$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa File: 3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa (raw, json) Hash identifier: lCEaNDac9Uy7+6t6S9h7K9iYUcMW/5sGx1LptTSZbcA= Subject key identifier: D0:EC:8D:67:B9:79:39:EB:AD:2A:C6:58:86:02:7B:20:31:A8:12:9F Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 10DE8DE6DFA147A3AFEFB6E78F9B3C2C8359BF5D Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa Signing time: Fri 11 Jul 2025 11:02:23 +0000 ROA not before: Fri 11 Jul 2025 10:57:23 +0000 ROA not after: Fri 10 Jul 2026 11:02:23 +0000 asID: 23679 IP address blocks: 150.107.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:de:8d:e6:df:a1:47:a3:af:ef:b6:e7:8f:9b:3c:2c:83:59:bf:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 11 10:57:23 2025 GMT Not After : Jul 10 11:02:23 2026 GMT Subject: CN=D0EC8D67B97939EBAD2AC65886027B2031A8129F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a9:bc:92:7f:cb:9b:2d:23:9e:bf:7b:df:9e: 9e:d5:77:f3:b0:5f:4b:49:54:67:af:15:5f:e0:a4: c0:4f:2e:12:a2:ca:13:12:8f:84:b7:9e:d5:c8:77: 1e:da:e5:55:46:27:ec:ac:e7:65:9d:dd:03:be:a0: 0f:6c:a7:bb:7d:f3:92:c4:7f:1a:a7:89:b8:4d:b4: 3f:b0:3e:4f:9d:d7:30:76:74:9c:65:57:25:6c:e9: 33:a5:f8:4e:63:1a:1c:fa:ef:56:18:d5:33:d3:f7: 84:a9:6c:63:1c:a9:1b:e7:6f:e2:36:db:8e:fd:b3: f3:57:1f:2c:85:04:04:d2:49:f1:64:6e:30:1b:e9: 27:52:41:3b:bf:1c:27:dc:3d:da:fe:fe:87:ea:69: b3:f0:c0:d8:0f:35:04:fb:11:d2:68:53:cd:a7:63: 6b:f2:cd:06:f0:5a:00:68:c2:bd:3b:aa:74:16:06: 73:3d:1d:bd:2c:d0:95:5a:8e:06:d1:c9:e2:10:f1: f4:88:11:dd:c5:bc:cb:f0:d9:19:52:95:4c:40:f1: ef:b5:6c:f9:28:ef:02:aa:e4:81:df:b0:36:09:ea: cf:48:d4:d8:b3:bc:76:50:28:60:5a:d2:24:55:5e: 08:76:7e:dd:72:03:f9:82:ac:87:be:1a:d8:96:6d: 49:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EC:8D:67:B9:79:39:EB:AD:2A:C6:58:86:02:7B:20:31:A8:12:9F X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133362e302f32332d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.136.0/23 Signature Algorithm: sha256WithRSAEncryption d7:3a:0d:94:a2:32:0c:46:94:08:11:d6:d0:e0:cb:4d:01:9a: 91:61:b0:91:c3:18:45:33:02:42:f9:d2:d7:e5:01:99:bd:73: cf:25:a3:db:86:81:3e:3f:62:c1:78:8f:a1:b1:98:f9:43:05: 93:92:48:56:f0:90:f6:ac:56:e4:c1:6b:66:f9:53:e4:ff:9e: 60:4b:33:6c:97:d7:0b:90:b8:12:9b:f0:e9:95:93:3c:f1:ea: 87:fe:df:bb:a9:83:3a:3c:06:3e:3a:c6:11:78:83:48:cf:60: 57:74:69:2c:fc:f2:b6:02:55:32:6f:96:67:76:83:75:57:e4: 45:d8:db:48:6f:be:76:51:0f:0a:69:77:d6:17:27:bf:f0:50: bc:32:86:34:ee:b2:a5:93:a0:43:15:4c:7f:df:b2:58:e7:ba: fa:f7:0f:a4:74:28:f9:fe:82:47:14:68:cf:a3:05:a7:11:e8: 5b:b2:16:cf:4a:a2:74:49:5c:08:09:14:21:12:5d:91:a9:1c: b4:0d:31:4d:d6:aa:cb:86:33:0b:22:f5:58:2a:c4:d0:c0:df: c2:df:49:28:8f:e4:45:95:19:ad:cc:7d:72:46:55:1f:50:04: 0f:2c:72:16:5e:61:29:dd:8d:39:c4:a9:66:ed:d8:79:40:87: 30:e7:62:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEN6N5t+hR6Ov77bnj5s8LINZv10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MTExMDU3MjNaFw0yNjA3MTAxMTAyMjNaMDMxMTAvBgNV BAMTKEQwRUM4RDY3Qjk3OTM5RUJBRDJBQzY1ODg2MDI3QjIwMzFBODEyOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfqbySf8ubLSOev3vfnp7Vd/Ow X0tJVGevFV/gpMBPLhKiyhMSj4S3ntXIdx7a5VVGJ+ys52Wd3QO+oA9sp7t985LE fxqnibhNtD+wPk+d1zB2dJxlVyVs6TOl+E5jGhz671YY1TPT94SpbGMcqRvnb+I2 2479s/NXHyyFBATSSfFkbjAb6SdSQTu/HCfcPdr+/ofqabPwwNgPNQT7EdJoU82n Y2vyzQbwWgBowr07qnQWBnM9Hb0s0JVajgbRyeIQ8fSIEd3FvMvw2RlSlUxA8e+1 bPko7wKq5IHfsDYJ6s9I1NizvHZQKGBa0iRVXgh2ft1yA/mCrIe+GtiWbUnjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0OyNZ7l5OeutKsZYhgJ7IDGoEp8wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzUzMDJlMzEzMDM3MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBlmuIMA0GCSqG SIb3DQEBCwUAA4IBAQDXOg2UojIMRpQIEdbQ4MtNAZqRYbCRwxhFMwJC+dLX5QGZ vXPPJaPbhoE+P2LBeI+hsZj5QwWTkkhW8JD2rFbkwWtm+VPk/55gSzNsl9cLkLgS m/DplZM88eqH/t+7qYM6PAY+OsYReINIz2BXdGks/PK2AlUyb5ZndoN1V+RF2NtI b752UQ8KaXfWFye/8FC8MoY07rKlk6BDFUx/37JY57r69w+kdCj5/oJHFGjPowWn EehbshbPSqJ0SVwICRQhEl2RqRy0DTFN1qrLhjMLIvVYKsTQwN/C30koj+RFlRmt zH1yRlUfUAQPLHIWXmEp3Y05xKlm7dh5QIcw52Ko -----END CERTIFICATE-----Generated at Fri Jul 25 18:26:24 2025 by rpki-client