$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38312e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38312e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: X94iHmC78hqkg+a5g/HydKqZH7tnCEVEqG54QZAuC80= Subject key identifier: E3:02:56:65:6B:21:FD:B3:FB:12:59:A2:0D:86:E0:8F:B6:6A:6E:6E Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 22E46A6DBA98C2E1A21D2FDCE2BAE29AF60F10C7 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38312e302f32342d3234203d3e203338373533.roa Signing time: Tue 05 Aug 2025 03:00:01 +0000 ROA not before: Tue 05 Aug 2025 02:55:01 +0000 ROA not after: Tue 04 Aug 2026 03:00:01 +0000 asID: 38753 IP address blocks: 119.110.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 15:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:e4:6a:6d:ba:98:c2:e1:a2:1d:2f:dc:e2:ba:e2:9a:f6:0f:10:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Aug 5 02:55:01 2025 GMT Not After : Aug 4 03:00:01 2026 GMT Subject: CN=E30256656B21FDB3FB1259A20D86E08FB66A6E6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ca:79:7c:36:87:5e:75:6a:b1:6f:24:73:e7: 5d:c7:5d:ec:de:36:08:8b:af:71:81:82:2f:b6:bf: 0f:29:da:f2:b7:64:5c:ce:6e:9b:fd:aa:b6:45:38: 69:0c:f2:eb:50:37:14:ab:16:dd:3c:43:5a:b1:87: 17:93:16:8f:e6:9c:32:a4:a9:c7:24:a2:6c:20:c9: 7f:d5:38:e9:d9:c0:8e:6f:bb:23:71:76:97:88:09: 42:c6:aa:39:d1:2b:79:75:39:84:20:bb:90:8f:f1: e3:18:6f:79:0e:8e:72:82:a0:8f:5a:94:d2:19:47: 6d:65:ed:08:6c:b6:aa:3b:15:e3:1a:09:6b:fc:5d: 05:06:01:74:98:21:01:69:ae:aa:6a:5a:7d:a0:31: 84:fa:22:3c:93:69:1c:1b:53:2d:84:8a:0c:ff:d3: 0c:e5:e1:de:51:26:91:ac:e7:d3:fd:17:41:fb:81: 4a:5f:22:ad:d6:32:2d:97:14:38:89:76:76:98:1d: 74:63:5c:92:29:d7:ef:6e:88:88:a4:a7:e1:e0:30: ea:3b:8c:66:39:70:31:5d:67:26:bd:ef:40:0b:0e: 00:15:b4:f4:4d:34:1f:24:01:50:42:e1:b1:8a:42: 6c:39:aa:c1:d7:4a:db:5f:4c:1b:92:fd:d3:43:2f: 9f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:02:56:65:6B:21:FD:B3:FB:12:59:A2:0D:86:E0:8F:B6:6A:6E:6E X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38312e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.81.0/24 Signature Algorithm: sha256WithRSAEncryption 94:9a:d8:b5:52:49:85:24:36:bf:fa:5c:37:fd:a3:53:b2:93: 90:c4:46:a7:c9:23:8b:6a:5d:33:28:50:ff:0e:44:bb:be:71: 51:9b:0b:b6:2b:1e:45:ae:eb:d9:06:92:65:e3:ef:65:e1:68: a0:2a:37:25:42:10:66:b9:fe:b8:60:af:9c:09:9d:be:8a:c5: cd:ca:4e:68:6b:b4:71:5b:b0:4d:9a:e8:01:01:f1:f4:d7:f0: 81:2a:96:02:d2:89:38:cc:40:f9:d3:8e:e2:bd:b1:d6:aa:43: f0:72:78:59:3d:3f:be:f6:19:96:d2:50:20:96:d3:8d:49:1e: f3:6b:83:5e:1c:27:c9:52:98:94:28:0f:ce:3d:97:e1:09:87: 30:71:1d:20:64:b7:50:98:12:ae:3d:c5:6a:88:2b:10:e1:ec: 78:99:b1:f0:4d:29:28:78:cc:94:f9:5e:16:65:17:f3:1b:ad: aa:4b:5f:9d:36:a2:2e:38:e0:bb:67:88:09:3a:fc:6c:e7:33: 07:8b:3a:14:e9:57:5b:97:1e:03:4a:46:dd:ee:23:06:ac:0f: ae:0d:96:ce:2d:72:6e:a7:e9:e1:68:20:81:e5:f9:53:72:a6: 8a:a4:9e:b6:f2:5a:d3:d4:af:46:f3:97:f1:d1:7d:2f:8f:06: 3c:25:be:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIuRqbbqYwuGiHS/c4rrimvYPEMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA4MDUwMjU1MDFaFw0yNjA4MDQwMzAwMDFaMDMxMTAvBgNV BAMTKEUzMDI1NjY1NkIyMUZEQjNGQjEyNTlBMjBEODZFMDhGQjY2QTZFNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeynl8NodedWqxbyRz513HXeze NgiLr3GBgi+2vw8p2vK3ZFzObpv9qrZFOGkM8utQNxSrFt08Q1qxhxeTFo/mnDKk qcckomwgyX/VOOnZwI5vuyNxdpeICULGqjnRK3l1OYQgu5CP8eMYb3kOjnKCoI9a lNIZR21l7Qhstqo7FeMaCWv8XQUGAXSYIQFprqpqWn2gMYT6IjyTaRwbUy2Eigz/ 0wzl4d5RJpGs59P9F0H7gUpfIq3WMi2XFDiJdnaYHXRjXJIp1+9uiIikp+HgMOo7 jGY5cDFdZya970ALDgAVtPRNNB8kAVBC4bGKQmw5qsHXSttfTBuS/dNDL59ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4wJWZWsh/bP7ElmiDYbgj7Zqbm4wHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduUTANBgkqhkiG 9w0BAQsFAAOCAQEAlJrYtVJJhSQ2v/pcN/2jU7KTkMRGp8kji2pdMyhQ/w5Eu75x UZsLtiseRa7r2QaSZePvZeFooCo3JUIQZrn+uGCvnAmdvorFzcpOaGu0cVuwTZro AQHx9NfwgSqWAtKJOMxA+dOO4r2x1qpD8HJ4WT0/vvYZltJQIJbTjUke82uDXhwn yVKYlCgPzj2X4QmHMHEdIGS3UJgSrj3FaogrEOHseJmx8E0pKHjMlPleFmUX8xut qktfnTaiLjjgu2eICTr8bOczB4s6FOlXW5ceA0pG3e4jBqwPrg2Wzi1ybqfp4Wgg geX5U3KmiqSetvJa09SvRvOX8dF9L48GPCW+Uw== -----END CERTIFICATE-----Generated at Sun Aug 10 05:34:09 2025 by rpki-client