$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38342e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: Fv+qIC3IfNuQO1habWtHbwVmfjWUghYayGqwlU7TWhU= Subject key identifier: F5:C9:C2:97:ED:CF:C7:22:42:65:26:2F:1A:17:8D:62:76:C2:84:FB Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5AD8431EB6D9AF44619BDD6DA917D2F5E49592DF Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:06 +0000 ROA not before: Sat 17 May 2025 11:57:06 +0000 ROA not after: Sat 16 May 2026 12:02:06 +0000 asID: 17671 IP address blocks: 114.199.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d8:43:1e:b6:d9:af:44:61:9b:dd:6d:a9:17:d2:f5:e4:95:92:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:06 2025 GMT Not After : May 16 12:02:06 2026 GMT Subject: CN=F5C9C297EDCFC7224265262F1A178D6276C284FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:38:52:41:dc:06:b0:40:c2:8e:5b:0a:59:6a: e9:2c:0b:cf:b0:6e:7f:99:7f:31:87:4f:f8:5c:c9: 20:e5:38:76:cf:70:b8:ac:91:72:85:2f:31:d8:8d: 41:9e:bf:22:4d:5a:e5:95:61:e6:eb:d5:04:c0:9f: 63:61:69:0d:3e:d7:49:07:77:6a:fe:2c:ee:8d:ba: 26:f9:5f:57:df:1b:77:a9:28:68:d7:71:65:37:96: 98:50:e4:2c:de:97:df:90:17:a3:b3:9e:b4:cc:b5: 10:74:f5:56:fb:99:4f:6e:e0:34:43:8c:c6:f1:2c: d1:03:63:e2:43:a6:8d:1e:9d:92:3b:41:94:39:68: 19:65:8a:d1:81:cf:b1:ee:35:e7:75:0f:a7:49:5c: f9:18:55:c5:5c:5b:66:61:01:04:67:b7:4f:16:cc: d0:97:e0:fd:50:a6:ae:18:a1:0a:ab:7d:3d:4d:59: a3:0c:4a:91:d2:77:ca:5c:b9:9a:0f:6b:38:ca:5b: f7:be:7e:4a:6a:7c:b8:8d:87:a6:70:9d:f0:69:2e: 4c:2e:db:3b:1c:5b:f0:a1:1b:bf:20:23:66:14:d9: c4:6a:70:cc:d9:5f:9d:b7:32:cc:e6:31:84:92:fc: 2e:a6:2a:3d:43:61:d5:49:95:5a:ba:71:ec:f1:b9: 9b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C9:C2:97:ED:CF:C7:22:42:65:26:2F:1A:17:8D:62:76:C2:84:FB X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.84.0/24 Signature Algorithm: sha256WithRSAEncryption 24:f9:25:e8:ea:2c:16:7a:62:98:a6:77:5f:0f:64:c9:df:b4: fd:c3:67:7d:7b:e1:fe:70:91:52:06:99:74:03:0a:4b:a4:4f: 96:7e:2d:a6:fc:dc:f9:2f:a1:36:32:d3:9a:60:b3:bb:d5:77: fb:d6:57:c5:89:98:5d:31:38:6d:9b:b4:17:da:80:fa:9c:30: d4:a6:08:3f:c6:3d:5a:55:dc:bb:04:98:36:b0:9d:e0:df:0f: 63:da:67:8c:3c:a4:26:40:c4:eb:91:13:7b:df:1f:0e:ee:84: 34:28:a7:b9:4f:93:3d:0e:96:4b:ae:85:d3:96:d3:24:54:67: 91:34:19:ff:9c:b2:7f:96:e3:62:f8:e3:f1:1b:46:34:46:7d: ab:17:b7:8f:56:49:f1:5f:9a:82:51:d5:51:af:8d:fd:f4:4c: fc:d8:23:48:02:1d:49:28:ce:4f:22:0e:fe:98:b2:cd:55:b3: b2:a8:1b:77:b3:a1:9d:fe:ac:31:ef:03:1f:2b:a6:a8:89:a6: 2e:9d:61:e2:75:6c:9d:23:2e:71:46:0c:bc:92:78:f2:04:4f: b0:2c:00:a5:d1:70:22:86:68:cc:e5:d7:ce:b8:d9:ee:21:68: 37:77:14:73:c6:33:59:ad:0f:1b:46:3c:76:51:4f:41:f2:c5: 88:ca:15:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWthDHrbZr0Rhm91tqRfS9eSVkt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDZaFw0yNjA1MTYxMjAyMDZaMDMxMTAvBgNV BAMTKEY1QzlDMjk3RURDRkM3MjI0MjY1MjYyRjFBMTc4RDYyNzZDMjg0RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSOFJB3AawQMKOWwpZauksC8+w bn+ZfzGHT/hcySDlOHbPcLiskXKFLzHYjUGevyJNWuWVYebr1QTAn2NhaQ0+10kH d2r+LO6Nuib5X1ffG3epKGjXcWU3lphQ5Czel9+QF6OznrTMtRB09Vb7mU9u4DRD jMbxLNEDY+JDpo0enZI7QZQ5aBllitGBz7HuNed1D6dJXPkYVcVcW2ZhAQRnt08W zNCX4P1Qpq4YoQqrfT1NWaMMSpHSd8pcuZoPazjKW/e+fkpqfLiNh6ZwnfBpLkwu 2zscW/ChG78gI2YU2cRqcMzZX523MszmMYSS/C6mKj1DYdVJlVq6cezxuZuVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9cnCl+3PxyJCZSYvGheNYnbChPswHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHVDANBgkqhkiG 9w0BAQsFAAOCAQEAJPkl6OosFnpimKZ3Xw9kyd+0/cNnfXvh/nCRUgaZdAMKS6RP ln4tpvzc+S+hNjLTmmCzu9V3+9ZXxYmYXTE4bZu0F9qA+pww1KYIP8Y9WlXcuwSY NrCd4N8PY9pnjDykJkDE65ETe98fDu6ENCinuU+TPQ6WS66F05bTJFRnkTQZ/5yy f5bjYvjj8RtGNEZ9qxe3j1ZJ8V+aglHVUa+N/fRM/NgjSAIdSSjOTyIO/piyzVWz sqgbd7Ohnf6sMe8DHyumqImmLp1h4nVsnSMucUYMvJJ48gRPsCwApdFwIoZozOXX zrjZ7iFoN3cUc8YzWa0PG0Y8dlFPQfLFiMoVwA== -----END CERTIFICATE-----Generated at Sat Jun 7 12:34:51 2025 by rpki-client