$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3135302e3132392e35362e302f32322d3234203d3e203435323837.roa File: 3135302e3132392e35362e302f32322d3234203d3e203435323837.roa (raw, json) Hash identifier: IRZUoX6giIzocnieegh+jhCGcm3NJfUDoJas/fn7lAQ= Subject key identifier: 4D:F6:EA:70:F0:52:5D:93:89:16:38:14:66:4D:AF:FF:BF:54:BA:3B Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 102AB8E7C3AAEE24634908B5F260417202397A4F Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3135302e3132392e35362e302f32322d3234203d3e203435323837.roa Signing time: Mon 02 Jun 2025 01:02:34 +0000 ROA not before: Mon 02 Jun 2025 00:57:34 +0000 ROA not after: Mon 01 Jun 2026 01:02:34 +0000 asID: 45287 IP address blocks: 150.129.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:2a:b8:e7:c3:aa:ee:24:63:49:08:b5:f2:60:41:72:02:39:7a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jun 2 00:57:34 2025 GMT Not After : Jun 1 01:02:34 2026 GMT Subject: CN=4DF6EA70F0525D9389163814664DAFFFBF54BA3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:33:c3:40:51:d8:1f:d3:dd:ea:d3:68:e2:b1: a9:76:3b:53:58:ad:88:d3:6a:2f:77:9e:2b:f7:31: a6:e3:db:89:ce:46:fc:ce:aa:d3:32:f5:10:1b:aa: e1:a7:e9:64:e1:08:c4:80:fa:ee:38:77:2f:4c:7b: 6d:e8:bd:84:bb:59:77:98:a2:37:3a:65:4d:e5:12: 71:fe:38:8e:85:9b:19:b6:1e:b4:00:27:a5:9d:7c: 35:1d:d9:0b:dd:b4:19:8b:c3:86:e5:d4:75:a0:63: d2:de:3a:f4:7a:de:02:53:a8:75:3c:f2:55:f9:e2: 23:96:f3:04:cb:c9:a3:99:15:ee:02:06:17:f3:5e: 39:f5:6a:13:99:42:d3:11:97:53:2b:3c:b2:31:83: 27:c4:69:be:7a:54:50:1d:03:85:4c:76:14:a3:d3: ff:83:96:91:3a:89:1d:eb:05:95:02:9d:53:b0:72: 48:67:14:e2:ba:20:07:ed:30:8c:d7:e3:0a:e6:09: 59:55:59:67:66:ce:a5:31:de:ab:0c:53:75:0e:92: 6b:11:4c:8d:c6:20:bf:21:f4:a6:dc:48:14:3b:07: 51:7f:92:86:78:97:16:ad:3a:f8:cd:65:bb:4f:c9: 72:01:37:e4:b3:14:ce:2d:c8:8c:0e:be:e1:52:e8: 4f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F6:EA:70:F0:52:5D:93:89:16:38:14:66:4D:AF:FF:BF:54:BA:3B X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3135302e3132392e35362e302f32322d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.56.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:cc:ab:59:d2:ac:6e:74:f3:ff:b1:db:bc:8d:46:b6:3f:52: 9e:3d:2a:fd:0c:b1:bf:b6:39:29:c9:bc:12:0b:41:17:62:6f: b2:73:83:df:a0:37:3d:1d:89:c3:66:e9:af:44:01:a5:9f:86: b3:48:82:1b:0f:12:85:96:48:67:1a:34:94:f0:88:0c:9d:ff: 1f:ed:be:c2:df:a6:a2:8f:50:79:e4:3a:1b:25:a1:52:94:b5: 84:11:c9:1d:6e:50:3f:51:bb:3f:ce:07:74:e6:a7:78:b0:b1: d8:2e:b0:81:17:d7:b9:96:6d:20:31:90:f6:1c:f8:7c:e7:37: 33:9f:e2:30:47:1f:9b:64:1f:28:1d:86:05:03:c6:12:6d:67: ba:90:ec:0b:a6:d1:54:b0:60:59:12:8a:4e:ce:b3:f7:ce:9c: 21:cb:38:d9:aa:ab:d7:27:ca:05:90:1f:28:c3:7b:4b:f1:9e: e7:51:17:07:5e:71:ec:d2:02:c1:ad:57:f5:d0:ef:35:73:a9: a8:37:e2:03:cb:8c:60:ba:62:81:d8:9a:95:f6:80:8b:ed:31: 2c:17:04:eb:48:4f:c3:f6:bd:4a:f0:de:54:9e:b1:93:97:d3: a0:4e:09:f5:8b:35:7d:43:2e:a7:3f:97:cd:21:64:1d:df:e9: 6e:07:c1:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUECq458Oq7iRjSQi18mBBcgI5ek8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNTA2MDIwMDU3MzRaFw0yNjA2MDEwMTAyMzRaMDMxMTAvBgNV BAMTKDRERjZFQTcwRjA1MjVEOTM4OTE2MzgxNDY2NERBRkZGQkY1NEJBM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7M8NAUdgf093q02jisal2O1NY rYjTai93niv3Mabj24nORvzOqtMy9RAbquGn6WThCMSA+u44dy9Me23ovYS7WXeY ojc6ZU3lEnH+OI6Fmxm2HrQAJ6WdfDUd2QvdtBmLw4bl1HWgY9LeOvR63gJTqHU8 8lX54iOW8wTLyaOZFe4CBhfzXjn1ahOZQtMRl1MrPLIxgyfEab56VFAdA4VMdhSj 0/+DlpE6iR3rBZUCnVOwckhnFOK6IAftMIzX4wrmCVlVWWdmzqUx3qsMU3UOkmsR TI3GIL8h9KbcSBQ7B1F/koZ4lxatOvjNZbtPyXIBN+SzFM4tyIwOvuFS6E8dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTfbqcPBSXZOJFjgUZk2v/79UujswHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMxMzUzMDJlMzEzMjM5MmUzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEApaBODANBgkqhkiG 9w0BAQsFAAOCAQEAW8yrWdKsbnTz/7HbvI1Gtj9Snj0q/Qyxv7Y5Kcm8EgtBF2Jv snOD36A3PR2Jw2bpr0QBpZ+Gs0iCGw8ShZZIZxo0lPCIDJ3/H+2+wt+moo9QeeQ6 GyWhUpS1hBHJHW5QP1G7P84HdOaneLCx2C6wgRfXuZZtIDGQ9hz4fOc3M5/iMEcf m2QfKB2GBQPGEm1nupDsC6bRVLBgWRKKTs6z986cIcs42aqr1yfKBZAfKMN7S/Ge 51EXB15x7NICwa1X9dDvNXOpqDfiA8uMYLpigdialfaAi+0xLBcE60hPw/a9SvDe VJ6xk5fToE4J9Ys1fUMupz+XzSFkHd/pbgfBew== -----END CERTIFICATE-----Generated at Sat Jun 7 14:14:26 2025 by rpki-client