$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: zM+O46ABTJ06kSQqPE6MOD9jh1Nd2Osp3rSh8PeU1LI= Subject key identifier: 1F:C6:A4:21:8C:0E:AB:EF:1C:F5:74:60:39:B9:42:D3:1F:94:E8:88 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7686A5C0E7F60B9DF94CA5A5A8FA1EBDA35A9328 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa Signing time: Tue 22 Apr 2025 06:00:01 +0000 ROA not before: Tue 22 Apr 2025 05:55:01 +0000 ROA not after: Tue 21 Apr 2026 06:00:01 +0000 asID: 24525 IP address blocks: 114.199.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:86:a5:c0:e7:f6:0b:9d:f9:4c:a5:a5:a8:fa:1e:bd:a3:5a:93:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 05:55:01 2025 GMT Not After : Apr 21 06:00:01 2026 GMT Subject: CN=1FC6A4218C0EABEF1CF5746039B942D31F94E888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1a:3e:09:aa:59:63:5b:70:21:b8:ae:98:bf: 6e:03:f0:f0:20:36:7b:f3:70:3c:5e:6f:fa:98:4f: 20:f1:6a:7a:9c:2d:15:42:49:86:81:29:1c:33:96: 9f:ff:8b:16:cd:bc:c0:62:63:03:ed:23:c1:26:43: c0:38:97:a5:d6:a3:70:5d:4b:fb:3f:46:ef:c1:dc: 5d:bb:44:3a:37:bf:18:cd:70:1b:32:3e:98:be:59: 09:fc:cf:59:52:75:4c:0c:95:aa:99:ee:38:bd:f8: af:c9:02:aa:b3:30:29:4b:cc:0d:23:15:79:f0:20: 95:42:9c:23:91:a1:3b:d7:29:9f:29:3a:27:b9:e5: 2d:04:fa:8d:f1:de:bb:9e:81:5c:74:bc:77:21:d8: 2f:fe:5b:95:d4:e4:64:5f:12:69:2e:df:bd:48:ee: 30:81:62:1b:1a:e4:91:f7:80:82:bf:81:98:d4:8f: 9d:cf:1c:2b:99:e4:6a:85:55:cb:6e:84:a1:78:87: e9:67:f6:2b:41:29:b5:d5:83:cc:35:bd:1c:f4:1e: 10:13:76:f1:4e:d8:00:18:e2:fb:9b:61:b1:c0:bf: bd:79:22:7e:5f:78:e5:4d:6f:bd:bf:0a:ae:fe:d4: 22:88:2c:84:93:0c:03:22:5f:4e:5c:bb:1a:77:cb: 9d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C6:A4:21:8C:0E:AB:EF:1C:F5:74:60:39:B9:42:D3:1F:94:E8:88 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:36:ac:ca:70:db:a0:55:85:37:1a:21:31:e3:80:f2:dd:21: 15:ca:48:1e:5e:8f:49:d1:bc:72:cd:6a:83:79:19:bf:6b:f0: 8e:27:2b:d2:ac:a7:34:01:bf:96:2f:a4:8b:39:6c:71:71:1e: bc:ff:c6:d7:3d:84:97:ae:06:65:87:be:82:cb:a2:38:6f:6c: 33:2a:e0:85:7e:29:bb:dd:d3:e1:4a:9b:57:3d:92:5a:e9:73: 91:6c:79:3a:4b:8b:04:da:90:ff:39:10:0e:e3:c3:87:6f:b9: e2:f0:59:ff:6e:54:8b:53:5a:7d:88:c3:cd:a2:36:20:c1:26: c4:d7:77:c2:43:28:a3:39:1d:2a:c5:37:96:92:84:37:24:e2: 34:6c:f4:26:10:bd:ef:c2:87:c9:2c:d2:2e:76:43:ea:e4:0f: 84:d8:c3:a8:e7:3e:74:d3:57:f9:39:2c:39:6e:c4:ad:59:8d: ba:98:a5:a4:f3:aa:ff:73:d0:a7:3a:32:0c:fb:96:84:2d:83: d6:9a:f7:87:ff:ad:e4:f7:20:31:cc:82:af:03:c2:59:4d:8b: a3:14:3a:5f:0e:81:42:7e:7b:b2:3b:68:cd:82:14:67:06:72: e2:79:e2:4d:83:28:fd:3b:6a:57:45:b0:b2:65:e4:62:d6:41: 54:e1:1f:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdoalwOf2C535TKWlqPoevaNakygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNTU1MDFaFw0yNjA0MjEwNjAwMDFaMDMxMTAvBgNV BAMTKDFGQzZBNDIxOEMwRUFCRUYxQ0Y1NzQ2MDM5Qjk0MkQzMUY5NEU4ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqGj4JqlljW3AhuK6Yv24D8PAg NnvzcDxeb/qYTyDxanqcLRVCSYaBKRwzlp//ixbNvMBiYwPtI8EmQ8A4l6XWo3Bd S/s/Ru/B3F27RDo3vxjNcBsyPpi+WQn8z1lSdUwMlaqZ7ji9+K/JAqqzMClLzA0j FXnwIJVCnCORoTvXKZ8pOie55S0E+o3x3ruegVx0vHch2C/+W5XU5GRfEmku371I 7jCBYhsa5JH3gIK/gZjUj53PHCuZ5GqFVctuhKF4h+ln9itBKbXVg8w1vRz0HhAT dvFO2AAY4vubYbHAv715In5feOVNb72/Cq7+1CKILISTDAMiX05cuxp3y51bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH8akIYwOq+8c9XRgOblC0x+U6IgwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQA8NqzKcNugVYU3GiEx44Dy3SEVykgeXo9J0bxyzWqDeRm/ a/COJyvSrKc0Ab+WL6SLOWxxcR68/8bXPYSXrgZlh76Cy6I4b2wzKuCFfim73dPh SptXPZJa6XORbHk6S4sE2pD/ORAO48OHb7ni8Fn/blSLU1p9iMPNojYgwSbE13fC QyijOR0qxTeWkoQ3JOI0bPQmEL3vwofJLNIudkPq5A+E2MOo5z5001f5OSw5bsSt WY26mKWk86r/c9CnOjIM+5aELYPWmveH/63k9yAxzIKvA8JZTYujFDpfDoFCfnuy O2jNghRnBnLieeJNgyj9O2pXRbCyZeRi1kFU4R8i -----END CERTIFICATE-----Generated at Mon Oct 27 14:27:49 2025 by rpki-client