$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39312e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e39312e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: UB7oQvGMEaBAkJ6kIncI+D/+f6PwdV9Mq3k6snGKU64= Subject key identifier: 97:03:B0:88:96:9F:FC:23:09:76:66:C6:FA:A4:45:4C:8B:75:AA:27 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 0DB9A1B00C7765232FC13F30C2056788C95BB09F Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39312e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:10 +0000 ROA not before: Sat 17 May 2025 11:57:10 +0000 ROA not after: Sat 16 May 2026 12:02:10 +0000 asID: 17671 IP address blocks: 114.199.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b9:a1:b0:0c:77:65:23:2f:c1:3f:30:c2:05:67:88:c9:5b:b0:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:10 2025 GMT Not After : May 16 12:02:10 2026 GMT Subject: CN=9703B088969FFC23097666C6FAA4454C8B75AA27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:ff:de:47:07:50:a5:3e:8a:67:6c:fa:a5: 49:65:73:db:a2:69:b1:aa:c2:28:ae:f2:58:57:75: 1f:28:0d:46:07:dd:c2:b4:5e:5d:d7:ad:61:08:3f: e7:16:41:f9:bb:9f:9d:5c:91:c4:4f:1c:ec:91:c5: 1b:af:89:79:bc:d9:47:f6:ff:22:c6:80:32:d6:d6: 97:5d:cc:d0:96:5b:90:c1:39:0e:20:8e:4f:88:7b: e4:a4:77:4c:d8:72:17:18:f6:eb:32:eb:12:bb:92: 39:b8:8b:f2:88:a6:58:c3:2d:cd:e2:27:f9:a0:f5: 03:c5:0b:40:7c:12:c7:5f:5d:5c:8a:bc:c3:39:93: 21:e2:b2:1c:d8:91:bc:21:ac:e5:02:f0:92:5e:c4: e8:82:ae:c8:15:16:65:a2:65:1e:9e:6b:25:dd:39: 2f:12:82:d4:cc:39:2e:20:e8:05:20:ab:a5:5d:64: 53:13:19:c8:38:0a:bb:6e:a9:ec:c0:4e:fb:1a:7c: 21:4d:e2:c7:a3:1f:1d:6f:f1:6e:8b:05:4c:ba:d9: b7:81:da:fe:af:ab:9c:d3:fc:c2:d1:fa:63:36:ad: 53:51:53:b8:d6:b5:37:36:e3:f3:3a:3c:1a:79:96: d7:3d:0e:6d:24:c5:45:b2:c0:10:86:1a:42:ee:5e: 31:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:03:B0:88:96:9F:FC:23:09:76:66:C6:FA:A4:45:4C:8B:75:AA:27 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39312e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.91.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:6a:6b:0e:2e:b7:6c:7a:5d:e6:90:4e:e2:e2:b8:76:e5:d5: ca:59:96:3e:61:16:5f:7c:4d:8b:30:16:ba:54:e1:b6:f9:fb: 6b:2a:17:10:6e:fb:df:81:17:f2:cf:c2:61:c9:58:96:eb:b4: 56:f6:ec:b4:b1:7f:96:6c:b7:cc:1b:ab:3a:3b:c4:24:67:25: 07:25:fd:87:cd:f4:fd:12:fe:17:eb:68:08:6b:a2:d4:be:cd: 78:74:e8:d7:b3:e2:01:e7:76:c5:f7:0b:e6:5a:e0:c4:e0:df: 77:58:f9:42:2e:68:a2:f1:d0:cd:fb:2d:e5:68:39:cf:3d:fa: f8:be:b4:d3:18:11:f1:5b:52:bc:ca:26:17:dd:f0:a7:eb:94: 93:94:55:ce:2f:73:84:02:9e:d3:8b:7c:ed:4d:d4:e2:38:65: 8a:e6:3f:d5:a7:a8:db:ac:d9:35:6b:90:9c:c1:68:b9:60:f9: ff:5b:d6:9c:9b:2b:7c:b0:0d:c7:17:7f:16:28:20:65:11:c9: b2:76:51:fd:26:63:c7:44:31:36:ad:9d:e0:a2:bd:c9:12:9c: 92:9b:ca:7f:6f:36:cb:04:ce:99:c9:77:98:6b:d4:9f:1c:40: f8:a7:66:0b:3c:fc:94:d6:0b:61:de:de:10:f1:ee:3c:42:99: 9c:37:7a:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDbmhsAx3ZSMvwT8wwgVniMlbsJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MTBaFw0yNjA1MTYxMjAyMTBaMDMxMTAvBgNV BAMTKDk3MDNCMDg4OTY5RkZDMjMwOTc2NjZDNkZBQTQ0NTRDOEI3NUFBMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7S//eRwdQpT6KZ2z6pUllc9ui abGqwiiu8lhXdR8oDUYH3cK0Xl3XrWEIP+cWQfm7n51ckcRPHOyRxRuviXm82Uf2 /yLGgDLW1pddzNCWW5DBOQ4gjk+Ie+Skd0zYchcY9usy6xK7kjm4i/KIpljDLc3i J/mg9QPFC0B8EsdfXVyKvMM5kyHishzYkbwhrOUC8JJexOiCrsgVFmWiZR6eayXd OS8SgtTMOS4g6AUgq6VdZFMTGcg4CrtuqezATvsafCFN4sejHx1v8W6LBUy62beB 2v6vq5zT/MLR+mM2rVNRU7jWtTc24/M6PBp5ltc9Dm0kxUWywBCGGkLuXjFfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlwOwiJaf/CMJdmbG+qRFTIt1qicwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHWzANBgkqhkiG 9w0BAQsFAAOCAQEAPGprDi63bHpd5pBO4uK4duXVylmWPmEWX3xNizAWulThtvn7 ayoXEG7734EX8s/CYclYluu0VvbstLF/lmy3zBurOjvEJGclByX9h830/RL+F+to CGui1L7NeHTo17PiAed2xfcL5lrgxODfd1j5Qi5oovHQzfst5Wg5zz36+L600xgR 8VtSvMomF93wp+uUk5RVzi9zhAKe04t87U3U4jhliuY/1aeo26zZNWuQnMFouWD5 /1vWnJsrfLANxxd/FiggZRHJsnZR/SZjx0QxNq2d4KK9yRKckpvKf282ywTOmcl3 mGvUnxxA+KdmCzz8lNYLYd7eEPHuPEKZnDd63g== -----END CERTIFICATE-----Generated at Thu Jun 5 19:07:23 2025 by rpki-client