$ rpki-client -vvf repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa File: 3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa (raw, json) Hash identifier: k4r6WzhxzBcS3VSCnW5AcBSPgRuHkdZqCOJR8VV2Nyw= Subject key identifier: D5:3A:F5:85:72:88:34:6E:DE:CB:6F:A8:77:2A:18:1E:DC:89:AF:C3 Certificate issuer: /CN=708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520 Certificate serial: 279ED40107A206400A0E04B56A6CACAAB4B08571 Authority key identifier: 70:8D:1F:99:C0:BD:2A:17:83:D1:CE:42:6B:BF:E8:3C:9C:0C:C5:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa Signing time: Thu 25 Sep 2025 22:00:02 +0000 ROA not before: Thu 25 Sep 2025 21:55:02 +0000 ROA not after: Thu 24 Sep 2026 22:00:02 +0000 asID: 152034 IP address blocks: 115.187.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.crl rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 10:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:9e:d4:01:07:a2:06:40:0a:0e:04:b5:6a:6c:ac:aa:b4:b0:85:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520 Validity Not Before: Sep 25 21:55:02 2025 GMT Not After : Sep 24 22:00:02 2026 GMT Subject: CN=D53AF5857288346EDECB6FA8772A181EDC89AFC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e8:8c:f9:66:33:51:1e:59:98:d2:3d:e0:30: 2a:97:90:b6:a1:86:85:f2:cd:e2:f4:4f:5d:0f:b4: 2e:3d:93:57:21:64:eb:a7:33:b4:97:07:01:d4:c5: 74:71:48:9a:17:22:75:60:cb:3a:66:62:2a:24:82: 8c:8e:ac:92:2b:76:de:aa:9f:21:e2:93:9e:82:43: 03:c9:4e:e5:b4:7e:65:42:07:c4:5e:46:79:93:01: cb:e4:2c:b0:2b:ec:e7:cf:6c:1e:8c:60:5e:3b:11: d1:a9:d3:b4:b9:a7:7e:2d:b1:15:ae:22:24:a6:b5: 13:72:1e:ea:a2:df:73:00:ab:17:29:1a:b1:2b:3b: 90:d7:a2:9e:d8:59:40:14:97:ae:03:20:5d:49:41: 5f:c4:14:7d:74:63:17:f0:f9:de:52:fd:3a:fd:b5: f1:4b:55:12:78:15:4c:e9:3d:55:90:77:a2:62:78: 70:88:57:b5:f8:5c:6b:2d:7c:dd:06:9b:2a:83:95: c2:be:bf:d8:a9:09:49:cd:da:bf:ea:43:15:1d:da: 8d:a6:78:1d:31:36:30:c6:60:d9:0d:8b:e9:52:ab: fc:99:78:20:4c:bc:f1:ae:45:6a:50:d2:18:41:d3: c3:c1:56:b6:c3:a7:79:bc:7e:53:74:4a:b2:e5:46: 62:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3A:F5:85:72:88:34:6E:DE:CB:6F:A8:77:2A:18:1E:DC:89:AF:C3 X509v3 Authority Key Identifier: keyid:70:8D:1F:99:C0:BD:2A:17:83:D1:CE:42:6B:BF:E8:3C:9C:0C:C5:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.187.28.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:2b:01:fa:30:0f:7c:ff:bc:0b:ad:7c:0d:9b:41:f9:b9:e2: da:e5:9b:35:0f:0e:ad:f9:85:da:46:20:5a:4e:d6:88:26:b2: d0:2a:f2:3e:00:03:fa:ed:eb:1c:4e:fa:a7:c7:d9:70:21:a8: 83:c9:ea:24:03:4c:55:fa:2e:14:15:19:b3:4b:49:8e:b3:9a: 97:75:c4:b6:a9:61:e7:87:0b:bd:22:e4:42:04:8e:30:4d:d3: da:0a:6f:f1:68:1b:65:b6:7d:ad:6e:b5:37:60:fb:5e:b3:c9: 87:7c:98:38:b5:3b:4c:eb:16:fe:fa:82:f3:e7:93:a1:49:87: d6:30:23:01:9f:af:26:26:3b:5f:cc:92:92:30:4d:9e:c2:47: 53:e0:df:39:4e:5c:f4:5e:19:98:91:10:51:50:41:27:28:c5: 4a:74:5c:73:6f:66:c7:f1:73:e5:67:8b:72:cb:23:11:89:f5: df:60:d5:d5:0e:5d:03:7a:b9:99:ac:77:72:58:ec:85:ca:cb: 82:c2:27:b5:70:5a:3f:d5:29:27:91:b4:1c:b0:8a:cc:49:57: 7c:13:29:f9:96:f2:e0:e9:71:b2:3f:54:e2:56:c7:cf:00:1c: ea:8c:7a:07:75:ba:ab:ee:26:fe:78:67:36:5c:16:75:d7:88: e6:8e:e8:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ57UAQeiBkAKDgS1amysqrSwhXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA4RDFGOTlDMEJEMkExNzgzRDFDRTQyNkJCRkU4M0M5 QzBDQzUyMDAeFw0yNTA5MjUyMTU1MDJaFw0yNjA5MjQyMjAwMDJaMDMxMTAvBgNV BAMTKEQ1M0FGNTg1NzI4ODM0NkVERUNCNkZBODc3MkExODFFREM4OUFGQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo6Iz5ZjNRHlmY0j3gMCqXkLah hoXyzeL0T10PtC49k1chZOunM7SXBwHUxXRxSJoXInVgyzpmYiokgoyOrJIrdt6q nyHik56CQwPJTuW0fmVCB8ReRnmTAcvkLLAr7OfPbB6MYF47EdGp07S5p34tsRWu IiSmtRNyHuqi33MAqxcpGrErO5DXop7YWUAUl64DIF1JQV/EFH10Yxfw+d5S/Tr9 tfFLVRJ4FUzpPVWQd6JieHCIV7X4XGstfN0GmyqDlcK+v9ipCUnN2r/qQxUd2o2m eB0xNjDGYNkNi+lSq/yZeCBMvPGuRWpQ0hhB08PBVrbDp3m8flN0SrLlRmIfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1Tr1hXKING7ey2+odyoYHtyJr8MwHwYDVR0j BBgwFoAUcI0fmcC9KheD0c5Ca7/oPJwMxSAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Yjc0ZWNlNi04ODBjLTRjZWYtYWRkMi03NzcxOWViZWRlYzkvMC83MDhEMUY5OUMw QkQyQTE3ODNEMUNFNDI2QkJGRTgzQzlDMENDNTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzA4RDFGOTlDMEJEMkExNzgzRDFDRTQyNkJCRkU4M0M5QzBD QzUyMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViNzRlY2U2LTg4MGMtNGNlZi1h ZGQyLTc3NzE5ZWJlZGVjOS8wLzMxMzEzNTJlMzEzODM3MmUzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBc7scMA0GCSqG SIb3DQEBCwUAA4IBAQA/KwH6MA98/7wLrXwNm0H5ueLa5Zs1Dw6t+YXaRiBaTtaI JrLQKvI+AAP67escTvqnx9lwIaiDyeokA0xV+i4UFRmzS0mOs5qXdcS2qWHnhwu9 IuRCBI4wTdPaCm/xaBtltn2tbrU3YPtes8mHfJg4tTtM6xb++oLz55OhSYfWMCMB n68mJjtfzJKSME2ewkdT4N85Tlz0XhmYkRBRUEEnKMVKdFxzb2bH8XPlZ4tyyyMR ifXfYNXVDl0DermZrHdyWOyFysuCwie1cFo/1SknkbQcsIrMSVd8Eyn5lvLg6XGy P1TiVsfPABzqjHoHdbqr7ib+eGc2XBZ114jmjujE -----END CERTIFICATE-----Generated at Mon Oct 20 17:43:54 2025 by rpki-client