$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa File: 3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: xVj6u15qvVMxYSK/238E54HQxxYzp9cQPWFiY75GQbk= Subject key identifier: 8F:BB:52:49:73:C9:60:49:52:84:EC:91:11:6D:A1:CD:ED:4C:8C:A9 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 6ECBCEBDAF88B333D635FAE715F37A862CD98CB4 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa Signing time: Fri 04 Apr 2025 09:00:02 +0000 ROA not before: Fri 04 Apr 2025 08:55:02 +0000 ROA not after: Fri 03 Apr 2026 09:00:02 +0000 asID: 55685 IP address blocks: 150.107.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 04:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:cb:ce:bd:af:88:b3:33:d6:35:fa:e7:15:f3:7a:86:2c:d9:8c:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Apr 4 08:55:02 2025 GMT Not After : Apr 3 09:00:02 2026 GMT Subject: CN=8FBB524973C960495284EC91116DA1CDED4C8CA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6d:43:2c:66:f5:68:d3:2d:22:21:ed:2d:46: 8f:7f:dd:60:d8:55:3a:1a:2d:a3:47:f8:06:33:74: 3a:ed:75:27:17:b6:ec:62:3f:be:f5:52:21:68:02: a8:0a:3e:a2:c0:30:ef:2c:2d:9d:ef:57:28:ba:2f: f8:fa:91:c4:7d:ae:e4:b7:e8:9e:a0:72:d3:80:87: 82:30:f5:4f:3e:7f:ad:24:68:7a:11:5f:f6:dc:97: 2c:21:c4:34:82:0e:82:a2:41:64:64:d3:d9:60:74: fa:94:79:1b:16:4b:19:6e:be:33:e2:00:9f:e8:0a: 7f:b2:ff:9f:16:3b:30:84:3b:cb:b7:d1:c9:d1:ea: 2c:07:2d:2d:73:77:93:48:f4:62:70:b5:50:5d:89: 13:6e:da:39:f3:0a:de:32:fa:f6:d1:18:54:73:8d: fa:7b:70:a1:c3:92:82:da:f5:ba:00:db:f5:74:ce: 49:41:ce:05:07:bf:d5:02:25:34:c8:7a:28:35:f8: 8c:eb:ef:62:57:54:e2:99:b4:26:da:8c:cc:20:24: 74:90:9f:e9:ad:24:29:d2:04:c9:89:7c:71:52:79: 68:6c:2a:a1:69:92:fe:39:db:63:f0:33:6b:ba:38: 64:66:53:85:97:24:09:48:92:a9:1e:50:ab:16:0e: 94:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:BB:52:49:73:C9:60:49:52:84:EC:91:11:6D:A1:CD:ED:4C:8C:A9 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.142.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:2f:05:f1:dc:64:b3:ec:09:55:dd:ac:78:f7:cd:c7:e5:ee: ae:31:b3:ac:66:38:82:b6:3e:74:e2:fc:62:0d:40:fb:9b:44: e0:e8:ba:f6:cd:ca:6d:55:ca:14:17:fe:76:61:09:9a:c4:81: 9c:72:dc:50:91:3a:c8:ff:ed:40:f3:87:e0:f4:68:32:4e:98: 0c:c2:df:90:2a:04:57:9a:5a:dc:1a:04:69:d5:d2:58:5a:cd: 7c:31:2a:f0:8b:43:c8:e9:68:d0:db:be:63:46:ff:0c:2e:e2: e5:ad:dd:e0:42:59:15:e0:09:6b:c2:01:89:b9:56:5e:00:7c: 35:77:c6:8a:b2:64:25:a5:4c:be:cd:58:2a:ca:88:bc:b7:ee: e4:86:5b:d6:fd:30:ca:5d:ff:70:40:c4:65:7f:88:59:b8:72: 53:d0:0d:75:8c:b3:29:a2:d4:cc:bc:31:62:ec:0a:66:b4:60: b3:40:bd:73:6b:cb:58:32:52:95:53:8f:d4:ff:85:c5:7d:6f: 5d:b2:e8:da:a8:31:03:29:48:29:95:35:01:3d:4a:c5:38:a1: 40:87:1d:53:80:9c:a8:e0:ca:35:14:6e:a7:95:a1:ab:6f:0b: d8:8b:14:d8:e7:9a:11:58:76:e4:09:5c:fe:14:9f:e3:84:7a: d3:af:c0:40 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbsvOva+IszPWNfrnFfN6hizZjLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA0MDQwODU1MDJaFw0yNjA0MDMwOTAwMDJaMDMxMTAvBgNV BAMTKDhGQkI1MjQ5NzNDOTYwNDk1Mjg0RUM5MTExNkRBMUNERUQ0QzhDQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjbUMsZvVo0y0iIe0tRo9/3WDY VToaLaNH+AYzdDrtdScXtuxiP771UiFoAqgKPqLAMO8sLZ3vVyi6L/j6kcR9ruS3 6J6gctOAh4Iw9U8+f60kaHoRX/bclywhxDSCDoKiQWRk09lgdPqUeRsWSxluvjPi AJ/oCn+y/58WOzCEO8u30cnR6iwHLS1zd5NI9GJwtVBdiRNu2jnzCt4y+vbRGFRz jfp7cKHDkoLa9boA2/V0zklBzgUHv9UCJTTIeig1+Izr72JXVOKZtCbajMwgJHSQ n+mtJCnSBMmJfHFSeWhsKqFpkv4522PwM2u6OGRmU4WXJAlIkqkeUKsWDpQPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUj7tSSXPJYElShOyREW2hze1MjKkwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuOMA0GCSqG SIb3DQEBCwUAA4IBAQAbLwXx3GSz7AlV3ax4983H5e6uMbOsZjiCtj504vxiDUD7 m0Tg6Lr2zcptVcoUF/52YQmaxIGcctxQkTrI/+1A84fg9GgyTpgMwt+QKgRXmlrc GgRp1dJYWs18MSrwi0PI6WjQ275jRv8MLuLlrd3gQlkV4AlrwgGJuVZeAHw1d8aK smQlpUy+zVgqyoi8t+7khlvW/TDKXf9wQMRlf4hZuHJT0A11jLMpotTMvDFi7Apm tGCzQL1za8tYMlKVU4/U/4XFfW9dsujaqDEDKUgplTUBPUrFOKFAhx1TgJyo4Mo1 FG6nlaGrbwvYixTY55oRWHbkCVz+FJ/jhHrTr8BA -----END CERTIFICATE-----Generated at Sun Apr 13 04:06:09 2025 by rpki-client