$ rpki-client -vvf repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa File: 35392e3135332e32342e302f32332d3233203d3e203539323835.roa (raw, json) Hash identifier: 1SizngiTVzIbRBWH1t3CjVmzzkPKhWLCfAxINTFYNoo= Subject key identifier: D2:9D:B2:6C:77:75:40:F1:AA:73:17:91:DE:0A:90:06:D3:B2:F0:AF Certificate issuer: /CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42 Certificate serial: 1B898913BC4E647945E8B0F57AA0B59E6288510A Authority key identifier: E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa Signing time: Mon 02 Jun 2025 02:04:14 +0000 ROA not before: Mon 02 Jun 2025 01:59:14 +0000 ROA not after: Mon 01 Jun 2026 02:04:14 +0000 asID: 59285 IP address blocks: 59.153.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:17:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:89:89:13:bc:4e:64:79:45:e8:b0:f5:7a:a0:b5:9e:62:88:51:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42 Validity Not Before: Jun 2 01:59:14 2025 GMT Not After : Jun 1 02:04:14 2026 GMT Subject: CN=D29DB26C777540F1AA731791DE0A9006D3B2F0AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e1:96:90:ed:52:79:91:59:55:ac:73:73:9b: 02:aa:73:7f:e6:7f:79:c9:b3:31:4b:36:55:7c:8b: 63:51:3c:fa:40:48:62:82:64:34:fc:56:b5:47:cd: 79:9b:d6:c6:e7:3b:6e:b5:0a:dc:1b:62:c6:58:82: 17:fb:24:c4:a6:fa:00:03:17:ff:53:58:54:12:8a: 8e:74:7e:8a:37:47:ea:74:97:e1:78:d9:77:69:41: 4d:26:e8:55:68:aa:37:67:bd:3d:98:f1:b9:2c:e7: 4e:f1:fb:a0:ea:f4:7b:90:7d:cc:35:6b:a7:b8:e3: a2:99:21:a3:d1:b0:c1:e2:ab:a9:34:1a:04:16:9d: 4b:18:dd:f3:90:40:be:0a:e8:9d:3c:80:50:c2:73: ae:a2:7a:cb:6b:25:2b:38:c7:1b:4a:b5:62:4c:15: 66:d6:30:68:7c:1b:40:01:67:c2:7c:87:ea:3b:4b: f5:b1:7a:63:71:52:06:94:86:7b:04:8c:64:62:a3: 57:ac:43:8a:e1:21:61:f3:43:ab:40:d7:34:94:b5: 69:da:96:1b:6e:ab:99:80:c3:7a:5b:aa:09:c7:f3: be:7e:99:72:9e:22:65:ac:68:2a:ad:b0:ab:80:f6: 38:93:7e:e6:6b:f0:9e:40:66:de:6b:13:de:2f:ef: 6a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:9D:B2:6C:77:75:40:F1:AA:73:17:91:DE:0A:90:06:D3:B2:F0:AF X509v3 Authority Key Identifier: keyid:E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.24.0/23 Signature Algorithm: sha256WithRSAEncryption d0:2f:7a:b2:5e:d4:1c:43:08:c8:07:68:db:5e:5b:1b:da:40: 73:a6:56:12:2d:07:68:25:1d:b8:36:47:e1:73:1a:0d:3f:a5: 0c:49:05:1f:2b:19:ae:ab:84:69:eb:bc:00:b5:33:5e:00:97: 47:09:9a:e7:db:69:6a:f9:c0:d5:9a:7b:e0:83:24:d7:c2:51: 0c:64:1d:39:b7:39:cb:38:8f:47:82:ad:a7:98:aa:53:2e:47: 0b:69:59:72:19:04:c7:12:c2:1d:64:0c:a1:82:17:2b:1d:f8: f8:55:93:1b:26:ef:2f:19:11:3f:67:e2:16:ce:7e:b7:31:d9: e6:05:cc:6c:f6:9d:e5:6b:87:5e:29:8a:fc:59:ea:05:ca:09: bd:eb:53:3a:8c:c8:3b:96:c8:c7:e3:88:1d:c3:60:18:6e:51: b0:12:0d:f4:4d:bc:21:22:83:19:66:72:1c:cb:0f:04:ba:07: a2:df:63:70:1e:82:43:a8:86:26:f4:24:ac:e7:5d:b9:54:7c: 5b:da:c0:50:97:49:a5:66:a6:6d:c3:21:11:49:c0:a2:4e:95: 15:53:31:7d:9f:71:b6:94:48:52:b8:bf:7b:7e:1a:01:29:0c: ed:24:2d:78:06:50:1e:41:2c:34:b0:ed:95:8d:82:96:69:67: 6f:8a:0c:44 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUG4mJE7xOZHlF6LD1eqC1nmKIUQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBGQkEwM0Q2QjY4OTVDRUI1MzcyMkNFRkRCOTRDNTYw MUJERUE0MjAeFw0yNTA2MDIwMTU5MTRaFw0yNjA2MDEwMjA0MTRaMDMxMTAvBgNV BAMTKEQyOURCMjZDNzc3NTQwRjFBQTczMTc5MURFMEE5MDA2RDNCMkYwQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW4ZaQ7VJ5kVlVrHNzmwKqc3/m f3nJszFLNlV8i2NRPPpASGKCZDT8VrVHzXmb1sbnO261CtwbYsZYghf7JMSm+gAD F/9TWFQSio50foo3R+p0l+F42XdpQU0m6FVoqjdnvT2Y8bks507x+6Dq9HuQfcw1 a6e446KZIaPRsMHiq6k0GgQWnUsY3fOQQL4K6J08gFDCc66iestrJSs4xxtKtWJM FWbWMGh8G0ABZ8J8h+o7S/WxemNxUgaUhnsEjGRio1esQ4rhIWHzQ6tA1zSUtWna lhtuq5mAw3pbqgnH875+mXKeImWsaCqtsKuA9jiTfuZr8J5AZt5rE94v72o9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0p2ybHd1QPGqcxeR3gqQBtOy8K8wHwYDVR0j BBgwFoAU4PugPWtolc61NyLO/blMVgG96kIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTFmM2IzNy1iZDU0LTQ5MTEtOTA1Yi0zNjU0OTY2ODdjOGQvMC9FMEZCQTAzRDZC Njg5NUNFQjUzNzIyQ0VGREI5NEM1NjAxQkRFQTQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBGQkEwM0Q2QjY4OTVDRUI1MzcyMkNFRkRCOTRDNTYwMUJE RUE0Mi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMWYzYjM3LWJkNTQtNDkxMS05 MDViLTM2NTQ5NjY4N2M4ZC8wLzM1MzkyZTMxMzUzMzJlMzIzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzkzMjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE7mRgwDQYJKoZIhvcN AQELBQADggEBANAverJe1BxDCMgHaNteWxvaQHOmVhItB2glHbg2R+FzGg0/pQxJ BR8rGa6rhGnrvAC1M14Al0cJmufbaWr5wNWae+CDJNfCUQxkHTm3Ocs4j0eCraeY qlMuRwtpWXIZBMcSwh1kDKGCFysd+PhVkxsm7y8ZET9n4hbOfrcx2eYFzGz2neVr h14pivxZ6gXKCb3rUzqMyDuWyMfjiB3DYBhuUbASDfRNvCEigxlmchzLDwS6B6Lf Y3AegkOohib0JKznXblUfFvawFCXSaVmpm3DIRFJwKJOlRVTMX2fcbaUSFK4v3t+ GgEpDO0kLXgGUB5BLDSw7ZWNgpZpZ2+KDEQ= -----END CERTIFICATE-----Generated at Fri Jun 6 16:45:58 2025 by rpki-client