$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137382e302f32342d3234203d3e203234353330.roa File: 3131392e31302e3137382e302f32342d3234203d3e203234353330.roa (raw, json) Hash identifier: ftPY09Cxb7qLs9D6H3fJe7Xve1N+9VDfS/Uvw2btHZo= Subject key identifier: 70:D3:71:B7:CF:F3:05:3E:56:5D:38:3C:5F:71:60:EA:F7:25:9D:4B Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 38899CBB2ED0B2CE69FF19EB1887B56C96F3CC56 Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137382e302f32342d3234203d3e203234353330.roa Signing time: Tue 05 Aug 2025 12:00:01 +0000 ROA not before: Tue 05 Aug 2025 11:55:01 +0000 ROA not after: Tue 04 Aug 2026 12:00:01 +0000 asID: 24530 IP address blocks: 119.10.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:89:9c:bb:2e:d0:b2:ce:69:ff:19:eb:18:87:b5:6c:96:f3:cc:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Aug 5 11:55:01 2025 GMT Not After : Aug 4 12:00:01 2026 GMT Subject: CN=70D371B7CFF3053E565D383C5F7160EAF7259D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:12:d5:98:f7:eb:8a:92:39:38:3b:f1:27:de: ee:da:70:f1:1c:5a:77:7d:68:49:a6:31:3b:bb:8f: 20:fe:58:0c:82:58:f9:88:a8:37:8c:20:8d:8f:9a: c8:d2:f9:6a:ff:43:ad:f2:6b:1e:80:35:5e:42:84: 1b:55:9d:fd:cc:ee:a3:5f:94:5d:ac:16:3b:7c:b0: b2:ed:1f:3b:ba:11:1b:9c:e5:f1:a8:01:b6:a3:9b: 42:10:e1:79:7e:da:4e:7f:4c:e6:e1:6a:60:20:0e: 69:55:58:be:9f:be:67:1f:8d:41:9c:8b:07:24:2e: 4f:a7:c2:6c:7e:5a:34:a8:ec:c4:6f:3e:d8:54:1b: 13:f1:75:38:e8:3c:36:23:3b:3a:4d:c3:bd:21:34: 8e:d5:2c:8a:48:99:69:85:65:7d:5a:41:38:ea:ad: d9:8f:52:c2:83:50:97:7c:87:ce:a6:03:d2:43:31: 19:cc:e2:ba:ac:2d:c4:e1:73:bb:bf:64:61:04:19: 48:c4:06:99:1c:7c:e0:75:3f:d3:b6:f8:ad:25:9e: e7:87:8a:16:81:b4:36:e5:27:50:b0:9a:f7:24:f2: 57:eb:c8:ed:3f:b5:8d:39:48:2e:ec:8b:26:a5:58: 69:5c:f8:92:b5:2e:f5:07:41:8f:4b:4b:ea:39:8c: f8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D3:71:B7:CF:F3:05:3E:56:5D:38:3C:5F:71:60:EA:F7:25:9D:4B X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137382e302f32342d3234203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.10.178.0/24 Signature Algorithm: sha256WithRSAEncryption 71:d9:f1:4f:72:72:36:d6:ad:4d:6a:bd:6e:3c:27:9e:91:d8: e8:d0:48:67:5a:cb:dd:99:ed:ac:05:4f:44:9d:67:87:26:46: 29:c2:d3:59:72:8e:63:63:ee:ed:4c:8e:c6:2c:5a:86:71:87: 03:ef:fa:a9:c3:85:7a:81:a8:7a:11:33:d6:02:15:9f:df:1a: 65:58:a8:5f:98:2d:d7:fb:0c:15:ac:25:10:c6:e6:dd:fc:b8: 06:5f:5e:4b:74:56:9d:43:56:bc:fc:e7:d9:82:9d:42:2f:cd: bf:ab:9e:5e:11:3b:42:49:df:0b:cf:15:57:64:94:84:0c:77: 91:17:d4:98:75:df:fd:3a:67:81:f2:3a:76:64:3f:e5:78:48: 20:fb:fa:cd:c0:8d:2c:cd:ad:63:02:9e:32:ab:a0:b6:2c:21: b8:7b:97:fa:0c:65:2c:cd:c9:c5:be:57:5c:96:c0:c5:25:a4: aa:ca:e2:39:5f:d2:3c:5e:c1:3b:1c:e1:89:f4:1d:cf:e7:0d: 88:1e:96:fb:55:8b:14:b3:10:19:62:0f:8e:7c:b5:be:a1:cf: 26:32:be:0e:d1:99:ab:ee:d3:88:7f:f3:00:67:a5:0b:83:6c: d0:4e:d1:bf:ff:15:ae:3b:e9:0d:66:b3:04:c1:51:7d:d3:06: f9:06:3f:1b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOImcuy7Qss5p/xnrGIe1bJbzzFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNTA4MDUxMTU1MDFaFw0yNjA4MDQxMjAwMDFaMDMxMTAvBgNV BAMTKDcwRDM3MUI3Q0ZGMzA1M0U1NjVEMzgzQzVGNzE2MEVBRjcyNTlENEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVEtWY9+uKkjk4O/En3u7acPEc Wnd9aEmmMTu7jyD+WAyCWPmIqDeMII2PmsjS+Wr/Q63yax6ANV5ChBtVnf3M7qNf lF2sFjt8sLLtHzu6ERuc5fGoAbajm0IQ4Xl+2k5/TObhamAgDmlVWL6fvmcfjUGc iwckLk+nwmx+WjSo7MRvPthUGxPxdTjoPDYjOzpNw70hNI7VLIpImWmFZX1aQTjq rdmPUsKDUJd8h86mA9JDMRnM4rqsLcThc7u/ZGEEGUjEBpkcfOB1P9O2+K0lnueH ihaBtDblJ1Cwmvck8lfryO0/tY05SC7siyalWGlc+JK1LvUHQY9LS+o5jPgHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcNNxt8/zBT5WXTg8X3Fg6vclnUswHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcKsjANBgkqhkiG 9w0BAQsFAAOCAQEAcdnxT3JyNtatTWq9bjwnnpHY6NBIZ1rL3ZntrAVPRJ1nhyZG KcLTWXKOY2Pu7UyOxixahnGHA+/6qcOFeoGoehEz1gIVn98aZVioX5gt1/sMFawl EMbm3fy4Bl9eS3RWnUNWvPzn2YKdQi/Nv6ueXhE7QknfC88VV2SUhAx3kRfUmHXf /TpngfI6dmQ/5XhIIPv6zcCNLM2tYwKeMqugtiwhuHuX+gxlLM3Jxb5XXJbAxSWk qsriOV/SPF7BOxzhifQdz+cNiB6W+1WLFLMQGWIPjny1vqHPJjK+DtGZq+7TiH/z AGelC4Ns0E7Rv/8VrjvpDWazBMFRfdMG+QY/Gw== -----END CERTIFICATE-----Generated at Wed Nov 5 08:26:53 2025 by rpki-client