$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f31392d3139203d3e2034373837.roa File: 3137352e3135382e33322e302f31392d3139203d3e2034373837.roa (raw, json) Hash identifier: MQJI+s1kh56D+8PlegoVLWOh3j30QL4aJfmh+K7dBRI= Subject key identifier: A5:E0:67:66:62:B0:CF:0C:8F:2A:E5:6C:53:F0:8E:85:D6:8A:D4:5A Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 34E7DE79E47E2C70EB1B0940AD14049A4DBA3B3F Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f31392d3139203d3e2034373837.roa Signing time: Mon 02 Jun 2025 02:04:40 +0000 ROA not before: Mon 02 Jun 2025 01:59:40 +0000 ROA not after: Mon 01 Jun 2026 02:04:40 +0000 asID: 4787 IP address blocks: 175.158.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:e7:de:79:e4:7e:2c:70:eb:1b:09:40:ad:14:04:9a:4d:ba:3b:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jun 2 01:59:40 2025 GMT Not After : Jun 1 02:04:40 2026 GMT Subject: CN=A5E0676662B0CF0C8F2AE56C53F08E85D68AD45A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:c7:85:08:96:69:e0:8d:a4:77:9a:16:fb: 35:a5:e1:d4:e7:26:ff:65:d4:d5:51:d1:b6:d2:5e: 42:f2:0e:f8:92:c1:8a:c3:96:3b:c7:b4:40:45:2d: 49:77:43:0b:d8:6b:c0:c1:ad:b2:6a:9d:37:fe:fc: 6b:d9:fd:ab:94:cb:04:a7:49:80:f3:d8:3f:e3:fa: 03:8a:a4:d1:ad:ef:e5:40:69:e4:82:77:21:ce:da: 74:80:7e:1b:f7:a4:72:4f:25:c3:bd:6c:d8:42:0e: 95:1c:8e:93:9a:ee:93:9b:fa:b3:67:3d:76:ba:2a: 6f:75:a2:c1:fd:eb:bd:66:1c:2d:de:37:81:62:34: 4c:b3:fd:f9:fd:dd:f6:68:49:fc:c0:4b:38:9b:c1: 4e:7b:78:c3:bc:ce:67:51:42:48:54:d6:08:87:69: fc:8d:52:d6:4f:f7:a3:3e:09:5a:6e:d0:1a:9f:fb: 76:63:8b:a8:f7:b8:eb:f3:3f:b2:2e:29:60:c3:da: 80:28:27:e1:70:3d:1e:0b:4d:5e:94:69:d7:a9:56: a7:fe:46:0a:c7:52:7a:a2:b1:2f:bc:cf:6b:ee:3f: f4:bd:d4:86:c8:ab:38:c8:a5:bb:fd:d9:9f:c2:a0: 42:f2:a8:3a:1e:4f:61:14:5f:7a:47:64:c8:93:be: 33:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E0:67:66:62:B0:CF:0C:8F:2A:E5:6C:53:F0:8E:85:D6:8A:D4:5A X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f31392d3139203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.158.32.0/19 Signature Algorithm: sha256WithRSAEncryption 74:a1:e6:38:d7:d7:17:02:de:7a:1c:4c:75:5d:5c:64:61:8a: d5:62:25:ea:5a:f8:9b:69:3f:75:2c:c4:27:d1:73:6a:4c:20: 6e:12:5f:0b:da:81:92:40:ad:c8:1b:bb:fe:0b:11:c2:65:c2: 60:c7:81:3c:83:01:84:c3:b1:97:df:0a:fd:40:bb:7d:83:aa: 28:02:ac:04:f0:4b:7f:0a:8c:8f:29:12:c1:0b:ce:3a:af:00: b4:2f:c9:b4:ab:ec:21:10:ac:04:ab:49:11:2b:0f:22:5c:64: e3:c7:97:a8:f0:6d:8e:03:dd:0a:0f:04:e1:38:39:99:bf:d0: 00:e2:2c:f7:8f:b5:42:f4:e2:e1:d3:17:91:43:09:31:0f:a4: 7d:28:1d:eb:f2:df:36:8c:87:61:3b:b6:4f:94:b4:89:c8:05: e8:c2:86:10:77:69:dc:b2:9a:00:8e:b2:5e:59:b2:c3:7c:bf: c3:a4:33:86:eb:6b:14:2c:c1:d0:b5:bd:e4:98:44:a9:c5:f7: 25:ab:0c:a1:76:ec:a3:ae:8c:47:35:88:a3:cb:f1:73:91:62: a1:4d:9e:ea:61:97:32:d3:18:c4:49:7f:27:c2:88:b4:12:10: d2:a6:2d:18:23:34:20:2b:cf:84:f0:fb:43:90:28:e6:bc:02: f1:dc:96:78 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNOfeeeR+LHDrGwlArRQEmk26Oz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA2MDIwMTU5NDBaFw0yNjA2MDEwMjA0NDBaMDMxMTAvBgNV BAMTKEE1RTA2NzY2NjJCMENGMEM4RjJBRTU2QzUzRjA4RTg1RDY4QUQ0NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBfceFCJZp4I2kd5oW+zWl4dTn Jv9l1NVR0bbSXkLyDviSwYrDljvHtEBFLUl3QwvYa8DBrbJqnTf+/GvZ/auUywSn SYDz2D/j+gOKpNGt7+VAaeSCdyHO2nSAfhv3pHJPJcO9bNhCDpUcjpOa7pOb+rNn PXa6Km91osH9671mHC3eN4FiNEyz/fn93fZoSfzASzibwU57eMO8zmdRQkhU1giH afyNUtZP96M+CVpu0Bqf+3Zji6j3uOvzP7IuKWDD2oAoJ+FwPR4LTV6UadepVqf+ RgrHUnqisS+8z2vuP/S91IbIqzjIpbv92Z/CoELyqDoeT2EUX3pHZMiTvjMfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUpeBnZmKwzwyPKuVsU/COhdaK1FowHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMxMzczNTJlMzEzNTM4MmUzMzMyMmUzMDJmMzEz OTJkMzEzOTIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWvniAwDQYJKoZIhvcN AQELBQADggEBAHSh5jjX1xcC3nocTHVdXGRhitViJepa+JtpP3UsxCfRc2pMIG4S XwvagZJArcgbu/4LEcJlwmDHgTyDAYTDsZffCv1Au32DqigCrATwS38KjI8pEsEL zjqvALQvybSr7CEQrASrSRErDyJcZOPHl6jwbY4D3QoPBOE4OZm/0ADiLPePtUL0 4uHTF5FDCTEPpH0oHevy3zaMh2E7tk+UtInIBejChhB3adyymgCOsl5ZssN8v8Ok M4braxQswdC1veSYRKnF9yWrDKF27KOujEc1iKPL8XORYqFNnuphlzLTGMRJfyfC iLQSENKmLRgjNCArz4Tw+0OQKOa8AvHclng= -----END CERTIFICATE-----Generated at Thu Jun 5 18:26:11 2025 by rpki-client