$ rpki-client -vvf repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39392e302f32342d3234203d3e20313338313230.roa File: 3137352e3131312e39392e302f32342d3234203d3e20313338313230.roa (raw, json) Hash identifier: AghOU/pgzXbwtlWCSLhXHXuJqGUCoPtZzcPl6UwSVVA= Subject key identifier: AE:A9:CF:D0:E4:69:2D:46:47:66:A6:1F:B7:FA:2B:B2:E9:B5:58:D3 Certificate issuer: /CN=8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D Certificate serial: 55449C019EDB2E9E3A4E5DBE0E304B21405BD1C4 Authority key identifier: 86:50:DE:F1:B1:C8:9D:70:1C:2B:B9:9C:A9:07:9E:ED:BC:CC:04:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39392e302f32342d3234203d3e20313338313230.roa Signing time: Mon 29 Sep 2025 11:00:03 +0000 ROA not before: Mon 29 Sep 2025 10:55:03 +0000 ROA not after: Mon 28 Sep 2026 11:00:03 +0000 asID: 138120 IP address blocks: 175.111.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.crl rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:44:9c:01:9e:db:2e:9e:3a:4e:5d:be:0e:30:4b:21:40:5b:d1:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D Validity Not Before: Sep 29 10:55:03 2025 GMT Not After : Sep 28 11:00:03 2026 GMT Subject: CN=AEA9CFD0E4692D464766A61FB7FA2BB2E9B558D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:77:0e:b1:89:4d:bc:81:04:ce:1f:7a:04:31: a9:08:fa:e9:d3:8e:bf:55:39:36:3e:88:6f:ef:62: e2:aa:b7:26:8c:b4:ae:60:d5:fa:b0:f6:63:ca:4a: 16:fd:88:34:d3:92:2f:70:e5:e9:58:2a:a6:4a:ed: 0a:75:fc:3f:12:cf:eb:19:a7:09:e8:62:f0:0b:ca: ce:b3:4c:7c:ce:0d:64:41:5b:de:97:8f:e3:3f:7d: bf:e1:89:56:45:7d:9c:42:b8:32:fb:37:53:3f:3c: c6:c6:7a:d2:f9:c1:09:30:cc:0e:05:1a:f9:d6:8d: c9:b1:41:2e:aa:99:28:c7:10:77:9e:23:e1:c2:73: 1d:99:ea:77:a7:f5:c0:62:7c:e0:fa:11:36:b8:ed: c8:18:62:d6:ff:cd:4f:57:d8:4f:01:d6:2d:a6:22: ef:0f:f6:71:67:78:86:68:51:93:e1:59:32:03:a8: 26:bf:fc:2b:4d:1a:0b:58:fa:86:f6:53:46:e5:05: ff:99:21:a2:79:a3:d2:b9:45:4b:a7:72:aa:54:30: 6c:1a:78:54:f2:0d:5e:fb:73:c1:68:fc:f7:c4:b5: a0:f0:ea:8b:f4:28:74:e5:2b:2b:be:95:a1:dd:de: f2:7f:fb:c1:01:36:67:b3:f8:a4:c2:1e:77:c2:a5: 9e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A9:CF:D0:E4:69:2D:46:47:66:A6:1F:B7:FA:2B:B2:E9:B5:58:D3 X509v3 Authority Key Identifier: keyid:86:50:DE:F1:B1:C8:9D:70:1C:2B:B9:9C:A9:07:9E:ED:BC:CC:04:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39392e302f32342d3234203d3e20313338313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.99.0/24 Signature Algorithm: sha256WithRSAEncryption 39:b7:28:84:de:81:e6:1e:7c:b8:12:ff:a6:2e:72:20:da:5c: b5:56:2b:41:60:4d:02:9e:e4:17:a3:3d:88:0a:98:0a:b0:0c: 5a:96:bd:5f:fc:d0:dd:79:ca:95:db:f4:42:0d:bf:c9:37:8a: 3d:69:3b:75:aa:16:8d:fc:95:c7:46:80:8a:13:a5:d8:b7:53: 34:f4:ae:fd:d0:88:40:5d:16:60:c5:76:9a:77:46:41:25:c9: 1b:3e:67:25:99:f0:0d:5e:23:17:40:19:02:8d:d3:e2:1e:3e: b5:2a:f7:f9:63:68:f9:19:c5:63:e0:c1:a4:c3:dd:9e:2c:b6: 40:68:bc:75:fc:7d:e9:31:3a:07:99:04:96:f4:c5:06:d3:5d: 85:1c:a1:94:21:f4:22:74:a4:cc:21:00:6c:0d:03:ee:03:04: 7a:22:51:a1:e5:1f:89:c2:34:03:9d:08:81:d0:a2:49:37:f0: 39:4b:58:9c:0a:38:05:ac:f3:1e:d0:17:78:9f:41:ed:96:4a: 20:1b:1a:5b:32:d0:cb:83:a6:04:40:0a:08:c6:e2:96:af:e6: 82:3c:93:bb:74:62:94:ec:e5:1a:91:ff:b5:96:e0:d8:16:c1: cf:0d:bc:df:d5:cd:eb:85:cc:23:0b:09:34:a7:1a:6e:22:27: 59:a6:e1:0a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVUScAZ7bLp46Tl2+DjBLIUBb0cQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1MERFRjFCMUM4OUQ3MDFDMkJCOTlDQTkwNzlFRURC Q0NDMDQ2RDAeFw0yNTA5MjkxMDU1MDNaFw0yNjA5MjgxMTAwMDNaMDMxMTAvBgNV BAMTKEFFQTlDRkQwRTQ2OTJENDY0NzY2QTYxRkI3RkEyQkIyRTlCNTU4RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2dw6xiU28gQTOH3oEMakI+unT jr9VOTY+iG/vYuKqtyaMtK5g1fqw9mPKShb9iDTTki9w5elYKqZK7Qp1/D8Sz+sZ pwnoYvALys6zTHzODWRBW96Xj+M/fb/hiVZFfZxCuDL7N1M/PMbGetL5wQkwzA4F GvnWjcmxQS6qmSjHEHeeI+HCcx2Z6nen9cBifOD6ETa47cgYYtb/zU9X2E8B1i2m Iu8P9nFneIZoUZPhWTIDqCa//CtNGgtY+ob2U0blBf+ZIaJ5o9K5RUuncqpUMGwa eFTyDV77c8Fo/PfEtaDw6ov0KHTlKyu+laHd3vJ/+8EBNmez+KTCHnfCpZ55AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrqnP0ORpLUZHZqYft/orsum1WNMwHwYDVR0j BBgwFoAUhlDe8bHInXAcK7mcqQee7bzMBG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YmE4Y2Y2NS1kNDY4LTQzMDktOWYzMC05YjlmMjZkOWNlMmQvMC84NjUwREVGMUIx Qzg5RDcwMUMyQkI5OUNBOTA3OUVFREJDQ0MwNDZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1MERFRjFCMUM4OUQ3MDFDMkJCOTlDQTkwNzlFRURCQ0ND MDQ2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiYThjZjY1LWQ0NjgtNDMwOS05 ZjMwLTliOWYyNmQ5Y2UyZC8wLzMxMzczNTJlMzEzMTMxMmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29jMA0GCSqG SIb3DQEBCwUAA4IBAQA5tyiE3oHmHny4Ev+mLnIg2ly1VitBYE0CnuQXoz2ICpgK sAxalr1f/NDdecqV2/RCDb/JN4o9aTt1qhaN/JXHRoCKE6XYt1M09K790IhAXRZg xXaad0ZBJckbPmclmfANXiMXQBkCjdPiHj61Kvf5Y2j5GcVj4MGkw92eLLZAaLx1 /H3pMToHmQSW9MUG012FHKGUIfQidKTMIQBsDQPuAwR6IlGh5R+JwjQDnQiB0KJJ N/A5S1icCjgFrPMe0Bd4n0HtlkogGxpbMtDLg6YEQAoIxuKWr+aCPJO7dGKU7OUa kf+1luDYFsHPDbzf1c3rhcwjCwk0pxpuIidZpuEK -----END CERTIFICATE-----Generated at Tue Oct 21 00:39:05 2025 by rpki-client