$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131342e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131342e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: wmUZdQN9smMnqKDgMvZP3VM5NikSry3YiZ+HF4rDvwk= Subject key identifier: 10:7E:17:ED:95:30:54:22:01:75:A8:18:EE:B5:36:40:45:D8:7C:A2 Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 3081D2C4CC3D4BD10352B9A434B2E00C85598334 Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131342e302f32342d3234203d3e203338353233.roa Signing time: Fri 04 Jul 2025 15:00:02 +0000 ROA not before: Fri 04 Jul 2025 14:55:02 +0000 ROA not after: Fri 03 Jul 2026 15:00:02 +0000 asID: 38523 IP address blocks: 117.74.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 03:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:81:d2:c4:cc:3d:4b:d1:03:52:b9:a4:34:b2:e0:0c:85:59:83:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Jul 4 14:55:02 2025 GMT Not After : Jul 3 15:00:02 2026 GMT Subject: CN=107E17ED953054220175A818EEB5364045D87CA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:1d:3c:89:eb:0c:b8:85:db:a1:9a:f4:71: a2:88:6c:ad:03:7c:a1:45:f6:b5:d4:65:60:ca:d0: b8:75:e0:2a:45:2c:aa:77:e5:27:07:63:3a:d7:d9: 31:d4:7d:f5:54:27:18:d4:c6:4d:2a:5b:8f:7a:01: b3:27:0b:32:6c:f9:ba:d0:83:85:be:7a:05:13:a6: 7f:07:4a:f6:5c:57:4e:53:c1:86:07:a2:6d:7e:8c: 9e:3f:a3:bc:19:c0:4c:0c:53:73:7e:1d:bc:7b:af: 01:23:86:2f:f9:c3:2e:b6:fe:a5:e8:ea:04:1c:8a: 0e:d8:49:34:b3:d8:d1:2e:22:d8:69:96:a2:4f:4a: 92:78:5f:21:f2:8f:63:48:05:5d:a3:26:c4:93:4d: b9:95:81:bb:0d:15:2c:ab:92:c2:3f:a6:f1:ff:07: 82:33:af:aa:46:72:a9:62:0d:bc:f4:4a:3b:84:0d: 3a:c5:f2:ba:15:55:d6:ed:f6:2a:47:d8:0d:e1:88: f5:08:c2:d3:3d:04:ae:50:99:0f:a9:44:fd:1c:69: 7c:97:7c:13:e2:ea:3c:9a:29:e3:2d:d8:47:b1:fb: 4d:1a:ad:42:ab:e8:ca:7c:04:c3:d6:4f:ab:62:da: ef:1b:51:d9:96:aa:c6:ee:3c:d9:a8:75:dd:b1:e2: 1e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:7E:17:ED:95:30:54:22:01:75:A8:18:EE:B5:36:40:45:D8:7C:A2 X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131342e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.114.0/24 Signature Algorithm: sha256WithRSAEncryption 96:a4:55:f7:4e:c0:4e:ab:aa:39:b4:a3:7e:a5:c2:14:1c:4a: a6:9b:eb:2b:da:ae:c2:8b:53:03:20:3f:cd:11:a4:8b:58:ae: 8d:5b:bf:64:79:4d:a2:ac:45:65:21:3d:0d:c5:9e:32:37:10: 25:65:49:de:5b:8d:44:71:32:b0:9e:02:a8:15:ee:11:50:ee: 0a:76:c3:4d:63:b9:34:48:31:2b:6a:3a:00:5a:9f:44:68:d0: 15:de:c4:13:3d:63:dc:bf:8f:72:6f:08:df:fd:7c:c9:20:d2: 95:ad:84:b4:04:a4:7f:bf:a8:25:01:90:f1:1b:44:cd:28:d1: c0:0f:a7:ff:31:dc:a3:73:f9:40:84:d5:81:74:77:30:ab:2f: 58:db:31:93:8b:0d:c5:ba:65:67:f6:33:f8:83:eb:9c:7f:ac: 7a:19:0e:dd:09:5b:0d:8d:b5:fa:ef:3e:7a:3b:a3:b2:b4:24: 08:c7:b0:67:e2:c9:63:58:00:ab:91:ff:11:53:6a:ec:14:2d: cb:c7:17:5d:f6:59:f1:cc:62:66:44:82:df:c7:06:16:4d:df: e6:a3:87:40:ab:c0:0f:47:7b:32:8e:93:4d:f2:1c:83:a3:94: f7:57:84:ff:b6:28:48:81:8d:85:2d:a1:41:30:cb:0c:a3:02: 5c:39:a0:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMIHSxMw9S9EDUrmkNLLgDIVZgzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNTA3MDQxNDU1MDJaFw0yNjA3MDMxNTAwMDJaMDMxMTAvBgNV BAMTKDEwN0UxN0VEOTUzMDU0MjIwMTc1QTgxOEVFQjUzNjQwNDVEODdDQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJTR08iesMuIXboZr0caKIbK0D fKFF9rXUZWDK0Lh14CpFLKp35ScHYzrX2THUffVUJxjUxk0qW496AbMnCzJs+brQ g4W+egUTpn8HSvZcV05TwYYHom1+jJ4/o7wZwEwMU3N+Hbx7rwEjhi/5wy62/qXo 6gQcig7YSTSz2NEuIthplqJPSpJ4XyHyj2NIBV2jJsSTTbmVgbsNFSyrksI/pvH/ B4Izr6pGcqliDbz0SjuEDTrF8roVVdbt9ipH2A3hiPUIwtM9BK5QmQ+pRP0caXyX fBPi6jyaKeMt2Eex+00arUKr6Mp8BMPWT6ti2u8bUdmWqsbuPNmodd2x4h6xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEH4X7ZUwVCIBdagY7rU2QEXYfKIwHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKcjANBgkqhkiG 9w0BAQsFAAOCAQEAlqRV907ATquqObSjfqXCFBxKppvrK9quwotTAyA/zRGki1iu jVu/ZHlNoqxFZSE9DcWeMjcQJWVJ3luNRHEysJ4CqBXuEVDuCnbDTWO5NEgxK2o6 AFqfRGjQFd7EEz1j3L+Pcm8I3/18ySDSla2EtASkf7+oJQGQ8RtEzSjRwA+n/zHc o3P5QITVgXR3MKsvWNsxk4sNxbplZ/Yz+IPrnH+sehkO3QlbDY21+u8+ejujsrQk CMewZ+LJY1gAq5H/EVNq7BQty8cXXfZZ8cxiZkSC38cGFk3f5qOHQKvAD0d7Mo6T TfIcg6OU91eE/7YoSIGNhS2hQTDLDKMCXDmg/A== -----END CERTIFICATE-----Generated at Sat Aug 9 14:16:28 2025 by rpki-client