$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39352e302f32342d3234203d3e203338353237.roa File: 3131392e34372e39352e302f32342d3234203d3e203338353237.roa (raw, json) Hash identifier: BqQhhrsqBYVQaOkGhTzanzYpE+3yxY19OwGCf/8TD+4= Subject key identifier: BB:C6:6D:AA:E2:D5:BE:3A:48:68:1F:EC:D4:5B:CC:44:AC:AF:22:CC Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 32FB74C32C75BBCEDD785D2BE3CC9C276E64792B Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39352e302f32342d3234203d3e203338353237.roa Signing time: Wed 13 Aug 2025 02:15:04 +0000 ROA not before: Wed 13 Aug 2025 02:10:04 +0000 ROA not after: Wed 12 Aug 2026 02:15:04 +0000 asID: 38527 IP address blocks: 119.47.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 13:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:fb:74:c3:2c:75:bb:ce:dd:78:5d:2b:e3:cc:9c:27:6e:64:79:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Aug 13 02:10:04 2025 GMT Not After : Aug 12 02:15:04 2026 GMT Subject: CN=BBC66DAAE2D5BE3A48681FECD45BCC44ACAF22CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e2:1e:71:c5:55:a4:c8:42:ba:76:89:7e:13: a3:75:af:bd:cb:ba:a6:7e:ec:a1:54:d1:e6:87:58: 2b:fc:66:d9:cc:b8:d2:e2:c3:c0:81:25:f1:b1:fa: b6:4d:4f:68:a7:df:67:d9:56:0c:25:d0:3c:cf:0c: bd:30:6f:f3:b8:2a:2d:b9:65:3b:78:06:e6:25:b0: 17:00:32:1f:08:f9:41:c4:e1:90:6c:ea:06:fe:b9: ae:53:b3:65:c8:fe:e6:03:9f:03:48:ab:b9:26:47: 9e:f0:da:01:f9:32:05:ef:af:7f:06:51:52:76:10: 7b:27:0f:60:2d:a2:15:7f:00:3a:18:b7:04:5b:f1: 48:db:37:8b:08:d4:01:c5:06:5d:14:fe:7c:67:95: 49:aa:6a:35:cb:1e:3e:9b:49:b3:76:2f:8d:db:01: b0:12:af:78:4d:0e:63:ed:dd:a4:47:22:8c:99:bc: 57:f3:5f:32:8e:4f:e7:27:8b:40:d6:6d:17:17:3e: 2b:db:7b:a3:58:21:a5:6e:82:8a:82:7a:18:14:2a: 41:68:dc:ef:4f:d8:15:f8:e0:8f:1a:cf:e9:1a:eb: 5b:2c:56:17:14:6d:db:ab:eb:f3:74:b1:fc:09:29: d6:ab:a0:fa:3f:b3:2e:b7:ac:c0:71:09:4e:6e:3a: 04:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C6:6D:AA:E2:D5:BE:3A:48:68:1F:EC:D4:5B:CC:44:AC:AF:22:CC X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39352e302f32342d3234203d3e203338353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.47.95.0/24 Signature Algorithm: sha256WithRSAEncryption 41:3e:43:9d:0b:31:41:bd:40:89:69:ce:7b:ad:98:60:16:4f: 8e:1e:ed:60:36:9a:6e:ef:d5:97:70:9a:d8:41:95:ea:d8:bc: 7f:e1:a6:e1:91:5c:4d:9e:1d:ff:91:f8:44:d9:4b:cd:aa:16: 3c:df:d8:da:c3:8b:c2:c8:4f:e5:92:9c:b7:cb:9e:2e:f4:2f: 94:75:39:0b:c8:a3:e0:aa:d9:27:1b:c3:5e:74:42:6e:da:b5: e3:79:28:67:72:dd:81:d7:31:3d:fe:e2:16:0c:b5:ec:ee:60: c1:10:77:0c:57:8d:2c:60:31:4f:a4:e0:b5:44:ad:cb:20:66: 39:54:9f:08:f2:fb:87:0f:a8:94:e5:52:79:fa:51:68:0b:c9: 58:e4:d4:85:50:95:50:72:b2:c9:da:39:cc:0b:05:6c:c6:f8: d4:bb:e5:28:2a:3f:2f:f8:7e:2e:c2:77:5b:28:01:61:2b:ab: 5d:13:bf:ab:93:53:4c:09:d1:81:f1:6f:bd:87:1e:b1:a7:1c: 5c:ee:26:aa:e3:8b:1e:6e:eb:1a:6a:6f:4d:19:96:80:00:3c: d3:04:b5:68:a5:c4:c9:b3:18:31:69:79:a1:e8:bb:1b:4c:18: 59:c9:72:19:d5:44:95:0d:94:aa:cd:58:10:37:81:f1:3a:13: 77:b7:ba:13 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMvt0wyx1u87deF0r48ycJ25keSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNTA4MTMwMjEwMDRaFw0yNjA4MTIwMjE1MDRaMDMxMTAvBgNV BAMTKEJCQzY2REFBRTJENUJFM0E0ODY4MUZFQ0Q0NUJDQzQ0QUNBRjIyQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC34h5xxVWkyEK6dol+E6N1r73L uqZ+7KFU0eaHWCv8ZtnMuNLiw8CBJfGx+rZNT2in32fZVgwl0DzPDL0wb/O4Ki25 ZTt4BuYlsBcAMh8I+UHE4ZBs6gb+ua5Ts2XI/uYDnwNIq7kmR57w2gH5MgXvr38G UVJ2EHsnD2AtohV/ADoYtwRb8UjbN4sI1AHFBl0U/nxnlUmqajXLHj6bSbN2L43b AbASr3hNDmPt3aRHIoyZvFfzXzKOT+cni0DWbRcXPivbe6NYIaVugoqCehgUKkFo 3O9P2BX44I8az+ka61ssVhcUbdur6/N0sfwJKdaroPo/sy63rMBxCU5uOgTxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUu8ZtquLVvjpIaB/s1FvMRKyvIswwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzEzOTJlMzQzNzJlMzkzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3L18wDQYJKoZIhvcN AQELBQADggEBAEE+Q50LMUG9QIlpznutmGAWT44e7WA2mm7v1ZdwmthBlerYvH/h puGRXE2eHf+R+ETZS82qFjzf2NrDi8LIT+WSnLfLni70L5R1OQvIo+Cq2Scbw150 Qm7ateN5KGdy3YHXMT3+4hYMtezuYMEQdwxXjSxgMU+k4LVErcsgZjlUnwjy+4cP qJTlUnn6UWgLyVjk1IVQlVByssnaOcwLBWzG+NS75SgqPy/4fi7Cd1soAWErq10T v6uTU0wJ0YHxb72HHrGnHFzuJqrjix5u6xpqb00ZloAAPNMEtWilxMmzGDFpeaHo uxtMGFnJchnVRJUNlKrNWBA3gfE6E3e3uhM= -----END CERTIFICATE-----Generated at Sat Aug 23 16:07:54 2025 by rpki-client