$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39342e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e39342e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: r3hHZQIsPrP24iXENG0rrTLwOaZGAcHfqGESyHWi1gM= Subject key identifier: 4F:AA:B7:57:91:0A:21:36:43:84:66:BD:AC:A8:5F:F4:6A:EA:82:70 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 302EC4FF56660EEA00065A158547716F1E51B29D Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39342e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:06 +0000 ROA not before: Sat 17 May 2025 11:57:06 +0000 ROA not after: Sat 16 May 2026 12:02:06 +0000 asID: 17671 IP address blocks: 114.199.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:2e:c4:ff:56:66:0e:ea:00:06:5a:15:85:47:71:6f:1e:51:b2:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:06 2025 GMT Not After : May 16 12:02:06 2026 GMT Subject: CN=4FAAB757910A2136438466BDACA85FF46AEA8270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1c:56:11:53:68:ec:66:c3:a1:19:e9:b4:6a: d1:0d:55:24:8e:5f:f1:b0:77:10:30:dc:11:69:96: 28:7e:7e:38:7c:1c:2b:8d:6b:7e:d0:fc:ea:65:99: d5:05:81:c3:12:70:93:52:29:e8:65:26:e5:b5:1f: 6d:ad:57:de:5c:9f:9d:6c:1d:d7:fd:31:62:9d:75: e4:40:b4:ad:39:33:59:5e:02:e4:78:af:f7:55:4c: 2a:6d:2f:53:29:7f:32:d5:2f:ee:1a:6a:d8:1f:b1: c2:68:66:3a:d9:a8:f7:bc:e2:dd:b4:e4:43:dd:a7: cd:c7:11:f5:29:85:57:c6:8e:2c:37:0c:77:ce:d9: 60:71:35:9b:23:f2:b4:dc:6d:dd:91:93:cb:e7:01: f6:43:d0:bd:d1:79:ae:d0:70:73:11:bb:f2:aa:a5: a1:fb:fc:a5:77:da:b6:a8:53:52:cb:e7:02:d7:35: 4a:37:3c:f8:77:5a:f7:2e:18:f5:74:6e:25:4e:37: af:b5:ff:61:2c:ac:ff:9b:60:e3:96:d8:3d:4d:bb: fb:ec:88:f4:2f:fa:cb:53:19:25:3d:eb:fc:85:33: c4:87:85:bd:22:08:26:72:1f:77:b6:6d:54:ed:26: f1:00:ab:4b:87:12:77:d2:7d:ce:b9:ed:35:ef:6b: e9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:AA:B7:57:91:0A:21:36:43:84:66:BD:AC:A8:5F:F4:6A:EA:82:70 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39342e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.94.0/24 Signature Algorithm: sha256WithRSAEncryption 54:5d:b4:fb:c4:87:74:a9:3c:bd:e3:4f:6f:17:57:38:6f:0f: c9:1a:78:5a:a0:40:9e:60:ba:71:3d:e0:f8:30:77:f2:c0:15: dd:4f:40:b7:75:6d:96:a1:a3:91:52:2b:94:f6:bd:72:0f:57: c8:b3:09:b3:9c:8f:16:e5:77:a0:17:b1:86:74:42:9a:b0:81: 28:dd:4e:24:5c:ab:9a:56:3f:83:78:19:72:ad:37:59:c2:24: 03:f7:17:79:38:f0:5b:d7:90:e3:ef:96:b0:53:0d:56:60:32: 6c:99:8c:3e:2d:a1:c6:84:d0:e2:d5:2f:30:3a:1a:09:74:11: b7:6a:f8:fc:c0:0c:cd:63:f2:31:e0:24:77:63:bb:85:20:c8: 50:3e:f9:d2:af:5c:b6:24:49:d7:80:df:b8:8a:0d:d6:58:98: 9b:2c:dd:16:8b:4d:2e:58:d7:49:c4:64:a6:d8:81:fb:96:11: ea:68:92:f0:e0:05:98:87:f0:00:c8:ec:0b:73:5b:b1:53:2c: c3:ac:6e:1b:86:61:87:08:dd:82:c1:08:21:20:cb:7a:aa:25: b1:88:db:c3:fa:60:d3:4c:0b:f9:b2:cb:6e:16:c3:b1:1f:20: 52:4b:8d:07:28:8b:cc:4d:17:7a:04:d0:7b:36:e1:6f:7e:b1: b7:d0:8a:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMC7E/1ZmDuoABloVhUdxbx5Rsp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDZaFw0yNjA1MTYxMjAyMDZaMDMxMTAvBgNV BAMTKDRGQUFCNzU3OTEwQTIxMzY0Mzg0NjZCREFDQTg1RkY0NkFFQTgyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHHFYRU2jsZsOhGem0atENVSSO X/GwdxAw3BFplih+fjh8HCuNa37Q/OplmdUFgcMScJNSKehlJuW1H22tV95cn51s Hdf9MWKddeRAtK05M1leAuR4r/dVTCptL1MpfzLVL+4aatgfscJoZjrZqPe84t20 5EPdp83HEfUphVfGjiw3DHfO2WBxNZsj8rTcbd2Rk8vnAfZD0L3Rea7QcHMRu/Kq paH7/KV32raoU1LL5wLXNUo3PPh3WvcuGPV0biVON6+1/2EsrP+bYOOW2D1Nu/vs iPQv+stTGSU96/yFM8SHhb0iCCZyH3e2bVTtJvEAq0uHEnfSfc657TXva+n3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUT6q3V5EKITZDhGa9rKhf9GrqgnAwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHXjANBgkqhkiG 9w0BAQsFAAOCAQEAVF20+8SHdKk8veNPbxdXOG8PyRp4WqBAnmC6cT3g+DB38sAV 3U9At3VtlqGjkVIrlPa9cg9XyLMJs5yPFuV3oBexhnRCmrCBKN1OJFyrmlY/g3gZ cq03WcIkA/cXeTjwW9eQ4++WsFMNVmAybJmMPi2hxoTQ4tUvMDoaCXQRt2r4/MAM zWPyMeAkd2O7hSDIUD750q9ctiRJ14DfuIoN1liYmyzdFotNLljXScRkptiB+5YR 6miS8OAFmIfwAMjsC3NbsVMsw6xuG4ZhhwjdgsEIISDLeqolsYjbw/pg00wL+bLL bhbDsR8gUkuNByiLzE0XegTQezbhb36xt9CKYQ== -----END CERTIFICATE-----Generated at Sat Jun 7 12:29:57 2025 by rpki-client