$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32332d3233203d3e203234353330.roa File: 3131392e31302e3137362e302f32332d3233203d3e203234353330.roa (raw, json) Hash identifier: S3PnnDo3bpk/h32qa0719tbKJRYJXLZ4OjHskLExhpM= Subject key identifier: 87:FF:15:04:B4:7D:D7:83:10:66:6C:84:C3:68:CD:88:4F:5A:96:60 Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 10F2BCEF4315024DA9D14DFB93B1056CE1EDB3AE Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32332d3233203d3e203234353330.roa Signing time: Tue 05 Aug 2025 13:00:02 +0000 ROA not before: Tue 05 Aug 2025 12:55:02 +0000 ROA not after: Tue 04 Aug 2026 13:00:02 +0000 asID: 24530 IP address blocks: 119.10.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f2:bc:ef:43:15:02:4d:a9:d1:4d:fb:93:b1:05:6c:e1:ed:b3:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Aug 5 12:55:02 2025 GMT Not After : Aug 4 13:00:02 2026 GMT Subject: CN=87FF1504B47DD78310666C84C368CD884F5A9660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:28:3c:32:55:d9:89:bf:6b:6c:0e:88:62:9b: ba:b0:89:16:cb:87:00:59:e3:a6:61:20:2e:8a:c8: 77:fc:e2:a5:ff:9d:51:9e:20:e4:2b:83:46:30:3a: 0e:5d:1d:ca:0e:cf:0c:ce:cc:15:ac:d7:d3:14:9b: 96:a0:f7:ca:b1:25:49:d9:92:79:91:fd:f9:39:fa: 0a:15:a3:c6:03:33:62:8d:41:e4:7d:62:16:ec:4f: c0:36:6d:00:dc:09:9d:e8:e2:d0:1e:3f:fb:7e:19: dd:58:21:08:8d:76:83:36:ab:fd:fa:37:9a:21:ed: 4b:0d:ca:2e:65:ff:42:e1:df:7d:3b:17:04:f2:d0: cc:48:54:65:2a:13:91:62:51:12:b2:aa:86:75:26: b5:88:41:54:0f:c4:c6:cd:45:f7:8d:5a:90:d5:0c: 1d:5a:e0:98:8c:3e:af:67:4b:52:be:d8:90:97:c6: 12:4e:fb:bb:ae:56:4e:ba:02:5e:05:ab:0b:4f:ae: 10:6f:1b:73:ab:f3:22:36:7c:ea:7c:c0:61:21:96: ff:1b:54:f8:2b:5a:ab:0c:08:dd:7a:19:2c:13:6e: 78:10:67:88:ad:6e:d6:7a:32:66:5d:69:99:d0:a1: 33:16:a2:6f:12:28:63:a8:ca:5a:d9:fa:48:54:93: 49:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:FF:15:04:B4:7D:D7:83:10:66:6C:84:C3:68:CD:88:4F:5A:96:60 X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32332d3233203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.10.176.0/23 Signature Algorithm: sha256WithRSAEncryption 83:9c:0d:b3:75:3e:0a:95:d8:87:db:db:96:27:97:ae:13:68: c0:1c:7c:bd:c5:87:3a:5f:02:8e:55:a1:09:d6:14:c0:d1:14: 1b:d9:77:5d:e3:e7:d3:6d:b0:ac:46:a3:94:09:ae:af:35:c4: 9a:8a:1b:61:40:d7:4d:e1:b5:e1:49:d9:13:c2:6e:32:03:dc: f3:51:24:85:df:13:d5:e0:20:a5:a0:d0:98:f5:1a:2f:ab:8e: ee:51:f0:bc:10:48:b8:b6:7e:01:87:8f:6f:d4:16:6b:d2:75: 19:35:a7:af:c1:da:47:a9:20:89:f3:d3:69:35:41:34:44:41: 4b:ea:d1:e7:6f:5d:d0:31:99:d1:c5:8b:d8:f9:ae:22:d1:0e: e4:98:4b:c2:86:ec:e0:b2:10:8b:91:33:01:fe:4f:07:e7:d8: 03:7c:7a:72:cc:c7:a7:0b:af:03:a7:04:24:da:e7:f5:91:69: 86:1c:44:1d:91:bc:c8:b1:8e:25:a1:25:df:b2:7f:db:4a:eb: 88:2f:d5:6d:69:21:40:56:a9:fc:b8:ea:8c:b2:00:19:69:e6: f9:d9:97:48:74:a8:17:e5:bf:34:8a:42:6c:f4:86:9b:37:82: a8:26:aa:b1:e7:3a:8f:91:94:2f:d5:36:8e:20:71:32:7e:5d: ba:05:da:fb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEPK870MVAk2p0U37k7EFbOHts64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNTA4MDUxMjU1MDJaFw0yNjA4MDQxMzAwMDJaMDMxMTAvBgNV BAMTKDg3RkYxNTA0QjQ3REQ3ODMxMDY2NkM4NEMzNjhDRDg4NEY1QTk2NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUKDwyVdmJv2tsDohim7qwiRbL hwBZ46ZhIC6KyHf84qX/nVGeIOQrg0YwOg5dHcoOzwzOzBWs19MUm5ag98qxJUnZ knmR/fk5+goVo8YDM2KNQeR9YhbsT8A2bQDcCZ3o4tAeP/t+Gd1YIQiNdoM2q/36 N5oh7UsNyi5l/0Lh3307FwTy0MxIVGUqE5FiURKyqoZ1JrWIQVQPxMbNRfeNWpDV DB1a4JiMPq9nS1K+2JCXxhJO+7uuVk66Al4FqwtPrhBvG3Or8yI2fOp8wGEhlv8b VPgrWqsMCN16GSwTbngQZ4itbtZ6MmZdaZnQoTMWom8SKGOoylrZ+khUk0m5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh/8VBLR914MQZmyEw2jNiE9almAwHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXcKsDANBgkqhkiG 9w0BAQsFAAOCAQEAg5wNs3U+CpXYh9vblieXrhNowBx8vcWHOl8CjlWhCdYUwNEU G9l3XePn022wrEajlAmurzXEmoobYUDXTeG14UnZE8JuMgPc81Ekhd8T1eAgpaDQ mPUaL6uO7lHwvBBIuLZ+AYePb9QWa9J1GTWnr8HaR6kgifPTaTVBNERBS+rR529d 0DGZ0cWL2PmuItEO5JhLwobs4LIQi5EzAf5PB+fYA3x6cszHpwuvA6cEJNrn9ZFp hhxEHZG8yLGOJaEl37J/20rriC/VbWkhQFap/LjqjLIAGWnm+dmXSHSoF+W/NIpC bPSGmzeCqCaqsec6j5GUL9U2jiBxMn5dugXa+w== -----END CERTIFICATE-----Generated at Wed Nov 5 00:53:48 2025 by rpki-client