$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: tZOye+zBPXfGgG3Tg2MKzjojOo1a8EfMZ0yDgeK0BK8= Subject key identifier: 52:FC:65:B0:BC:21:A0:43:D9:EA:86:C4:6D:A5:DD:B6:40:FD:FF:56 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 33627E7363C87676630D1D69EC79BCB6E974CB5B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:01 +0000 ROA not before: Sat 03 May 2025 08:55:01 +0000 ROA not after: Sat 02 May 2026 09:00:01 +0000 asID: 24525 IP address blocks: 114.199.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:62:7e:73:63:c8:76:76:63:0d:1d:69:ec:79:bc:b6:e9:74:cb:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:01 2025 GMT Not After : May 2 09:00:01 2026 GMT Subject: CN=52FC65B0BC21A043D9EA86C46DA5DDB640FDFF56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b8:75:57:d2:bc:f5:8c:25:ce:38:3c:08:56: f1:35:50:c3:50:7d:67:6d:51:a9:ee:9f:8e:e7:0a: fe:09:bc:4a:47:35:76:4b:9e:39:36:fa:e5:b9:fd: 6d:e5:4e:bb:cc:0c:4b:05:b5:ef:d1:cd:8e:d5:46: 4b:79:ef:6c:0a:92:82:a2:3e:b8:2c:c1:e4:d7:3c: f1:4e:bd:86:fd:e8:52:f2:53:05:a0:24:eb:71:88: dc:3e:86:f0:ff:b9:ac:98:f9:94:ed:1b:f4:63:27: cf:e6:87:d2:93:e9:d1:a7:9d:7a:d0:3b:89:f5:5d: 6c:af:ce:33:05:d1:b3:96:04:48:5d:2e:9f:da:fb: 0f:c1:2c:89:8c:7d:ba:f1:5e:c5:c2:b0:1a:ed:bb: 20:c1:f3:15:80:fa:68:71:8d:51:72:58:23:d1:ad: e7:fc:76:c9:83:bc:f8:ee:76:97:6b:c6:d7:c0:22: dd:48:dd:90:f0:2f:65:c6:50:7d:ad:88:60:ce:37: da:44:89:62:5c:a6:42:5d:15:37:eb:ff:f4:eb:d6: fe:0a:cc:60:36:3c:b3:6c:45:28:5c:7e:81:ae:1b: 77:f8:ae:5b:2a:db:05:86:fa:39:09:c1:f8:49:22: db:22:f0:df:eb:4c:a6:e4:0a:47:6a:c0:39:6a:da: 29:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FC:65:B0:BC:21:A0:43:D9:EA:86:C4:6D:A5:DD:B6:40:FD:FF:56 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/24 Signature Algorithm: sha256WithRSAEncryption c7:34:0d:ab:2c:5d:2c:fa:41:7c:d1:05:2f:74:3a:83:e6:ea: 55:d2:08:c3:14:2f:58:f4:e0:9d:e9:0d:32:4c:1b:a5:be:e3: 24:0a:6f:94:1d:58:6a:f2:ae:64:8c:37:ec:1d:6d:f4:24:83: 59:4c:e0:ec:43:c8:21:36:ab:91:e7:0d:1e:76:10:6e:6a:3a: b5:ab:a4:56:cd:be:9b:08:5c:64:22:51:3f:83:70:50:2c:3f: 48:05:dd:0a:8e:c7:fe:a5:5f:1a:0d:96:78:c3:1b:bc:10:f2: d5:b4:d1:61:36:a5:f9:c9:30:5f:40:29:a5:3f:23:60:c6:56: f0:57:92:c3:4b:87:40:57:a9:f3:3c:71:e8:49:2c:6c:14:ef: 6b:cb:73:b7:ed:75:cf:69:77:9c:37:33:ba:7b:a7:67:5b:b8: ac:eb:06:a9:96:67:7c:9f:01:9d:d6:5c:db:02:c4:1a:39:e7: 30:4e:43:84:6f:91:24:50:e8:8c:be:5b:01:e0:30:61:c8:cf: 68:72:76:f1:ec:8c:64:dc:8d:bf:25:8d:c5:38:63:eb:b9:62: bd:f7:28:35:3a:bd:08:85:dc:dc:92:d8:e3:14:9f:8d:75:bb: f4:cf:d9:69:20:b8:7f:62:ca:8d:63:ff:1e:65:1d:c2:36:f3: 88:6a:14:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM2J+c2PIdnZjDR1p7Hm8tul0y1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDFaFw0yNjA1MDIwOTAwMDFaMDMxMTAvBgNV BAMTKDUyRkM2NUIwQkMyMUEwNDNEOUVBODZDNDZEQTVEREI2NDBGREZGNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCluHVX0rz1jCXOODwIVvE1UMNQ fWdtUanun47nCv4JvEpHNXZLnjk2+uW5/W3lTrvMDEsFte/RzY7VRkt572wKkoKi PrgsweTXPPFOvYb96FLyUwWgJOtxiNw+hvD/uayY+ZTtG/RjJ8/mh9KT6dGnnXrQ O4n1XWyvzjMF0bOWBEhdLp/a+w/BLImMfbrxXsXCsBrtuyDB8xWA+mhxjVFyWCPR ref8dsmDvPjudpdrxtfAIt1I3ZDwL2XGUH2tiGDON9pEiWJcpkJdFTfr//Tr1v4K zGA2PLNsRShcfoGuG3f4rlsq2wWG+jkJwfhJItsi8N/rTKbkCkdqwDlq2inJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUvxlsLwhoEPZ6obEbaXdtkD9/1YwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQDHNA2rLF0s+kF80QUvdDqD5upV0gjDFC9Y9OCd6Q0yTBul vuMkCm+UHVhq8q5kjDfsHW30JINZTODsQ8ghNquR5w0edhBuajq1q6RWzb6bCFxk IlE/g3BQLD9IBd0Kjsf+pV8aDZZ4wxu8EPLVtNFhNqX5yTBfQCmlPyNgxlbwV5LD S4dAV6nzPHHoSSxsFO9ry3O37XXPaXecNzO6e6dnW7is6waplmd8nwGd1lzbAsQa OecwTkOEb5EkUOiMvlsB4DBhyM9ocnbx7Ixk3I2/JY3FOGPruWK99yg1Or0Ihdzc ktjjFJ+Ndbv0z9lpILh/YsqNY/8eZR3CNvOIahT2 -----END CERTIFICATE-----Generated at Mon Oct 27 14:27:49 2025 by rpki-client