$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233322e302f32322d3234203d3e2039333431.roa File: 3137352e3138342e3233322e302f32322d3234203d3e2039333431.roa (raw, json) Hash identifier: /NJYIz5c5OxCtCzAI9eMSZnnK2DRsoEPFpGekXPN3/Y= Subject key identifier: E8:9B:83:26:51:D4:0E:2A:8C:C0:FC:A9:C5:79:65:AC:EB:2E:24:F9 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 1092E89C7A735A1816D9EF877F03BEE1B4684D71 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233322e302f32322d3234203d3e2039333431.roa Signing time: Tue 13 May 2025 11:00:01 +0000 ROA not before: Tue 13 May 2025 10:55:01 +0000 ROA not after: Tue 12 May 2026 11:00:01 +0000 asID: 9341 IP address blocks: 175.184.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 15:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:92:e8:9c:7a:73:5a:18:16:d9:ef:87:7f:03:be:e1:b4:68:4d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: May 13 10:55:01 2025 GMT Not After : May 12 11:00:01 2026 GMT Subject: CN=E89B832651D40E2A8CC0FCA9C57965ACEB2E24F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3e:70:10:12:fd:99:f5:cb:ed:ce:bc:e6:15: f2:ac:b1:50:02:a0:8a:9d:11:9a:25:fc:aa:0a:43: 26:8e:d1:0e:f7:2b:fb:9a:7c:26:33:56:0f:9e:4f: 64:ed:60:35:24:a3:98:02:9b:b8:91:11:ac:1c:0f: a0:35:cd:a6:ae:47:e1:63:82:55:70:a4:0f:48:9c: 44:df:d3:5c:41:b6:e4:af:bf:cf:61:21:c2:c7:e3: bd:f1:07:0e:60:be:2f:51:c1:2e:75:4c:b6:28:b0: 5f:ca:31:46:8d:42:09:8c:c4:80:3c:0c:ca:9b:d9: 08:84:63:b0:7d:49:e3:63:89:ed:6f:f2:5f:c1:db: 83:1a:67:e2:47:79:21:30:0c:69:de:f9:67:4f:05: 47:ac:0e:83:14:87:2b:9d:d7:e7:c6:69:b0:8c:6a: 1b:d8:52:9b:98:63:8d:fe:49:1c:27:16:2d:cc:21: 76:84:85:43:02:0a:33:ab:ed:38:cf:dd:36:93:50: b5:8d:4b:97:bd:35:75:33:bd:93:9e:90:12:8b:00: f1:5d:13:47:28:62:2c:c0:53:f3:43:0c:9a:e9:92: 4c:d2:ff:72:60:f9:8a:ca:7c:f3:b8:be:2d:53:45: 76:31:6e:40:07:b4:c1:d9:ae:82:86:ef:f2:39:e1: 92:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:9B:83:26:51:D4:0E:2A:8C:C0:FC:A9:C5:79:65:AC:EB:2E:24:F9 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233322e302f32322d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.184.232.0/22 Signature Algorithm: sha256WithRSAEncryption 38:e2:26:d9:91:8f:1e:85:0a:44:6b:eb:97:85:a8:00:20:b0: 2b:b0:dd:3f:d3:dd:70:95:d3:4d:c0:55:36:1c:e2:37:b0:cf: 0a:5f:2c:90:b1:b1:2f:01:45:03:11:32:53:39:ae:78:5e:40: d9:15:b9:1f:c3:5e:79:9b:a8:d0:26:ba:b4:0a:01:d4:9d:92: df:db:55:2f:23:58:2f:d7:b4:d5:af:d2:e4:71:9c:4f:7f:4c: b9:70:ee:59:59:4c:5e:4f:66:d9:3b:aa:1c:d6:f9:d3:56:67: fb:37:b5:6f:66:07:a9:67:a6:d7:96:8a:05:c7:9e:96:48:d7: 99:98:60:f0:89:57:08:da:06:89:72:75:b2:cb:2b:9a:82:48: 2b:35:61:4a:ff:f5:66:5f:9d:14:e1:91:8a:b6:41:be:33:af: b5:1b:70:29:ba:86:93:00:48:3c:06:1a:85:ee:28:31:83:82: e2:c9:7f:0c:d1:03:95:08:b9:f3:44:39:45:e8:6f:1d:f0:72: 1b:9f:d2:ba:78:c4:64:de:ba:bf:a7:0a:a9:9a:0d:6d:2e:e2: 67:66:ce:b4:4a:97:bf:d2:4b:78:8b:c1:fd:cc:a5:71:c7:c6: ee:77:ad:ca:f6:76:a4:f5:be:72:0c:7c:e9:a1:18:15:3e:e6: 7b:b3:03:41 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEJLonHpzWhgW2e+HfwO+4bRoTXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA1MTMxMDU1MDFaFw0yNjA1MTIxMTAwMDFaMDMxMTAvBgNV BAMTKEU4OUI4MzI2NTFENDBFMkE4Q0MwRkNBOUM1Nzk2NUFDRUIyRTI0RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqPnAQEv2Z9cvtzrzmFfKssVAC oIqdEZol/KoKQyaO0Q73K/uafCYzVg+eT2TtYDUko5gCm7iREawcD6A1zaauR+Fj glVwpA9InETf01xBtuSvv89hIcLH473xBw5gvi9RwS51TLYosF/KMUaNQgmMxIA8 DMqb2QiEY7B9SeNjie1v8l/B24MaZ+JHeSEwDGne+WdPBUesDoMUhyud1+fGabCM ahvYUpuYY43+SRwnFi3MIXaEhUMCCjOr7TjP3TaTULWNS5e9NXUzvZOekBKLAPFd E0coYizAU/NDDJrpkkzS/3Jg+YrKfPO4vi1TRXYxbkAHtMHZroKG7/I54ZLbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6JuDJlHUDiqMwPypxXllrOsuJPkwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzczNTJlMzEzODM0MmUzMjMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAq+46DANBgkqhkiG 9w0BAQsFAAOCAQEAOOIm2ZGPHoUKRGvrl4WoACCwK7DdP9PdcJXTTcBVNhziN7DP Cl8skLGxLwFFAxEyUzmueF5A2RW5H8NeeZuo0Ca6tAoB1J2S39tVLyNYL9e01a/S 5HGcT39MuXDuWVlMXk9m2TuqHNb501Zn+ze1b2YHqWem15aKBceelkjXmZhg8IlX CNoGiXJ1sssrmoJIKzVhSv/1Zl+dFOGRirZBvjOvtRtwKbqGkwBIPAYahe4oMYOC 4sl/DNEDlQi580Q5RehvHfByG5/SunjEZN66v6cKqZoNbS7iZ2bOtEqXv9JLeIvB /cylccfG7netyvZ2pPW+cgx86aEYFT7me7MDQQ== -----END CERTIFICATE-----Generated at Wed Oct 29 21:21:26 2025 by rpki-client