$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: YDfOFZknJmltQShuVuku7DAx1bdpp2m0/8NLO2GpGPY= Subject key identifier: E0:99:CE:E4:45:DB:1A:D4:8D:75:B9:2F:1E:3E:E3:8C:DF:F8:05:BE Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 703D2F58DA45784309903D437F69607E2CF82BB5 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 11:02:26 +0000 ROA not before: Sat 17 May 2025 10:57:26 +0000 ROA not after: Sat 16 May 2026 11:02:26 +0000 asID: 17671 IP address blocks: 114.199.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:3d:2f:58:da:45:78:43:09:90:3d:43:7f:69:60:7e:2c:f8:2b:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 10:57:26 2025 GMT Not After : May 16 11:02:26 2026 GMT Subject: CN=E099CEE445DB1AD48D75B92F1E3EE38CDFF805BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:4d:49:19:25:a9:a1:16:43:7a:ba:91:38: 3c:61:52:2d:0f:68:d7:3e:48:b6:07:e1:bf:cd:52: b0:c8:2c:77:9b:cc:4f:60:20:7f:db:a2:a0:3c:2d: be:44:3e:5c:53:78:de:6c:51:68:1d:f4:94:18:e0: 36:ef:e9:ac:06:24:05:69:60:7a:73:9e:d0:37:44: 46:06:07:a2:f8:75:8b:a4:e5:6d:3c:ef:d4:95:b6: fc:88:9d:4e:01:ce:b7:20:9d:87:df:a5:27:fb:85: d4:1f:66:0f:85:36:a7:31:8e:d3:d3:de:20:20:27: cd:7d:68:95:d2:6d:db:65:d1:a8:7d:66:1a:1c:ea: 99:0b:51:dc:da:32:e9:a4:c4:03:13:ab:77:dc:7d: d1:38:6d:96:be:4c:a3:1f:5f:14:fe:cd:e2:f9:ea: 82:0d:8c:ed:cd:94:4e:04:80:11:38:58:63:3d:60: 2d:38:c7:9b:f3:9e:9c:44:dd:fe:a8:d4:cd:13:b8: 0d:8a:cd:71:e0:2c:0d:b6:db:e6:af:33:01:65:ca: e5:da:69:f1:0d:c5:88:50:b3:49:93:9a:08:83:4f: 2b:d6:13:53:eb:d9:c0:64:df:f8:32:17:c2:60:c9: 6c:64:29:11:a6:91:1f:ee:32:5e:ba:e0:c7:5c:59: 06:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:99:CE:E4:45:DB:1A:D4:8D:75:B9:2F:1E:3E:E3:8C:DF:F8:05:BE X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.85.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:f3:d7:0c:17:46:6d:18:31:a4:b9:0d:1b:a2:f6:0b:47:76: d2:7b:93:13:cb:fb:1c:df:a7:b2:f3:85:50:d1:91:8d:d3:4e: 72:ec:7e:71:af:65:6a:f4:c1:8d:7b:f7:53:d8:00:56:fb:ae: ab:19:97:46:09:ea:b7:70:6e:4d:45:dc:f4:3b:20:9f:db:eb: 18:cc:af:d8:38:b8:96:ff:b0:9a:2c:56:61:56:86:b2:d3:ae: d3:56:0a:7f:be:40:af:81:f7:ab:cc:77:ee:49:42:a9:cf:22: ff:48:25:c2:32:2c:96:f5:97:74:cd:98:7d:d0:e2:91:15:a8: 49:ba:1c:4b:2c:9d:ea:d1:3b:f8:67:cf:29:e3:8d:47:0b:79: 9a:53:c3:9b:10:93:43:e5:01:bf:2a:41:ed:40:ec:e8:ce:25: fc:4f:b1:29:e5:ef:bf:eb:0c:51:35:b5:cb:e1:1d:d3:7d:a5: 69:00:76:11:c0:e5:c1:ad:88:ba:e6:6e:22:77:d9:59:24:ff: 11:c3:63:d1:14:4a:36:c3:2e:59:c5:50:e8:57:62:66:b0:e9: f6:59:9f:7a:b4:1a:21:a6:b6:65:c6:ad:f3:14:f7:3c:31:86: ed:d1:e9:2f:b4:5d:51:a8:32:d3:57:58:04:6c:9d:7c:ad:44: a7:71:ab:8a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcD0vWNpFeEMJkD1Df2lgfiz4K7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMDU3MjZaFw0yNjA1MTYxMTAyMjZaMDMxMTAvBgNV BAMTKEUwOTlDRUU0NDVEQjFBRDQ4RDc1QjkyRjFFM0VFMzhDREZGODA1QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8wk1JGSWpoRZDerqRODxhUi0P aNc+SLYH4b/NUrDILHebzE9gIH/boqA8Lb5EPlxTeN5sUWgd9JQY4Dbv6awGJAVp YHpzntA3REYGB6L4dYuk5W0879SVtvyInU4BzrcgnYffpSf7hdQfZg+FNqcxjtPT 3iAgJ819aJXSbdtl0ah9Zhoc6pkLUdzaMumkxAMTq3fcfdE4bZa+TKMfXxT+zeL5 6oINjO3NlE4EgBE4WGM9YC04x5vznpxE3f6o1M0TuA2KzXHgLA222+avMwFlyuXa afENxYhQs0mTmgiDTyvWE1Pr2cBk3/gyF8JgyWxkKRGmkR/uMl664MdcWQaBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4JnO5EXbGtSNdbkvHj7jjN/4Bb4wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHVTANBgkqhkiG 9w0BAQsFAAOCAQEAD/PXDBdGbRgxpLkNG6L2C0d20nuTE8v7HN+nsvOFUNGRjdNO cux+ca9lavTBjXv3U9gAVvuuqxmXRgnqt3BuTUXc9Dsgn9vrGMyv2Di4lv+wmixW YVaGstOu01YKf75Ar4H3q8x37klCqc8i/0glwjIslvWXdM2YfdDikRWoSbocSyyd 6tE7+GfPKeONRwt5mlPDmxCTQ+UBvypB7UDs6M4l/E+xKeXvv+sMUTW1y+Ed032l aQB2EcDlwa2IuuZuInfZWST/EcNj0RRKNsMuWcVQ6FdiZrDp9lmferQaIaa2Zcat 8xT3PDGG7dHpL7RdUagy01dYBGydfK1Ep3Grig== -----END CERTIFICATE-----Generated at Sat Jun 7 17:58:41 2025 by rpki-client