$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32322d3232203d3e203234353330.roa File: 3131392e31302e3138302e302f32322d3232203d3e203234353330.roa (raw, json) Hash identifier: 5I4BU+5PT7cyoEewwzXm8ooUNRNaAj2BVxh6jdaJ+KE= Subject key identifier: FA:60:62:FF:E1:E2:13:38:C8:D5:44:8E:67:51:DD:7B:1B:4D:59:2E Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 68F68E31BB8EEF804809525B3BF720FBFAC6DF18 Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32322d3232203d3e203234353330.roa Signing time: Tue 05 Aug 2025 11:00:01 +0000 ROA not before: Tue 05 Aug 2025 10:55:01 +0000 ROA not after: Tue 04 Aug 2026 11:00:01 +0000 asID: 24530 IP address blocks: 119.10.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 19:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f6:8e:31:bb:8e:ef:80:48:09:52:5b:3b:f7:20:fb:fa:c6:df:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Aug 5 10:55:01 2025 GMT Not After : Aug 4 11:00:01 2026 GMT Subject: CN=FA6062FFE1E21338C8D5448E6751DD7B1B4D592E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8f:3f:3d:ac:5e:11:16:49:ba:5f:4f:30:77: aa:e8:91:58:ed:4e:35:d1:ce:8a:e6:c7:91:9d:94: 15:89:eb:da:68:91:13:96:b4:a2:40:f7:99:d8:fc: 4e:60:84:d7:97:36:f7:83:a4:2d:2d:76:e0:45:43: e7:92:34:48:fe:4f:c3:5f:2d:49:d2:10:de:e0:a4: 5e:14:f0:34:ad:fe:5b:54:29:b5:22:c1:80:16:18: ce:fc:38:f7:e9:96:a3:e4:d2:b8:ab:5b:79:46:c5: f0:31:3e:9b:5a:e8:80:9f:99:6c:21:93:92:c0:ac: 24:89:ef:a9:6d:e3:06:6f:dc:6b:0b:26:8f:ed:ac: a1:eb:c0:99:f2:2c:a5:70:d9:24:3a:c5:1e:22:fa: cc:f4:1b:85:06:bd:75:55:3f:08:86:5f:f1:78:45: 34:11:b3:11:66:89:47:b8:23:73:d2:9c:8e:0f:9e: 01:28:0a:2a:16:b3:92:88:c1:4a:c6:04:8b:a7:c2: cc:71:fa:d1:b1:19:cf:b7:83:3e:b9:8a:2f:96:03: 78:c5:56:34:dd:c8:c4:f6:3b:97:f1:56:c0:9b:4f: 46:6b:12:11:dd:b1:14:ac:95:fc:99:bd:15:10:75: e2:e9:88:c3:e8:87:40:b9:26:64:3d:95:9c:48:cd: bc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:60:62:FF:E1:E2:13:38:C8:D5:44:8E:67:51:DD:7B:1B:4D:59:2E X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32322d3232203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.10.180.0/22 Signature Algorithm: sha256WithRSAEncryption b8:9d:cb:ba:33:7c:4a:82:53:c7:70:f4:ea:9c:85:e8:45:ac: e4:a3:4e:9f:91:d1:c3:d4:21:28:fa:83:14:ce:80:36:dc:49: 15:f8:90:18:de:c4:5d:2a:b0:cf:f0:1e:b3:a2:83:bd:1e:62: 6b:c2:d5:2b:a3:59:39:a9:95:68:85:82:23:08:26:8a:dc:56: e3:ae:f9:75:2f:e1:e0:7d:87:5c:57:bf:a9:6e:9d:a2:49:d7: 02:71:f8:55:f1:81:ca:df:d6:f2:22:4c:2e:73:ee:b5:ad:b8: 99:76:c6:c2:54:d3:8d:f1:54:e5:f0:4e:1d:a3:38:39:70:60: 43:c6:3e:0e:50:48:55:25:8b:ef:11:47:96:6f:5c:77:bb:67: eb:38:8b:50:4d:0e:69:d5:e0:9b:2d:62:20:0b:74:6b:58:8d: f0:3d:2f:c2:e2:60:c1:01:99:5a:4a:ca:1f:7e:65:ca:bf:93: c6:c1:76:b2:95:28:2e:f7:bc:e0:d3:95:a8:f5:cd:4d:58:b6: 9e:9e:5c:3f:9a:12:93:69:51:47:24:8b:74:f6:a3:6b:8b:de: ad:31:0c:e6:a7:11:40:d7:42:28:dc:3a:e2:8e:95:a1:b0:26: f2:64:46:92:72:7b:97:8b:71:86:c6:1a:53:8e:6f:4a:92:b5: e4:e2:de:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaPaOMbuO74BICVJbO/cg+/rG3xgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNTA4MDUxMDU1MDFaFw0yNjA4MDQxMTAwMDFaMDMxMTAvBgNV BAMTKEZBNjA2MkZGRTFFMjEzMzhDOEQ1NDQ4RTY3NTFERDdCMUI0RDU5MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZjz89rF4RFkm6X08wd6rokVjt TjXRzormx5GdlBWJ69pokROWtKJA95nY/E5ghNeXNveDpC0tduBFQ+eSNEj+T8Nf LUnSEN7gpF4U8DSt/ltUKbUiwYAWGM78OPfplqPk0rirW3lGxfAxPpta6ICfmWwh k5LArCSJ76lt4wZv3GsLJo/trKHrwJnyLKVw2SQ6xR4i+sz0G4UGvXVVPwiGX/F4 RTQRsxFmiUe4I3PSnI4PngEoCioWs5KIwUrGBIunwsxx+tGxGc+3gz65ii+WA3jF VjTdyMT2O5fxVsCbT0ZrEhHdsRSslfyZvRUQdeLpiMPoh0C5JmQ9lZxIzbxDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+mBi/+HiEzjI1USOZ1HdextNWS4wHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzODMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAncKtDANBgkqhkiG 9w0BAQsFAAOCAQEAuJ3LujN8SoJTx3D06pyF6EWs5KNOn5HRw9QhKPqDFM6ANtxJ FfiQGN7EXSqwz/Aes6KDvR5ia8LVK6NZOamVaIWCIwgmitxW4675dS/h4H2HXFe/ qW6doknXAnH4VfGByt/W8iJMLnPuta24mXbGwlTTjfFU5fBOHaM4OXBgQ8Y+DlBI VSWL7xFHlm9cd7tn6ziLUE0OadXgmy1iIAt0a1iN8D0vwuJgwQGZWkrKH35lyr+T xsF2spUoLve84NOVqPXNTVi2np5cP5oSk2lRRySLdPaja4verTEM5qcRQNdCKNw6 4o6VobAm8mRGknJ7l4txhsYaU45vSpK15OLeSQ== -----END CERTIFICATE-----Generated at Thu Aug 7 20:10:20 2025 by rpki-client