$ rpki-client -vvf repo-rpki.idnic.net/repo/5d90d86b-0b0d-456f-841a-bfdb9d807fb7/0/33362e35302e39362e302f32342d3234203d3e20313532333536.roa File: 33362e35302e39362e302f32342d3234203d3e20313532333536.roa (raw, json) Hash identifier: 0YTgb847tvQJ6aYcLp7rUu/koq2efZafX5EfBrU5MeY= Subject key identifier: 4E:9E:09:A5:1E:A9:B6:2B:51:FE:C3:31:2B:0F:77:98:68:A1:CC:9F Certificate issuer: /CN=0E1FEFA17B361540F73B249537DF0B5C4F93B4B9 Certificate serial: 3D09FACDF26D01E9149EC309024C71600BF25BFA Authority key identifier: 0E:1F:EF:A1:7B:36:15:40:F7:3B:24:95:37:DF:0B:5C:4F:93:B4:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E1FEFA17B361540F73B249537DF0B5C4F93B4B9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d90d86b-0b0d-456f-841a-bfdb9d807fb7/0/33362e35302e39362e302f32342d3234203d3e20313532333536.roa Signing time: Mon 21 Jul 2025 12:00:01 +0000 ROA not before: Mon 21 Jul 2025 11:55:01 +0000 ROA not after: Mon 20 Jul 2026 12:00:01 +0000 asID: 152356 IP address blocks: 36.50.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d90d86b-0b0d-456f-841a-bfdb9d807fb7/0/0E1FEFA17B361540F73B249537DF0B5C4F93B4B9.crl rsync://repo-rpki.idnic.net/repo/5d90d86b-0b0d-456f-841a-bfdb9d807fb7/0/0E1FEFA17B361540F73B249537DF0B5C4F93B4B9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E1FEFA17B361540F73B249537DF0B5C4F93B4B9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:09:fa:cd:f2:6d:01:e9:14:9e:c3:09:02:4c:71:60:0b:f2:5b:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E1FEFA17B361540F73B249537DF0B5C4F93B4B9 Validity Not Before: Jul 21 11:55:01 2025 GMT Not After : Jul 20 12:00:01 2026 GMT Subject: CN=4E9E09A51EA9B62B51FEC3312B0F779868A1CC9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ba:4f:a5:4d:e9:e6:2a:78:46:01:d7:f4:c7: e9:fa:8a:af:a3:8e:42:2a:33:29:50:94:15:73:be: 2f:d5:2d:a4:72:08:ae:8a:c0:ad:11:10:ec:51:da: a8:97:a5:f1:fc:1d:ae:ed:ed:50:cf:1a:9d:9c:ce: 76:d4:a2:af:84:76:b0:e4:4f:4f:6f:75:a0:f3:1b: d7:df:03:f1:06:16:22:90:33:5f:a5:0a:86:de:a9: cc:4d:3a:44:65:e5:b6:b9:01:21:cd:61:ba:81:84: 12:83:c0:70:4d:95:78:04:40:5c:50:99:00:4c:bb: c3:0e:cc:c5:8c:a7:f7:d8:dd:3d:cf:78:f8:28:b0: 2a:98:43:66:03:01:6e:a5:c6:b2:15:26:16:5d:43: 0a:49:fa:26:2c:c4:fb:2f:a3:35:72:26:cd:1a:06: c9:0d:22:c8:61:c2:dc:f9:e1:f8:09:82:7e:fa:fb: c3:40:b2:e8:5d:5a:44:e6:c4:9d:34:0a:85:df:63: b7:b1:46:62:92:b8:89:8b:62:86:05:fc:4e:01:85: d2:72:a0:f0:5c:9d:d5:4e:bb:ef:ff:2e:c7:99:4c: 77:c9:87:28:fa:42:ab:07:31:8e:14:0f:0b:a3:8f: a1:02:9e:ab:0d:96:a7:85:35:b6:4c:b8:ae:b2:dc: 93:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9E:09:A5:1E:A9:B6:2B:51:FE:C3:31:2B:0F:77:98:68:A1:CC:9F X509v3 Authority Key Identifier: keyid:0E:1F:EF:A1:7B:36:15:40:F7:3B:24:95:37:DF:0B:5C:4F:93:B4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d90d86b-0b0d-456f-841a-bfdb9d807fb7/0/0E1FEFA17B361540F73B249537DF0B5C4F93B4B9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E1FEFA17B361540F73B249537DF0B5C4F93B4B9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d90d86b-0b0d-456f-841a-bfdb9d807fb7/0/33362e35302e39362e302f32342d3234203d3e20313532333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.96.0/24 Signature Algorithm: sha256WithRSAEncryption 69:91:8e:d3:5f:a7:22:de:f7:42:4e:e2:03:ac:6d:fe:f9:04: f6:95:a4:49:9d:0c:8c:79:85:82:de:42:a9:33:65:90:31:87: 9f:b1:f6:df:68:3c:e4:e6:4f:46:2c:61:98:33:c3:7a:ac:ca: 83:77:09:55:94:20:f7:55:2a:04:9c:d6:fb:84:b9:cb:ce:ca: 9a:b5:1b:a8:7f:ad:06:8c:ce:ad:83:3a:63:41:77:53:3b:80: da:1e:84:a5:ac:8c:77:ea:48:aa:d7:24:2b:cb:20:68:c6:32: 46:96:d7:27:f7:aa:b1:71:59:aa:c3:37:ce:13:1a:47:6a:bd: c1:2c:c9:43:3f:a6:21:ce:d4:36:1d:8c:07:94:3b:28:0e:55: 79:de:f2:86:03:6c:71:24:65:1c:51:44:cc:22:8e:90:87:1d: 1d:96:6f:f3:46:18:8a:fe:1b:b3:61:f4:4c:70:8f:85:96:b8: 64:d9:03:e8:ae:b7:7c:c1:a6:f2:4f:2a:8c:99:0f:c2:9f:66: 7e:24:bd:e8:84:e1:99:c8:3d:07:7b:bb:bf:c7:2a:80:7e:d1: 7d:90:fc:d3:c5:5b:42:bf:2f:37:88:7c:1a:7c:f2:4e:25:74: b4:63:f5:d4:99:82:1d:2e:de:a9:12:03:d8:7a:03:6e:56:1e: 21:cb:aa:c9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPQn6zfJtAekUnsMJAkxxYAvyW/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUxRkVGQTE3QjM2MTU0MEY3M0IyNDk1MzdERjBCNUM0 RjkzQjRCOTAeFw0yNTA3MjExMTU1MDFaFw0yNjA3MjAxMjAwMDFaMDMxMTAvBgNV BAMTKDRFOUUwOUE1MUVBOUI2MkI1MUZFQzMzMTJCMEY3Nzk4NjhBMUNDOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHuk+lTenmKnhGAdf0x+n6iq+j jkIqMylQlBVzvi/VLaRyCK6KwK0REOxR2qiXpfH8Ha7t7VDPGp2cznbUoq+EdrDk T09vdaDzG9ffA/EGFiKQM1+lCobeqcxNOkRl5ba5ASHNYbqBhBKDwHBNlXgEQFxQ mQBMu8MOzMWMp/fY3T3PePgosCqYQ2YDAW6lxrIVJhZdQwpJ+iYsxPsvozVyJs0a BskNIshhwtz54fgJgn76+8NAsuhdWkTmxJ00CoXfY7exRmKSuImLYoYF/E4BhdJy oPBcndVOu+//LseZTHfJhyj6QqsHMY4UDwujj6ECnqsNlqeFNbZMuK6y3JMLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUTp4JpR6ptitR/sMxKw93mGihzJ8wHwYDVR0j BBgwFoAUDh/voXs2FUD3OySVN98LXE+TtLkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDkwZDg2Yi0wYjBkLTQ1NmYtODQxYS1iZmRiOWQ4MDdmYjcvMC8wRTFGRUZBMTdC MzYxNTQwRjczQjI0OTUzN0RGMEI1QzRGOTNCNEI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEUxRkVGQTE3QjM2MTU0MEY3M0IyNDk1MzdERjBCNUM0Rjkz QjRCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkOTBkODZiLTBiMGQtNDU2Zi04 NDFhLWJmZGI5ZDgwN2ZiNy8wLzMzMzYyZTM1MzAyZTM5MzYyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMzM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAkMmAwDQYJKoZIhvcN AQELBQADggEBAGmRjtNfpyLe90JO4gOsbf75BPaVpEmdDIx5hYLeQqkzZZAxh5+x 9t9oPOTmT0YsYZgzw3qsyoN3CVWUIPdVKgSc1vuEucvOypq1G6h/rQaMzq2DOmNB d1M7gNoehKWsjHfqSKrXJCvLIGjGMkaW1yf3qrFxWarDN84TGkdqvcEsyUM/piHO 1DYdjAeUOygOVXne8oYDbHEkZRxRRMwijpCHHR2Wb/NGGIr+G7Nh9Exwj4WWuGTZ A+iut3zBpvJPKoyZD8KfZn4kveiE4ZnIPQd7u7/HKoB+0X2Q/NPFW0K/LzeIfBp8 8k4ldLRj9dSZgh0u3qkSA9h6A25WHiHLqsk= -----END CERTIFICATE-----Generated at Mon Jul 21 23:25:33 2025 by rpki-client