$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38332e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38332e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: w93kG5sb7gvijp/vgs9vEf25oeJx1faj91WKNlL4/BM= Subject key identifier: 83:39:E1:1D:1B:3E:4B:8E:F7:2B:25:C2:DE:E1:B5:F3:5D:19:F0:9E Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 0C24D70FFE96B0A6628CA8230B2016517913B23D Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38332e302f32342d3234203d3e203338373533.roa Signing time: Tue 13 May 2025 03:00:01 +0000 ROA not before: Tue 13 May 2025 02:55:01 +0000 ROA not after: Tue 12 May 2026 03:00:01 +0000 asID: 38753 IP address blocks: 119.110.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 16:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:24:d7:0f:fe:96:b0:a6:62:8c:a8:23:0b:20:16:51:79:13:b2:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: May 13 02:55:01 2025 GMT Not After : May 12 03:00:01 2026 GMT Subject: CN=8339E11D1B3E4B8EF72B25C2DEE1B5F35D19F09E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:a4:87:c5:2f:02:c9:01:69:99:73:24:7c: 74:b6:a2:8c:80:84:a3:6e:bd:88:cd:20:5f:8d:1e: ed:7b:94:1c:95:39:cf:81:44:76:66:d1:25:b6:9b: 3f:3f:49:f0:03:63:2a:56:41:e3:f0:64:ff:42:a9: ff:19:68:81:bf:d3:83:48:56:b0:1d:b6:38:6d:45: 23:ef:ac:09:0e:1c:07:89:88:4f:81:ec:76:3d:e2: 8b:14:5d:f3:b4:7e:54:d7:82:a0:12:df:a4:2d:83: 5a:88:9f:09:f6:8e:ee:7c:31:f7:46:24:75:85:fb: b4:3b:d1:27:22:be:2a:ae:e4:75:e2:d2:b5:44:4e: 5c:3a:51:9a:b7:40:2a:cc:8d:1c:90:2d:67:ed:25: 78:4d:ca:4c:e0:9d:ab:66:99:3c:ed:9a:94:43:1b: 34:02:1a:4d:61:b5:14:c5:a7:d0:a6:35:ae:1e:e9: 50:ce:7c:f2:b9:69:27:12:9d:c3:69:fc:20:13:ae: 37:f7:aa:81:74:94:3b:40:8c:ea:1f:d2:87:3a:fb: dc:c6:97:65:a7:83:1b:c7:3a:04:ba:a3:a4:66:e8: dc:7e:77:8a:16:9c:6c:73:28:2e:e0:9b:78:80:d3: 07:8d:19:bf:83:f5:7a:9c:14:4e:eb:41:b3:6f:5d: 35:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:39:E1:1D:1B:3E:4B:8E:F7:2B:25:C2:DE:E1:B5:F3:5D:19:F0:9E X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38332e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.83.0/24 Signature Algorithm: sha256WithRSAEncryption 69:d4:42:4a:50:ac:ae:59:06:c0:12:2a:c4:0a:55:fc:63:48: 9f:4c:e5:48:d9:31:25:c7:19:37:8e:13:78:7f:51:39:8d:94: c1:9c:9f:e4:ba:05:e3:a8:cc:54:17:42:3b:a2:a5:91:27:00: 17:44:38:59:bb:67:7a:67:9d:ac:46:ec:eb:b9:ef:a4:67:39: dc:69:d0:34:73:b3:99:f6:f8:3a:2a:08:0c:02:c0:c0:2e:37: 67:f6:4c:26:f4:bf:2a:35:03:6a:d8:c1:6b:d6:d7:4a:89:1f: ed:3c:56:73:f5:cf:2f:52:97:e2:95:d9:b9:3e:5c:58:43:90: 81:15:88:7c:aa:3b:7a:6f:4a:f1:f7:2b:db:28:32:d8:45:c5: 93:7c:7d:88:36:43:be:ac:dc:7c:74:54:ce:46:b6:8b:e1:53: 28:a0:ac:39:4b:6e:02:89:88:62:ee:63:1e:2f:48:68:ab:40: 0a:1f:68:76:e0:08:9f:dd:29:77:e9:e8:6e:44:db:e0:33:71: de:4a:5c:54:bc:c8:44:e8:7a:03:48:7b:3a:f3:8e:f0:04:b0: 38:f5:0a:30:d6:60:76:e7:ca:9a:f8:df:7a:c3:9c:ea:4f:a9: e2:4d:c1:f2:da:60:cb:d1:21:da:fd:bd:f6:aa:c7:c9:fb:9b: f9:1a:71:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDCTXD/6WsKZijKgjCyAWUXkTsj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA1MTMwMjU1MDFaFw0yNjA1MTIwMzAwMDFaMDMxMTAvBgNV BAMTKDgzMzlFMTFEMUIzRTRCOEVGNzJCMjVDMkRFRTFCNUYzNUQxOUYwOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+qaSHxS8CyQFpmXMkfHS2ooyA hKNuvYjNIF+NHu17lByVOc+BRHZm0SW2mz8/SfADYypWQePwZP9Cqf8ZaIG/04NI VrAdtjhtRSPvrAkOHAeJiE+B7HY94osUXfO0flTXgqAS36Qtg1qInwn2ju58MfdG JHWF+7Q70Sciviqu5HXi0rVETlw6UZq3QCrMjRyQLWftJXhNykzgnatmmTztmpRD GzQCGk1htRTFp9CmNa4e6VDOfPK5aScSncNp/CATrjf3qoF0lDtAjOof0oc6+9zG l2WngxvHOgS6o6Rm6Nx+d4oWnGxzKC7gm3iA0weNGb+D9XqcFE7rQbNvXTUzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgznhHRs+S473KyXC3uG1810Z8J4wHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduUzANBgkqhkiG 9w0BAQsFAAOCAQEAadRCSlCsrlkGwBIqxApV/GNIn0zlSNkxJccZN44TeH9ROY2U wZyf5LoF46jMVBdCO6KlkScAF0Q4WbtnemedrEbs67nvpGc53GnQNHOzmfb4OioI DALAwC43Z/ZMJvS/KjUDatjBa9bXSokf7TxWc/XPL1KX4pXZuT5cWEOQgRWIfKo7 em9K8fcr2ygy2EXFk3x9iDZDvqzcfHRUzka2i+FTKKCsOUtuAomIYu5jHi9IaKtA Ch9oduAIn90pd+nobkTb4DNx3kpcVLzIROh6A0h7OvOO8ASwOPUKMNZgdufKmvjf esOc6k+p4k3B8tpgy9Eh2v299qrHyfub+Rpx3A== -----END CERTIFICATE-----Generated at Sat Jun 7 16:12:05 2025 by rpki-client