$ rpki-client -vvf repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/33362e35302e3235332e302f32342d3234203d3e20313338383239.roa File: 33362e35302e3235332e302f32342d3234203d3e20313338383239.roa (raw, json) Hash identifier: LdkOVHPRJZ2FR3qmT6KJhjMmjG6naW4xlLBSVHp1k1g= Subject key identifier: 97:D4:A1:1F:EE:80:BB:27:83:4F:4F:E3:C2:8B:D3:39:C7:6A:D5:8B Certificate issuer: /CN=37A94886A0E275DC8F922930328C955CC4307FF1 Certificate serial: 389746176EF81B9C287696BEAFE5927C03162D29 Authority key identifier: 37:A9:48:86:A0:E2:75:DC:8F:92:29:30:32:8C:95:5C:C4:30:7F:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37A94886A0E275DC8F922930328C955CC4307FF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/33362e35302e3235332e302f32342d3234203d3e20313338383239.roa Signing time: Sun 02 Mar 2025 05:00:00 +0000 ROA not before: Sun 02 Mar 2025 04:55:00 +0000 ROA not after: Sun 01 Mar 2026 05:00:00 +0000 asID: 138829 IP address blocks: 36.50.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/37A94886A0E275DC8F922930328C955CC4307FF1.crl rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/37A94886A0E275DC8F922930328C955CC4307FF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37A94886A0E275DC8F922930328C955CC4307FF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 08:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:97:46:17:6e:f8:1b:9c:28:76:96:be:af:e5:92:7c:03:16:2d:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37A94886A0E275DC8F922930328C955CC4307FF1 Validity Not Before: Mar 2 04:55:00 2025 GMT Not After : Mar 1 05:00:00 2026 GMT Subject: CN=97D4A11FEE80BB27834F4FE3C28BD339C76AD58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0e:3f:a0:c7:da:6d:02:c4:0a:27:37:32:e5: 4d:f9:d4:83:b9:e6:e9:76:c6:fe:87:68:91:79:69: 2d:af:5e:a6:bb:fd:46:5e:6a:01:0f:d8:fd:e0:0e: 56:de:1e:8e:e3:91:6c:b4:c7:fa:59:2f:cc:2e:17: b9:bb:93:4d:a4:a6:ea:2e:65:8c:ac:8c:cb:e4:99: 4c:54:1c:87:ed:a3:60:61:a7:b2:77:b0:4d:7e:b2: b7:85:2b:8c:03:d1:ed:de:2b:e4:39:19:20:09:19: b9:ef:ac:0d:28:95:2d:7a:46:75:25:f8:4e:f5:d6: 35:bd:8d:f6:69:ad:2f:31:43:fd:b6:bb:7d:85:9c: d3:d1:a4:74:64:a6:ba:45:2c:d4:2e:33:58:e3:07: b0:0a:8b:7b:7f:91:c3:5e:13:aa:a4:13:50:18:85: 74:51:0a:ae:16:83:4b:b9:62:04:0a:3b:14:6a:d2: 6c:40:29:39:4f:07:98:5d:90:11:cf:74:2a:7c:35: 09:26:9c:89:e8:7e:dc:4a:0c:6f:fc:5c:24:c1:75: 76:78:91:b3:59:68:c1:90:8f:a7:67:62:97:a7:40: 47:4a:45:23:67:f3:c2:45:cf:d5:0d:5e:e0:51:23: b0:1d:dc:a1:de:8a:32:46:d8:9f:71:da:f4:53:22: 43:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D4:A1:1F:EE:80:BB:27:83:4F:4F:E3:C2:8B:D3:39:C7:6A:D5:8B X509v3 Authority Key Identifier: keyid:37:A9:48:86:A0:E2:75:DC:8F:92:29:30:32:8C:95:5C:C4:30:7F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/37A94886A0E275DC8F922930328C955CC4307FF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37A94886A0E275DC8F922930328C955CC4307FF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/33362e35302e3235332e302f32342d3234203d3e20313338383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.253.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ee:a7:30:ad:a4:c6:23:08:9d:e8:d7:ce:6f:01:25:71:6a: 43:48:de:d8:8a:20:43:ca:69:97:4e:ad:c2:56:21:ff:74:bb: 2c:be:88:12:3c:2d:85:eb:5e:d7:69:34:54:d8:cb:ba:62:45: b4:04:5c:90:59:26:17:10:19:d3:fc:d4:8a:31:c2:aa:7e:f9: b1:81:b7:12:dd:f8:3e:be:0e:be:c6:7c:34:cf:08:68:cc:29: 2c:68:7a:99:8b:ef:b0:05:19:69:0a:22:1d:2a:a1:09:fb:b1: 5e:72:0e:6b:a0:43:30:88:84:8c:66:51:48:74:ae:6c:46:e1: ee:a1:25:22:a6:a1:e6:8e:99:ba:ee:1f:5e:5b:be:a6:8f:88: 17:86:8d:87:e5:8e:8d:bc:08:42:a8:c0:b2:b1:6e:90:75:91: 89:4f:76:e3:40:ef:48:08:32:cb:f7:da:e7:da:a7:fe:6a:0b: 4a:dd:66:53:4d:d3:8d:9c:28:5d:a4:fa:31:bf:74:6a:15:b5: c8:b1:2d:0d:6e:a6:db:3a:1b:fa:59:88:f2:90:35:45:8f:dd: ff:38:b1:a3:cf:80:09:31:f6:3c:15:64:b9:66:d9:17:ab:c5: d8:26:ad:62:81:77:54:1b:9a:45:10:13:cb:05:be:03:36:47: 31:46:45:ef -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOJdGF274G5wodpa+r+WSfAMWLSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdBOTQ4ODZBMEUyNzVEQzhGOTIyOTMwMzI4Qzk1NUND NDMwN0ZGMTAeFw0yNTAzMDIwNDU1MDBaFw0yNjAzMDEwNTAwMDBaMDMxMTAvBgNV BAMTKDk3RDRBMTFGRUU4MEJCMjc4MzRGNEZFM0MyOEJEMzM5Qzc2QUQ1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Dj+gx9ptAsQKJzcy5U351IO5 5ul2xv6HaJF5aS2vXqa7/UZeagEP2P3gDlbeHo7jkWy0x/pZL8wuF7m7k02kpuou ZYysjMvkmUxUHIfto2Bhp7J3sE1+sreFK4wD0e3eK+Q5GSAJGbnvrA0olS16RnUl +E711jW9jfZprS8xQ/22u32FnNPRpHRkprpFLNQuM1jjB7AKi3t/kcNeE6qkE1AY hXRRCq4Wg0u5YgQKOxRq0mxAKTlPB5hdkBHPdCp8NQkmnInoftxKDG/8XCTBdXZ4 kbNZaMGQj6dnYpenQEdKRSNn88JFz9UNXuBRI7Ad3KHeijJG2J9x2vRTIkN7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl9ShH+6AuyeDT0/jwovTOcdq1YswHwYDVR0j BBgwFoAUN6lIhqDiddyPkikwMoyVXMQwf/EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE2ZmVhYS02YjRmLTQ3Y2YtOWUzYy0wMGFlYWM2N2EzMmEvMS8zN0E5NDg4NkEw RTI3NURDOEY5MjI5MzAzMjhDOTU1Q0M0MzA3RkYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdBOTQ4ODZBMEUyNzVEQzhGOTIyOTMwMzI4Qzk1NUNDNDMw N0ZGMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTZmZWFhLTZiNGYtNDdjZi05 ZTNjLTAwYWVhYzY3YTMyYS8xLzMzMzYyZTM1MzAyZTMyMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACQy/TANBgkqhkiG 9w0BAQsFAAOCAQEAGu6nMK2kxiMInejXzm8BJXFqQ0je2IogQ8ppl06twlYh/3S7 LL6IEjwthete12k0VNjLumJFtARckFkmFxAZ0/zUijHCqn75sYG3Et34Pr4OvsZ8 NM8IaMwpLGh6mYvvsAUZaQoiHSqhCfuxXnIOa6BDMIiEjGZRSHSubEbh7qElIqah 5o6Zuu4fXlu+po+IF4aNh+WOjbwIQqjAsrFukHWRiU9240DvSAgyy/fa59qn/moL St1mU03TjZwoXaT6Mb90ahW1yLEtDW6m2zob+lmI8pA1RY/d/zixo8+ACTH2PBVk uWbZF6vF2CatYoF3VBuaRRATywW+AzZHMUZF7w== -----END CERTIFICATE-----Generated at Sun Apr 6 17:46:55 2025 by rpki-client