$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3131362e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: rroqQszWhwfw6Y7Mb+FXHdYdmnNffOu/yaAuDdUB7Ck= Subject key identifier: F3:74:3D:04:2A:35:24:04:AC:24:1B:B0:1F:B4:E5:CA:0F:F0:45:1B Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 1ED2B98DE466868EC39DD6ACD43FA28F03E173CD Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32342d3234203d3e2034373837.roa Signing time: Mon 15 Sep 2025 03:22:13 +0000 ROA not before: Mon 15 Sep 2025 03:17:13 +0000 ROA not after: Mon 14 Sep 2026 03:22:13 +0000 asID: 4787 IP address blocks: 114.199.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 04:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d2:b9:8d:e4:66:86:8e:c3:9d:d6:ac:d4:3f:a2:8f:03:e1:73:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Sep 15 03:17:13 2025 GMT Not After : Sep 14 03:22:13 2026 GMT Subject: CN=F3743D042A352404AC241BB01FB4E5CA0FF0451B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:a4:b0:8e:b9:c8:80:a1:9b:18:42:64:cd: f3:ae:fe:7a:a4:c7:70:94:f1:64:7a:67:3f:d7:2d: 96:96:77:ba:fd:cb:a5:df:27:80:e1:ee:69:c6:db: cc:21:25:19:a5:45:8f:0b:12:39:a7:91:ed:26:52: 81:96:d6:b3:fd:9e:f5:0b:eb:df:d1:d6:e9:3a:6e: 1a:84:35:26:df:c3:04:72:a9:64:d9:fa:ca:af:85: 93:36:be:56:35:83:60:af:e1:cd:09:b0:ad:93:48: 6e:27:fe:86:ba:2a:53:7f:b2:66:0a:02:1a:e0:64: 0c:23:2c:a6:a7:ca:bf:78:29:9e:b4:7c:4a:37:05: 8f:af:32:5c:8e:f0:e4:f3:d2:68:fb:2c:1f:42:30: d4:a1:42:70:0d:ea:72:c3:aa:2b:9e:16:f6:b2:74: fc:81:7e:50:eb:d7:67:43:47:a8:2d:a1:64:dd:c0: 57:4e:7b:51:0d:db:44:1b:ea:3b:af:f9:1a:4d:b8: f4:04:fe:06:6d:85:a5:ac:ec:39:f1:33:5b:53:26: ae:9e:5a:5a:e4:1e:f8:37:bb:54:c4:b9:e4:72:83: b8:73:8d:50:6f:0b:63:0b:aa:20:c3:4c:d7:5e:85: 2c:00:40:ec:20:9d:08:9e:9d:22:18:96:36:c9:9b: 41:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:74:3D:04:2A:35:24:04:AC:24:1B:B0:1F:B4:E5:CA:0F:F0:45:1B X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131362e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.116.0/24 Signature Algorithm: sha256WithRSAEncryption 88:a0:f0:f1:e2:6d:67:9f:cb:5a:e6:95:b9:0c:a7:2c:ca:0b: bb:3e:6e:1c:b9:fe:1e:b7:a3:9f:25:fa:6a:5f:1e:28:8d:df: 5b:3b:f0:8b:7d:37:78:5c:7a:08:d6:19:a6:6b:be:c2:7b:51: d2:e5:0c:22:21:18:8f:cc:14:21:62:89:f6:84:99:33:dc:27: 8b:24:68:12:8c:80:da:3c:5b:e0:d9:5d:20:5b:0c:f6:90:e3: 60:01:aa:59:43:08:fe:3b:6e:cc:94:ad:b0:9d:01:49:33:bb: 15:7b:e0:04:88:db:c3:7e:1b:f1:09:48:70:64:e0:da:a2:3d: b8:00:1c:42:a1:fb:9e:11:c7:ac:39:db:05:66:70:bb:9c:ff: 68:d3:72:eb:60:7e:33:cd:70:3f:06:8e:a0:b8:ea:63:3f:90: 85:60:91:82:56:30:ae:8b:42:9f:f7:bf:1c:38:3d:22:57:52: f0:d6:8c:4e:99:96:a6:d6:50:5d:83:96:fc:d9:7f:d4:d9:c7: de:73:0f:8b:4c:99:40:7e:9b:b6:e9:7f:cb:c0:13:48:0c:cb: 4e:ac:36:0a:d7:d4:0a:c2:46:5f:85:e3:1e:ba:2b:5a:c9:12: 42:33:50:37:77:87:54:b6:6b:ee:7c:88:8a:00:10:b9:21:5c: 5a:07:7c:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHtK5jeRmho7Dndas1D+ijwPhc80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA5MTUwMzE3MTNaFw0yNjA5MTQwMzIyMTNaMDMxMTAvBgNV BAMTKEYzNzQzRDA0MkEzNTI0MDRBQzI0MUJCMDFGQjRFNUNBMEZGMDQ1MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+naSwjrnIgKGbGEJkzfOu/nqk x3CU8WR6Zz/XLZaWd7r9y6XfJ4Dh7mnG28whJRmlRY8LEjmnke0mUoGW1rP9nvUL 69/R1uk6bhqENSbfwwRyqWTZ+sqvhZM2vlY1g2Cv4c0JsK2TSG4n/oa6KlN/smYK AhrgZAwjLKanyr94KZ60fEo3BY+vMlyO8OTz0mj7LB9CMNShQnAN6nLDqiueFvay dPyBflDr12dDR6gtoWTdwFdOe1EN20Qb6juv+RpNuPQE/gZthaWs7DnxM1tTJq6e WlrkHvg3u1TEueRyg7hzjVBvC2MLqiDDTNdehSwAQOwgnQienSIYljbJm0HHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU83Q9BCo1JASsJBuwH7Tlyg/wRRswHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHdDANBgkqhkiG 9w0BAQsFAAOCAQEAiKDw8eJtZ5/LWuaVuQynLMoLuz5uHLn+HrejnyX6al8eKI3f Wzvwi303eFx6CNYZpmu+wntR0uUMIiEYj8wUIWKJ9oSZM9wniyRoEoyA2jxb4Nld IFsM9pDjYAGqWUMI/jtuzJStsJ0BSTO7FXvgBIjbw34b8QlIcGTg2qI9uAAcQqH7 nhHHrDnbBWZwu5z/aNNy62B+M81wPwaOoLjqYz+QhWCRglYwrotCn/e/HDg9IldS 8NaMTpmWptZQXYOW/Nl/1NnH3nMPi0yZQH6btul/y8ATSAzLTqw2CtfUCsJGX4Xj HrorWskSQjNQN3eHVLZr7nyIigAQuSFcWgd8JA== -----END CERTIFICATE-----Generated at Mon Oct 20 09:59:19 2025 by rpki-client