$ rpki-client -vvf repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232342e302f32342d3234203d3e20313532303830.roa File: 33362e35302e3232342e302f32342d3234203d3e20313532303830.roa (raw, json) Hash identifier: tcD9B8za3o83puE+5evMMp5cofm2QVyf+SD2jvffeIM= Subject key identifier: 8F:5D:67:DA:FC:9D:41:26:B2:D8:C2:9E:93:1D:5B:BC:BF:D5:80:8E Certificate issuer: /CN=F5D71EC77922A9080F17C3A16FBE5F69B1CD8832 Certificate serial: 330AC639AEF9837E6F143C90714EFD82E30DD6C8 Authority key identifier: F5:D7:1E:C7:79:22:A9:08:0F:17:C3:A1:6F:BE:5F:69:B1:CD:88:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232342e302f32342d3234203d3e20313532303830.roa Signing time: Mon 03 Mar 2025 05:00:00 +0000 ROA not before: Mon 03 Mar 2025 04:55:00 +0000 ROA not after: Mon 02 Mar 2026 05:00:00 +0000 asID: 152080 IP address blocks: 36.50.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.crl rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 06:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:0a:c6:39:ae:f9:83:7e:6f:14:3c:90:71:4e:fd:82:e3:0d:d6:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5D71EC77922A9080F17C3A16FBE5F69B1CD8832 Validity Not Before: Mar 3 04:55:00 2025 GMT Not After : Mar 2 05:00:00 2026 GMT Subject: CN=8F5D67DAFC9D4126B2D8C29E931D5BBCBFD5808E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:12:91:d1:b6:17:bf:f8:a3:93:ff:d2:8b:ee: 12:12:55:b6:7d:c3:17:02:a8:0b:87:23:12:3f:f8: b2:42:e5:f9:6a:72:39:1c:05:c7:a1:0e:b4:17:a5: 78:d6:d9:cb:51:7a:9f:d1:6b:36:4e:b0:b9:49:6b: c7:09:da:69:08:b2:e3:d8:11:57:80:0d:29:40:e3: d7:50:92:0a:ae:f3:1d:d7:56:55:6f:ce:39:78:29: bf:73:bf:e0:6a:14:46:9d:aa:d3:fa:cd:33:8a:d2: b5:f1:15:c6:9e:a2:11:cd:13:3d:04:12:3c:64:60: c3:8c:4a:33:ad:1e:7f:b0:24:9e:aa:fb:d2:a2:d5: 39:1c:d0:9c:ef:c1:47:35:8d:44:2b:86:39:80:07: 95:3c:90:d6:7b:5b:07:16:7d:5f:fb:79:a1:26:8a: 5f:7d:90:10:f2:b9:88:5e:c1:42:77:ee:1a:52:09: 8a:3e:05:88:6c:d7:99:f4:20:3a:1b:49:90:7d:ed: b2:99:c3:18:b7:d5:ac:e4:76:af:ef:ab:70:b7:5f: 03:1c:57:09:3b:a8:f6:89:ba:0e:60:4a:ec:72:a9: fb:80:4b:49:e4:88:0f:d4:51:85:78:2b:a2:1c:4c: e1:66:02:0d:eb:d6:ff:3e:64:c4:7f:96:4d:dd:93: 93:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5D:67:DA:FC:9D:41:26:B2:D8:C2:9E:93:1D:5B:BC:BF:D5:80:8E X509v3 Authority Key Identifier: keyid:F5:D7:1E:C7:79:22:A9:08:0F:17:C3:A1:6F:BE:5F:69:B1:CD:88:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5D71EC77922A9080F17C3A16FBE5F69B1CD8832.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ae83673-096a-440c-b27a-9be64b13b4e5/0/33362e35302e3232342e302f32342d3234203d3e20313532303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.224.0/24 Signature Algorithm: sha256WithRSAEncryption d2:33:00:71:f6:e0:18:84:bf:50:8a:5d:0b:f9:b0:c6:36:b7: ca:f0:6b:11:48:4f:5f:89:7b:8a:cc:12:72:62:d0:7f:cd:5a: 88:a6:ad:99:1c:47:18:54:ab:6e:ef:8c:1d:00:55:43:b3:47: 04:54:ee:aa:97:90:2c:08:e3:5f:db:0d:9e:d9:1a:cb:88:cf: 67:7b:66:bd:ba:e8:77:5a:4f:e6:01:5e:ee:7d:da:13:3b:b9: c8:e4:b7:ed:01:0a:56:b8:b4:a6:a2:90:a6:93:05:9d:88:c7: 93:a2:d3:e7:ba:77:ac:1b:18:44:1d:49:22:45:dc:d0:b0:09: c0:fb:bc:7e:8b:fd:5e:72:1c:89:ff:48:6a:de:fc:68:84:e5: 52:f5:b3:15:4c:7d:84:13:d1:41:aa:49:ad:27:0a:6a:2d:9a: 26:79:99:99:0c:e2:58:ec:ac:21:61:c1:65:20:3b:c7:ef:2f: 2d:51:76:f0:42:4f:16:f3:0b:f6:0e:36:1b:b8:dd:49:60:90: d3:59:98:aa:5e:df:6f:4c:cc:1b:28:e9:35:55:14:5b:2e:20: 16:4e:f5:d9:8a:3d:cd:16:97:d9:c3:10:8c:88:51:0b:8c:8c: bb:f9:88:57:07:80:1d:e6:a4:65:63:da:e9:8c:cb:68:68:68: 6e:be:35:96 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMwrGOa75g35vFDyQcU79guMN1sgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVENzFFQzc3OTIyQTkwODBGMTdDM0ExNkZCRTVGNjlC MUNEODgzMjAeFw0yNTAzMDMwNDU1MDBaFw0yNjAzMDIwNTAwMDBaMDMxMTAvBgNV BAMTKDhGNUQ2N0RBRkM5RDQxMjZCMkQ4QzI5RTkzMUQ1QkJDQkZENTgwOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyEpHRthe/+KOT/9KL7hISVbZ9 wxcCqAuHIxI/+LJC5flqcjkcBcehDrQXpXjW2ctRep/RazZOsLlJa8cJ2mkIsuPY EVeADSlA49dQkgqu8x3XVlVvzjl4Kb9zv+BqFEadqtP6zTOK0rXxFcaeohHNEz0E EjxkYMOMSjOtHn+wJJ6q+9Ki1Tkc0JzvwUc1jUQrhjmAB5U8kNZ7WwcWfV/7eaEm il99kBDyuYhewUJ37hpSCYo+BYhs15n0IDobSZB97bKZwxi31azkdq/vq3C3XwMc Vwk7qPaJug5gSuxyqfuAS0nkiA/UUYV4K6IcTOFmAg3r1v8+ZMR/lk3dk5M9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj11n2vydQSay2MKekx1bvL/VgI4wHwYDVR0j BBgwFoAU9dcex3kiqQgPF8Ohb75fabHNiDIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWU4MzY3My0wOTZhLTQ0MGMtYjI3YS05YmU2NGIxM2I0ZTUvMC9GNUQ3MUVDNzc5 MjJBOTA4MEYxN0MzQTE2RkJFNUY2OUIxQ0Q4ODMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjVENzFFQzc3OTIyQTkwODBGMTdDM0ExNkZCRTVGNjlCMUNE ODgzMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZTgzNjczLTA5NmEtNDQwYy1i MjdhLTliZTY0YjEzYjRlNS8wLzMzMzYyZTM1MzAyZTMyMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACQy4DANBgkqhkiG 9w0BAQsFAAOCAQEA0jMAcfbgGIS/UIpdC/mwxja3yvBrEUhPX4l7iswScmLQf81a iKatmRxHGFSrbu+MHQBVQ7NHBFTuqpeQLAjjX9sNntkay4jPZ3tmvbrod1pP5gFe 7n3aEzu5yOS37QEKVri0pqKQppMFnYjHk6LT57p3rBsYRB1JIkXc0LAJwPu8fov9 XnIcif9Iat78aITlUvWzFUx9hBPRQapJrScKai2aJnmZmQziWOysIWHBZSA7x+8v LVF28EJPFvML9g42G7jdSWCQ01mYql7fb0zMGyjpNVUUWy4gFk712Yo9zRaX2cMQ jIhRC4yMu/mIVweAHeakZWPa6YzLaGhobr41lg== -----END CERTIFICATE-----Generated at Thu Apr 10 06:45:17 2025 by rpki-client