$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38372e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38372e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: JY1xg08noXq/UjBIy0Ia4KN/OxupR8wDlqiLTAIRtk4= Subject key identifier: F3:7C:65:78:A6:26:02:C2:E1:B6:FB:DE:2A:72:76:F9:10:CC:29:52 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 718AA10E6DA58CDCFDCD74026FA7B80BD02701D6 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38372e302f32342d3234203d3e203338373533.roa Signing time: Tue 20 May 2025 03:00:01 +0000 ROA not before: Tue 20 May 2025 02:55:01 +0000 ROA not after: Tue 19 May 2026 03:00:01 +0000 asID: 38753 IP address blocks: 119.110.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 01:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8a:a1:0e:6d:a5:8c:dc:fd:cd:74:02:6f:a7:b8:0b:d0:27:01:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: May 20 02:55:01 2025 GMT Not After : May 19 03:00:01 2026 GMT Subject: CN=F37C6578A62602C2E1B6FBDE2A7276F910CC2952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8c:51:1a:04:1d:db:1f:98:09:61:77:af:6e: 5f:42:0d:dc:d7:93:48:eb:28:57:ec:c6:48:40:77: 1d:51:29:d2:a0:9b:e9:46:2b:27:41:cc:6f:39:9b: 62:e3:ef:a9:53:fc:f1:8d:79:23:40:79:a4:46:3a: 5b:96:2e:e2:e2:f3:17:40:4a:fc:ae:73:ba:f4:ac: 67:1b:7d:02:3a:ce:e8:66:09:fb:22:cf:51:e1:c8: 93:7e:14:e1:ac:16:c4:b3:5b:d2:52:c0:d7:d8:fd: be:01:a8:0f:fa:c2:b9:e8:d1:d5:e8:4e:b5:17:f7: 05:52:28:c1:fd:85:d9:8d:77:17:95:23:c6:92:78: c5:85:16:5a:cc:0a:2f:3f:80:dc:1f:51:41:9b:7a: 45:92:11:33:fc:ce:98:0a:c6:7c:c8:ba:47:d0:d6: 37:01:ea:fd:0d:25:cb:a5:09:00:81:aa:ad:2d:8a: 92:a5:aa:ff:f9:1a:dd:83:34:54:20:ac:b5:bb:89: 4d:1b:51:87:ff:99:05:10:0a:13:bf:79:c7:2c:5c: 3e:bb:59:dc:00:e7:62:59:51:b1:de:b5:b9:c4:dd: c2:d2:79:72:89:70:9d:04:c3:d7:2c:ca:c8:eb:e3: 4e:b3:28:06:42:77:77:12:9d:62:57:4e:88:ab:e1: ad:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7C:65:78:A6:26:02:C2:E1:B6:FB:DE:2A:72:76:F9:10:CC:29:52 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38372e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.87.0/24 Signature Algorithm: sha256WithRSAEncryption 77:30:01:f3:98:1d:10:dd:a7:dc:d5:be:32:9c:b7:e6:af:4a: 6d:81:5f:9f:e0:78:ce:de:9f:7c:e3:e5:0b:08:8b:c3:99:59: 50:99:85:8a:0d:f6:9f:23:36:d8:8a:92:7d:11:eb:a0:ff:00: 14:90:13:b8:7d:9e:86:66:66:a6:52:c7:fc:c4:f8:6a:7a:96: 7d:40:42:5a:38:f9:a8:f2:96:a2:63:d1:a3:97:c7:b3:c0:3b: 94:b5:aa:87:8a:d9:1f:f9:dc:9d:08:e9:74:26:fb:77:f5:ae: fa:f3:c6:76:59:27:e2:df:62:63:98:1c:ad:ac:ff:69:9e:fe: 11:a5:93:a2:d9:d7:11:7e:8e:ec:c3:7d:1c:4a:d4:f4:88:e9: 7c:9c:0f:77:36:f1:79:72:66:ca:40:40:d8:77:e4:cb:c5:52: b4:dc:ae:5f:1b:e2:31:2a:7e:27:9d:cd:af:fc:db:00:62:d8: 78:da:0a:30:8c:63:c7:42:97:f9:8b:38:77:82:d3:30:f2:26: 9d:3d:92:d6:7e:d7:fe:af:69:8e:a7:4c:1f:58:93:37:27:02: 8e:c2:6e:de:8d:d2:75:04:b9:dc:17:73:44:48:ca:4a:a0:6a: 66:8f:e3:2e:b2:4c:2a:39:bf:ab:6b:c5:3f:ad:4f:15:20:e3: 67:da:26:42 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcYqhDm2ljNz9zXQCb6e4C9AnAdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA1MjAwMjU1MDFaFw0yNjA1MTkwMzAwMDFaMDMxMTAvBgNV BAMTKEYzN0M2NTc4QTYyNjAyQzJFMUI2RkJERTJBNzI3NkY5MTBDQzI5NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDijFEaBB3bH5gJYXevbl9CDdzX k0jrKFfsxkhAdx1RKdKgm+lGKydBzG85m2Lj76lT/PGNeSNAeaRGOluWLuLi8xdA Svyuc7r0rGcbfQI6zuhmCfsiz1HhyJN+FOGsFsSzW9JSwNfY/b4BqA/6wrno0dXo TrUX9wVSKMH9hdmNdxeVI8aSeMWFFlrMCi8/gNwfUUGbekWSETP8zpgKxnzIukfQ 1jcB6v0NJculCQCBqq0tipKlqv/5Gt2DNFQgrLW7iU0bUYf/mQUQChO/eccsXD67 WdwA52JZUbHetbnE3cLSeXKJcJ0Ew9csysjr406zKAZCd3cSnWJXToir4a23AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU83xleKYmAsLhtvveKnJ2+RDMKVIwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVzANBgkqhkiG 9w0BAQsFAAOCAQEAdzAB85gdEN2n3NW+Mpy35q9KbYFfn+B4zt6ffOPlCwiLw5lZ UJmFig32nyM22IqSfRHroP8AFJATuH2ehmZmplLH/MT4anqWfUBCWjj5qPKWomPR o5fHs8A7lLWqh4rZH/ncnQjpdCb7d/Wu+vPGdlkn4t9iY5gcraz/aZ7+EaWTotnX EX6O7MN9HErU9IjpfJwPdzbxeXJmykBA2Hfky8VStNyuXxviMSp+J53Nr/zbAGLY eNoKMIxjx0KX+Ys4d4LTMPImnT2S1n7X/q9pjqdMH1iTNycCjsJu3o3SdQS53Bdz REjKSqBqZo/jLrJMKjm/q2vFP61PFSDjZ9omQg== -----END CERTIFICATE-----Generated at Sun Jun 8 16:46:14 2025 by rpki-client