a:08:67:22:1b: 96:a2:f3:87:59:c1:1a:02:67:28:f1:9f:f3:2c:b3:92:71:6b: 87:4a:89:2c:d2:5c:d2:ba:3d:81:cc:6e:b3:38:bd:dd:39:5d: ed:c8:ef:a0:0f:50:84:d2:2e:f9:89:06:e1:b6:11:1f:a4:f9: b6:ca:64:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXMMs+YltVDLT0hVUNZUFMW5ot6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMDU3MjdaFw0yNjA1MTYxMTAyMjdaMDMxMTAvBgNV BAMTKDU1NjU4REE4RDNDMzJBRkZCQjNDNEI0ODNGNkVFMkJBMTdGODgyQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzBArox+dvF8pH4VZ0CjQ3rnXW BTg6JbRqFQ65RTuAThTEkWKNpED35uI9aZlkvLv6zN3LVnERAJFw8qBnXKdSY3kT hR28g+Y++mhWXNEMrV0hkJtnk2Wm4va0W/rUStIF5yycvc/vIz8XgoMvPN6UlG8N w2C+2B9IiZQWW4OmQ/FvMMTiKJWPICTxucmK3vmwxmjfEqAX5Dp0KbBEpfyJa5qT a0c3l44DF47xsAAkiSB1tjRwUoXeap/ORrQFKvUIosEYpOmn0p9USsBt5jZQmjLv 8crJxsUwNhxQrLq2B+dCXwzJppztxnoGjEf2yw4pFZzjJioxl6LclwB+U+UBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVWWNqNPDKv+7PEtIP27iuhf4grswHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODMwMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHLHUDANBgkqhkiG 9w0BAQsFAAOCAQEAmyXSGRlvpFikM9NyuXjzlcXVnlbB7XTtR6jxxspO3UkSbSd7 wdQQMDUdSumr1V+5SniQY2NZqmzqJxP6LYQAxs0l4cq6uCdZ4TqDnHMaQJvqFKks +BDtVmaAPN2eienMqbbTxaSm19NYWZTYX+8E50RS45qgXfemGvnLu9xyoimJKtlW GqpD3OYGmh29HiJ1SfrCldm/8deHQIcGpy55MYtg/dIVDkUAlW8GMSi+ia5KOWM+ husjS2tKYxgdHWO/KVoIZyIblqLzh1nBGgJnKPGf8yyzknFrh0qJLNJc0ro9gcxu szi93Tld7cjvoA9QhNIu+YkG4bYRH6T5tspkHg== -----END CERTIFICATE-----Generated at Fri Jun 6 17:01:02 2025 by rpki-client