$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa File: 3133372e35392e31352e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: lO5FLbufasmDWnZ9uvAVgaRmYYXGBSTz+dfylI0ofXQ= Subject key identifier: 09:7B:79:3A:A7:FE:65:34:D8:A3:7B:FB:A5:65:E5:79:02:73:89:8B Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 48D5381A17ABC420D68A8AED1D2EC0912160B823 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:51 +0000 ROA not before: Mon 02 Jun 2025 01:58:51 +0000 ROA not after: Mon 01 Jun 2026 02:03:51 +0000 asID: 38500 IP address blocks: 137.59.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d5:38:1a:17:ab:c4:20:d6:8a:8a:ed:1d:2e:c0:91:21:60:b8:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:51 2025 GMT Not After : Jun 1 02:03:51 2026 GMT Subject: CN=097B793AA7FE6534D8A37BFBA565E5790273898B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:84:47:5c:e1:95:1d:16:23:f0:e3:7e:22:ec: f7:27:0c:53:41:04:a3:e8:6f:15:27:8a:08:e2:1c: aa:30:78:22:44:49:94:f6:fc:78:1f:23:45:db:0c: b4:71:cb:00:a1:90:3e:2f:8c:12:f9:c8:23:b8:99: 88:db:aa:57:a6:29:13:eb:78:70:fd:0a:35:4b:2e: c1:93:0a:81:c0:56:fe:d5:6f:c3:61:b5:1f:0f:ce: 0b:d8:51:f5:3a:ec:da:cc:aa:26:e8:dc:f9:76:c3: 83:9b:15:10:b5:c1:bb:c0:64:31:ab:25:7b:f2:a8: 18:d2:15:b7:d5:87:0d:8f:4b:27:91:f5:6b:c4:30: e4:67:f4:03:41:e4:b5:e1:a6:e8:f6:9a:a8:a0:b4: 86:81:ff:fa:18:96:5c:5d:b8:77:a6:e6:a6:c9:47: 4a:b4:53:41:43:47:f9:66:6d:00:ec:e7:45:86:72: c1:88:ec:c3:60:5f:b2:85:99:79:98:20:ae:98:2e: b1:35:ad:86:32:27:dd:ad:16:35:4d:f4:bd:9f:b4: c5:a9:34:11:c8:27:3c:2c:e3:63:86:ba:79:38:45: a1:e7:ab:bf:77:b7:4a:dd:9c:18:6c:be:f6:98:5f: 6e:cf:0d:e3:ca:09:1a:aa:84:5d:ea:d2:4b:85:98: e3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7B:79:3A:A7:FE:65:34:D8:A3:7B:FB:A5:65:E5:79:02:73:89:8B X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.15.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:4b:ed:7d:20:05:5c:3d:be:83:43:e4:73:b8:52:6b:69:b3: 17:9b:96:f1:ca:14:14:83:14:59:5c:27:6f:51:34:45:09:ba: 8a:0a:43:2f:97:0c:91:c4:25:2c:c5:22:e7:0f:24:e6:fa:ea: 75:4e:b5:cb:39:46:9e:bd:96:db:57:7c:7e:a0:f8:fe:4e:8a: 2f:11:ef:54:cd:51:42:0c:c6:32:70:56:b2:c6:a8:68:bd:fb: 99:05:56:aa:60:00:b4:c3:69:9f:98:c4:97:56:99:b9:c4:20: c0:32:80:ae:1b:bd:0f:c2:1d:a1:d3:80:3e:21:3b:3d:60:bd: e5:87:a5:9d:03:bd:22:7e:b6:b3:b0:96:4c:ff:72:5c:0b:a6: 63:4a:77:39:d7:b2:d8:3f:dc:ef:e1:dd:ca:98:24:ff:3c:94: d6:4b:bc:5c:44:de:03:af:c2:59:cc:cd:54:b5:30:fe:9f:91: af:7e:73:58:c7:3e:47:91:59:55:b3:89:8e:59:5b:51:f9:ab: 4f:54:e4:2f:cc:e3:a7:2b:8c:a6:a9:b6:e4:dd:00:b0:f5:9c: 01:05:ca:b0:84:fa:ff:3d:47:ae:68:c2:fc:c5:ac:00:14:09: 04:91:9d:d4:44:7b:29:ca:63:d1:6b:eb:7d:78:aa:62:db:4e: 25:b4:ac:04 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSNU4GherxCDWiortHS7AkSFguCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTFaFw0yNjA2MDEwMjAzNTFaMDMxMTAvBgNV BAMTKDA5N0I3OTNBQTdGRTY1MzREOEEzN0JGQkE1NjVFNTc5MDI3Mzg5OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDChEdc4ZUdFiPw434i7PcnDFNB BKPobxUnigjiHKoweCJESZT2/HgfI0XbDLRxywChkD4vjBL5yCO4mYjbqlemKRPr eHD9CjVLLsGTCoHAVv7Vb8NhtR8PzgvYUfU67NrMqibo3Pl2w4ObFRC1wbvAZDGr JXvyqBjSFbfVhw2PSyeR9WvEMORn9ANB5LXhpuj2mqigtIaB//oYllxduHem5qbJ R0q0U0FDR/lmbQDs50WGcsGI7MNgX7KFmXmYIK6YLrE1rYYyJ92tFjVN9L2ftMWp NBHIJzws42OGunk4RaHnq793t0rdnBhsvvaYX27PDePKCRqqhF3q0kuFmOOfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCXt5Oqf+ZTTYo3v7pWXleQJziYswHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzMzNzJlMzUzOTJlMzEzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACJOw8wDQYJKoZIhvcN AQELBQADggEBAFpL7X0gBVw9voND5HO4UmtpsxeblvHKFBSDFFlcJ29RNEUJuooK Qy+XDJHEJSzFIucPJOb66nVOtcs5Rp69lttXfH6g+P5Oii8R71TNUUIMxjJwVrLG qGi9+5kFVqpgALTDaZ+YxJdWmbnEIMAygK4bvQ/CHaHTgD4hOz1gveWHpZ0DvSJ+ trOwlkz/clwLpmNKdznXstg/3O/h3cqYJP88lNZLvFxE3gOvwlnMzVS1MP6fka9+ c1jHPkeRWVWziY5ZW1H5q09U5C/M46crjKaptuTdALD1nAEFyrCE+v89R65owvzF rAAUCQSRndREeynKY9Fr6314qmLbTiW0rAQ= -----END CERTIFICATE-----Generated at Sat Jun 7 14:28:34 2025 by rpki-client