$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131352e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131352e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: IzPZz6vu3cjWO+ZYwd6eSMpiSKGTjsqFFoCVeTSJVZ8= Subject key identifier: CC:67:02:1B:53:E5:D9:A9:B8:E2:2A:7D:10:B0:52:25:B7:DA:9A:4B Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 50944A0827195B1E74347B2B9AEDB7920CE0895C Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131352e302f32342d3234203d3e203338353233.roa Signing time: Fri 04 Jul 2025 16:00:02 +0000 ROA not before: Fri 04 Jul 2025 15:55:02 +0000 ROA not after: Fri 03 Jul 2026 16:00:02 +0000 asID: 38523 IP address blocks: 117.74.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 03:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:94:4a:08:27:19:5b:1e:74:34:7b:2b:9a:ed:b7:92:0c:e0:89:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Jul 4 15:55:02 2025 GMT Not After : Jul 3 16:00:02 2026 GMT Subject: CN=CC67021B53E5D9A9B8E22A7D10B05225B7DA9A4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:56:38:dc:fe:59:24:26:53:3b:6d:85:41:d6: fe:01:d3:ae:81:29:d0:f1:dc:64:48:28:2d:1d:b3: 32:f5:24:98:a1:85:19:ba:43:27:00:8f:19:8d:f9: 19:eb:c9:73:14:ab:25:68:f5:fd:a5:ce:00:4f:00: fa:e3:75:e6:2b:2e:b3:e8:d9:e7:19:bb:7c:51:91: 27:12:06:b4:82:18:f8:55:04:42:36:9a:60:03:d0: d4:77:00:f6:0b:13:b1:54:61:1f:39:34:b6:38:c4: 73:24:e5:77:48:28:9c:c9:28:10:66:5b:41:95:3e: b4:29:fb:c5:a6:8f:f8:45:04:26:10:5b:6e:c3:12: d0:50:04:1f:bf:78:f9:36:fd:40:92:f4:91:10:bc: 90:1e:7d:69:6f:97:9c:40:b4:f2:f5:c9:17:6f:43: 8e:83:c5:27:be:15:c4:16:bd:72:44:0c:c0:8d:86: 41:40:41:c6:ea:15:f3:22:dd:30:8e:55:f0:f6:ba: 04:0b:57:78:4b:52:1f:0b:51:41:1c:dc:e2:b2:ca: ad:74:3f:7b:fa:50:88:09:43:f5:12:60:df:a8:fd: b8:10:22:9d:85:7c:ec:f6:bf:3f:92:20:d1:76:13: ef:b0:10:75:7e:b8:c9:39:3f:e9:61:34:3d:96:8d: 34:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:67:02:1B:53:E5:D9:A9:B8:E2:2A:7D:10:B0:52:25:B7:DA:9A:4B X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131352e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.115.0/24 Signature Algorithm: sha256WithRSAEncryption 82:e2:53:3c:a4:69:fd:f3:eb:c9:5d:4e:40:ac:17:e6:a1:c9: 37:5b:51:81:7f:ce:70:df:1c:85:5d:34:9b:5b:fe:12:09:34: c1:c5:56:a3:7e:ed:69:27:b5:3c:bc:37:98:7e:e5:4e:2a:f9: 3e:a0:da:1e:ec:2f:06:f6:05:19:c9:c9:be:97:58:7f:e4:53: 0c:0c:dc:7a:17:0b:53:4e:b1:1e:7e:7c:21:22:63:0b:50:fd: ff:36:9d:fb:de:3e:fb:7d:8b:e4:eb:24:fd:54:52:38:ca:da: ff:17:30:bc:73:4b:47:d5:95:d8:04:05:dc:b2:4e:ab:17:08: da:3b:0d:4a:cf:f1:f4:be:43:f8:45:79:81:21:ad:dd:cb:6a: 0b:a6:60:f8:4f:c4:65:39:ea:b0:67:43:c6:4f:8b:1e:97:aa: 10:d8:59:42:92:8d:f9:5e:55:cc:79:db:69:97:2f:d4:4c:5a: b3:ab:fe:b2:24:8d:12:cd:a9:46:65:c1:8b:ee:1c:54:49:8c: cc:06:28:dc:60:96:40:68:ea:bd:f1:c7:46:07:a6:d2:45:60: f2:f4:2a:d9:0c:44:d0:7a:fe:29:1a:51:27:c6:4b:3a:3c:15: 2a:5c:51:13:2e:65:1f:4e:e0:9f:6f:be:76:ea:b2:4b:23:6f: 9d:9c:08:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUJRKCCcZWx50NHsrmu23kgzgiVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNTA3MDQxNTU1MDJaFw0yNjA3MDMxNjAwMDJaMDMxMTAvBgNV BAMTKENDNjcwMjFCNTNFNUQ5QTlCOEUyMkE3RDEwQjA1MjI1QjdEQTlBNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClVjjc/lkkJlM7bYVB1v4B066B KdDx3GRIKC0dszL1JJihhRm6QycAjxmN+RnryXMUqyVo9f2lzgBPAPrjdeYrLrPo 2ecZu3xRkScSBrSCGPhVBEI2mmAD0NR3APYLE7FUYR85NLY4xHMk5XdIKJzJKBBm W0GVPrQp+8Wmj/hFBCYQW27DEtBQBB+/ePk2/UCS9JEQvJAefWlvl5xAtPL1yRdv Q46DxSe+FcQWvXJEDMCNhkFAQcbqFfMi3TCOVfD2ugQLV3hLUh8LUUEc3OKyyq10 P3v6UIgJQ/USYN+o/bgQIp2FfOz2vz+SINF2E++wEHV+uMk5P+lhND2WjTSlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzGcCG1Pl2am44ip9ELBSJbfamkswHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKczANBgkqhkiG 9w0BAQsFAAOCAQEAguJTPKRp/fPryV1OQKwX5qHJN1tRgX/OcN8chV00m1v+Egk0 wcVWo37taSe1PLw3mH7lTir5PqDaHuwvBvYFGcnJvpdYf+RTDAzcehcLU06xHn58 ISJjC1D9/zad+94++32L5Osk/VRSOMra/xcwvHNLR9WV2AQF3LJOqxcI2jsNSs/x 9L5D+EV5gSGt3ctqC6Zg+E/EZTnqsGdDxk+LHpeqENhZQpKN+V5VzHnbaZcv1Exa s6v+siSNEs2pRmXBi+4cVEmMzAYo3GCWQGjqvfHHRgem0kVg8vQq2QxE0Hr+KRpR J8ZLOjwVKlxREy5lH07gn2++duqySyNvnZwIhg== -----END CERTIFICATE-----Generated at Sat Aug 9 14:16:35 2025 by rpki-client