$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 2AVll+/D/K+v/4WlgDlc2MnUOZ7awzED7l+8mZq+qC8= Subject key identifier: 7E:55:FB:2C:81:6E:9F:47:C2:23:C3:BD:FC:7F:A5:C4:42:35:60:9B Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7C495BB89F3C40485F00623520BFC64BD30D7246 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa Signing time: Sat 03 May 2025 09:00:04 +0000 ROA not before: Sat 03 May 2025 08:55:04 +0000 ROA not after: Sat 02 May 2026 09:00:04 +0000 asID: 24525 IP address blocks: 114.199.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 05:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:49:5b:b8:9f:3c:40:48:5f:00:62:35:20:bf:c6:4b:d3:0d:72:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 3 08:55:04 2025 GMT Not After : May 2 09:00:04 2026 GMT Subject: CN=7E55FB2C816E9F47C223C3BDFC7FA5C44235609B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:39:aa:03:ac:e8:a3:c9:2b:7e:de:69:36: fb:cc:f2:15:46:00:35:cc:49:ed:57:de:08:28:38: 60:8e:10:b0:4d:80:73:60:b0:e3:d2:8f:a3:e6:79: f1:31:79:40:25:71:b7:7b:d5:b2:b3:13:31:cc:d6: e3:0d:c6:82:28:d0:cf:42:42:50:4c:04:55:24:27: 55:ba:7f:97:71:ac:45:c8:e6:66:23:8c:f4:77:b7: 31:86:a1:f7:73:40:6d:4b:5d:d1:76:7e:ae:d4:73: b7:ae:32:33:b9:88:05:a2:08:75:1a:07:22:16:c7: f7:e7:49:06:a3:fb:7b:94:b9:02:3b:f6:ac:fa:2f: 36:33:5d:7e:82:2b:fe:9a:c6:59:51:0b:a9:87:be: 6b:02:56:0d:96:3d:bc:06:3d:79:38:8c:f5:3f:38: f7:f1:8f:22:df:9d:29:d1:b6:29:7e:0a:ae:c5:34: ae:65:f4:34:99:52:f9:89:b7:20:b8:ea:65:d2:3a: 02:ff:f3:7d:fa:98:11:61:db:d9:23:c1:d3:06:a0: c1:0b:70:22:20:e9:3e:51:8e:43:3e:72:09:01:66: 48:09:ea:ef:ca:af:53:ae:ce:d9:80:91:74:88:90: 48:7e:c4:e1:4e:46:f8:16:3b:a5:fe:03:8d:32:5a: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:55:FB:2C:81:6E:9F:47:C2:23:C3:BD:FC:7F:A5:C4:42:35:60:9B X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.125.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:cf:2b:07:7c:eb:4f:6e:1e:9f:c4:f5:43:20:10:11:8d:14: e8:8b:8c:24:37:76:2a:57:d2:2c:91:c1:64:4c:f4:9c:ec:ac: e9:18:88:db:78:41:41:c6:d8:12:10:ad:70:62:9a:03:f0:09: 5c:a8:f1:3c:68:bf:5c:2a:9b:bb:25:63:59:41:da:29:0f:54: 8d:4d:a2:49:5a:05:55:41:fa:9b:97:50:98:75:d7:67:82:14: c8:aa:3f:7a:ad:90:3a:d4:8e:34:4a:fc:91:61:0f:36:85:da: d0:0d:c6:8d:77:aa:9e:6e:b4:2d:b9:89:c0:31:8b:9a:82:94: 1e:ac:e0:ec:b8:9b:82:5e:90:b5:79:02:63:1e:79:a2:99:3f: 50:7a:4b:b2:09:18:0c:ae:58:d5:81:83:ea:95:65:69:7b:80: 25:c5:71:e5:52:ec:88:b9:40:92:e0:9d:fa:b5:42:1d:74:d8: 97:41:0f:f4:49:49:48:86:4d:cc:5f:1e:d6:a9:fb:f0:66:15: ea:91:3d:2a:ab:cd:1b:b5:4f:d3:00:12:eb:4f:cd:06:12:bf: d3:57:fb:83:10:73:42:ff:48:86:48:29:ca:82:b9:3a:12:a6: 28:af:d6:1e:f7:64:79:46:f9:7d:e0:4a:ae:83:9f:f5:68:c5: e1:f1:98:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfElbuJ88QEhfAGI1IL/GS9MNckYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA1MDMwODU1MDRaFw0yNjA1MDIwOTAwMDRaMDMxMTAvBgNV BAMTKDdFNTVGQjJDODE2RTlGNDdDMjIzQzNCREZDN0ZBNUM0NDIzNTYwOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57DmqA6zoo8krft5pNvvM8hVG ADXMSe1X3ggoOGCOELBNgHNgsOPSj6PmefExeUAlcbd71bKzEzHM1uMNxoIo0M9C QlBMBFUkJ1W6f5dxrEXI5mYjjPR3tzGGofdzQG1LXdF2fq7Uc7euMjO5iAWiCHUa ByIWx/fnSQaj+3uUuQI79qz6LzYzXX6CK/6axllRC6mHvmsCVg2WPbwGPXk4jPU/ OPfxjyLfnSnRtil+Cq7FNK5l9DSZUvmJtyC46mXSOgL/8336mBFh29kjwdMGoMEL cCIg6T5RjkM+cgkBZkgJ6u/Kr1OuztmAkXSIkEh+xOFORvgWO6X+A40yWkM1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUflX7LIFun0fCI8O9/H+lxEI1YJswHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd9MA0GCSqG SIb3DQEBCwUAA4IBAQB/zysHfOtPbh6fxPVDIBARjRToi4wkN3YqV9IskcFkTPSc 7KzpGIjbeEFBxtgSEK1wYpoD8AlcqPE8aL9cKpu7JWNZQdopD1SNTaJJWgVVQfqb l1CYdddnghTIqj96rZA61I40SvyRYQ82hdrQDcaNd6qebrQtuYnAMYuagpQerODs uJuCXpC1eQJjHnmimT9QekuyCRgMrljVgYPqlWVpe4AlxXHlUuyIuUCS4J36tUId dNiXQQ/0SUlIhk3MXx7WqfvwZhXqkT0qq80btU/TABLrT80GEr/TV/uDEHNC/0iG SCnKgrk6EqYor9Ye92R5Rvl94Equg5/1aMXh8Zhl -----END CERTIFICATE-----Generated at Mon Jun 16 23:40:22 2025 by rpki-client