$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32332d3234203d3e203233363731.roa File: 3131312e39322e3137342e302f32332d3234203d3e203233363731.roa (raw, json) Hash identifier: 8ak9Wna4PDMgD/5N0XmaPxXzV+DSrg2LKuSQaDnQR1U= Subject key identifier: 69:3F:05:D8:E5:D2:07:05:BD:AB:92:AA:F2:20:CC:E5:87:AB:BC:C8 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 0612E5FAED1472A2D9E111755346BE4B127B899B Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32332d3234203d3e203233363731.roa Signing time: Thu 28 Aug 2025 10:00:01 +0000 ROA not before: Thu 28 Aug 2025 09:55:01 +0000 ROA not after: Thu 27 Aug 2026 10:00:01 +0000 asID: 23671 IP address blocks: 111.92.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:12:e5:fa:ed:14:72:a2:d9:e1:11:75:53:46:be:4b:12:7b:89:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Aug 28 09:55:01 2025 GMT Not After : Aug 27 10:00:01 2026 GMT Subject: CN=693F05D8E5D20705BDAB92AAF220CCE587ABBCC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:91:f4:fb:32:ae:09:5e:29:51:11:a8:b5:f5: 68:80:2d:8f:3d:24:2e:a2:67:4c:d8:b2:32:02:ae: e0:05:a0:c7:d4:d5:d6:95:49:f8:9b:ee:51:95:4b: a3:09:62:15:34:15:e5:f5:3d:05:48:8b:08:e7:72: 81:2a:f5:26:7b:db:83:e0:86:41:42:e5:be:8f:2d: 86:17:fc:d4:01:0f:c1:33:7c:40:0a:5c:5f:87:01: 4f:55:44:16:3e:a1:fa:2b:24:23:55:73:7d:8c:c7: 4f:06:a4:bf:c2:d5:cd:04:a5:c1:89:ea:86:70:01: f6:a5:1b:76:29:29:a9:0e:53:30:41:63:a8:20:35: e0:09:d2:22:45:6f:c7:ed:80:6a:70:12:d9:22:d4: 80:22:aa:fd:fa:da:1d:4a:04:98:07:e8:63:bb:4d: ba:bc:bb:9f:a1:0a:53:a0:29:58:04:40:23:81:bd: fd:13:70:fd:fd:56:3a:d3:6c:21:4c:f1:e1:9a:5a: 22:8e:c2:b2:c8:50:6f:e6:d3:be:c5:24:52:f7:f3: 2e:8b:48:f3:c6:61:d3:10:64:14:12:b4:e1:c6:b2: 11:ea:5f:76:ef:6b:8e:6f:7c:50:a6:b7:4a:ee:6f: 42:ac:be:3d:b2:a7:d7:05:67:46:f6:c1:da:dd:b7: 20:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3F:05:D8:E5:D2:07:05:BD:AB:92:AA:F2:20:CC:E5:87:AB:BC:C8 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3137342e302f32332d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.92.174.0/23 Signature Algorithm: sha256WithRSAEncryption b7:6d:84:38:2b:b4:a8:5d:c4:5a:f6:c0:34:8d:6d:48:df:69: 56:f5:db:e7:0f:c7:1b:cb:ea:30:4c:57:22:19:03:a9:47:25: 8c:05:cb:2b:ca:1e:1e:a6:f0:aa:72:33:78:4c:fe:3c:f4:29: a4:40:34:e0:4b:6b:5d:68:b7:80:34:22:cc:7a:12:1e:ce:0e: 6a:c0:56:36:29:da:76:9a:69:cf:f5:11:59:b4:0d:de:8b:d4: ae:08:20:7b:d3:64:3f:70:bb:7a:a0:1b:6d:46:62:69:fa:1a: 5a:d7:70:da:bc:aa:ee:5d:0c:51:6b:06:f0:87:ca:9f:f4:13: c8:55:7f:e3:7b:ba:b9:81:db:e7:45:f3:cc:f1:f7:86:63:62: 18:12:b2:ae:d7:37:1e:4d:f5:c8:8b:96:43:93:82:33:65:e5: e8:20:7a:fb:ef:a4:61:9a:7d:21:d3:fd:dc:c2:8c:e2:6b:74: cd:de:51:75:fd:91:ea:2b:fe:0a:a6:2b:96:60:6a:7a:3b:94: 60:1c:54:25:36:1f:2e:72:e9:5d:74:14:c0:d1:16:06:06:a8: ae:c3:b4:d8:ff:31:c3:64:b1:0b:d2:62:41:16:ac:ed:47:17: b3:91:6b:59:9c:c0:6f:2d:24:d6:a1:6e:85:5e:f8:84:ce:37: cc:66:87:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBhLl+u0UcqLZ4RF1U0a+SxJ7iZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA4MjgwOTU1MDFaFw0yNjA4MjcxMDAwMDFaMDMxMTAvBgNV BAMTKDY5M0YwNUQ4RTVEMjA3MDVCREFCOTJBQUYyMjBDQ0U1ODdBQkJDQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9kfT7Mq4JXilREai19WiALY89 JC6iZ0zYsjICruAFoMfU1daVSfib7lGVS6MJYhU0FeX1PQVIiwjncoEq9SZ724Pg hkFC5b6PLYYX/NQBD8EzfEAKXF+HAU9VRBY+oforJCNVc32Mx08GpL/C1c0EpcGJ 6oZwAfalG3YpKakOUzBBY6ggNeAJ0iJFb8ftgGpwEtki1IAiqv362h1KBJgH6GO7 Tbq8u5+hClOgKVgEQCOBvf0TcP39VjrTbCFM8eGaWiKOwrLIUG/m077FJFL38y6L SPPGYdMQZBQStOHGshHqX3bva45vfFCmt0rub0Ksvj2yp9cFZ0b2wdrdtyA5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaT8F2OXSBwW9q5Kq8iDM5YervMgwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMxMzEzMTJlMzkzMjJlMzEzNzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAW9crjANBgkqhkiG 9w0BAQsFAAOCAQEAt22EOCu0qF3EWvbANI1tSN9pVvXb5w/HG8vqMExXIhkDqUcl jAXLK8oeHqbwqnIzeEz+PPQppEA04EtrXWi3gDQizHoSHs4OasBWNinadpppz/UR WbQN3ovUrggge9NkP3C7eqAbbUZiafoaWtdw2ryq7l0MUWsG8IfKn/QTyFV/43u6 uYHb50XzzPH3hmNiGBKyrtc3Hk31yIuWQ5OCM2Xl6CB6+++kYZp9IdP93MKM4mt0 zd5Rdf2R6iv+CqYrlmBqejuUYBxUJTYfLnLpXXQUwNEWBgaorsO02P8xw2SxC9Ji QRas7UcXs5FrWZzAby0k1qFuhV74hM43zGaHCA== -----END CERTIFICATE-----Generated at Mon Oct 20 18:38:48 2025 by rpki-client