$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38332e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38332e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: OjzwPaiIZzWvbKf3eUdq+3sA4Hq//1pfhBmb+fsLC9Y= Subject key identifier: 1C:10:CB:24:2F:10:2B:0F:F0:E9:F2:8C:09:10:DE:88:5B:3E:53:B5 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5BFB7C8538FB8016536A5EBED5DEAD35652FB4F7 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38332e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:11 +0000 ROA not before: Sat 17 May 2025 11:57:11 +0000 ROA not after: Sat 16 May 2026 12:02:11 +0000 asID: 17671 IP address blocks: 114.199.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:fb:7c:85:38:fb:80:16:53:6a:5e:be:d5:de:ad:35:65:2f:b4:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:11 2025 GMT Not After : May 16 12:02:11 2026 GMT Subject: CN=1C10CB242F102B0FF0E9F28C0910DE885B3E53B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:64:ae:ef:8d:89:9e:cf:a0:dc:7d:f8:d8:5f: 61:16:c8:85:d0:9c:c3:5e:9b:06:6e:4f:d0:0c:ee: 33:c8:46:f7:45:39:95:5e:66:c9:8e:f8:fa:27:c2: 88:f4:11:19:9c:fc:9f:e3:42:41:5b:d6:f0:74:09: 55:de:78:47:b5:e8:f6:5e:54:3e:d8:96:32:9a:89: 1f:37:a2:40:49:b5:e3:47:df:0d:67:b6:2b:d2:74: a9:4e:53:a3:50:be:e7:ca:32:5b:08:88:5b:d5:0b: 86:e0:8c:7a:3e:2b:e2:37:0d:54:e3:2d:40:8a:8c: a2:03:47:36:df:eb:61:9f:19:f0:59:9c:5b:33:e5: 32:64:7a:fb:21:35:27:0f:51:b6:3b:12:99:ea:69: 66:80:31:cc:48:76:92:c5:45:ce:cd:bc:78:31:91: db:4f:ef:db:5f:8a:ae:21:04:3c:19:99:fe:0a:f0: ad:dc:f3:72:a3:13:4f:16:0a:35:87:40:cb:a0:b9: 14:74:1d:d2:34:c7:a4:cc:13:22:eb:a0:81:9a:26: 20:7f:5d:2b:e9:38:f1:d6:c0:0c:99:d7:39:de:24: 7f:3b:81:49:b0:79:cc:8f:62:b3:af:fe:f4:0b:bd: 97:a9:48:ce:a4:08:95:61:ad:d5:ca:04:33:db:e9: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:10:CB:24:2F:10:2B:0F:F0:E9:F2:8C:09:10:DE:88:5B:3E:53:B5 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38332e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.83.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:46:07:10:7c:28:a1:80:2b:c3:57:66:61:37:a5:ca:2d:b5: 07:63:d7:35:5c:fd:cb:87:48:1f:f4:62:2e:ea:ac:40:78:5c: 33:95:10:22:89:ce:ec:cd:4f:84:39:09:78:60:f6:b0:15:fa: 01:85:21:a2:cf:79:ea:b5:38:ea:78:c7:fa:64:38:cb:bf:b9: 69:18:31:a1:f3:ba:27:7d:14:43:88:88:31:3e:c3:12:af:ae: 82:31:a9:96:a9:54:e1:4d:29:db:ec:e5:73:ee:56:48:f0:ed: 77:50:7d:22:a9:d8:dd:de:97:75:d2:f3:bc:32:f6:c8:d9:e9: 72:9d:e8:8e:12:72:f9:e1:c9:36:ab:6f:9e:9e:9c:df:3f:7d: 7b:0a:f8:2a:e5:ed:ab:2a:29:5b:0a:60:13:cd:43:84:47:b5: a6:c7:0b:c5:7f:0a:76:7d:d8:be:a4:e7:86:22:27:33:df:b0: c0:f5:eb:f4:1e:da:81:f2:92:ac:56:ee:c5:d8:d8:35:62:2a: c6:1e:4c:fd:7d:30:6c:1a:0d:af:4d:31:e8:f5:32:d3:f9:f9: c8:bd:2b:87:eb:f0:20:50:b7:0c:0c:0a:a1:b3:4e:16:73:ca: e6:d8:6d:23:5f:3e:58:86:68:07:9b:4d:7f:23:f6:de:9d:12: 9e:6e:21:ba -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW/t8hTj7gBZTal6+1d6tNWUvtPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MTFaFw0yNjA1MTYxMjAyMTFaMDMxMTAvBgNV BAMTKDFDMTBDQjI0MkYxMDJCMEZGMEU5RjI4QzA5MTBERTg4NUIzRTUzQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeZK7vjYmez6DcffjYX2EWyIXQ nMNemwZuT9AM7jPIRvdFOZVeZsmO+Ponwoj0ERmc/J/jQkFb1vB0CVXeeEe16PZe VD7YljKaiR83okBJteNH3w1ntivSdKlOU6NQvufKMlsIiFvVC4bgjHo+K+I3DVTj LUCKjKIDRzbf62GfGfBZnFsz5TJkevshNScPUbY7EpnqaWaAMcxIdpLFRc7NvHgx kdtP79tfiq4hBDwZmf4K8K3c83KjE08WCjWHQMuguRR0HdI0x6TMEyLroIGaJiB/ XSvpOPHWwAyZ1zneJH87gUmwecyPYrOv/vQLvZepSM6kCJVhrdXKBDPb6YjFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHBDLJC8QKw/w6fKMCRDeiFs+U7UwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHUzANBgkqhkiG 9w0BAQsFAAOCAQEAjEYHEHwooYArw1dmYTelyi21B2PXNVz9y4dIH/RiLuqsQHhc M5UQIonO7M1PhDkJeGD2sBX6AYUhos956rU46njH+mQ4y7+5aRgxofO6J30UQ4iI MT7DEq+ugjGplqlU4U0p2+zlc+5WSPDtd1B9IqnY3d6XddLzvDL2yNnpcp3ojhJy +eHJNqtvnp6c3z99ewr4KuXtqyopWwpgE81DhEe1pscLxX8Kdn3YvqTnhiInM9+w wPXr9B7agfKSrFbuxdjYNWIqxh5M/X0wbBoNr00x6PUy0/n5yL0rh+vwIFC3DAwK obNOFnPK5thtI18+WIZoB5tNfyP23p0Snm4hug== -----END CERTIFICATE-----Generated at Sat Jun 7 19:53:56 2025 by rpki-client