$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa File: 3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa (raw, json) Hash identifier: L7B4TlCu6+XGwvVIhFVxD06j+oz/txAbz7A9RLeSSuk= Subject key identifier: C3:C9:80:76:1C:D4:46:12:31:D6:77:34:40:CC:9A:3D:9E:11:91:D8 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 0BDA33DC142317E245833F47B1003A90BC4F9F55 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa Signing time: Wed 08 Oct 2025 10:00:00 +0000 ROA not before: Wed 08 Oct 2025 09:55:00 +0000 ROA not after: Wed 07 Oct 2026 10:00:00 +0000 asID: 138077 IP address blocks: 110.44.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Oct 2025 12:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:da:33:dc:14:23:17:e2:45:83:3f:47:b1:00:3a:90:bc:4f:9f:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Oct 8 09:55:00 2025 GMT Not After : Oct 7 10:00:00 2026 GMT Subject: CN=C3C980761CD4461231D6773440CC9A3D9E1191D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:5f:fc:b9:85:17:af:12:9b:80:02:a6:de: cb:ab:57:69:7d:24:f8:0b:45:a6:56:65:67:51:f6: 8e:60:af:c7:02:95:30:c2:9e:fd:64:c1:43:58:8c: 2d:d7:bf:a6:2c:ef:d9:1c:97:ac:73:3c:c9:f9:d1: a4:62:6f:5f:84:1c:05:e4:29:37:4f:a5:6a:4c:2c: 79:97:eb:99:cb:5e:1c:74:85:11:51:e4:ab:ba:b8: 9c:5f:ea:6f:35:a1:0b:a9:9e:b6:32:71:9f:0a:ed: 6c:f1:d0:0b:5a:0a:d0:bb:b3:45:c7:21:e3:c0:af: d7:b7:83:51:4c:bb:39:6f:d9:84:61:e6:27:ee:b1: d3:01:61:ef:75:50:ab:7f:8f:78:b8:85:79:7e:4f: 86:82:c1:21:37:01:4a:d0:c4:05:92:82:98:3d:05: 21:a4:df:f6:14:93:93:46:70:e1:96:16:01:8e:c3: 9b:a5:b2:6d:33:d7:eb:02:0d:b1:5b:d7:85:4e:bc: 4f:88:83:d6:40:ae:d4:5c:1c:21:06:98:d4:9b:2d: 40:56:c0:bd:83:ef:dd:16:b9:f0:d7:f6:ee:f8:2a: 96:1b:57:9d:46:c2:b2:66:6f:81:fb:7f:3e:0c:c1: 0e:af:6e:8d:bd:12:19:05:9d:d5:1c:c6:47:7b:41: 24:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C9:80:76:1C:D4:46:12:31:D6:77:34:40:CC:9A:3D:9E:11:91:D8 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137322e302f32322d3232203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.172.0/22 Signature Algorithm: sha256WithRSAEncryption 06:28:84:95:a9:93:27:7c:da:37:3e:fd:aa:59:49:4f:ea:97: 81:45:1b:6f:f6:5a:2b:76:e9:98:b5:4d:71:2f:50:d6:a1:3d: c8:0c:6e:0c:1a:fc:19:17:a6:1f:66:bb:10:42:01:f4:e1:0a: 81:70:69:73:fd:76:74:3d:8e:cb:bf:77:56:3e:23:45:84:ae: 68:70:d9:2d:0d:68:9b:3d:54:0d:2a:8c:8b:88:73:ba:11:a2: f4:69:87:45:f1:9d:a1:c2:ad:54:9c:9e:c8:43:72:1a:85:76: 63:0a:ac:fb:00:e0:a7:56:84:47:9d:62:7a:02:8c:c6:89:bb: 98:67:85:b5:00:95:5d:6e:51:ab:84:41:86:90:0e:62:3c:14: cf:e5:7b:68:88:a5:8e:aa:3d:70:c2:1a:66:13:12:fc:47:ea: e6:1b:08:f8:bd:70:0d:db:01:22:9c:a4:08:f1:ba:b6:0b:82: d1:53:ec:a8:68:7c:67:0d:f5:20:f4:52:7e:0c:46:a2:fa:7e: c8:79:50:57:de:bc:0e:d1:5c:53:0f:84:ea:8d:33:54:00:7c: c6:6e:7f:48:52:82:77:66:cf:b5:9f:17:84:16:be:b3:76:68: 6b:73:bf:60:fa:c1:65:a2:81:32:bd:fe:13:ab:56:d8:0d:49: 69:3f:61:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC9oz3BQjF+JFgz9HsQA6kLxPn1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTEwMDgwOTU1MDBaFw0yNjEwMDcxMDAwMDBaMDMxMTAvBgNV BAMTKEMzQzk4MDc2MUNENDQ2MTIzMUQ2NzczNDQwQ0M5QTNEOUUxMTkxRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Il/8uYUXrxKbgAKm3surV2l9 JPgLRaZWZWdR9o5gr8cClTDCnv1kwUNYjC3Xv6Ys79kcl6xzPMn50aRib1+EHAXk KTdPpWpMLHmX65nLXhx0hRFR5Ku6uJxf6m81oQupnrYycZ8K7Wzx0AtaCtC7s0XH IePAr9e3g1FMuzlv2YRh5ifusdMBYe91UKt/j3i4hXl+T4aCwSE3AUrQxAWSgpg9 BSGk3/YUk5NGcOGWFgGOw5ulsm0z1+sCDbFb14VOvE+Ig9ZArtRcHCEGmNSbLUBW wL2D790WufDX9u74KpYbV51GwrJmb4H7fz4MwQ6vbo29EhkFndUcxkd7QSSFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw8mAdhzURhIx1nc0QMyaPZ4RkdgwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCbiysMA0GCSqG SIb3DQEBCwUAA4IBAQAGKISVqZMnfNo3Pv2qWUlP6peBRRtv9lordumYtU1xL1DW oT3IDG4MGvwZF6YfZrsQQgH04QqBcGlz/XZ0PY7Lv3dWPiNFhK5ocNktDWibPVQN KoyLiHO6EaL0aYdF8Z2hwq1UnJ7IQ3IahXZjCqz7AOCnVoRHnWJ6AozGibuYZ4W1 AJVdblGrhEGGkA5iPBTP5XtoiKWOqj1wwhpmExL8R+rmGwj4vXAN2wEinKQI8bq2 C4LRU+yoaHxnDfUg9FJ+DEai+n7IeVBX3rwO0VxTD4TqjTNUAHzGbn9IUoJ3Zs+1 nxeEFr6zdmhrc79g+sFlooEyvf4Tq1bYDUlpP2Gz -----END CERTIFICATE-----Generated at Wed Oct 15 14:32:31 2025 by rpki-client