$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3132302e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: IqMO8k7AW5fLMroO+Lumc88mdrGZq5JXeDrQ2IGD1lQ= Subject key identifier: E9:33:46:F1:32:75:37:F0:BA:67:E1:4F:5A:F1:94:A3:0A:12:C1:70 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 4AE72161FBCD34743BC5E29B509DA91A70763016 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e2034373837.roa Signing time: Mon 15 Sep 2025 03:20:40 +0000 ROA not before: Mon 15 Sep 2025 03:15:40 +0000 ROA not after: Mon 14 Sep 2026 03:20:40 +0000 asID: 4787 IP address blocks: 114.199.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 04:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:e7:21:61:fb:cd:34:74:3b:c5:e2:9b:50:9d:a9:1a:70:76:30:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Sep 15 03:15:40 2025 GMT Not After : Sep 14 03:20:40 2026 GMT Subject: CN=E93346F1327537F0BA67E14F5AF194A30A12C170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:64:93:e3:b6:14:f5:b9:5f:d0:cf:40:1b:ad: c0:e3:21:7d:9b:5f:5e:b1:ae:5a:30:f8:5c:f4:5b: 65:b8:ea:0d:a7:cc:31:05:54:7b:4e:24:0e:e3:bb: 56:29:4a:c0:66:64:10:24:3f:d4:19:73:67:c3:17: 08:9a:be:fa:bb:27:20:16:b3:4a:11:a4:3b:0d:fb: 41:fa:2d:bb:b4:d8:5f:39:6f:b8:a7:ee:63:48:e3: 57:93:f4:15:1d:bc:a6:38:79:44:0c:5f:f2:61:20: 12:67:6f:50:a7:64:ff:d6:95:35:7c:c5:bb:d1:4e: c1:f0:4f:c6:c0:5f:b6:89:d7:7d:26:a5:c9:22:3f: 36:9a:1b:49:1e:85:fe:11:61:19:ce:c4:7d:12:6b: 3f:7d:0f:ea:68:d5:d4:13:bd:00:cf:f6:b8:72:38: dc:dd:05:9c:59:62:8c:27:c9:7d:b9:0d:6d:aa:da: 36:ef:2c:41:a2:11:02:5f:08:b3:b6:3a:78:58:96: dd:01:c5:57:af:91:8a:59:e8:86:cd:19:a1:de:18: 85:4e:c1:f2:a8:65:7c:e5:60:47:8e:cd:7c:ca:a2: 5e:87:24:ad:c1:b4:b9:24:60:d5:c3:98:26:85:58: 43:32:82:d9:3a:9b:55:d6:06:f1:1b:c3:cc:ed:b8: 71:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:33:46:F1:32:75:37:F0:BA:67:E1:4F:5A:F1:94:A3:0A:12:C1:70 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/24 Signature Algorithm: sha256WithRSAEncryption 70:d1:6a:8d:3e:f3:d8:46:a5:e7:cb:85:be:37:a2:2c:db:25: 7a:5b:60:62:12:34:1c:1e:f6:c1:8d:44:88:bd:fd:0f:74:53: 3b:a3:c0:d3:de:1f:b5:ad:28:ff:30:06:b4:72:2b:83:dc:ee: df:af:f3:cf:04:ce:06:be:9f:52:df:f9:51:82:18:54:08:04: 58:cc:47:a9:42:15:1f:df:4f:18:ac:68:7a:c7:8e:19:56:70: 38:82:c4:62:08:af:e7:2c:e0:51:f3:1f:2c:77:3e:cf:bf:2d: 5f:1c:88:1a:15:09:e6:b0:d9:7d:83:8f:31:00:d4:13:24:2e: 67:b0:aa:2d:ba:a4:b0:5e:4b:33:d8:87:09:51:f4:4c:24:13: 2b:fd:0a:25:2c:f1:81:c6:df:51:c9:2c:e7:07:44:dc:40:57: 13:7c:c0:6e:ac:55:7a:2b:ff:3a:98:19:fa:c0:89:73:06:a7: fb:87:93:4c:2f:62:69:bc:02:43:ce:d8:27:da:1e:22:54:03: 95:51:df:b2:72:7b:65:6f:b5:53:30:bc:6c:ea:12:98:51:24: 73:e9:7e:4b:1f:2a:bf:65:6a:9b:83:00:f3:8c:c4:b3:d0:7c: cc:e2:b8:66:6f:67:d5:77:94:2b:ff:30:58:6e:c5:d8:b2:31: 2f:bf:c5:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSuchYfvNNHQ7xeKbUJ2pGnB2MBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA5MTUwMzE1NDBaFw0yNjA5MTQwMzIwNDBaMDMxMTAvBgNV BAMTKEU5MzM0NkYxMzI3NTM3RjBCQTY3RTE0RjVBRjE5NEEzMEExMkMxNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKZJPjthT1uV/Qz0AbrcDjIX2b X16xrlow+Fz0W2W46g2nzDEFVHtOJA7ju1YpSsBmZBAkP9QZc2fDFwiavvq7JyAW s0oRpDsN+0H6Lbu02F85b7in7mNI41eT9BUdvKY4eUQMX/JhIBJnb1CnZP/WlTV8 xbvRTsHwT8bAX7aJ130mpckiPzaaG0kehf4RYRnOxH0Saz99D+po1dQTvQDP9rhy ONzdBZxZYownyX25DW2q2jbvLEGiEQJfCLO2OnhYlt0BxVevkYpZ6IbNGaHeGIVO wfKoZXzlYEeOzXzKol6HJK3BtLkkYNXDmCaFWEMygtk6m1XWBvEbw8ztuHEdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6TNG8TJ1N/C6Z+FPWvGUowoSwXAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHeDANBgkqhkiG 9w0BAQsFAAOCAQEAcNFqjT7z2Eal58uFvjeiLNsleltgYhI0HB72wY1EiL39D3RT O6PA094fta0o/zAGtHIrg9zu36/zzwTOBr6fUt/5UYIYVAgEWMxHqUIVH99PGKxo eseOGVZwOILEYgiv5yzgUfMfLHc+z78tXxyIGhUJ5rDZfYOPMQDUEyQuZ7CqLbqk sF5LM9iHCVH0TCQTK/0KJSzxgcbfUcks5wdE3EBXE3zAbqxVeiv/OpgZ+sCJcwan +4eTTC9iabwCQ87YJ9oeIlQDlVHfsnJ7ZW+1UzC8bOoSmFEkc+l+Sx8qv2Vqm4MA 84zEs9B8zOK4Zm9n1XeUK/8wWG7F2LIxL7/F8w== -----END CERTIFICATE-----Generated at Mon Oct 20 10:00:06 2025 by rpki-client