$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: 2D2Eb+qkxTpIARVlUnNu/DXr/RaAR55Yx15ya20jLOE= Subject key identifier: A0:71:8F:EF:A9:D0:44:8B:70:5E:A7:F0:B7:AF:62:3C:5D:D5:FC:E1 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 6D8C1EC22229799758FC6376BC5D424057E8D077 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa Signing time: Tue 22 Apr 2025 06:00:01 +0000 ROA not before: Tue 22 Apr 2025 05:55:01 +0000 ROA not after: Tue 21 Apr 2026 06:00:01 +0000 asID: 24525 IP address blocks: 114.199.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:8c:1e:c2:22:29:79:97:58:fc:63:76:bc:5d:42:40:57:e8:d0:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 05:55:01 2025 GMT Not After : Apr 21 06:00:01 2026 GMT Subject: CN=A0718FEFA9D0448B705EA7F0B7AF623C5DD5FCE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:33:e6:3f:70:b4:8a:8e:5a:f8:a7:83:8e:93: 74:f7:2b:64:a4:cf:4d:32:3e:2b:a1:85:a8:25:5a: 76:92:bb:5d:51:8f:e0:1c:43:e6:a9:a0:e5:18:b1: fc:48:ab:ed:f1:10:d7:17:a7:c3:70:b5:3a:63:22: 32:5a:c8:a0:90:1b:95:6b:60:5f:3f:04:ad:fd:01: 82:65:54:19:65:5e:4d:a1:d3:37:92:73:1b:f5:91: f0:2b:d5:78:a1:7c:c3:45:e9:fb:ad:7f:75:32:ec: 75:b7:07:d9:4b:99:6d:11:2a:7a:5f:b1:23:b8:6d: a0:78:9f:9c:4d:d0:9c:ec:4b:b7:ff:7d:90:0e:5e: f2:18:73:36:74:ee:2e:e7:60:27:65:61:13:f0:27: f7:07:61:6c:e3:4c:00:da:54:76:a2:0f:32:11:e4: 7d:40:0b:e7:db:51:dc:7b:4c:79:d1:b0:20:f7:e9: 29:cd:7c:3b:8e:1c:59:51:ab:62:d9:d3:4f:72:5e: ed:fb:0c:db:cc:77:0c:da:c4:fc:9a:04:3f:d6:97: 53:77:88:62:8c:1d:dd:97:00:d1:8c:53:16:ce:8c: e6:e2:23:fb:88:fa:16:77:e8:31:a0:85:7f:48:b1: d3:15:f9:9d:06:66:41:9c:01:2f:b3:eb:10:c2:2d: 97:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:71:8F:EF:A9:D0:44:8B:70:5E:A7:F0:B7:AF:62:3C:5D:D5:FC:E1 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.104.0/22 Signature Algorithm: sha256WithRSAEncryption 88:db:26:00:23:cf:49:78:24:87:a5:83:a4:7a:cc:62:97:03: 79:c1:e8:9f:df:9f:bd:c8:a8:9c:42:a6:27:e9:95:e5:52:c1: 38:5b:f4:f9:b9:45:b9:4e:74:1f:9d:3a:cc:b9:3f:8c:fd:70: 44:69:d4:e0:83:7d:af:a5:79:bc:6d:7a:c2:4b:3d:56:72:98: 9a:e0:6b:66:bf:ea:17:60:7a:0c:46:47:cc:94:ec:4c:0c:21: 8d:c3:27:71:34:73:dd:6f:00:76:37:f4:86:26:b0:e8:fb:4c: 40:ce:0d:c7:9c:9a:23:9b:5f:56:63:2b:29:1e:37:f3:09:76: 5f:40:2f:ab:f3:f0:c7:4b:e3:0a:c2:1a:7e:e5:24:a5:b2:c3: 39:67:a6:01:74:48:74:0c:14:ca:ad:15:a5:a9:8d:dc:d5:ad: 6c:96:74:9c:61:52:4b:23:21:02:2b:3c:d3:f2:04:61:5d:91: d8:eb:1c:83:73:18:cd:c2:ec:23:4b:78:44:02:c7:79:0d:e7: 7b:42:a6:d7:7e:43:cc:d0:c6:f4:8e:eb:bd:38:dd:52:6c:57: 89:63:e6:21:0d:7d:31:f7:87:62:6e:2b:b6:5c:22:93:21:39: 81:99:45:25:a7:0d:63:02:75:56:d5:5b:ba:08:1a:5c:8c:90: 96:6b:2e:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbYwewiIpeZdY/GN2vF1CQFfo0HcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNTU1MDFaFw0yNjA0MjEwNjAwMDFaMDMxMTAvBgNV BAMTKEEwNzE4RkVGQTlEMDQ0OEI3MDVFQTdGMEI3QUY2MjNDNURENUZDRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMM+Y/cLSKjlr4p4OOk3T3K2Sk z00yPiuhhaglWnaSu11Rj+AcQ+apoOUYsfxIq+3xENcXp8NwtTpjIjJayKCQG5Vr YF8/BK39AYJlVBllXk2h0zeScxv1kfAr1XihfMNF6futf3Uy7HW3B9lLmW0RKnpf sSO4baB4n5xN0JzsS7f/fZAOXvIYczZ07i7nYCdlYRPwJ/cHYWzjTADaVHaiDzIR 5H1AC+fbUdx7THnRsCD36SnNfDuOHFlRq2LZ009yXu37DNvMdwzaxPyaBD/Wl1N3 iGKMHd2XANGMUxbOjObiI/uI+hZ36DGghX9IsdMV+Z0GZkGcAS+z6xDCLZdHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoHGP76nQRItwXqfwt69iPF3V/OEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdoMA0GCSqG SIb3DQEBCwUAA4IBAQCI2yYAI89JeCSHpYOkesxilwN5weif35+9yKicQqYn6ZXl UsE4W/T5uUW5TnQfnTrMuT+M/XBEadTgg32vpXm8bXrCSz1Wcpia4Gtmv+oXYHoM RkfMlOxMDCGNwydxNHPdbwB2N/SGJrDo+0xAzg3HnJojm19WYyspHjfzCXZfQC+r 8/DHS+MKwhp+5SSlssM5Z6YBdEh0DBTKrRWlqY3c1a1slnScYVJLIyECKzzT8gRh XZHY6xyDcxjNwuwjS3hEAsd5Ded7QqbXfkPM0Mb0juu9ON1SbFeJY+YhDX0x94di biu2XCKTITmBmUUlpw1jAnVW1Vu6CBpcjJCWay4z -----END CERTIFICATE-----Generated at Mon Oct 27 14:26:40 2025 by rpki-client