$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38382e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: gA6E3IMlc+H+5Xi0cVjESL/t6P36p2dZ23sSt643iF0= Subject key identifier: 53:E0:73:78:8D:4D:AB:5F:4B:81:7F:35:54:57:09:04:B1:08:F3:02 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 2E0D649D86F83E021397AFC7402778EF4F38180D Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38382e302f32342d3234203d3e203137363731.roa Signing time: Sat 17 May 2025 11:02:27 +0000 ROA not before: Sat 17 May 2025 10:57:27 +0000 ROA not after: Sat 16 May 2026 11:02:27 +0000 asID: 17671 IP address blocks: 114.199.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 16:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:0d:64:9d:86:f8:3e:02:13:97:af:c7:40:27:78:ef:4f:38:18:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 17 10:57:27 2025 GMT Not After : May 16 11:02:27 2026 GMT Subject: CN=53E073788D4DAB5F4B817F3554570904B108F302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:82:8d:1f:38:30:cd:d7:91:49:fe:87:71:0c: 99:3f:21:8a:9e:58:0b:ea:f9:1d:96:a4:81:4f:2f: c5:ad:2d:fa:89:38:3b:5e:38:60:4e:0c:50:6d:a4: cb:78:6a:be:11:24:c1:50:99:40:fb:04:9e:28:90: f6:16:fd:e6:2d:59:f7:b3:94:d7:09:ce:19:99:42: e3:bf:84:fa:6e:9b:1d:b4:67:2d:d8:6b:a6:c6:09: 9f:d8:90:11:5f:89:03:1d:35:00:79:69:6b:d0:35: fc:30:21:b9:b2:21:c3:43:16:7a:80:62:3f:b3:30: 0e:ba:b6:23:fb:61:af:65:66:76:6f:c5:e2:46:a5: 9a:c5:52:67:f0:1d:b1:d0:f4:23:6f:d6:96:a6:36: f4:23:ff:ac:2d:a6:34:f4:60:f6:e1:ba:69:cd:7c: df:fc:d8:d1:ae:5b:74:a9:b1:9f:5a:43:b9:1a:76: 59:02:18:33:2f:8b:97:1a:be:bb:b5:2f:28:d5:a3: e9:2d:bc:a4:94:c1:ee:f3:a2:29:c1:60:35:8c:8c: 9f:bb:a3:f1:90:ba:19:09:16:be:cb:fe:98:14:1c: 6d:fe:fe:60:7d:bf:0e:44:00:d5:86:76:2f:38:c5: 5c:e8:a5:f0:87:30:c8:fe:5c:e1:a4:41:68:56:d8: 41:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E0:73:78:8D:4D:AB:5F:4B:81:7F:35:54:57:09:04:B1:08:F3:02 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.88.0/24 Signature Algorithm: sha256WithRSAEncryption 09:84:61:ad:1f:37:d5:e7:c2:3e:8d:8a:64:d0:d3:de:e8:dd: f0:78:4b:a5:17:e3:79:64:17:c4:d9:58:2f:36:70:ae:3c:bb: bf:81:b8:d5:b9:12:ba:e5:52:ca:a0:c8:b0:90:51:51:b2:17: 6a:95:c0:e1:f1:26:72:be:08:d6:ba:76:4b:75:5d:fb:38:e9: 2a:6a:ac:48:c5:d7:a5:68:e4:f2:67:99:e8:0a:8a:01:72:23: dd:2f:a5:be:25:da:95:ce:56:fa:d1:c1:3f:8a:3b:2c:f8:31: 85:bb:a8:42:2d:9a:86:7e:6f:33:20:7e:e5:8a:d6:7e:e9:7a: 4c:38:89:86:b4:ea:68:08:5d:cf:f0:86:bf:74:ac:51:89:b9: e9:26:3c:a7:a6:25:10:ea:09:60:22:cf:bd:3c:38:88:04:b9: 54:da:09:f7:1b:8b:f8:e9:7e:61:2a:a8:42:f7:72:ab:ea:7a: 12:4f:a7:3f:94:3f:6d:b3:50:49:9b:47:ef:dc:14:06:e5:7d: 35:74:b6:1e:7d:e7:0d:6b:57:16:17:7b:c3:30:49:d1:28:02: cb:e5:ed:d5:b7:40:da:22:e6:24:2d:37:bc:d2:70:c1:d7:ad: e3:bb:bb:28:be:03:2d:59:25:4b:04:5c:bd:5e:74:15:40:62: 21:70:7f:38 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULg1knYb4PgITl6/HQCd47084GA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTcxMDU3MjdaFw0yNjA1MTYxMTAyMjdaMDMxMTAvBgNV BAMTKDUzRTA3Mzc4OEQ0REFCNUY0QjgxN0YzNTU0NTcwOTA0QjEwOEYzMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmgo0fODDN15FJ/odxDJk/IYqe WAvq+R2WpIFPL8WtLfqJODteOGBODFBtpMt4ar4RJMFQmUD7BJ4okPYW/eYtWfez lNcJzhmZQuO/hPpumx20Zy3Ya6bGCZ/YkBFfiQMdNQB5aWvQNfwwIbmyIcNDFnqA Yj+zMA66tiP7Ya9lZnZvxeJGpZrFUmfwHbHQ9CNv1pamNvQj/6wtpjT0YPbhumnN fN/82NGuW3SpsZ9aQ7kadlkCGDMvi5cavru1LyjVo+ktvKSUwe7zoinBYDWMjJ+7 o/GQuhkJFr7L/pgUHG3+/mB9vw5EANWGdi84xVzopfCHMMj+XOGkQWhW2EE7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU+BzeI1Nq19LgX81VFcJBLEI8wIwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHWDANBgkqhkiG 9w0BAQsFAAOCAQEACYRhrR831efCPo2KZNDT3ujd8HhLpRfjeWQXxNlYLzZwrjy7 v4G41bkSuuVSyqDIsJBRUbIXapXA4fEmcr4I1rp2S3Vd+zjpKmqsSMXXpWjk8meZ 6AqKAXIj3S+lviXalc5W+tHBP4o7LPgxhbuoQi2ahn5vMyB+5YrWful6TDiJhrTq aAhdz/CGv3SsUYm56SY8p6YlEOoJYCLPvTw4iAS5VNoJ9xuL+Ol+YSqoQvdyq+p6 Ek+nP5Q/bbNQSZtH79wUBuV9NXS2Hn3nDWtXFhd7wzBJ0SgCy+Xt1bdA2iLmJC03 vNJwwdet47u7KL4DLVklSwRcvV50FUBiIXB/OA== -----END CERTIFICATE-----Generated at Tue Jul 1 21:51:59 2025 by rpki-client