$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 8YHpUAupkLg2JsNWBnlxJuCsRyGEV0G9UVnWSMBHNFU= Subject key identifier: CE:49:AD:35:25:38:52:38:E8:D3:4C:A5:B4:78:D3:88:5F:12:30:95 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 1962309C72967FA96CE8DDA701A306F2D946E69B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa Signing time: Tue 26 Aug 2025 09:00:01 +0000 ROA not before: Tue 26 Aug 2025 08:55:01 +0000 ROA not after: Tue 25 Aug 2026 09:00:01 +0000 asID: 24525 IP address blocks: 114.199.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 03:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:62:30:9c:72:96:7f:a9:6c:e8:dd:a7:01:a3:06:f2:d9:46:e6:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Aug 26 08:55:01 2025 GMT Not After : Aug 25 09:00:01 2026 GMT Subject: CN=CE49AD3525385238E8D34CA5B478D3885F123095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4e:33:b7:f5:83:15:65:d1:7b:58:ca:df:26: d8:d5:ff:8b:7d:b5:b9:6f:d6:1c:82:17:01:46:42: 65:73:ba:78:a9:41:cc:46:eb:c8:f7:e8:d0:55:3c: f4:3b:de:f5:63:6e:00:9d:85:5d:e6:30:ec:53:a5: d4:0c:78:30:8d:5c:34:b3:f7:e5:d4:85:fe:7b:ae: 79:93:4b:77:4d:66:17:5f:bd:25:3a:7d:10:8e:74: 04:43:36:87:2d:09:a9:44:bb:65:77:9c:04:b9:1a: db:11:a0:f3:fd:4c:27:79:be:49:eb:82:00:4a:92: 10:69:b9:4d:c2:b2:90:75:b7:c8:05:1b:0b:80:3a: 70:ff:af:f5:ba:4f:62:0a:6f:ef:27:d5:7c:78:ec: 3a:f0:1e:68:2d:f9:eb:be:94:4b:fb:1c:f7:02:99: cb:93:83:c5:d6:08:f6:e4:0c:4d:d3:cb:ec:9b:63: e0:48:9b:35:12:30:be:18:e4:13:fe:18:a4:99:14: 0f:10:e6:56:e1:02:95:79:3b:f5:6b:8c:d6:52:56: 56:ad:a8:0a:a6:c9:61:df:66:7f:56:f7:39:4d:5a: 43:67:aa:26:1f:3a:65:a4:c7:82:56:91:01:27:e0: 68:51:a9:8f:21:20:3c:f6:81:d6:e8:65:49:7e:81: 16:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:49:AD:35:25:38:52:38:E8:D3:4C:A5:B4:78:D3:88:5F:12:30:95 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131312e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.111.0/24 Signature Algorithm: sha256WithRSAEncryption 54:df:3f:d8:db:f8:8b:dd:2d:a5:87:84:8e:57:be:47:9d:32: 2b:d0:74:a8:a5:3f:88:d8:05:c0:0f:d7:bd:a1:9e:4f:03:ae: 5a:07:47:bd:7a:18:e6:83:ab:7f:57:30:d1:07:e5:7c:c1:2c: 5a:f1:8b:72:d6:ea:60:36:c3:24:05:61:79:45:5f:02:0a:21: 0b:a5:9d:2f:bf:68:1c:e4:0b:78:5a:d8:58:52:96:f5:0b:fa: c4:fb:77:c1:09:fb:d8:24:3b:3c:b3:5f:55:5b:9d:1d:90:33: c6:08:fe:76:6a:04:64:cb:ea:28:6a:db:45:f1:64:9e:9d:71: 84:77:ec:b4:e9:a3:c2:04:5f:5f:6a:19:6c:7c:57:42:3e:ac: 86:95:79:79:49:10:2f:84:59:f5:9f:39:e0:81:94:47:91:81: dd:a8:c7:d9:b0:b2:46:4a:2b:fd:92:02:c0:8d:32:84:22:a9: 2f:b3:8b:91:4a:ae:b4:0c:8d:39:ca:f2:ee:58:e9:50:09:ec: 7a:2a:f4:b7:a0:65:07:cc:a8:40:09:cc:f6:be:73:f5:cc:75: 8d:4b:86:9c:74:e6:a6:9f:99:6b:df:ed:01:39:3a:46:96:31: 84:01:0e:83:b5:fe:8c:98:59:2e:94:c9:2d:2d:75:d9:b6:c9: 31:9e:ad:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGWIwnHKWf6ls6N2nAaMG8tlG5pswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA4MjYwODU1MDFaFw0yNjA4MjUwOTAwMDFaMDMxMTAvBgNV BAMTKENFNDlBRDM1MjUzODUyMzhFOEQzNENBNUI0NzhEMzg4NUYxMjMwOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4TjO39YMVZdF7WMrfJtjV/4t9 tblv1hyCFwFGQmVzunipQcxG68j36NBVPPQ73vVjbgCdhV3mMOxTpdQMeDCNXDSz 9+XUhf57rnmTS3dNZhdfvSU6fRCOdARDNoctCalEu2V3nAS5GtsRoPP9TCd5vknr ggBKkhBpuU3CspB1t8gFGwuAOnD/r/W6T2IKb+8n1Xx47DrwHmgt+eu+lEv7HPcC mcuTg8XWCPbkDE3Ty+ybY+BImzUSML4Y5BP+GKSZFA8Q5lbhApV5O/VrjNZSVlat qAqmyWHfZn9W9zlNWkNnqiYfOmWkx4JWkQEn4GhRqY8hIDz2gdboZUl+gRa3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzkmtNSU4Ujjo00yltHjTiF8SMJUwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdvMA0GCSqG SIb3DQEBCwUAA4IBAQBU3z/Y2/iL3S2lh4SOV75HnTIr0HSopT+I2AXAD9e9oZ5P A65aB0e9ehjmg6t/VzDRB+V8wSxa8Yty1upgNsMkBWF5RV8CCiELpZ0vv2gc5At4 WthYUpb1C/rE+3fBCfvYJDs8s19VW50dkDPGCP52agRky+ooattF8WSenXGEd+y0 6aPCBF9fahlsfFdCPqyGlXl5SRAvhFn1nznggZRHkYHdqMfZsLJGSiv9kgLAjTKE Iqkvs4uRSq60DI05yvLuWOlQCex6KvS3oGUHzKhACcz2vnP1zHWNS4acdOamn5lr 3+0BOTpGljGEAQ6Dtf6MmFkulMktLXXZtskxnq2q -----END CERTIFICATE-----Generated at Sun Sep 7 15:37:25 2025 by rpki-client