$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3136382e302f32312d3231203d3e203436303534.roa File: 35382e3134352e3136382e302f32312d3231203d3e203436303534.roa (raw, json) Hash identifier: Lu9azehLR4chvFlJHbgACl9g/2sKz1G6TYe/wHO70OY= Subject key identifier: C6:60:DE:5F:E2:28:48:4F:9D:4B:A9:D6:A9:24:5B:73:AD:DD:3D:0D Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Certificate serial: 18066E1D23FA70BDF44370D6740D69E0C244DA99 Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3136382e302f32312d3231203d3e203436303534.roa Signing time: Wed 02 Jul 2025 06:00:02 +0000 ROA not before: Wed 02 Jul 2025 05:55:02 +0000 ROA not after: Wed 01 Jul 2026 06:00:02 +0000 asID: 46054 IP address blocks: 58.145.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:06:6e:1d:23:fa:70:bd:f4:43:70:d6:74:0d:69:e0:c2:44:da:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Validity Not Before: Jul 2 05:55:02 2025 GMT Not After : Jul 1 06:00:02 2026 GMT Subject: CN=C660DE5FE228484F9D4BA9D6A9245B73ADDD3D0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9c:b1:9c:d1:76:da:6d:bd:80:4d:5c:2b:9a: f9:f7:91:c0:81:9e:3d:4c:46:8f:3a:d1:ec:e1:ea: ea:f1:d2:47:a2:85:c7:6d:57:a8:a8:72:d1:ad:64: ca:8d:d4:d6:5d:84:60:ca:eb:15:4d:6a:cf:07:87: 24:44:76:a0:61:00:c3:64:b6:9e:41:c9:12:3e:20: 31:19:ed:db:a2:a3:25:9f:af:b7:69:e0:eb:fa:55: 18:3d:ec:82:49:28:1d:ca:61:a3:a7:9a:2f:68:7d: 22:a7:bc:02:05:33:3f:bd:78:77:4f:9a:51:18:b8: 9f:9d:ca:fd:10:58:97:f8:c1:54:06:16:ee:1b:5d: a9:ec:03:13:77:67:dd:19:dc:89:e4:6f:93:09:1b: ce:f9:33:5f:cd:ca:9b:6d:32:a2:e9:e4:c9:b9:28: fd:5e:35:4d:ea:cd:8c:c0:68:d2:35:36:16:ca:9b: 4e:7c:05:59:f9:02:28:f0:b1:b1:54:20:95:2d:3d: e7:64:86:c3:21:6a:fa:54:90:8b:74:0b:2e:87:5e: d3:aa:a5:1f:45:1f:1e:f6:ec:4c:e8:e2:12:5e:6d: a9:00:4b:79:c6:3d:a3:ab:8a:bf:e9:77:72:69:2e: 23:cf:26:65:2a:1d:f6:af:ca:f1:ee:df:6a:9f:d4: 25:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:60:DE:5F:E2:28:48:4F:9D:4B:A9:D6:A9:24:5B:73:AD:DD:3D:0D X509v3 Authority Key Identifier: keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3136382e302f32312d3231203d3e203436303534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.145.168.0/21 Signature Algorithm: sha256WithRSAEncryption 1a:95:2b:18:cc:e8:04:e1:c1:7a:b5:d2:16:a9:25:51:3b:c6: f8:14:e0:a8:48:f2:75:c4:ae:a8:a7:f1:14:7a:d1:43:d3:0e: 3d:1f:60:66:ab:81:3d:5a:e3:d7:3c:36:3d:90:ea:d8:c1:55: c2:2d:94:2a:f1:28:ae:c8:27:df:40:44:8c:89:70:85:c9:a3: e0:90:ad:08:c9:63:2e:ff:fc:37:fe:a1:a3:4a:eb:34:d9:5b: 73:fe:d6:26:47:f0:34:f2:bf:63:e8:b1:84:a9:ac:5c:e2:9c: 24:64:41:f9:74:49:45:34:13:c4:e5:c1:7a:7a:c9:63:c8:54: 42:08:a9:f2:e1:b2:0f:eb:d4:c1:70:7a:f3:b2:c0:41:fa:96: 99:0c:25:42:74:15:1d:2f:e5:c3:29:e6:9c:d3:82:30:35:5f: 61:8b:e0:ee:93:17:60:5c:73:c9:e8:78:37:9b:d8:a6:82:e6: 6a:b6:56:ef:7c:5d:96:69:6e:f8:db:8d:b3:40:fe:7e:59:44: 81:79:cf:ef:29:5a:22:04:54:47:3a:6a:a6:0b:8e:5c:33:4e: 84:a8:4f:6d:b7:61:29:92:ee:a7:3e:0d:cc:f0:aa:4d:78:94: de:b6:5a:ef:db:73:14:19:42:e8:e4:f6:31:f4:24:6e:c3:30: 50:b0:f8:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGAZuHSP6cL30Q3DWdA1p4MJE2pkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF QjlDOUNFNTAeFw0yNTA3MDIwNTU1MDJaFw0yNjA3MDEwNjAwMDJaMDMxMTAvBgNV BAMTKEM2NjBERTVGRTIyODQ4NEY5RDRCQTlENkE5MjQ1QjczQURERDNEMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDynLGc0Xbabb2ATVwrmvn3kcCB nj1MRo860ezh6urx0keihcdtV6ioctGtZMqN1NZdhGDK6xVNas8HhyREdqBhAMNk tp5ByRI+IDEZ7duioyWfr7dp4Ov6VRg97IJJKB3KYaOnmi9ofSKnvAIFMz+9eHdP mlEYuJ+dyv0QWJf4wVQGFu4bXansAxN3Z90Z3Inkb5MJG875M1/NypttMqLp5Mm5 KP1eNU3qzYzAaNI1NhbKm058BVn5AijwsbFUIJUtPedkhsMhavpUkIt0Cy6HXtOq pR9FHx727Ezo4hJebakAS3nGPaOrir/pd3JpLiPPJmUqHfavyvHu32qf1CXpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxmDeX+IoSE+dS6nWqSRbc63dPQ0wHwYDVR0j BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5 NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD OUNFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZjMwOTM2LWM3NTAtNDMzYi05 YzJhLThmZjVmMzhlNjNkNC8wLzM1MzgyZTMxMzQzNTJlMzEzNjM4MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzQzNjMwMzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzqRqDANBgkqhkiG 9w0BAQsFAAOCAQEAGpUrGMzoBOHBerXSFqklUTvG+BTgqEjydcSuqKfxFHrRQ9MO PR9gZquBPVrj1zw2PZDq2MFVwi2UKvEorsgn30BEjIlwhcmj4JCtCMljLv/8N/6h o0rrNNlbc/7WJkfwNPK/Y+ixhKmsXOKcJGRB+XRJRTQTxOXBenrJY8hUQgip8uGy D+vUwXB687LAQfqWmQwlQnQVHS/lwynmnNOCMDVfYYvg7pMXYFxzyeh4N5vYpoLm arZW73xdlmlu+NuNs0D+fllEgXnP7ylaIgRURzpqpguOXDNOhKhPbbdhKZLupz4N zPCqTXiU3rZa79tzFBlC6OT2MfQkbsMwULD40Q== -----END CERTIFICATE-----Generated at Wed Jul 23 12:11:51 2025 by rpki-client