$ rpki-client -vvf repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa File: 3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa (raw, json) Hash identifier: fVRsxuz3woE7uahLGANS8nBiT+UdU+qUUJ2Y/SNoU9E= Subject key identifier: 98:19:F9:A6:9C:3A:DB:D5:24:73:6D:15:5F:AB:2F:02:4A:D0:42:6C Certificate issuer: /CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Certificate serial: 1060712EA710CC93F43FEA5482B780487C65DF65 Authority key identifier: DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa Signing time: Mon 02 Jun 2025 01:03:16 +0000 ROA not before: Mon 02 Jun 2025 00:58:16 +0000 ROA not after: Mon 01 Jun 2026 01:03:16 +0000 asID: 23756 IP address blocks: 150.107.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:60:71:2e:a7:10:cc:93:f4:3f:ea:54:82:b7:80:48:7c:65:df:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Validity Not Before: Jun 2 00:58:16 2025 GMT Not After : Jun 1 01:03:16 2026 GMT Subject: CN=9819F9A69C3ADBD524736D155FAB2F024AD0426C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:01:25:45:68:a9:d8:7c:5b:12:e6:79:dc:d0: d6:1d:cc:c8:5c:ae:fa:e1:9e:3b:e2:4e:cc:c2:a1: 21:72:76:64:ce:29:8d:7d:0d:a5:b4:97:37:fe:1a: 49:b7:b2:9a:07:72:03:94:7c:53:3c:d4:53:b1:24: e6:80:fe:7d:32:ff:6b:d0:8a:dc:fd:ba:4e:2b:cd: a6:32:4a:5d:42:e3:00:d8:f3:b5:c6:a5:87:d0:f2: 5a:0a:88:88:b2:16:d2:a1:71:00:3b:8c:5f:03:8f: 7c:1f:73:02:46:39:3a:33:80:e3:69:37:89:89:6e: 13:88:61:64:c7:bf:78:70:f1:df:26:78:e3:1f:34: 79:ba:ef:c4:22:7b:97:b4:07:53:c3:ce:87:b1:1c: f5:43:79:4d:36:56:5f:5d:c9:00:da:7f:9e:2c:9f: d0:34:8f:3e:1e:f7:9b:b3:56:be:79:9e:22:97:1e: 80:1d:a7:1e:9d:7e:c7:0c:45:43:fc:fd:d2:29:61: 3c:8e:af:0d:ff:9c:11:fb:9b:3f:ac:87:ba:12:bb: 1a:87:95:62:04:9e:e4:85:5e:62:db:08:5b:28:37: e9:68:4e:ea:88:9e:0d:4f:04:bd:f3:a7:09:97:a7: f3:69:7b:e4:c9:71:b4:9d:57:d0:b1:af:12:a2:db: a6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:19:F9:A6:9C:3A:DB:D5:24:73:6D:15:5F:AB:2F:02:4A:D0:42:6C X509v3 Authority Key Identifier: keyid:DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.132.0/22 Signature Algorithm: sha256WithRSAEncryption 17:fb:11:c3:eb:95:9f:d1:c7:13:79:3f:55:d2:a6:af:38:4d: 36:44:da:72:7a:b6:41:6d:3f:11:3a:29:db:a9:1f:51:e5:51: 4a:06:b8:b6:d3:fa:6f:b7:e6:f9:05:d0:88:86:08:20:8a:8b: c5:8e:6c:34:0d:1e:8b:76:cd:db:9b:ea:da:9e:6d:a8:45:1a: 18:03:68:f8:ca:60:04:59:ab:c6:02:15:f9:d2:44:c8:de:da: 1b:f1:b9:bb:09:69:cc:34:fe:b2:88:ae:ba:50:d1:b7:af:f1: 1f:cb:b0:8e:00:8e:c1:5e:f3:25:99:02:bf:84:b2:79:7a:48: 70:7c:c1:4f:f7:b3:15:a4:8e:16:f7:70:ca:eb:23:12:59:be: 0a:72:71:07:99:c5:fe:26:5b:31:40:05:87:9b:e3:70:4f:84: 69:71:b2:52:1d:76:2b:fd:ec:0a:a7:60:71:64:ff:c2:c5:62: 41:ef:d8:f4:bc:5a:cb:4a:c0:2e:a6:38:e9:99:8d:bb:32:a5: e0:5d:68:6f:4a:fe:24:72:1f:b9:53:67:38:a6:e8:52:96:b8: 92:f4:67:b8:cd:fa:da:b0:53:82:09:85:c3:ed:6b:6c:bb:6d: 65:1f:bd:4f:13:56:bd:85:8c:8d:35:ae:dc:e3:4b:f8:11:06: c0:32:27:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEGBxLqcQzJP0P+pUgreASHxl32UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2 MThFODI4MjAeFw0yNTA2MDIwMDU4MTZaFw0yNjA2MDEwMTAzMTZaMDMxMTAvBgNV BAMTKDk4MTlGOUE2OUMzQURCRDUyNDczNkQxNTVGQUIyRjAyNEFEMDQyNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ASVFaKnYfFsS5nnc0NYdzMhc rvrhnjviTszCoSFydmTOKY19DaW0lzf+Gkm3spoHcgOUfFM81FOxJOaA/n0y/2vQ itz9uk4rzaYySl1C4wDY87XGpYfQ8loKiIiyFtKhcQA7jF8Dj3wfcwJGOTozgONp N4mJbhOIYWTHv3hw8d8meOMfNHm678Qie5e0B1PDzoexHPVDeU02Vl9dyQDaf54s n9A0jz4e95uzVr55niKXHoAdpx6dfscMRUP8/dIpYTyOrw3/nBH7mz+sh7oSuxqH lWIEnuSFXmLbCFsoN+loTuqIng1PBL3zpwmXp/Npe+TJcbSdV9CxrxKi26afAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmBn5ppw629Ukc20VX6svAkrQQmwwHwYDVR0j BBgwFoAU2/WX6invinBlZEavdc8z8GGOgoIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDBmMWE2ZS04M2I2LTQ1MzQtOTY3ZC1mOGRiM2MzNzExZjQvMC9EQkY1OTdFQTI5 RUY4QTcwNjU2NDQ2QUY3NUNGMzNGMDYxOEU4MjgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2MThF ODI4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkMGYxYTZlLTgzYjYtNDUzNC05 NjdkLWY4ZGIzYzM3MTFmNC8wLzMxMzUzMDJlMzEzMDM3MmUzMTMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjMzMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClmuEMA0GCSqG SIb3DQEBCwUAA4IBAQAX+xHD65Wf0ccTeT9V0qavOE02RNpyerZBbT8ROinbqR9R 5VFKBri20/pvt+b5BdCIhgggiovFjmw0DR6Lds3bm+ranm2oRRoYA2j4ymAEWavG AhX50kTI3tob8bm7CWnMNP6yiK66UNG3r/Efy7COAI7BXvMlmQK/hLJ5ekhwfMFP 97MVpI4W93DK6yMSWb4KcnEHmcX+JlsxQAWHm+NwT4RpcbJSHXYr/ewKp2BxZP/C xWJB79j0vFrLSsAupjjpmY27MqXgXWhvSv4kch+5U2c4puhSlriS9Ge4zfrasFOC CYXD7Wtsu21lH71PE1a9hYyNNa7c40v4EQbAMic1 -----END CERTIFICATE-----Generated at Sun Jun 8 04:05:02 2025 by rpki-client