$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa File: 3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: y4LCjeHJUSobMj/KV8lbwGmURe5cadaNn3OVULBwa7M= Subject key identifier: AD:87:EA:02:29:78:34:7E:2B:65:23:FF:A7:9F:D7:80:57:6C:E9:A1 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 73AD53415BD8844CE1F7C08391FE66CC698AE659 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:06 +0000 ROA not before: Mon 02 Jun 2025 01:58:06 +0000 ROA not after: Mon 01 Jun 2026 02:03:06 +0000 asID: 55699 IP address blocks: 150.107.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ad:53:41:5b:d8:84:4c:e1:f7:c0:83:91:fe:66:cc:69:8a:e6:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:06 2025 GMT Not After : Jun 1 02:03:06 2026 GMT Subject: CN=AD87EA022978347E2B6523FFA79FD780576CE9A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:83:46:df:53:f5:24:17:1d:a1:63:16:6e:ed: 04:55:09:bd:15:ea:f8:3c:07:4b:dd:94:2d:e0:31: 04:70:d8:a8:ae:c5:fc:58:41:3f:8a:91:59:2b:00: 6e:1d:e6:e5:8b:03:a9:cd:4c:28:63:3b:9f:8e:23: b4:fd:e6:f3:05:19:5f:e7:c6:d4:6e:9a:49:b5:b9: 01:08:44:64:e3:ef:bc:6a:46:8b:27:72:db:02:36: 69:84:ec:04:c7:fb:4d:4b:e0:83:f4:56:42:b0:52: 3b:fe:e0:56:66:88:6e:6d:02:45:c4:cc:e7:e8:70: d0:f4:74:6d:66:e1:bd:4f:cc:7a:a9:49:4e:b4:44: 79:c6:5f:54:31:7e:2b:41:8c:2a:d6:43:e8:b8:0f: e7:2d:27:3c:c8:79:08:3e:32:35:51:9a:09:ae:f1: 63:bc:78:ba:1a:3e:42:e6:aa:73:0f:90:2d:0a:c8: 54:6b:72:f2:be:ab:18:49:5a:46:ad:e7:38:9b:e5: 20:59:9e:6b:d6:83:e6:33:49:46:b2:2e:89:29:82: 57:ad:f1:04:3c:d7:af:97:81:68:d6:bc:bd:86:9f: 3c:f0:1a:bc:c8:d3:e1:e3:2f:c7:42:8b:bf:31:85: 94:1f:85:d7:d8:eb:74:49:a2:5e:a7:0b:8f:70:77: c6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:87:EA:02:29:78:34:7E:2B:65:23:FF:A7:9F:D7:80:57:6C:E9:A1 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.244.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:98:b9:50:64:d3:19:94:8f:68:fa:6d:ab:b1:19:2f:b8:80: 7d:6c:36:8b:0c:47:9c:9a:62:2b:0d:93:09:c7:7e:4f:3f:5c: 25:21:98:42:64:15:cb:12:14:4b:23:7c:45:e5:04:88:71:6c: b6:94:21:d7:d8:76:27:a7:66:20:1d:8c:4f:00:42:1e:fd:4f: 08:83:25:13:0f:fb:ec:7e:5e:2f:cd:c5:0c:b6:7d:d2:e5:18: 27:f4:af:bf:6f:9a:f7:8b:4e:a2:01:25:82:34:2a:fa:b1:70: 78:34:bd:14:cd:b4:f4:45:4f:e7:da:20:ed:de:a8:94:e2:97: 49:f8:f1:c6:c1:b2:0f:9c:09:96:92:0c:bf:56:a2:7f:b8:49: 85:bf:ac:37:28:4f:cc:aa:5e:17:23:d9:e2:bc:9f:65:0c:1b: a1:d9:ce:76:28:f0:47:36:df:df:d4:94:72:d9:d7:84:e0:54: 6f:cc:e6:d0:7a:64:20:39:f1:1a:85:75:99:c0:92:a0:ff:af: 57:13:ca:4b:88:c8:07:b5:71:be:97:e5:fb:af:6c:ba:00:05: fe:7d:83:b3:c8:fb:0a:3c:d7:95:c0:03:e0:19:d0:a8:94:c3: 39:70:d1:36:af:f3:f4:ea:b2:08:51:5d:df:3e:2c:e2:53:00: 89:68:cb:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc61TQVvYhEzh98CDkf5mzGmK5lkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDZaFw0yNjA2MDEwMjAzMDZaMDMxMTAvBgNV BAMTKEFEODdFQTAyMjk3ODM0N0UyQjY1MjNGRkE3OUZENzgwNTc2Q0U5QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmg0bfU/UkFx2hYxZu7QRVCb0V 6vg8B0vdlC3gMQRw2KiuxfxYQT+KkVkrAG4d5uWLA6nNTChjO5+OI7T95vMFGV/n xtRumkm1uQEIRGTj77xqRosnctsCNmmE7ATH+01L4IP0VkKwUjv+4FZmiG5tAkXE zOfocND0dG1m4b1PzHqpSU60RHnGX1QxfitBjCrWQ+i4D+ctJzzIeQg+MjVRmgmu 8WO8eLoaPkLmqnMPkC0KyFRrcvK+qxhJWkat5zib5SBZnmvWg+YzSUayLokpglet 8QQ816+XgWjWvL2GnzzwGrzI0+HjL8dCi78xhZQfhdfY63RJol6nC49wd8bvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrYfqAil4NH4rZSP/p5/XgFds6aEwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzUzMDJlMzEzMDM3MmUzMjM0MzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClmv0MA0GCSqG SIb3DQEBCwUAA4IBAQB9mLlQZNMZlI9o+m2rsRkvuIB9bDaLDEecmmIrDZMJx35P P1wlIZhCZBXLEhRLI3xF5QSIcWy2lCHX2HYnp2YgHYxPAEIe/U8IgyUTD/vsfl4v zcUMtn3S5Rgn9K+/b5r3i06iASWCNCr6sXB4NL0UzbT0RU/n2iDt3qiU4pdJ+PHG wbIPnAmWkgy/VqJ/uEmFv6w3KE/Mql4XI9nivJ9lDBuh2c52KPBHNt/f1JRy2deE 4FRvzObQemQgOfEahXWZwJKg/69XE8pLiMgHtXG+l+X7r2y6AAX+fYOzyPsKPNeV wAPgGdColMM5cNE2r/P06rIIUV3fPiziUwCJaMsn -----END CERTIFICATE-----Generated at Sat Jun 7 12:07:54 2025 by rpki-client