$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38392e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 5ECouxUYd8eZmtOvODQgQTwBQOs8grikpWyheHqoFRU= Subject key identifier: A9:55:ED:D2:A0:95:00:24:57:8B:92:A9:82:D0:48:99:98:31:38:F9 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 0D338C2E36903F89B9633C319B695380E18D2F6C Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38392e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:10 +0000 ROA not before: Sat 17 May 2025 11:57:10 +0000 ROA not after: Sat 16 May 2026 12:02:10 +0000 asID: 17671 IP address blocks: 114.199.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:33:8c:2e:36:90:3f:89:b9:63:3c:31:9b:69:53:80:e1:8d:2f:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:10 2025 GMT Not After : May 16 12:02:10 2026 GMT Subject: CN=A955EDD2A0950024578B92A982D04899983138F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5c:3e:d4:d3:56:18:29:61:d3:43:db:37:fc: 4a:39:c9:67:eb:4b:ca:dc:bf:da:0f:66:07:06:60: d8:dd:55:1f:46:de:e7:cb:ba:2f:8b:64:dd:04:14: 47:d0:a8:f0:f8:c6:86:83:db:ea:8a:88:9f:32:ad: 3f:06:38:aa:a8:ee:f6:59:d1:18:84:2e:0a:2d:82: e7:85:ec:a2:b2:ec:46:3d:8d:6f:b5:9e:e0:dc:cc: 09:fd:1b:b6:9f:12:41:2d:c9:81:19:cc:b4:2b:84: bc:1d:4d:e0:d0:3f:c1:99:d8:77:5e:40:35:06:a4: be:2b:47:f3:ba:22:30:ab:86:05:67:ee:64:b4:f9: ee:ad:c1:88:92:e1:6c:03:06:4e:ef:c5:d7:fd:f7: 66:3d:08:5d:17:d1:47:dd:8c:16:cc:d0:8e:c2:ed: c8:12:1e:dc:66:a4:dd:39:9d:da:c0:b8:e2:91:80: c1:96:28:7b:d4:a5:97:3f:d1:51:f6:31:c8:bd:26: 0d:dc:b9:fa:63:96:8a:09:a6:87:a2:9b:69:49:43: 9b:73:df:c1:4a:e6:be:e6:ba:6b:cb:26:fb:3b:e2: 6d:8e:ba:f1:c9:d0:ba:c3:90:91:26:4e:6b:88:42: 60:7c:14:11:2f:64:4f:d8:90:1d:a1:33:79:eb:4c: f6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:55:ED:D2:A0:95:00:24:57:8B:92:A9:82:D0:48:99:98:31:38:F9 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.89.0/24 Signature Algorithm: sha256WithRSAEncryption 52:45:57:ec:24:06:a6:d6:a0:9c:ca:60:5f:a2:11:9e:c9:e5: 1b:1f:eb:b2:a5:84:4b:24:9c:e5:ef:89:07:f3:f3:2f:15:47: a1:1c:8b:d6:c3:29:0e:62:c7:fc:aa:2a:e0:e5:47:44:c6:f2: ad:9d:6f:a7:5a:7a:65:21:14:a5:c4:4c:98:43:ed:45:65:fb: 11:ae:e6:1b:fa:72:ec:31:51:a8:35:13:7e:0e:3d:1d:7d:26: 61:a7:32:03:a0:c8:f6:cf:61:9b:9f:eb:db:50:94:d6:7e:8d: d8:93:c8:d8:2f:d0:7b:a9:c6:b5:71:2f:f1:18:03:d5:6e:15: 52:53:83:d1:95:9b:7f:ba:ec:10:ed:87:af:7b:e6:00:ce:7f: 83:0f:e2:3c:ea:9a:51:72:9d:68:ff:db:1a:ce:df:e6:5b:c8: c5:10:d5:25:e4:f7:70:28:91:0e:82:aa:37:0c:2a:62:b3:16: 13:cd:7e:d0:6b:9c:7d:62:41:a6:be:fd:67:98:77:5f:4d:b1: 7b:fc:22:35:3b:ba:02:68:d3:5e:08:14:27:33:8c:d8:1c:1b: c1:81:d8:83:dc:bb:d8:2a:37:07:b4:50:27:e9:1c:0a:0b:b1: 86:59:5c:17:92:91:da:f5:e4:eb:9f:b6:a0:ff:c2:ff:43:c1: 42:f4:16:2d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDTOMLjaQP4m5Yzwxm2lTgOGNL2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MTBaFw0yNjA1MTYxMjAyMTBaMDMxMTAvBgNV BAMTKEE5NTVFREQyQTA5NTAwMjQ1NzhCOTJBOTgyRDA0ODk5OTgzMTM4RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWXD7U01YYKWHTQ9s3/Eo5yWfr S8rcv9oPZgcGYNjdVR9G3ufLui+LZN0EFEfQqPD4xoaD2+qKiJ8yrT8GOKqo7vZZ 0RiELgotgueF7KKy7EY9jW+1nuDczAn9G7afEkEtyYEZzLQrhLwdTeDQP8GZ2Hde QDUGpL4rR/O6IjCrhgVn7mS0+e6twYiS4WwDBk7vxdf992Y9CF0X0UfdjBbM0I7C 7cgSHtxmpN05ndrAuOKRgMGWKHvUpZc/0VH2Mci9Jg3cufpjlooJpoeim2lJQ5tz 38FK5r7mumvLJvs74m2OuvHJ0LrDkJEmTmuIQmB8FBEvZE/YkB2hM3nrTPbpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqVXt0qCVACRXi5KpgtBImZgxOPkwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHWTANBgkqhkiG 9w0BAQsFAAOCAQEAUkVX7CQGptagnMpgX6IRnsnlGx/rsqWESySc5e+JB/PzLxVH oRyL1sMpDmLH/Koq4OVHRMbyrZ1vp1p6ZSEUpcRMmEPtRWX7Ea7mG/py7DFRqDUT fg49HX0mYacyA6DI9s9hm5/r21CU1n6N2JPI2C/Qe6nGtXEv8RgD1W4VUlOD0ZWb f7rsEO2Hr3vmAM5/gw/iPOqaUXKdaP/bGs7f5lvIxRDVJeT3cCiRDoKqNwwqYrMW E81+0GucfWJBpr79Z5h3X02xe/wiNTu6AmjTXggUJzOM2BwbwYHYg9y72Co3B7RQ J+kcCguxhllcF5KR2vXk65+2oP/C/0PBQvQWLQ== -----END CERTIFICATE-----Generated at Fri Jun 6 17:10:36 2025 by rpki-client