$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: nYGeRUcu33m+knSJ2To8Gr9/SksHYfif77kgJax8j1U= Subject key identifier: CD:2C:85:18:4D:AC:5F:52:46:1F:B0:64:4A:DE:FD:99:DF:46:C3:C0 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7F38C9E2F4E31B84A52D8818C7708F911DE42D5C Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 07:00:07 +0000 ROA not before: Tue 22 Apr 2025 06:55:07 +0000 ROA not after: Tue 21 Apr 2026 07:00:07 +0000 asID: 24525 IP address blocks: 114.199.100.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:38:c9:e2:f4:e3:1b:84:a5:2d:88:18:c7:70:8f:91:1d:e4:2d:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 06:55:07 2025 GMT Not After : Apr 21 07:00:07 2026 GMT Subject: CN=CD2C85184DAC5F52461FB0644ADEFD99DF46C3C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a0:20:24:d9:3d:e7:61:20:5b:ee:99:12:13: 21:64:f5:d1:69:25:12:e7:6a:b9:b8:02:ec:b5:78: 13:fb:68:0d:5b:86:35:03:3b:49:df:6d:cc:e1:c6: fb:b5:33:75:c5:fc:96:a6:3e:c7:51:b8:ab:98:66: 48:5c:6f:57:8e:fa:97:fb:38:b9:0a:45:a1:fa:09: 4f:1f:7b:f8:ea:a9:af:06:85:eb:ac:85:4f:28:2b: 95:dd:32:ce:99:c4:f2:d4:a5:f6:bb:fa:5f:06:36: a6:73:21:b4:36:2c:f0:d7:92:77:81:78:d4:d1:1d: 5d:a7:65:2f:45:d5:5f:76:53:09:ea:25:2f:17:ea: 58:1e:e6:8e:8b:47:ad:f5:6c:48:c5:8c:6c:50:fb: b6:5c:6c:f7:a7:e3:77:49:f3:6b:72:31:b9:8b:55: 6f:70:f8:56:c4:e8:4d:9f:48:ec:1b:38:db:b3:c1: 4b:1c:8e:01:fe:32:f9:d3:a3:2b:ec:b7:35:74:6f: 7c:c7:c4:75:a0:79:74:61:16:20:ef:b5:bc:dc:d4: 95:05:f8:b9:64:0e:dd:c9:67:76:b2:ec:e6:49:7b: 2b:d3:84:08:93:65:ef:5f:3a:55:94:98:6e:f8:a1: 2c:20:1d:3d:1e:2d:7e:60:e3:5d:f2:b2:a9:79:08: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:2C:85:18:4D:AC:5F:52:46:1F:B0:64:4A:DE:FD:99:DF:46:C3:C0 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.100.0/23 Signature Algorithm: sha256WithRSAEncryption c8:47:77:96:0f:89:3b:de:15:3a:22:59:d6:73:ed:e4:40:57: 56:11:ec:06:df:d5:02:e6:32:bb:a9:9b:e7:56:39:c9:63:1a: b2:fd:f0:e5:e0:87:b1:cb:58:a3:15:1c:fd:d8:85:b6:c8:80: 9d:a2:12:c3:bf:80:37:bb:f2:b7:79:4f:a0:97:9f:10:66:3e: 73:96:45:93:3b:b7:7d:1e:c3:a6:fc:37:16:9b:0d:d0:e0:d7: b3:32:ce:fe:bf:99:ab:ff:ae:e1:e4:e0:c9:00:3c:9d:8c:ff: 61:c4:c2:39:3d:9e:79:bd:a9:47:68:67:d4:bc:d4:17:63:e8: 09:e3:fe:9b:10:03:2b:c9:4a:02:78:97:ea:be:d8:85:49:51: 91:70:69:a4:84:62:b1:4b:db:c8:f2:62:ea:ee:0a:99:4d:1c: 2d:d8:fc:f9:e1:b7:33:e7:ac:cd:9a:2d:8e:fb:6e:19:7a:4e: 91:d3:c9:0f:b5:42:0c:15:2f:13:d2:da:27:b4:ea:9b:64:b9: 7a:d3:38:f0:9b:01:cc:5d:88:fc:d2:e5:ac:ad:cc:f9:7d:54: 83:44:ee:dc:3f:67:c4:bc:69:bc:fe:61:21:ba:ef:d5:58:07: 6a:3f:55:e5:85:0c:cb:bb:bd:c0:f1:c9:4f:b1:75:2a:db:2e: 4d:1d:20:97 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfzjJ4vTjG4SlLYgYx3CPkR3kLVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNjU1MDdaFw0yNjA0MjEwNzAwMDdaMDMxMTAvBgNV BAMTKENEMkM4NTE4NERBQzVGNTI0NjFGQjA2NDRBREVGRDk5REY0NkMzQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeoCAk2T3nYSBb7pkSEyFk9dFp JRLnarm4Auy1eBP7aA1bhjUDO0nfbczhxvu1M3XF/JamPsdRuKuYZkhcb1eO+pf7 OLkKRaH6CU8fe/jqqa8GheushU8oK5XdMs6ZxPLUpfa7+l8GNqZzIbQ2LPDXkneB eNTRHV2nZS9F1V92UwnqJS8X6lge5o6LR631bEjFjGxQ+7ZcbPen43dJ82tyMbmL VW9w+FbE6E2fSOwbONuzwUscjgH+MvnToyvstzV0b3zHxHWgeXRhFiDvtbzc1JUF +LlkDt3JZ3ay7OZJeyvThAiTZe9fOlWUmG74oSwgHT0eLX5g413ysql5CKMfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzSyFGE2sX1JGH7BkSt79md9Gw8AwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdkMA0GCSqG SIb3DQEBCwUAA4IBAQDIR3eWD4k73hU6IlnWc+3kQFdWEewG39UC5jK7qZvnVjnJ Yxqy/fDl4Iexy1ijFRz92IW2yICdohLDv4A3u/K3eU+gl58QZj5zlkWTO7d9HsOm /DcWmw3Q4NezMs7+v5mr/67h5ODJADydjP9hxMI5PZ55valHaGfUvNQXY+gJ4/6b EAMryUoCeJfqvtiFSVGRcGmkhGKxS9vI8mLq7gqZTRwt2Pz54bcz56zNmi2O+24Z ek6R08kPtUIMFS8T0tontOqbZLl60zjwmwHMXYj80uWsrcz5fVSDRO7cP2fEvGm8 /mEhuu/VWAdqP1XlhQzLu73A8clPsXUq2y5NHSCX -----END CERTIFICATE-----Generated at Mon Oct 27 14:27:51 2025 by rpki-client