$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa File: 34392e3132382e3137362e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: YznKDs1CbxF08N3mJ1JGQ46Fgw+8Zoc4by7UrLF1FjE= Subject key identifier: 56:DB:90:91:8A:78:D2:DD:0C:27:08:F5:09:BC:BE:E6:95:30:26:DF Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 5B59BC3538F5F42EC79919ACC971D6B46851EEE0 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:09 +0000 ROA not before: Mon 02 Jun 2025 02:00:09 +0000 ROA not after: Mon 01 Jun 2026 02:05:09 +0000 asID: 55666 IP address blocks: 49.128.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:59:bc:35:38:f5:f4:2e:c7:99:19:ac:c9:71:d6:b4:68:51:ee:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:09 2025 GMT Not After : Jun 1 02:05:09 2026 GMT Subject: CN=56DB90918A78D2DD0C2708F509BCBEE6953026DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7b:37:4d:ce:b5:a1:0e:c7:ad:73:27:7a:47: b1:ba:00:63:15:c5:a3:7d:ed:9b:c6:f2:7d:d8:f7: 6c:83:b5:0c:15:29:01:71:b2:7a:ad:7d:c8:af:4e: 8e:67:b7:a8:74:95:35:7b:f7:b2:fb:ed:96:b1:03: 0c:92:23:9a:35:39:d6:92:3c:18:1e:53:ac:b1:ac: 17:c4:0a:56:10:af:97:a9:c8:0c:04:65:d8:8f:59: 70:46:48:7d:e9:74:0e:37:65:00:cd:aa:1c:98:0b: 6f:c8:0b:eb:d3:ef:98:0a:33:09:87:92:ac:43:01: da:73:d9:d3:64:d7:fb:8c:1c:09:94:c2:90:5f:c1: b2:95:ba:fc:7b:f1:71:18:bd:e2:70:d7:e7:db:d3: 93:50:37:05:c5:bc:b3:ba:cb:8c:c7:22:eb:af:c4: e2:6a:9e:f3:22:5b:82:9d:86:08:85:90:5f:01:b4: 78:d9:0f:de:ad:8d:7a:62:c9:0e:a5:7b:50:0f:97: 81:52:e3:ac:de:95:68:83:1a:fc:7c:b5:82:19:c5: 30:56:ec:01:46:3f:e2:45:93:2f:bc:9d:e8:b4:4d: 1b:23:82:fe:64:7b:d3:89:ee:76:41:df:66:aa:af: 5c:0b:a5:42:58:50:e5:7c:49:a3:d8:d0:87:a3:f1: 10:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DB:90:91:8A:78:D2:DD:0C:27:08:F5:09:BC:BE:E6:95:30:26:DF X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.176.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:d6:1a:70:aa:ab:0f:2b:a5:f4:29:1c:3f:9f:26:81:99:2d: 9e:23:7a:09:db:ef:71:1c:77:cf:2a:1f:d7:66:5b:91:27:09: b5:63:28:71:7f:a5:ce:60:6d:57:a8:f2:36:71:b9:b5:49:db: 1e:e0:b5:1f:85:dd:3e:1f:94:68:ec:9e:1b:c9:0b:c3:09:15: 12:36:59:20:a0:6f:d6:ea:7f:97:99:af:63:7b:c7:be:d2:a6: 89:06:18:fa:4f:1b:55:24:79:40:b0:df:83:b3:83:0b:ea:3a: 60:a3:1b:54:c1:8c:2d:24:cb:08:f7:75:84:b8:1b:6d:57:f8: c5:b1:ff:3e:b3:df:c2:8c:d3:cc:0c:31:57:44:4f:7c:b6:97: b3:8a:91:6c:84:a0:32:bc:c5:cb:06:8b:f5:f3:5b:dc:6d:a6: bf:ce:ef:7e:f3:26:16:35:56:c1:0c:48:77:20:1a:79:1d:4d: ea:0f:2f:c5:2c:a4:c3:ca:a1:0d:c8:c5:e8:06:3c:b4:e0:ae: be:34:a8:56:0d:83:3f:4a:1b:5a:0c:15:f7:98:e8:1a:f9:2c: c9:6a:21:0c:f6:00:e7:4c:51:30:4f:01:26:9c:77:3d:74:a4: be:c6:17:02:5b:87:fb:c4:cd:eb:ab:53:7f:2d:3d:3f:fb:13: aa:72:b9:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW1m8NTj19C7HmRmsyXHWtGhR7uAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDlaFw0yNjA2MDEwMjA1MDlaMDMxMTAvBgNV BAMTKDU2REI5MDkxOEE3OEQyREQwQzI3MDhGNTA5QkNCRUU2OTUzMDI2REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKezdNzrWhDsetcyd6R7G6AGMV xaN97ZvG8n3Y92yDtQwVKQFxsnqtfcivTo5nt6h0lTV797L77ZaxAwySI5o1OdaS PBgeU6yxrBfEClYQr5epyAwEZdiPWXBGSH3pdA43ZQDNqhyYC2/IC+vT75gKMwmH kqxDAdpz2dNk1/uMHAmUwpBfwbKVuvx78XEYveJw1+fb05NQNwXFvLO6y4zHIuuv xOJqnvMiW4KdhgiFkF8BtHjZD96tjXpiyQ6le1APl4FS46zelWiDGvx8tYIZxTBW 7AFGP+JFky+8nei0TRsjgv5ke9OJ7nZB32aqr1wLpUJYUOV8SaPY0Iej8RDVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVtuQkYp40t0MJwj1Cby+5pUwJt8wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzkyZTMxMzIzODJlMzEzNzM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzGAsDANBgkqhkiG 9w0BAQsFAAOCAQEAitYacKqrDyul9CkcP58mgZktniN6CdvvcRx3zyof12ZbkScJ tWMocX+lzmBtV6jyNnG5tUnbHuC1H4XdPh+UaOyeG8kLwwkVEjZZIKBv1up/l5mv Y3vHvtKmiQYY+k8bVSR5QLDfg7ODC+o6YKMbVMGMLSTLCPd1hLgbbVf4xbH/PrPf wozTzAwxV0RPfLaXs4qRbISgMrzFywaL9fNb3G2mv87vfvMmFjVWwQxIdyAaeR1N 6g8vxSykw8qhDcjF6AY8tOCuvjSoVg2DP0obWgwV95joGvksyWohDPYA50xRME8B Jpx3PXSkvsYXAluH+8TN66tTfy09P/sTqnK5NA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:47:50 2025 by rpki-client