$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38312e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38312e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: ykSonLYEyu0zm2mh6ggpWONNbKSaAiZY5Moyu/n9AQs= Subject key identifier: 8B:D3:6C:59:66:08:3B:A6:88:19:FE:61:7D:02:7E:F7:81:C7:40:E3 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 32DD9819B3AE8E20DF8D30FD123BEFED1879CDEE Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38312e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 12:02:06 +0000 ROA not before: Sat 17 May 2025 11:57:06 +0000 ROA not after: Sat 16 May 2026 12:02:06 +0000 asID: 17671 IP address blocks: 114.199.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 16:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:dd:98:19:b3:ae:8e:20:df:8d:30:fd:12:3b:ef:ed:18:79:cd:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 11:57:06 2025 GMT Not After : May 16 12:02:06 2026 GMT Subject: CN=8BD36C5966083BA68819FE617D027EF781C740E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c1:a2:85:28:2f:3e:95:b6:6f:d3:6d:24:62: 55:44:e0:ac:e7:bd:6c:3d:34:88:9e:ca:05:eb:4d: 63:59:50:2b:8a:6d:7f:66:aa:65:d4:81:82:88:46: df:76:1e:2a:ec:d7:f6:6a:54:cf:32:da:ec:eb:1b: e7:39:d6:c8:e6:59:89:ae:7b:70:b1:0b:ea:24:c0: 2e:6a:80:c9:10:8a:e7:16:d9:35:73:f6:9b:56:b6: 8d:e3:07:6f:8b:27:ba:7f:84:e4:a9:21:83:91:1c: 20:d8:48:72:be:44:15:3e:04:d9:e0:e9:f0:29:c4: ed:67:64:a2:0b:eb:b6:4f:8f:05:f4:9f:6d:12:39: d8:e5:b9:80:d4:7e:b8:9e:b8:83:23:64:6e:bf:49: ef:c5:89:f2:3f:90:85:f5:da:17:df:61:53:e6:1a: ae:cf:a5:19:aa:cc:fe:85:e0:56:0d:a5:ef:93:2f: 76:03:7f:25:27:54:3d:02:e7:22:8e:36:d3:cc:23: e8:58:70:2c:e9:a7:6e:37:a8:fa:52:ce:71:11:04: ee:d7:a8:08:4e:1d:d9:d9:35:9e:e6:c4:63:d3:5c: 12:4e:3a:dd:22:48:d0:d7:fd:02:0d:64:aa:9a:51: a1:f3:fe:a4:a4:ea:e4:a7:f9:4e:a1:75:3e:a3:4e: 91:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D3:6C:59:66:08:3B:A6:88:19:FE:61:7D:02:7E:F7:81:C7:40:E3 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38312e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.81.0/24 Signature Algorithm: sha256WithRSAEncryption 95:31:33:9b:bc:ec:14:18:d5:80:60:ef:d6:76:ca:56:72:9d: 41:ef:e7:d4:a1:b6:47:47:ed:f7:39:4b:8c:92:d2:3e:7a:b5: f8:8d:6a:7e:fe:fa:77:98:4d:93:98:42:c0:fe:11:87:2d:5e: b0:24:84:85:d5:ce:57:00:cc:77:65:cc:cb:26:9d:9e:aa:a9: 65:43:34:53:b1:41:26:7f:63:80:6e:13:0d:e1:8d:db:ec:62: 58:f1:71:8d:38:64:59:7e:43:f9:53:91:26:0b:0e:13:fe:08: c1:40:79:c6:71:0c:e1:a9:f6:d2:39:6b:be:ec:7c:0c:a5:24: 30:a1:cb:ae:be:12:23:e8:bc:29:53:94:c1:55:e3:83:32:63: dd:18:10:e4:49:3c:3f:39:25:2b:f5:c8:08:47:17:12:37:9f: 3b:dc:0a:13:d8:98:a7:22:47:34:9c:db:ac:7a:56:d4:ea:0d: c2:3d:d9:65:7d:df:2b:20:e6:b7:2d:0b:6e:3e:03:d6:45:59: 9f:84:5f:f1:38:8c:29:ec:71:ab:e7:8e:58:b2:9b:f7:6c:e5: 2e:c3:6f:75:d3:da:92:2c:00:a3:77:39:27:aa:3e:0c:27:ac: 49:7e:32:79:52:05:8c:84:4f:02:e3:b5:d0:f7:fa:a5:da:1f: f3:c2:ec:ce -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMt2YGbOujiDfjTD9Ejvv7Rh5ze4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMTU3MDZaFw0yNjA1MTYxMjAyMDZaMDMxMTAvBgNV BAMTKDhCRDM2QzU5NjYwODNCQTY4ODE5RkU2MTdEMDI3RUY3ODFDNzQwRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuwaKFKC8+lbZv020kYlVE4Kzn vWw9NIieygXrTWNZUCuKbX9mqmXUgYKIRt92Hirs1/ZqVM8y2uzrG+c51sjmWYmu e3CxC+okwC5qgMkQiucW2TVz9ptWto3jB2+LJ7p/hOSpIYORHCDYSHK+RBU+BNng 6fApxO1nZKIL67ZPjwX0n20SOdjluYDUfrieuIMjZG6/Se/FifI/kIX12hffYVPm Gq7PpRmqzP6F4FYNpe+TL3YDfyUnVD0C5yKONtPMI+hYcCzpp243qPpSznERBO7X qAhOHdnZNZ7mxGPTXBJOOt0iSNDX/QINZKqaUaHz/qSk6uSn+U6hdT6jTpGhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUi9NsWWYIO6aIGf5hfQJ+94HHQOMwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHUTANBgkqhkiG 9w0BAQsFAAOCAQEAlTEzm7zsFBjVgGDv1nbKVnKdQe/n1KG2R0ft9zlLjJLSPnq1 +I1qfv76d5hNk5hCwP4Rhy1esCSEhdXOVwDMd2XMyyadnqqpZUM0U7FBJn9jgG4T DeGN2+xiWPFxjThkWX5D+VORJgsOE/4IwUB5xnEM4an20jlrvux8DKUkMKHLrr4S I+i8KVOUwVXjgzJj3RgQ5Ek8PzklK/XICEcXEjefO9wKE9iYpyJHNJzbrHpW1OoN wj3ZZX3fKyDmty0Lbj4D1kVZn4Rf8TiMKexxq+eOWLKb92zlLsNvddPakiwAo3c5 J6o+DCesSX4yeVIFjIRPAuO10Pf6pdof88Lszg== -----END CERTIFICATE-----Generated at Tue Jul 1 22:39:54 2025 by rpki-client