$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3137352e3137362e3136302e302f32312d3234203d3e203435323837.roa File: 3137352e3137362e3136302e302f32312d3234203d3e203435323837.roa (raw, json) Hash identifier: 1Oab07RIZCU6Wr6N0vZAT3UZeBpPId8GfzsxV9iRdK8= Subject key identifier: 8C:A0:23:C5:67:46:42:E5:53:6B:4D:A9:38:EF:D8:DA:C8:55:4A:45 Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 0F221CE611651F13FCB5B58D8C03B64DF636A14B Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3137352e3137362e3136302e302f32312d3234203d3e203435323837.roa Signing time: Mon 02 Jun 2025 01:02:33 +0000 ROA not before: Mon 02 Jun 2025 00:57:33 +0000 ROA not after: Mon 01 Jun 2026 01:02:33 +0000 asID: 45287 IP address blocks: 175.176.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:22:1c:e6:11:65:1f:13:fc:b5:b5:8d:8c:03:b6:4d:f6:36:a1:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jun 2 00:57:33 2025 GMT Not After : Jun 1 01:02:33 2026 GMT Subject: CN=8CA023C5674642E5536B4DA938EFD8DAC8554A45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ff:38:14:49:0a:c8:dd:03:e2:df:eb:42:2c: a2:7d:b7:a8:fb:fe:39:d3:94:c8:3c:1f:b9:ad:2d: d0:3f:31:6c:ea:f4:f3:38:33:73:c3:74:52:25:0b: 06:03:87:65:41:b5:5f:e8:fb:81:78:37:16:98:d1: d4:cc:00:7b:8e:6e:67:a0:af:6f:aa:9d:01:3c:2d: e2:ff:38:98:1a:c4:b1:83:2e:33:85:3d:3d:73:77: 82:d5:28:10:3a:17:6a:d8:34:c6:d0:a9:c4:54:2d: db:f8:2e:97:f3:8e:1f:b5:ac:51:d7:44:02:6e:7b: f5:f2:41:3d:1f:ff:c8:f0:12:55:1c:cc:ff:19:5e: c6:09:4d:2b:f0:85:05:79:2a:5a:6a:b0:3b:80:3c: 79:f6:32:99:51:db:d4:07:f7:b4:d1:a9:82:ad:93: 2a:0e:e9:7f:4a:f7:2d:33:68:70:70:dd:e3:f5:72: 81:9d:cc:87:7c:3d:fb:98:c1:d7:8b:ce:45:dc:68: fd:de:26:0c:34:20:5c:e9:4e:36:79:e3:ed:25:aa: ac:d1:1b:c4:57:c0:df:6d:d8:df:5d:20:b2:7e:f7: 24:eb:cc:9c:fa:c3:90:7c:dc:82:8f:99:a0:55:71: 81:c7:41:86:b7:bd:08:07:9a:34:f8:29:4b:ea:83: 4a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A0:23:C5:67:46:42:E5:53:6B:4D:A9:38:EF:D8:DA:C8:55:4A:45 X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3137352e3137362e3136302e302f32312d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.176.160.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:19:43:dc:e6:0e:cd:3c:84:b0:07:d8:10:00:d7:cf:cd:55: ae:9b:54:d6:ef:1e:b1:e7:1b:a7:02:fc:90:93:3b:0a:a0:18: 53:c1:b5:80:2d:ee:4f:bf:25:cf:8d:6d:db:8c:12:cf:97:4a: 51:38:dd:ca:48:6f:f1:ac:95:f8:ad:f5:88:0d:9c:9d:a1:58: 15:ef:0d:55:61:e4:8a:a4:34:49:1d:67:7f:ce:98:f8:92:ea: 8f:e9:56:47:25:fe:ad:06:e8:3b:21:0e:2c:e2:22:4a:a5:32: 87:9a:6a:09:21:38:48:b7:62:f2:66:4f:2b:b0:cd:2d:c7:bf: b7:9e:8b:1b:fc:48:0f:46:f3:2e:66:71:74:ad:bd:cd:af:85: 00:e8:fc:8e:19:9c:16:ab:7a:d7:e8:47:45:7c:c7:e4:12:81: 12:87:79:c3:bd:87:4f:4d:c1:a3:4a:94:90:4f:97:53:46:eb: 7c:e6:21:a8:01:a8:7b:7b:bf:dc:10:a2:15:0f:3f:10:13:49: 7d:83:e2:8d:59:e2:15:02:f9:41:e5:12:b9:d3:d6:f1:86:92: 50:c8:f0:ff:41:ed:75:a4:ad:96:4c:7e:1b:8f:72:44:db:56: 10:36:ec:46:94:8f:55:61:45:e6:32:92:77:32:41:47:01:9c: c6:a1:83:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDyIc5hFlHxP8tbWNjAO2TfY2oUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNTA2MDIwMDU3MzNaFw0yNjA2MDEwMTAyMzNaMDMxMTAvBgNV BAMTKDhDQTAyM0M1Njc0NjQyRTU1MzZCNERBOTM4RUZEOERBQzg1NTRBNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+/zgUSQrI3QPi3+tCLKJ9t6j7 /jnTlMg8H7mtLdA/MWzq9PM4M3PDdFIlCwYDh2VBtV/o+4F4NxaY0dTMAHuObmeg r2+qnQE8LeL/OJgaxLGDLjOFPT1zd4LVKBA6F2rYNMbQqcRULdv4Lpfzjh+1rFHX RAJue/XyQT0f/8jwElUczP8ZXsYJTSvwhQV5KlpqsDuAPHn2MplR29QH97TRqYKt kyoO6X9K9y0zaHBw3eP1coGdzId8PfuYwdeLzkXcaP3eJgw0IFzpTjZ54+0lqqzR G8RXwN9t2N9dILJ+9yTrzJz6w5B83IKPmaBVcYHHQYa3vQgHmjT4KUvqg0qpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjKAjxWdGQuVTa02pOO/Y2shVSkUwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMxMzczNTJlMzEzNzM2MmUzMTM2MzAyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM1MzIzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr7CgMA0GCSqG SIb3DQEBCwUAA4IBAQAfGUPc5g7NPISwB9gQANfPzVWum1TW7x6x5xunAvyQkzsK oBhTwbWALe5PvyXPjW3bjBLPl0pRON3KSG/xrJX4rfWIDZydoVgV7w1VYeSKpDRJ HWd/zpj4kuqP6VZHJf6tBug7IQ4s4iJKpTKHmmoJIThIt2LyZk8rsM0tx7+3nosb /EgPRvMuZnF0rb3Nr4UA6PyOGZwWq3rX6EdFfMfkEoESh3nDvYdPTcGjSpSQT5dT Rut85iGoAah7e7/cEKIVDz8QE0l9g+KNWeIVAvlB5RK509bxhpJQyPD/Qe11pK2W TH4bj3JE21YQNuxGlI9VYUXmMpJ3MkFHAZzGoYP0 -----END CERTIFICATE-----Generated at Sat Jun 7 13:45:36 2025 by rpki-client