$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e39382e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: iq8SRj0r7GXbC/nQDui51FrlLWJ47nqGPuxAg5+kwrU= Subject key identifier: 3B:35:20:2E:48:7B:F8:73:A1:E7:E2:BC:CE:9F:65:AD:0A:B1:79:34 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 56069A51E12A15797ACE187D0760E681C77B3459 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 07:00:07 +0000 ROA not before: Tue 22 Apr 2025 06:55:07 +0000 ROA not after: Tue 21 Apr 2026 07:00:07 +0000 asID: 24525 IP address blocks: 114.199.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:06:9a:51:e1:2a:15:79:7a:ce:18:7d:07:60:e6:81:c7:7b:34:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 06:55:07 2025 GMT Not After : Apr 21 07:00:07 2026 GMT Subject: CN=3B35202E487BF873A1E7E2BCCE9F65AD0AB17934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:21:e2:79:09:98:aa:f3:a4:32:6f:3e:01: de:35:a5:fe:56:e9:a6:dc:6f:b4:19:65:a9:cf:42: b8:e4:c4:6a:4d:b5:32:c9:7e:96:18:b1:ab:60:ee: 0c:15:43:ea:8a:68:0a:ff:c1:00:3f:5d:b6:cc:bb: db:59:62:6f:7a:2f:8a:c0:50:33:61:b4:be:ff:e8: 52:ed:cf:ea:4c:64:70:3d:e6:a5:9e:9a:0e:d3:45: 08:43:b9:36:2c:98:62:e7:6e:d0:d4:f3:58:21:e4: 3a:1e:3a:1e:99:43:81:f0:d2:0c:64:3f:0e:6d:f6: b5:28:c1:1a:0d:7d:bc:6d:3e:07:e1:99:b9:6e:cd: 26:21:a9:66:06:3d:ce:5a:bd:27:02:27:36:fc:0c: 32:1a:2d:c7:8f:29:b5:03:02:62:7f:bd:87:ef:d6: 15:bb:d9:da:5c:e1:08:e2:9c:5f:65:01:8f:12:98: 57:ab:30:fa:ca:f9:5c:7d:d8:26:76:8d:ff:c0:f0: e2:23:32:8b:a9:0c:b2:b7:72:93:18:f2:fe:70:f4: d7:4c:be:3f:aa:3e:8e:bd:93:50:3b:40:a0:13:4e: 8f:27:a3:66:57:61:3b:97:da:84:92:f1:ff:7a:fe: 57:7b:45:18:06:6d:db:a6:3a:6f:13:33:dc:c6:19: 6f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:35:20:2E:48:7B:F8:73:A1:E7:E2:BC:CE:9F:65:AD:0A:B1:79:34 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.98.0/23 Signature Algorithm: sha256WithRSAEncryption 54:34:8b:1c:ed:c2:62:5b:c2:89:ce:0d:dc:5f:3d:03:61:ee: b0:27:b3:28:e7:e6:81:13:55:75:2f:4b:01:fc:67:b2:46:83: b9:35:bc:db:62:28:50:79:c3:47:8e:7c:7c:68:75:2c:3e:eb: ac:d1:4e:e2:4d:4e:88:7e:7b:83:66:b5:d6:90:58:38:77:75: 76:8f:49:5d:1c:68:2b:d1:bb:61:31:f6:f4:b0:f2:46:0e:6e: 8e:fc:cf:8e:94:69:98:5d:c1:96:8a:ef:8d:15:bc:89:26:cc: ef:a5:01:e7:e4:0b:2f:ab:fd:d5:d3:70:20:72:e1:f3:f0:36: a0:4d:61:fb:c6:c3:15:c8:70:73:3c:12:c5:60:5a:9a:8f:21: 90:28:bd:45:6c:96:2f:31:2d:27:af:81:52:9c:87:4b:b0:95: 6d:74:8a:07:a1:98:91:e3:79:99:a7:e0:e1:b6:90:82:db:c4: d0:2f:d5:ea:0e:da:67:74:a9:2e:fc:bd:1f:0d:bf:57:42:a8: e0:35:dd:c0:6e:a1:1a:90:f0:f1:4b:be:46:bb:47:6f:29:af: 54:48:9a:2b:d8:41:b2:3e:6d:d6:89:c4:3e:fb:29:cb:a5:7b: 8d:1d:67:28:e2:af:e7:c0:19:9b:8b:70:a0:10:b8:6f:10:7a: e1:de:30:64 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVgaaUeEqFXl6zhh9B2Dmgcd7NFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNjU1MDdaFw0yNjA0MjEwNzAwMDdaMDMxMTAvBgNV BAMTKDNCMzUyMDJFNDg3QkY4NzNBMUU3RTJCQ0NFOUY2NUFEMEFCMTc5MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UiHieQmYqvOkMm8+Ad41pf5W 6abcb7QZZanPQrjkxGpNtTLJfpYYsatg7gwVQ+qKaAr/wQA/XbbMu9tZYm96L4rA UDNhtL7/6FLtz+pMZHA95qWemg7TRQhDuTYsmGLnbtDU81gh5DoeOh6ZQ4Hw0gxk Pw5t9rUowRoNfbxtPgfhmbluzSYhqWYGPc5avScCJzb8DDIaLcePKbUDAmJ/vYfv 1hW72dpc4QjinF9lAY8SmFerMPrK+Vx92CZ2jf/A8OIjMoupDLK3cpMY8v5w9NdM vj+qPo69k1A7QKATTo8no2ZXYTuX2oSS8f96/ld7RRgGbdumOm8TM9zGGW8/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOzUgLkh7+HOh5+K8zp9lrQqxeTQwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXLHYjANBgkqhkiG 9w0BAQsFAAOCAQEAVDSLHO3CYlvCic4N3F89A2HusCezKOfmgRNVdS9LAfxnskaD uTW822IoUHnDR458fGh1LD7rrNFO4k1OiH57g2a11pBYOHd1do9JXRxoK9G7YTH2 9LDyRg5ujvzPjpRpmF3BlorvjRW8iSbM76UB5+QLL6v91dNwIHLh8/A2oE1h+8bD FchwczwSxWBamo8hkCi9RWyWLzEtJ6+BUpyHS7CVbXSKB6GYkeN5mafg4baQgtvE 0C/V6g7aZ3SpLvy9Hw2/V0Ko4DXdwG6hGpDw8Uu+RrtHbymvVEiaK9hBsj5t1onE Pvspy6V7jR1nKOKv58AZm4twoBC4bxB64d4wZA== -----END CERTIFICATE-----Generated at Mon Oct 27 14:26:35 2025 by rpki-client