$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39352e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e39352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: sz26CHnKr2F8bmuHUWlBoeNQHpfLSIWJ3cXYCPj2JO0= Subject key identifier: C5:8D:5E:6D:5F:80:1B:C0:10:BA:99:69:B0:93:10:20:2A:82:DD:5F Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 718ED8A8811D1230F49A424856F38CBE6EB4EBD7 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39352e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 11:02:27 +0000 ROA not before: Sat 17 May 2025 10:57:27 +0000 ROA not after: Sat 16 May 2026 11:02:27 +0000 asID: 17671 IP address blocks: 114.199.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8e:d8:a8:81:1d:12:30:f4:9a:42:48:56:f3:8c:be:6e:b4:eb:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 10:57:27 2025 GMT Not After : May 16 11:02:27 2026 GMT Subject: CN=C58D5E6D5F801BC010BA9969B09310202A82DD5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e5:26:b6:bb:c0:ff:95:1f:f5:d0:93:3c:79: b7:68:0f:db:55:cb:40:cb:d1:96:3f:1e:84:b6:2a: b1:3c:f5:93:11:b5:e7:df:83:46:3e:f2:5d:61:91: e6:1d:2c:c0:1a:f2:f9:19:e6:2c:f7:1f:a8:9d:29: 7e:34:d8:c9:d3:7c:8f:2f:71:5d:c5:eb:42:84:4e: cd:a8:8e:87:8f:cd:cc:9d:6d:bc:ea:f8:96:3e:0e: d6:b5:70:66:2b:15:30:0b:4c:e7:ea:d4:6b:7f:01: e4:37:ce:0a:5f:1b:88:0c:4c:d1:cb:6d:28:da:1e: 7a:de:9a:cd:22:6e:8b:48:f1:25:32:dc:39:af:3b: 86:8d:8f:f3:89:8d:07:06:23:06:06:67:ee:ef:92: 9d:59:96:fc:0f:40:a8:07:46:00:8f:71:c4:45:05: 29:82:94:98:6c:a3:26:f2:1f:3d:f5:5d:29:37:0d: dd:cc:7d:fc:60:85:5a:e6:7a:f7:01:e5:dc:ac:c2: 0c:77:f2:f3:4c:8d:8f:e4:e7:f8:a2:a4:34:dc:9c: 57:41:53:2d:bb:1b:1b:9b:3a:d9:6b:ea:39:73:0d: 03:d4:92:38:cf:4f:41:4d:bd:1c:a2:f4:a6:d6:f2: 9e:23:fe:9a:56:87:3c:f4:c2:00:61:5f:9a:22:68: fd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:8D:5E:6D:5F:80:1B:C0:10:BA:99:69:B0:93:10:20:2A:82:DD:5F X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e39352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.95.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:5d:fa:95:cd:94:47:cc:c6:02:c9:84:0a:90:74:04:bd:54: 0e:f9:64:c4:b3:76:e4:79:c5:da:f5:87:1a:d5:71:bd:ed:d2: 44:bd:25:8c:f9:45:a5:8a:15:f4:5f:6f:ae:e4:b6:d4:06:48: 61:df:44:f4:01:63:15:7f:e4:9b:15:31:a9:d5:15:23:34:1e: 56:14:fb:f8:d5:71:4c:fc:6a:ae:d3:71:74:4a:73:7f:b7:f5: af:1f:ba:51:36:b3:71:65:e1:77:c6:47:bb:06:08:d1:22:f5: f6:6d:0a:1a:a8:3f:cd:18:90:f9:53:c6:92:3e:b3:21:0f:c4: e7:38:e5:8e:f1:d4:43:30:24:3a:a0:db:d1:26:81:14:4a:9b: 99:86:af:08:8f:2d:29:4d:a1:a0:1a:43:b5:13:4d:01:bb:e7: 7e:71:80:a9:66:0a:b4:c8:22:68:86:75:a5:2a:62:32:a3:4b: 3b:67:96:17:17:00:93:a1:64:da:4f:5a:66:1a:fe:12:ba:58: f2:fb:96:5d:45:ed:4e:79:af:9c:4a:3f:fd:62:4e:84:6a:76: 82:f5:02:65:e7:7e:34:f1:51:90:74:5f:da:37:e1:0e:3a:fc: aa:4a:b4:bc:94:be:76:c8:18:0b:95:29:8f:4c:cf:05:70:eb: 4b:01:e6:d2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcY7YqIEdEjD0mkJIVvOMvm6069cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMDU3MjdaFw0yNjA1MTYxMTAyMjdaMDMxMTAvBgNV BAMTKEM1OEQ1RTZENUY4MDFCQzAxMEJBOTk2OUIwOTMxMDIwMkE4MkRENUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC35Sa2u8D/lR/10JM8ebdoD9tV y0DL0ZY/HoS2KrE89ZMRteffg0Y+8l1hkeYdLMAa8vkZ5iz3H6idKX402MnTfI8v cV3F60KETs2ojoePzcydbbzq+JY+Dta1cGYrFTALTOfq1Gt/AeQ3zgpfG4gMTNHL bSjaHnrems0ibotI8SUy3DmvO4aNj/OJjQcGIwYGZ+7vkp1ZlvwPQKgHRgCPccRF BSmClJhsoybyHz31XSk3Dd3MffxghVrmevcB5dyswgx38vNMjY/k5/iipDTcnFdB Uy27GxubOtlr6jlzDQPUkjjPT0FNvRyi9KbW8p4j/ppWhzz0wgBhX5oiaP1DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxY1ebV+AG8AQuplpsJMQICqC3V8wHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHXzANBgkqhkiG 9w0BAQsFAAOCAQEAnF36lc2UR8zGAsmECpB0BL1UDvlkxLN25HnF2vWHGtVxve3S RL0ljPlFpYoV9F9vruS21AZIYd9E9AFjFX/kmxUxqdUVIzQeVhT7+NVxTPxqrtNx dEpzf7f1rx+6UTazcWXhd8ZHuwYI0SL19m0KGqg/zRiQ+VPGkj6zIQ/E5zjljvHU QzAkOqDb0SaBFEqbmYavCI8tKU2hoBpDtRNNAbvnfnGAqWYKtMgiaIZ1pSpiMqNL O2eWFxcAk6Fk2k9aZhr+ErpY8vuWXUXtTnmvnEo//WJOhGp2gvUCZed+NPFRkHRf 2jfhDjr8qkq0vJS+dsgYC5Upj0zPBXDrSwHm0g== -----END CERTIFICATE-----Generated at Sat Jun 7 19:53:58 2025 by rpki-client