$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa File: 3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: 3s+1x7Kh/xBqP32tmZCfmOSQ4lTCgq9KKruK3AojZBk= Subject key identifier: 4B:7E:22:3C:23:37:06:40:96:6F:B3:65:08:C7:D0:81:3D:C6:8A:40 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 49A7EA1D137003C7B9B856C4EC6D8111B9B37233 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa Signing time: Fri 04 Apr 2025 09:00:03 +0000 ROA not before: Fri 04 Apr 2025 08:55:03 +0000 ROA not after: Fri 03 Apr 2026 09:00:03 +0000 asID: 55685 IP address blocks: 150.107.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a7:ea:1d:13:70:03:c7:b9:b8:56:c4:ec:6d:81:11:b9:b3:72:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Apr 4 08:55:03 2025 GMT Not After : Apr 3 09:00:03 2026 GMT Subject: CN=4B7E223C23370640966FB36508C7D0813DC68A40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:93:27:56:a8:3b:c1:09:4f:f9:bc:fb:96: 35:d6:90:84:7d:62:50:38:5a:96:f4:15:bf:63:18: e7:3e:9f:bc:bc:bd:7b:49:4c:1e:4f:8d:aa:1b:4c: c5:46:55:36:70:15:f6:5a:0d:be:bd:bb:17:cd:f6: 09:61:7d:31:b6:86:7c:dc:88:40:3d:3f:90:26:1a: a1:91:2e:43:1d:48:0f:ea:40:97:4c:b8:80:21:85: fd:b3:7f:ef:65:38:a7:04:89:29:03:69:43:d6:b7: bb:58:c1:fe:1c:95:76:3b:87:1c:ba:5e:8d:b6:7b: d7:c7:d0:20:4f:b2:1d:b1:7e:fd:a0:30:25:dd:5d: db:2b:11:63:81:2a:c6:bf:95:b0:bf:f4:cd:ef:41: 0a:0c:22:9d:59:cc:33:b3:cd:a6:a8:aa:f5:bf:2f: 6e:21:26:b7:17:0c:30:a1:fa:d1:21:82:31:fd:b8: c2:57:3c:36:a4:cb:7d:58:ea:32:35:fa:b6:4c:d7: e4:88:38:59:9f:ad:77:92:a9:1c:55:cf:fb:db:75: 22:fd:6b:4f:ac:09:2f:cb:a6:81:59:46:2d:07:21: cb:d8:fc:e5:81:ae:65:2e:f1:5d:9a:0e:c6:51:5b: f3:92:10:14:58:19:dc:b5:ba:e0:fd:c2:93:1c:74: 1d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7E:22:3C:23:37:06:40:96:6F:B3:65:08:C7:D0:81:3D:C6:8A:40 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.141.0/24 Signature Algorithm: sha256WithRSAEncryption 22:1d:e3:e1:fd:89:e5:db:3d:a4:f5:ff:42:46:cc:f6:78:98: a7:c5:71:85:09:11:31:90:36:07:df:8f:e9:b8:73:a1:5e:53: e1:46:e6:a8:f5:64:1e:bb:c9:60:70:f5:03:2e:f6:71:e8:94: 60:02:f9:91:f9:79:cb:31:25:d3:7a:29:82:2e:cc:18:36:0b: 14:90:ac:c5:d4:ce:0d:d8:6d:d3:c3:ba:74:1a:7b:f5:39:ac: d5:8e:5a:8a:30:97:21:41:a1:b9:0b:7b:4c:43:3f:99:58:8e: a9:cf:7b:ec:a3:72:91:eb:c8:22:af:12:78:f1:44:9b:e2:25: e4:27:60:24:07:a6:d7:6c:cc:6d:0d:eb:64:52:8a:8d:26:4b: 62:6c:07:d3:bb:a7:b0:1f:60:ac:80:0d:2a:66:27:64:67:5a: bf:f8:94:a3:4d:cc:8e:f3:d7:e7:9e:90:55:f5:bd:3a:4c:b8: fe:ff:c5:05:19:1e:8c:37:8e:ab:fd:1f:68:d1:96:20:ed:9b: 0a:1e:86:be:bd:8b:bf:44:ee:ee:30:47:2b:c8:d4:12:49:8e: db:d2:ce:09:ce:1a:ff:22:9a:2f:73:09:03:a3:3b:e3:b4:63: f9:ce:d9:ae:57:ae:4d:60:c0:69:24:95:4d:8b:0e:a8:b5:ed: 9a:a6:fc:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSafqHRNwA8e5uFbE7G2BEbmzcjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA0MDQwODU1MDNaFw0yNjA0MDMwOTAwMDNaMDMxMTAvBgNV BAMTKDRCN0UyMjNDMjMzNzA2NDA5NjZGQjM2NTA4QzdEMDgxM0RDNjhBNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyspMnVqg7wQlP+bz7ljXWkIR9 YlA4Wpb0Fb9jGOc+n7y8vXtJTB5PjaobTMVGVTZwFfZaDb69uxfN9glhfTG2hnzc iEA9P5AmGqGRLkMdSA/qQJdMuIAhhf2zf+9lOKcEiSkDaUPWt7tYwf4clXY7hxy6 Xo22e9fH0CBPsh2xfv2gMCXdXdsrEWOBKsa/lbC/9M3vQQoMIp1ZzDOzzaaoqvW/ L24hJrcXDDCh+tEhgjH9uMJXPDaky31Y6jI1+rZM1+SIOFmfrXeSqRxVz/vbdSL9 a0+sCS/LpoFZRi0HIcvY/OWBrmUu8V2aDsZRW/OSEBRYGdy1uuD9wpMcdB21AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUS34iPCM3BkCWb7NlCMfQgT3GikAwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuNMA0GCSqG SIb3DQEBCwUAA4IBAQAiHePh/Ynl2z2k9f9CRsz2eJinxXGFCRExkDYH34/puHOh XlPhRuao9WQeu8lgcPUDLvZx6JRgAvmR+XnLMSXTeimCLswYNgsUkKzF1M4N2G3T w7p0Gnv1OazVjlqKMJchQaG5C3tMQz+ZWI6pz3vso3KR68girxJ48USb4iXkJ2Ak B6bXbMxtDetkUoqNJktibAfTu6ewH2CsgA0qZidkZ1q/+JSjTcyO89fnnpBV9b06 TLj+/8UFGR6MN46r/R9o0ZYg7ZsKHoa+vYu/RO7uMEcryNQSSY7b0s4Jzhr/Ipov cwkDozvjtGP5ztmuV65NYMBpJJVNiw6ote2apvwP -----END CERTIFICATE-----Generated at Sun Apr 6 08:36:38 2025 by rpki-client