$ rpki-client -vvf repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3131302e39322e37322e302f32332d3234203d3e203137393935.roa File: 3131302e39322e37322e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: Tj+rZXXICw5VIXsxuWhO+B1070IpmB9rr/NwmKii+rg= Subject key identifier: 79:22:92:1D:19:41:C5:A2:12:BB:33:80:AF:C8:37:E4:BB:E5:06:1A Certificate issuer: /CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Certificate serial: 7FA61CAF589919715E3F0E677F2C1B8F525BFB14 Authority key identifier: E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3131302e39322e37322e302f32332d3234203d3e203137393935.roa Signing time: Thu 25 Sep 2025 16:01:11 +0000 ROA not before: Thu 25 Sep 2025 15:56:11 +0000 ROA not after: Thu 24 Sep 2026 16:01:11 +0000 asID: 17995 IP address blocks: 110.92.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 10:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:a6:1c:af:58:99:19:71:5e:3f:0e:67:7f:2c:1b:8f:52:5b:fb:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Validity Not Before: Sep 25 15:56:11 2025 GMT Not After : Sep 24 16:01:11 2026 GMT Subject: CN=7922921D1941C5A212BB3380AFC837E4BBE5061A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:84:f0:2f:c0:79:3e:b1:03:6a:45:cf:a6: 26:4d:a7:39:b4:3e:60:67:71:29:06:a8:5e:8f:86: 48:de:70:9f:09:c0:21:93:52:f5:2a:3c:84:b5:0d: 6b:84:eb:59:3c:08:94:24:31:db:43:28:48:1d:8d: f3:b4:83:bb:1c:5f:03:74:f3:a0:ef:dd:a8:28:88: 99:2f:a8:22:de:2c:f0:43:fb:97:88:0b:72:84:af: e9:67:b1:19:62:21:d5:3b:7e:70:83:c2:2c:2b:7b: 18:8b:8d:46:60:2c:80:92:21:d0:d4:d6:b5:5c:da: 4e:9a:13:18:81:d0:ee:32:ea:fe:56:91:e9:16:83: 02:ad:03:a2:78:ff:d2:45:55:79:ec:4d:8a:d9:2e: 89:25:61:c8:d8:ae:a2:7d:97:ef:d1:22:ac:85:97: e3:ab:5d:9b:d5:34:4c:c3:a2:ee:46:26:f6:a6:41: e2:8b:97:f7:7d:95:25:2d:11:3b:62:16:bc:c4:ce: 2d:72:c1:d2:89:9e:92:5d:c1:72:24:e5:c5:f5:a7: 41:dc:29:e5:16:90:64:b8:5d:2d:cc:54:95:ea:65: f4:ef:7b:ad:dc:33:be:4c:48:39:ed:0a:2f:4d:b3: 5d:bb:a8:67:3e:63:f3:f4:e3:3f:0f:a6:b0:25:4b: 04:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:22:92:1D:19:41:C5:A2:12:BB:33:80:AF:C8:37:E4:BB:E5:06:1A X509v3 Authority Key Identifier: keyid:E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3131302e39322e37322e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.92.72.0/23 Signature Algorithm: sha256WithRSAEncryption c9:b3:34:55:30:34:87:ec:3b:6c:a4:23:fc:c6:34:e2:45:dc: 07:55:02:9f:40:50:4a:13:a5:46:27:2a:30:b2:cd:b3:95:21: 3a:25:83:3e:1b:08:42:92:a6:57:ca:68:59:18:cd:17:7c:77: dd:0f:cb:14:1d:d4:b8:4e:52:ff:3d:ef:e8:eb:fe:1d:5f:44: f0:bc:f9:5d:c6:92:05:de:fa:d5:0b:50:2a:01:1f:d6:5d:e0: 5b:d0:08:08:ac:42:74:d4:6b:3c:d6:2c:2a:06:1e:88:c0:05: 8f:c9:7d:b3:3b:ba:16:1b:24:45:3f:fe:a0:7f:b0:1b:7a:2a: da:c3:df:55:97:81:37:af:7f:b6:99:77:ef:50:3f:d0:ad:50: 88:0b:d1:13:7a:36:1c:83:3a:31:a9:e1:d4:43:16:47:6d:9f: 2d:9e:95:2a:9d:4d:1b:2e:bc:cf:6b:94:d5:36:a9:34:dd:78: b1:ad:1e:de:05:b3:f4:f9:22:0d:be:5c:76:12:79:39:70:35: df:7f:72:3f:e8:47:da:56:75:f2:7b:ba:ef:1d:41:1a:95:af: eb:bd:f5:4e:ef:0c:9f:a0:42:2d:c7:26:01:67:3c:29:3a:22: f9:64:df:34:97:88:75:4b:c3:32:b1:f1:19:33:cf:d0:41:e1: a6:10:22:a2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUf6Ycr1iZGXFePw5nfywbj1Jb+xQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJB NDBFNjM3MDAeFw0yNTA5MjUxNTU2MTFaFw0yNjA5MjQxNjAxMTFaMDMxMTAvBgNV BAMTKDc5MjI5MjFEMTk0MUM1QTIxMkJCMzM4MEFGQzgzN0U0QkJFNTA2MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC13oTwL8B5PrEDakXPpiZNpzm0 PmBncSkGqF6PhkjecJ8JwCGTUvUqPIS1DWuE61k8CJQkMdtDKEgdjfO0g7scXwN0 86Dv3agoiJkvqCLeLPBD+5eIC3KEr+lnsRliIdU7fnCDwiwrexiLjUZgLICSIdDU 1rVc2k6aExiB0O4y6v5WkekWgwKtA6J4/9JFVXnsTYrZLoklYcjYrqJ9l+/RIqyF l+OrXZvVNEzDou5GJvamQeKLl/d9lSUtETtiFrzEzi1ywdKJnpJdwXIk5cX1p0Hc KeUWkGS4XS3MVJXqZfTve63cM75MSDntCi9Ns127qGc+Y/P04z8PprAlSwTBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUeSKSHRlBxaISuzOAr8g35LvlBhowHwYDVR0j BBgwFoAU6U1AmQZHE/HDpeIR6BfPwqQOY3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjdhZTgyZi01MzdlLTQ2MjYtYmU5ZS0zMzM5NGEyZGM5NjkvMC9FOTRENDA5OTA2 NDcxM0YxQzNBNUUyMTFFODE3Q0ZDMkE0MEU2MzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJBNDBF NjM3MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmN2FlODJmLTUzN2UtNDYyNi1i ZTllLTMzMzk0YTJkYzk2OS8wLzMxMzEzMDJlMzkzMjJlMzczMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFuXEgwDQYJKoZIhvcN AQELBQADggEBAMmzNFUwNIfsO2ykI/zGNOJF3AdVAp9AUEoTpUYnKjCyzbOVITol gz4bCEKSplfKaFkYzRd8d90PyxQd1LhOUv897+jr/h1fRPC8+V3GkgXe+tULUCoB H9Zd4FvQCAisQnTUazzWLCoGHojABY/JfbM7uhYbJEU//qB/sBt6KtrD31WXgTev f7aZd+9QP9CtUIgL0RN6NhyDOjGp4dRDFkdtny2elSqdTRsuvM9rlNU2qTTdeLGt Ht4Fs/T5Ig2+XHYSeTlwNd9/cj/oR9pWdfJ7uu8dQRqVr+u99U7vDJ+gQi3HJgFn PCk6Ivlk3zSXiHVLwzKx8Rkzz9BB4aYQIqI= -----END CERTIFICATE-----Generated at Mon Oct 20 14:20:36 2025 by rpki-client