$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: chysY4uPzyA33K4juv3gU/3Be1FWJJpqAhJx4tkaCC4= Subject key identifier: 73:1A:0A:D4:B5:07:69:53:04:74:D8:17:D8:3E:86:56:BD:34:08:C4 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 307C9DECEC31A836C89B27D465C8EB94C55C14C8 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 07:00:07 +0000 ROA not before: Tue 22 Apr 2025 06:55:07 +0000 ROA not after: Tue 21 Apr 2026 07:00:07 +0000 asID: 24525 IP address blocks: 114.199.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7c:9d:ec:ec:31:a8:36:c8:9b:27:d4:65:c8:eb:94:c5:5c:14:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 06:55:07 2025 GMT Not After : Apr 21 07:00:07 2026 GMT Subject: CN=731A0AD4B50769530474D817D83E8656BD3408C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:4f:ca:c9:2e:c5:b2:e2:e6:72:80:35:fe: 24:81:86:81:0f:18:06:54:e9:9d:3e:76:ac:21:f8: 5c:52:96:e0:7e:18:27:0c:ca:0b:2a:96:79:f6:51: 4f:87:13:ea:eb:bd:92:01:76:1b:72:cb:08:33:3b: 87:a1:c4:1c:4e:d1:a3:1b:3d:38:b7:f5:44:91:19: 19:b9:cf:57:85:fb:d6:fd:75:f6:d7:2a:31:8e:ef: 36:1a:c7:89:9f:1a:53:94:2d:17:93:87:16:77:49: e8:22:e5:f1:d9:26:1a:2d:9a:7f:79:0d:91:0d:39: 04:de:ec:23:4d:ae:e6:66:14:5d:65:ad:76:a6:d1: fd:aa:db:9a:0c:18:e4:f0:95:e1:4f:c4:f7:d5:67: 33:59:2e:9a:ba:01:27:8e:91:c2:d9:7c:fe:9b:1e: 88:59:46:e9:53:43:5a:88:ce:c0:4b:54:83:ea:fd: d4:60:67:82:d1:58:79:ce:ae:b4:b9:01:d6:3c:f0: 06:1f:c5:1c:c7:02:cb:12:a0:0e:63:ac:d2:e8:25: 5e:41:b4:f4:47:7b:5b:4e:80:ad:b0:53:6f:8c:9a: af:a5:28:0c:7f:9c:a0:e3:bc:96:62:51:b7:10:18: 39:f2:eb:0b:ca:97:52:07:e1:2a:eb:b0:bd:8c:d2: c0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:1A:0A:D4:B5:07:69:53:04:74:D8:17:D8:3E:86:56:BD:34:08:C4 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/23 Signature Algorithm: sha256WithRSAEncryption ab:2c:e4:5e:bd:67:8a:71:cc:c3:3c:09:ec:86:16:54:3e:2f: 15:9c:4f:cd:22:50:cb:61:75:ed:cb:8d:11:0d:98:1b:02:8d: d8:4c:1c:f4:1a:3b:5b:11:e0:01:22:1c:6b:b8:29:49:5d:bd: 48:c9:23:83:4a:49:98:df:75:5e:ea:59:6c:44:3f:b9:4b:0d: 01:ea:20:21:4a:90:d8:34:6c:09:c5:31:45:9c:4b:bd:73:ec: e9:be:da:f7:b5:53:a6:83:09:20:13:9f:f5:28:02:2e:68:03: b2:ac:6f:d7:84:58:56:57:60:67:83:96:08:0b:66:6e:fd:c8: 7f:21:de:97:8a:40:4b:6d:02:e0:50:b3:62:38:b1:18:2d:98: d2:d0:be:0b:f5:2a:28:fc:b7:2e:9e:ff:2e:ee:4a:d1:39:af: b3:e2:54:e0:8b:02:9c:6a:b4:a5:57:db:e5:dc:3c:3d:c2:3f: de:b4:af:1d:47:78:6f:5a:b5:4c:82:f7:ef:96:60:05:ab:d5: 8f:4c:13:59:34:2a:87:e0:2d:d0:16:e6:64:64:99:ec:71:2d: fc:8a:89:76:f1:e1:ba:80:21:f0:d9:09:90:aa:b4:bf:36:03: c1:35:55:b7:d7:34:ec:d1:33:10:65:27:e7:b5:fb:5a:33:f1: 73:7c:10:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMHyd7OwxqDbImyfUZcjrlMVcFMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNjU1MDdaFw0yNjA0MjEwNzAwMDdaMDMxMTAvBgNV BAMTKDczMUEwQUQ0QjUwNzY5NTMwNDc0RDgxN0Q4M0U4NjU2QkQzNDA4QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8gk/KyS7FsuLmcoA1/iSBhoEP GAZU6Z0+dqwh+FxSluB+GCcMygsqlnn2UU+HE+rrvZIBdhtyywgzO4ehxBxO0aMb PTi39USRGRm5z1eF+9b9dfbXKjGO7zYax4mfGlOULReThxZ3Segi5fHZJhotmn95 DZENOQTe7CNNruZmFF1lrXam0f2q25oMGOTwleFPxPfVZzNZLpq6ASeOkcLZfP6b HohZRulTQ1qIzsBLVIPq/dRgZ4LRWHnOrrS5AdY88AYfxRzHAssSoA5jrNLoJV5B tPRHe1tOgK2wU2+Mmq+lKAx/nKDjvJZiUbcQGDny6wvKl1IH4SrrsL2M0sCRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcxoK1LUHaVMEdNgX2D6GVr00CMQwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQCrLORevWeKcczDPAnshhZUPi8VnE/NIlDLYXXty40RDZgb Ao3YTBz0GjtbEeABIhxruClJXb1IySODSkmY33Ve6llsRD+5Sw0B6iAhSpDYNGwJ xTFFnEu9c+zpvtr3tVOmgwkgE5/1KAIuaAOyrG/XhFhWV2Bng5YIC2Zu/ch/Id6X ikBLbQLgULNiOLEYLZjS0L4L9Soo/Lcunv8u7krROa+z4lTgiwKcarSlV9vl3Dw9 wj/etK8dR3hvWrVMgvfvlmAFq9WPTBNZNCqH4C3QFuZkZJnscS38iol28eG6gCHw 2QmQqrS/NgPBNVW31zTs0TMQZSfntftaM/FzfBAd -----END CERTIFICATE-----Generated at Mon Oct 27 14:27:53 2025 by rpki-client