$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa File: 3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: trFC+pX4oMn7rw9va8+zapompho+fZFvfIyOd+ou6p0= Subject key identifier: 53:49:6F:3A:D5:6F:98:DA:E4:C0:27:0F:66:21:F3:1F:A8:B1:2E:85 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 49F976F9D82EF048AB00A6F2E24E78759DE90E6C Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa Signing time: Mon 02 Jun 2025 02:02:53 +0000 ROA not before: Mon 02 Jun 2025 01:57:53 +0000 ROA not after: Mon 01 Jun 2026 02:02:53 +0000 asID: 24521 IP address blocks: 175.184.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f9:76:f9:d8:2e:f0:48:ab:00:a6:f2:e2:4e:78:75:9d:e9:0e:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jun 2 01:57:53 2025 GMT Not After : Jun 1 02:02:53 2026 GMT Subject: CN=53496F3AD56F98DAE4C0270F6621F31FA8B12E85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6f:92:0d:a7:03:48:2d:45:47:1d:e3:6a:33: 67:ee:b7:a6:80:4a:2d:31:3d:ca:2a:c6:f9:c3:ca: 1f:57:3f:af:56:5c:4d:3e:dc:c2:37:ff:15:32:aa: 5b:81:2c:63:c2:b2:1b:18:f3:65:32:5b:ef:1c:36: 7b:63:b8:be:6f:9a:f3:74:13:1e:bf:a0:69:a0:66: 28:bc:4b:e2:1b:07:76:b7:97:63:d1:aa:8d:b8:7e: 49:0c:54:fe:5d:91:86:54:3c:e7:3d:f1:f7:3b:13: 06:18:e5:ce:40:40:5e:bb:d7:39:d7:fe:75:eb:61: ed:33:1f:d3:86:51:24:16:86:7c:62:21:4d:95:0b: 96:f0:d9:59:83:79:89:f2:3b:2f:15:ec:ea:9a:c0: 4e:16:5e:97:3d:9a:42:4f:62:6c:0a:0e:ae:d5:8c: 2e:80:df:d4:6e:2d:d0:6d:a1:6b:cb:d5:4a:9c:7f: b0:68:62:74:53:16:6b:cb:7e:59:87:d1:2b:87:c4: b3:70:31:e0:39:3e:80:d3:64:45:c8:61:4c:2b:4a: 04:8d:bf:45:ed:02:0d:6f:1d:f6:db:bf:50:d8:a3: ce:bb:fe:31:19:98:69:56:e5:8b:c3:97:26:d4:e4: bb:ee:11:f8:5c:96:90:58:ab:cf:03:65:60:ac:2b: 84:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:49:6F:3A:D5:6F:98:DA:E4:C0:27:0F:66:21:F3:1F:A8:B1:2E:85 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.184.224.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:b4:75:99:0b:e0:c9:25:2b:07:6f:8e:7f:43:fe:44:be:40: 50:a0:5d:b0:86:6d:83:23:57:39:3a:e3:ba:65:da:c6:69:24: da:1f:cf:e0:e6:d5:19:50:7b:3e:03:35:15:a6:b4:27:92:5b: 68:4f:45:a7:93:9a:9e:09:ad:f0:e6:21:3b:51:14:39:65:cb: 77:c1:b0:e5:85:90:44:6f:63:c4:15:b3:d5:e1:ce:49:11:3d: 8d:eb:4f:4b:6a:4f:e1:6e:90:5a:d5:cc:73:ca:23:40:5b:75: 73:0b:2b:9c:2e:33:4d:04:e6:3a:79:08:f8:58:01:d6:c4:6a: d4:af:d4:ef:6c:38:7f:c8:fc:cd:7d:c9:d2:b7:d1:46:d4:55: f4:09:38:58:72:e0:8d:0d:0f:18:b2:e8:66:ce:69:d1:a7:26: c6:c3:cc:8e:60:51:dc:a0:55:3d:6c:c4:af:6f:9d:7c:58:aa: 35:c9:9b:d4:7d:12:05:fa:40:18:79:c6:47:57:b2:a0:1b:48: eb:db:5b:b5:d4:e0:b2:a7:a1:c8:b2:42:4a:7d:68:7f:79:d9: 9e:79:60:e1:47:1b:a1:3c:e8:32:cf:21:51:f5:7b:32:7f:2a: f5:e7:6d:36:c7:89:b0:e6:43:66:4a:c9:43:8b:28:40:d5:a4: 2a:85:59:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSfl2+dgu8EirAKby4k54dZ3pDmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA2MDIwMTU3NTNaFw0yNjA2MDEwMjAyNTNaMDMxMTAvBgNV BAMTKDUzNDk2RjNBRDU2Rjk4REFFNEMwMjcwRjY2MjFGMzFGQThCMTJFODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVb5INpwNILUVHHeNqM2fut6aA Si0xPcoqxvnDyh9XP69WXE0+3MI3/xUyqluBLGPCshsY82UyW+8cNntjuL5vmvN0 Ex6/oGmgZii8S+IbB3a3l2PRqo24fkkMVP5dkYZUPOc98fc7EwYY5c5AQF671znX /nXrYe0zH9OGUSQWhnxiIU2VC5bw2VmDeYnyOy8V7OqawE4WXpc9mkJPYmwKDq7V jC6A39RuLdBtoWvL1Uqcf7BoYnRTFmvLflmH0SuHxLNwMeA5PoDTZEXIYUwrSgSN v0XtAg1vHfbbv1DYo867/jEZmGlW5YvDlybU5LvuEfhclpBYq88DZWCsK4TfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU0lvOtVvmNrkwCcPZiHzH6ixLoUwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzczNTJlMzEzODM0MmUzMjMyMzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzUzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr7jgMA0GCSqG SIb3DQEBCwUAA4IBAQB7tHWZC+DJJSsHb45/Q/5EvkBQoF2whm2DI1c5OuO6ZdrG aSTaH8/g5tUZUHs+AzUVprQnkltoT0Wnk5qeCa3w5iE7URQ5Zct3wbDlhZBEb2PE FbPV4c5JET2N609Lak/hbpBa1cxzyiNAW3VzCyucLjNNBOY6eQj4WAHWxGrUr9Tv bDh/yPzNfcnSt9FG1FX0CThYcuCNDQ8YsuhmzmnRpybGw8yOYFHcoFU9bMSvb518 WKo1yZvUfRIF+kAYecZHV7KgG0jr21u11OCyp6HIskJKfWh/edmeeWDhRxuhPOgy zyFR9Xsyfyr15202x4mw5kNmSslDiyhA1aQqhVmA -----END CERTIFICATE-----Generated at Thu Jun 5 19:03:55 2025 by rpki-client