$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa File: 3138302e3231312e38382e302f32312d3234203d3e203435373235.roa (raw, json) Hash identifier: 6cpCf7GhdQEpx30p91qB9UYsON8gtbAQPKe5llQv0bs= Subject key identifier: DE:4E:F0:C7:11:91:3B:6D:A3:01:4F:83:6F:83:4D:51:6B:8C:A8:6E Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 7779D6D2E75B856B81F7D1CB9600B3C1E5138B3F Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa Signing time: Tue 27 May 2025 10:00:01 +0000 ROA not before: Tue 27 May 2025 09:55:01 +0000 ROA not after: Tue 26 May 2026 10:00:01 +0000 asID: 45725 IP address blocks: 180.211.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:79:d6:d2:e7:5b:85:6b:81:f7:d1:cb:96:00:b3:c1:e5:13:8b:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: May 27 09:55:01 2025 GMT Not After : May 26 10:00:01 2026 GMT Subject: CN=DE4EF0C711913B6DA3014F836F834D516B8CA86E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:fd:98:d6:7c:d0:87:bc:e7:23:ba:74:89: f4:80:ec:10:47:b4:56:47:48:96:0e:5f:9a:b3:7d: 02:8d:19:3b:d3:aa:9d:64:ad:7f:06:18:00:89:31: 21:16:f4:45:88:60:6d:b6:d6:02:4a:46:cc:38:fa: c4:35:da:ee:b4:04:d0:55:20:40:49:31:fb:95:03: 52:f2:72:de:18:e3:a1:fa:13:9a:28:4a:2d:8b:f4: d9:fd:00:11:92:22:ab:8a:3b:ba:fb:4d:2c:43:57: 2c:59:d4:0f:61:43:ab:cd:6e:82:52:de:b9:d0:82: d6:51:c2:42:8a:95:26:76:a5:cd:00:ee:4a:c2:39: 97:53:57:a8:7d:a8:2f:8f:9f:44:14:de:c6:84:21: 10:61:66:b2:3e:d2:61:55:1c:ba:9f:f0:aa:a6:bc: c4:0a:66:72:53:a9:c0:07:10:49:95:f5:36:f7:a4: de:0e:13:15:97:75:d9:c3:6e:ab:7d:b5:ba:1c:5d: 34:fb:c2:5f:33:68:0f:6c:5c:a3:1d:7f:ed:d9:83: 92:c1:81:5a:02:cd:ff:3e:d8:e1:f2:1b:49:4c:24: db:26:1f:df:fe:e2:09:43:a6:07:20:77:eb:45:03: c5:c5:35:f5:bc:c7:90:0b:43:25:c3:a7:1f:e7:3b: 43:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4E:F0:C7:11:91:3B:6D:A3:01:4F:83:6F:83:4D:51:6B:8C:A8:6E X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.211.88.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:24:82:de:c0:a8:a1:77:83:5d:96:b4:82:a4:05:fb:a1:09: 47:a5:e6:38:dc:5b:8d:84:9b:0e:04:10:d0:37:b5:95:73:5f: 67:48:67:de:b5:a8:9c:af:e7:42:99:da:d6:c5:f1:24:c5:6d: 1d:69:05:a4:1e:37:3f:f1:0a:ff:bd:57:3d:e0:33:fc:fd:53: 5b:1d:91:ce:ab:16:a4:57:7c:dd:c1:d6:d5:b3:d3:0b:37:9a: 1d:f9:8c:f4:7c:b1:25:a5:db:e1:c7:46:11:b3:dc:bc:e0:f3: a3:73:04:9d:91:38:7e:d8:f2:c0:c9:f4:a3:70:55:dd:55:84: d0:1c:1d:3e:b3:b6:22:2d:5d:b6:a3:18:0c:af:a2:00:e0:ec: 22:a1:76:99:4d:b7:07:fc:28:49:df:04:a3:96:b5:d7:02:49: 4c:4f:59:6d:bd:c3:b5:18:26:da:fb:de:e0:96:f8:f3:3e:2b: e3:2a:d0:76:cc:d8:40:9b:cd:fc:d5:3c:fb:84:e5:c0:54:ba: 5f:34:39:79:10:79:9f:f9:5d:de:30:78:2e:3d:89:e7:8e:67: 11:2e:e8:b9:90:80:ee:44:e0:96:d1:ca:6b:74:5b:91:d2:77: 7a:3b:16:a1:e2:a0:5b:c7:25:6b:11:78:3c:6b:ba:89:04:90: dc:ab:f0:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd3nW0udbhWuB99HLlgCzweUTiz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA1MjcwOTU1MDFaFw0yNjA1MjYxMDAwMDFaMDMxMTAvBgNV BAMTKERFNEVGMEM3MTE5MTNCNkRBMzAxNEY4MzZGODM0RDUxNkI4Q0E4NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxwf2Y1nzQh7znI7p0ifSA7BBH tFZHSJYOX5qzfQKNGTvTqp1krX8GGACJMSEW9EWIYG221gJKRsw4+sQ12u60BNBV IEBJMfuVA1Lyct4Y46H6E5ooSi2L9Nn9ABGSIquKO7r7TSxDVyxZ1A9hQ6vNboJS 3rnQgtZRwkKKlSZ2pc0A7krCOZdTV6h9qC+Pn0QU3saEIRBhZrI+0mFVHLqf8Kqm vMQKZnJTqcAHEEmV9Tb3pN4OExWXddnDbqt9tbocXTT7wl8zaA9sXKMdf+3Zg5LB gVoCzf8+2OHyG0lMJNsmH9/+4glDpgcgd+tFA8XFNfW8x5ALQyXDpx/nO0M/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3k7wxxGRO22jAU+Db4NNUWuMqG4wHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzgzMDJlMzIzMTMxMmUzODM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7TTWDANBgkqhkiG 9w0BAQsFAAOCAQEAWySC3sCooXeDXZa0gqQF+6EJR6XmONxbjYSbDgQQ0De1lXNf Z0hn3rWonK/nQpna1sXxJMVtHWkFpB43P/EK/71XPeAz/P1TWx2RzqsWpFd83cHW 1bPTCzeaHfmM9HyxJaXb4cdGEbPcvODzo3MEnZE4ftjywMn0o3BV3VWE0BwdPrO2 Ii1dtqMYDK+iAODsIqF2mU23B/woSd8Eo5a11wJJTE9Zbb3DtRgm2vve4Jb48z4r 4yrQdszYQJvN/NU8+4TlwFS6XzQ5eRB5n/ld3jB4Lj2J545nES7ouZCA7kTgltHK a3RbkdJ3ejsWoeKgW8claxF4PGu6iQSQ3Kvwpw== -----END CERTIFICATE-----Generated at Thu Jun 5 19:43:58 2025 by rpki-client