$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31332e302f32342d3234203d3e203338353030.roa File: 3133372e35392e31332e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: eSUzjWuiojseXg64akzIRz5XswNmVhnqy1cUbaNq3YA= Subject key identifier: 69:13:0C:B0:09:48:E3:EE:40:CC:EB:C6:4A:88:A1:BB:CF:A1:22:81 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 700214C2451EC377052283BF01BBA133B1A6321C Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31332e302f32342d3234203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:48 +0000 ROA not before: Mon 02 Jun 2025 01:58:48 +0000 ROA not after: Mon 01 Jun 2026 02:03:48 +0000 asID: 38500 IP address blocks: 137.59.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:02:14:c2:45:1e:c3:77:05:22:83:bf:01:bb:a1:33:b1:a6:32:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:48 2025 GMT Not After : Jun 1 02:03:48 2026 GMT Subject: CN=69130CB00948E3EE40CCEBC64A88A1BBCFA12281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:33:8c:b1:28:4a:6c:0f:9b:07:e2:7d:84:5a: b1:27:b2:49:7d:11:99:7f:df:7d:d7:85:7d:0b:0d: 60:9f:50:f4:23:c1:04:93:93:ad:a9:6f:d3:aa:29: 30:3a:4a:ab:c7:1b:54:16:88:1b:7c:c8:32:1c:2f: 3d:93:3c:b7:2d:f7:25:f3:49:1a:39:13:0a:41:99: ca:ca:ca:0e:c5:70:1e:64:84:05:aa:36:3d:92:00: 28:7b:75:70:03:b6:bd:2a:88:c4:62:4d:9e:5e:24: 10:9f:b9:4a:96:f8:5c:67:4d:c8:ff:e5:a8:54:fb: 9e:56:78:88:e6:81:39:91:11:8d:e6:6b:86:76:a2: 00:5d:8b:48:5a:a4:71:2c:b1:18:04:3d:4e:f9:28: 8b:2d:ef:04:b4:a0:4a:60:cd:be:98:0d:fe:0e:da: b5:76:0d:f9:94:2c:3e:ba:3e:ac:b8:30:e3:20:91: 6f:69:cb:c0:a6:48:8e:7f:83:d6:ef:10:64:a1:a3: 12:a6:8a:43:3d:c4:44:80:3d:30:44:6e:61:0e:74: 5e:b4:75:27:94:48:05:6e:99:e0:62:53:e6:36:b0: 38:97:81:9e:91:e6:2c:f1:35:a0:75:3e:b6:25:48: eb:8b:96:0b:9b:89:8b:51:d6:d6:dd:36:02:9b:4e: 61:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:13:0C:B0:09:48:E3:EE:40:CC:EB:C6:4A:88:A1:BB:CF:A1:22:81 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31332e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.13.0/24 Signature Algorithm: sha256WithRSAEncryption 71:bd:25:50:4b:4b:db:8b:25:d4:d7:26:0d:c0:25:9d:a1:92: c3:a1:cb:86:46:9d:da:56:f5:9c:1a:29:b5:ba:88:8d:db:08: 5f:e0:cf:9c:96:af:2d:fd:68:c5:a0:fc:66:e4:eb:c8:12:7a: 17:9c:24:b1:a2:f9:eb:64:64:f0:ab:5e:7d:8c:7b:7a:48:78: 24:0e:8c:71:03:e7:ef:05:d5:8e:b4:8a:9a:ac:33:d9:68:7c: a7:e5:87:b4:0c:48:22:ee:9d:7a:a2:0d:69:40:d1:d1:a4:ca: 09:64:38:29:ec:6f:d7:24:9c:b4:bf:2a:bc:14:96:33:21:79: e9:cc:e3:21:3b:7d:61:49:4b:72:b4:7d:b6:72:aa:b9:ee:5f: 12:6d:00:75:7a:60:3a:9f:04:dd:01:51:9e:e8:6e:bf:c0:98: 10:32:c1:70:ba:9c:f7:68:d6:d2:0d:25:7f:c3:b8:e2:05:a1: 6c:b0:a9:c5:79:6e:fe:95:8c:d7:59:7b:c0:aa:15:09:07:7f: 8d:4e:88:47:45:9f:9a:8e:30:a9:36:69:0a:d5:b7:51:95:d7: dd:6b:cc:5d:2f:0d:68:bb:ae:0d:37:e4:12:de:a3:1d:ce:ae: fd:40:0a:ba:fe:79:e4:4d:5f:05:d8:00:7b:47:cf:65:9f:55: 79:6d:b8:08 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcAIUwkUew3cFIoO/AbuhM7GmMhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDhaFw0yNjA2MDEwMjAzNDhaMDMxMTAvBgNV BAMTKDY5MTMwQ0IwMDk0OEUzRUU0MENDRUJDNjRBODhBMUJCQ0ZBMTIyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRM4yxKEpsD5sH4n2EWrEnskl9 EZl/333XhX0LDWCfUPQjwQSTk62pb9OqKTA6SqvHG1QWiBt8yDIcLz2TPLct9yXz SRo5EwpBmcrKyg7FcB5khAWqNj2SACh7dXADtr0qiMRiTZ5eJBCfuUqW+FxnTcj/ 5ahU+55WeIjmgTmREY3ma4Z2ogBdi0hapHEssRgEPU75KIst7wS0oEpgzb6YDf4O 2rV2DfmULD66Pqy4MOMgkW9py8CmSI5/g9bvEGShoxKmikM9xESAPTBEbmEOdF60 dSeUSAVumeBiU+Y2sDiXgZ6R5izxNaB1PrYlSOuLlgubiYtR1tbdNgKbTmGLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUaRMMsAlI4+5AzOvGSoihu8+hIoEwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzMzNzJlMzUzOTJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACJOw0wDQYJKoZIhvcN AQELBQADggEBAHG9JVBLS9uLJdTXJg3AJZ2hksOhy4ZGndpW9ZwaKbW6iI3bCF/g z5yWry39aMWg/Gbk68gSehecJLGi+etkZPCrXn2Me3pIeCQOjHED5+8F1Y60ipqs M9lofKflh7QMSCLunXqiDWlA0dGkyglkOCnsb9cknLS/KrwUljMheenM4yE7fWFJ S3K0fbZyqrnuXxJtAHV6YDqfBN0BUZ7obr/AmBAywXC6nPdo1tINJX/DuOIFoWyw qcV5bv6VjNdZe8CqFQkHf41OiEdFn5qOMKk2aQrVt1GV191rzF0vDWi7rg035BLe ox3Orv1ACrr+eeRNXwXYAHtHz2WfVXltuAg= -----END CERTIFICATE-----Generated at Sat Jun 7 14:11:41 2025 by rpki-client