$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135302e302f32342d3234203d3e20313331373036.roa File: 3131302e37362e3135302e302f32342d3234203d3e20313331373036.roa (raw, json) Hash identifier: JNQ343i5OALYy6+PPMTF9ZMCDVDR/l5G+uGpk10x6iY= Subject key identifier: 1E:F6:C1:88:27:DB:00:C1:46:DE:F2:8A:1C:A9:D5:13:B1:6F:31:44 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 55160E8BFD03CF228EB8C374A38B90211B729999 Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135302e302f32342d3234203d3e20313331373036.roa Signing time: Wed 29 Oct 2025 04:00:00 +0000 ROA not before: Wed 29 Oct 2025 03:55:00 +0000 ROA not after: Wed 28 Oct 2026 04:00:00 +0000 asID: 131706 IP address blocks: 110.76.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 00:17:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:16:0e:8b:fd:03:cf:22:8e:b8:c3:74:a3:8b:90:21:1b:72:99:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Oct 29 03:55:00 2025 GMT Not After : Oct 28 04:00:00 2026 GMT Subject: CN=1EF6C18827DB00C146DEF28A1CA9D513B16F3144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2c:60:8b:7c:81:fe:0e:51:26:b6:16:29:b5: 31:90:79:de:1e:56:dc:ac:d7:65:56:de:01:ae:4b: 61:09:88:6e:7b:76:b0:1f:ac:6b:42:20:c8:72:08: 55:a5:b5:8c:a3:b3:10:be:8e:29:b0:43:b0:6c:89: 06:7b:14:b0:0d:cb:58:b9:be:ac:65:a4:67:48:b3: 13:ec:c2:b2:39:cb:13:9c:3a:d6:a9:71:5f:31:b1: f7:8d:4b:55:e6:cd:af:a0:de:c0:8b:ac:9e:aa:3f: 95:35:5f:68:c3:2f:bf:69:bf:b2:20:fe:e1:90:2a: fe:47:8a:23:f8:f5:88:62:a1:55:25:69:7e:ca:a0: 80:9a:8d:bc:19:ff:5b:4d:05:53:86:40:cb:44:de: 58:64:a8:31:41:7c:a1:47:65:fa:7d:10:6f:e2:c6: 54:13:8a:3f:0f:2b:41:eb:6e:6f:4d:60:4a:2f:4a: 68:73:ec:06:d1:76:30:60:fc:c3:bf:4c:5e:1f:07: d2:02:c7:0a:50:85:43:76:6d:61:d2:67:61:74:3c: 17:5c:5c:9a:31:4b:be:f3:13:75:e1:cc:07:3e:b8: f3:5c:f4:44:b0:d0:5b:89:f1:af:b4:f2:6a:f3:a3: bf:af:dd:3e:a3:60:aa:33:38:1c:92:35:de:ce:d3: d4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F6:C1:88:27:DB:00:C1:46:DE:F2:8A:1C:A9:D5:13:B1:6F:31:44 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135302e302f32342d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.150.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:4c:65:3b:20:bc:02:20:0f:f6:61:d8:87:b7:50:a7:58:9e: 20:33:1a:87:70:e4:8b:82:18:7d:e7:66:dc:e0:ec:0a:fd:a4: fc:89:ba:b8:d4:b3:28:56:87:a6:01:ee:f5:2a:ca:7c:56:4c: 26:7a:8b:1a:21:b1:1b:05:d3:bf:0f:f4:ef:19:ca:07:cc:31: 7d:90:53:56:d4:3a:a2:cb:8d:02:71:de:1e:38:3a:ab:f4:d0: 5b:5b:91:3b:54:db:1f:9c:bd:4b:11:09:58:b6:c9:66:7c:cb: b7:b3:93:34:5f:30:64:b6:dd:c8:19:9c:b0:b0:4f:8a:1a:5f: ac:73:98:c0:10:b1:4f:d5:f1:d1:3a:4b:c2:8f:da:34:0b:cf: 2e:95:64:e9:30:2f:8b:ff:0f:f4:0f:e5:78:e4:42:c9:b4:cc: 4e:e4:5f:08:38:2c:59:81:f6:be:2d:a1:ec:4c:c6:f5:ed:31: 7b:74:63:0a:33:48:79:03:d5:9e:da:3a:58:6f:51:e6:65:0d: a2:89:7f:ee:a5:90:ef:66:b7:96:82:c9:9d:02:09:86:ae:ca: 4a:5b:10:df:60:e7:be:14:8e:54:3e:9b:a5:08:56:f3:d7:dd: e5:42:25:43:21:30:08:7a:a7:64:87:13:0a:60:ab:96:5c:42: d4:32:0b:73 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVRYOi/0DzyKOuMN0o4uQIRtymZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yNTEwMjkwMzU1MDBaFw0yNjEwMjgwNDAwMDBaMDMxMTAvBgNV BAMTKDFFRjZDMTg4MjdEQjAwQzE0NkRFRjI4QTFDQTlENTEzQjE2RjMxNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3LGCLfIH+DlEmthYptTGQed4e Vtys12VW3gGuS2EJiG57drAfrGtCIMhyCFWltYyjsxC+jimwQ7BsiQZ7FLANy1i5 vqxlpGdIsxPswrI5yxOcOtapcV8xsfeNS1Xmza+g3sCLrJ6qP5U1X2jDL79pv7Ig /uGQKv5HiiP49YhioVUlaX7KoICajbwZ/1tNBVOGQMtE3lhkqDFBfKFHZfp9EG/i xlQTij8PK0Hrbm9NYEovSmhz7AbRdjBg/MO/TF4fB9ICxwpQhUN2bWHSZ2F0PBdc XJoxS77zE3XhzAc+uPNc9ESw0FuJ8a+08mrzo7+v3T6jYKozOBySNd7O09RpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHvbBiCfbAMFG3vKKHKnVE7FvMUQwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbkyWMA0GCSqG SIb3DQEBCwUAA4IBAQB7TGU7ILwCIA/2YdiHt1CnWJ4gMxqHcOSLghh952bc4OwK /aT8ibq41LMoVoemAe71Ksp8VkwmeosaIbEbBdO/D/TvGcoHzDF9kFNW1Dqiy40C cd4eODqr9NBbW5E7VNsfnL1LEQlYtslmfMu3s5M0XzBktt3IGZywsE+KGl+sc5jA ELFP1fHROkvCj9o0C88ulWTpMC+L/w/0D+V45ELJtMxO5F8IOCxZgfa+LaHsTMb1 7TF7dGMKM0h5A9We2jpYb1HmZQ2iiX/upZDvZreWgsmdAgmGrspKWxDfYOe+FI5U PpulCFbz193lQiVDITAIeqdkhxMKYKuWXELUMgtz -----END CERTIFICATE-----Generated at Tue Nov 4 19:06:09 2025 by rpki-client