$ rpki-client -vvf repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa File: 3131372e35332e34342e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: R//rU13s2JPenNUsihOvlbAbpj+HfKGOOTSxdjuipA4= Subject key identifier: 4B:2E:4D:56:E7:73:B6:D1:04:00:E9:78:DB:42:7B:14:85:4F:66:31 Certificate issuer: /CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Certificate serial: 4B360CDDE546F6F390FF7CCAEFC666B52A3735CB Authority key identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa Signing time: Fri 10 Oct 2025 23:01:20 +0000 ROA not before: Fri 10 Oct 2025 22:56:20 +0000 ROA not after: Fri 09 Oct 2026 23:01:20 +0000 asID: 58397 IP address blocks: 117.53.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.crl rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:36:0c:dd:e5:46:f6:f3:90:ff:7c:ca:ef:c6:66:b5:2a:37:35:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Validity Not Before: Oct 10 22:56:20 2025 GMT Not After : Oct 9 23:01:20 2026 GMT Subject: CN=4B2E4D56E773B6D10400E978DB427B14854F6631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:f9:cc:88:16:6c:67:8e:34:fd:f5:14:2b: d5:c1:67:c6:04:4c:2c:6d:3b:eb:c8:2a:a7:03:69: 12:8a:51:84:8d:e8:c4:05:a8:42:03:bb:da:1f:97: 18:d9:3a:d9:be:b0:3f:03:43:37:fa:e6:ad:40:21: ee:f1:2d:61:29:53:d4:7d:43:93:27:fb:24:f1:0a: 3a:b8:c0:8c:8a:27:bd:a2:71:f6:db:61:39:78:04: b7:1f:84:93:d4:37:ad:c6:19:25:ce:ef:3f:42:e8: 05:94:ca:b5:0e:7e:20:8d:0c:47:03:fc:7f:68:f7: c7:ff:a4:74:b8:36:9d:46:17:6b:1c:ff:2c:8f:73: b9:50:2b:92:a0:7b:a3:9d:4a:8e:96:01:ba:48:85: e0:e9:60:f5:b5:28:f6:29:2a:42:a3:66:02:fa:b0: d8:6a:3b:b4:92:9d:ed:ef:7f:48:ec:db:ae:32:56: 9f:d4:2a:a0:f6:1e:b8:0e:4d:46:ff:9b:33:d1:d3: a5:51:c6:16:3d:af:07:45:2a:68:81:4e:16:db:45: 27:5f:16:7e:7c:d4:bf:a9:c7:84:93:8c:10:9e:ca: dc:68:59:b0:0f:8e:44:3d:f1:85:72:e7:00:64:a5: 11:99:96:49:7e:b1:e0:a7:a3:16:a9:90:65:24:34: 6c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:2E:4D:56:E7:73:B6:D1:04:00:E9:78:DB:42:7B:14:85:4F:66:31 X509v3 Authority Key Identifier: keyid:57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.44.0/22 Signature Algorithm: sha256WithRSAEncryption 36:cf:30:13:43:f6:64:82:71:de:b6:16:54:d3:ec:cf:aa:d7: 1c:f6:41:05:71:94:5c:15:85:1e:07:14:66:dc:d8:3f:6f:b0: b2:0f:12:b0:56:5e:87:ff:0d:c3:6d:94:6f:f9:48:17:9b:45: 46:0f:4c:05:aa:5b:58:41:07:5f:d6:5c:40:82:65:4f:7b:0f: 64:e3:dd:4d:c0:71:70:e7:47:1e:a3:4c:28:e4:1d:47:42:fa: ae:59:ba:35:3c:2d:1e:1f:4f:4a:d9:c0:54:4e:33:79:03:c7: 28:81:84:0f:dc:4e:55:c3:b5:94:84:8a:bd:8e:1a:4c:9d:9e: 94:34:cb:9a:40:c2:54:9b:5a:e6:54:6c:b5:c1:28:07:9f:a1: 85:1c:66:19:4f:bb:3a:39:1b:a4:c8:1b:75:73:33:4d:8c:e4: 0e:22:e6:be:9a:b0:59:b7:da:1d:c1:53:36:b3:94:21:e0:9c: 74:d9:be:08:e5:21:aa:af:86:2f:a8:81:93:cc:f9:37:04:2a: d6:2e:ca:c1:30:c9:e4:e0:5c:ca:96:25:a7:07:2f:14:ec:30: 7b:0b:59:cb:dd:2e:84:09:53:df:1b:9a:5f:25:d8:7e:73:f1: 0f:4c:54:0e:e0:f8:cd:bf:49:a5:90:c3:26:e8:82:6b:38:d1: 3a:60:2c:77 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSzYM3eVG9vOQ/3zK78ZmtSo3NcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNE NkY2MEUyNDAeFw0yNTEwMTAyMjU2MjBaFw0yNjEwMDkyMzAxMjBaMDMxMTAvBgNV BAMTKDRCMkU0RDU2RTc3M0I2RDEwNDAwRTk3OERCNDI3QjE0ODU0RjY2MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNE/nMiBZsZ440/fUUK9XBZ8YE TCxtO+vIKqcDaRKKUYSN6MQFqEIDu9oflxjZOtm+sD8DQzf65q1AIe7xLWEpU9R9 Q5Mn+yTxCjq4wIyKJ72icfbbYTl4BLcfhJPUN63GGSXO7z9C6AWUyrUOfiCNDEcD /H9o98f/pHS4Np1GF2sc/yyPc7lQK5Kge6OdSo6WAbpIheDpYPW1KPYpKkKjZgL6 sNhqO7SSne3vf0js264yVp/UKqD2HrgOTUb/mzPR06VRxhY9rwdFKmiBThbbRSdf Fn581L+px4STjBCeytxoWbAPjkQ98YVy5wBkpRGZlkl+seCnoxapkGUkNGzpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUSy5NVudzttEEAOl420J7FIVPZjEwHwYDVR0j BBgwFoAUV9S4JprdpGDo95JdCqEm7Nb2DiQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjQ5OWM1Ni1hMjQ2LTRkMTgtYmU4Ni1mNDYxZDhmNTU5YzgvMC81N0Q0QjgyNjlB RERBNDYwRThGNzkyNUQwQUExMjZFQ0Q2RjYwRTI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNENkY2 MEUyNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNDk5YzU2LWEyNDYtNGQxOC1i ZTg2LWY0NjFkOGY1NTljOC8wLzMxMzEzNzJlMzUzMzJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzgzMzM5Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ1NSwwDQYJKoZIhvcN AQELBQADggEBADbPMBND9mSCcd62FlTT7M+q1xz2QQVxlFwVhR4HFGbc2D9vsLIP ErBWXof/DcNtlG/5SBebRUYPTAWqW1hBB1/WXECCZU97D2Tj3U3AcXDnRx6jTCjk HUdC+q5ZujU8LR4fT0rZwFROM3kDxyiBhA/cTlXDtZSEir2OGkydnpQ0y5pAwlSb WuZUbLXBKAefoYUcZhlPuzo5G6TIG3VzM02M5A4i5r6asFm32h3BUzazlCHgnHTZ vgjlIaqvhi+ogZPM+TcEKtYuysEwyeTgXMqWJacHLxTsMHsLWcvdLoQJU98bml8l 2H5z8Q9MVA7g+M2/SaWQwybogms40TpgLHc= -----END CERTIFICATE-----Generated at Mon Oct 20 13:05:47 2025 by rpki-client