$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS137346.roa File: AS137346.roa (raw, json) Hash identifier: 3RtAGBSJfLGZo3YU7r/kwG8TMuY0YqumRB/agoOe/YM= Subject key identifier: 49:06:8A:69:F6:0C:2F:10:33:D2:18:E5:4A:02:DD:1C:96:07:28:88 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 53DB29A063AC8E81288B3D988BE80A62801F13D2 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS137346.roa Signing time: Mon 28 Apr 2025 01:44:13 +0000 ROA not before: Mon 28 Apr 2025 01:39:13 +0000 ROA not after: Mon 27 Apr 2026 01:44:13 +0000 asID: 137346 IP address blocks: 115.178.124.0/24 maxlen: 24 115.178.125.0/24 maxlen: 24 115.178.126.0/24 maxlen: 24 115.178.127.0/24 maxlen: 24 116.66.205.0/24 maxlen: 24 182.23.171.0/24 maxlen: 24 202.87.187.0/24 maxlen: 24 223.27.147.0/24 maxlen: 24 223.27.155.0/24 maxlen: 24 2402:3700::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:db:29:a0:63:ac:8e:81:28:8b:3d:98:8b:e8:0a:62:80:1f:13:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Apr 28 01:39:13 2025 GMT Not After : Apr 27 01:44:13 2026 GMT Subject: CN=49068A69F60C2F1033D218E54A02DD1C96072888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:70:54:ce:b8:ac:96:8a:b8:1a:3e:6b:ba:0b: 44:ad:96:2c:9c:59:19:75:1a:b8:df:2f:22:63:5f: 10:5f:61:66:b6:51:64:18:20:e5:24:29:ea:ff:78: ba:fd:27:81:b7:3c:66:a3:80:84:4e:d4:93:2e:33: 2b:6b:98:42:0d:ca:ff:91:d9:0b:d7:ea:02:e7:54: 6f:62:f8:ab:7a:6e:3f:90:b9:c4:45:84:37:16:f1: 5d:eb:31:a6:b0:74:ad:8e:3e:ee:6c:27:f1:6c:49: b9:1e:a2:c4:f7:93:b8:51:1e:94:45:39:9b:dc:22: cd:3a:8f:01:1b:87:77:d3:7d:ec:a3:01:78:3d:13: c6:1f:06:81:39:1f:7b:11:9c:a5:e3:c9:dd:a0:0a: c2:f6:73:e6:14:13:98:a5:d7:5b:3e:1b:92:40:04: 1c:61:f8:2f:32:b5:d1:47:dd:97:c7:85:6a:ee:82: b1:41:83:06:8e:0f:3a:58:f1:e3:fa:8c:c1:97:23: 53:76:08:e0:13:4d:6f:d3:36:15:34:ef:cf:66:38: 2b:6a:3e:9c:bf:99:3f:99:ed:b1:d1:e2:d6:00:88: 4e:34:d1:96:4d:18:7d:24:89:65:7b:80:1d:4d:7c: cc:76:0c:a4:fa:0b:86:5f:b6:71:11:c3:97:43:d4: 1b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:06:8A:69:F6:0C:2F:10:33:D2:18:E5:4A:02:DD:1C:96:07:28:88 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS137346.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.124.0/22 116.66.205.0/24 182.23.171.0/24 202.87.187.0/24 223.27.147.0/24 223.27.155.0/24 IPv6: 2402:3700::/32 Signature Algorithm: sha256WithRSAEncryption 39:6f:12:46:3f:db:23:90:43:dc:d9:9d:31:65:cf:4b:6f:83: ad:25:53:ec:75:86:02:99:f0:ae:29:41:e9:9b:f4:ff:71:84: 37:0e:e1:61:ef:05:b3:e7:89:3d:a3:f2:2c:69:3e:bc:c9:91: 2d:7f:c4:48:c7:44:d1:d0:cb:ab:8c:8d:ac:bb:05:df:cf:c5: 96:60:ba:26:5c:3e:7b:18:c3:f6:a8:9f:65:3a:80:6d:cc:02: 5c:2f:e0:b3:8a:b0:81:8e:0c:1a:f1:86:8d:b4:c1:df:f7:9d: ad:0d:9f:6e:4f:2f:dc:45:0d:3d:ca:96:45:5d:9d:d6:98:4d: 3a:3c:e5:e3:93:75:47:67:dc:2d:73:60:0e:1a:fe:70:4d:e1: cf:b7:94:e1:7c:31:5a:00:01:ac:03:df:ff:ab:f0:4d:c4:38: eb:72:9e:ea:1b:78:f9:8c:51:64:a7:6e:76:f4:24:8d:2a:f7: 1a:f2:4c:a0:6d:64:2b:aa:5a:77:85:89:f8:e2:34:43:e6:24: 41:5a:79:48:c7:55:65:78:29:8f:c4:a5:ca:90:13:a0:88:d7: 55:f6:d5:e5:de:9f:45:65:34:f3:e3:ec:18:96:2d:22:81:6c: 93:f8:1c:de:1e:24:9b:7a:17:18:a7:b1:c0:28:28:5e:69:92: 62:69:11:9b -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUU9spoGOsjoEoiz2Yi+gKYoAfE9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTA0MjgwMTM5MTNaFw0yNjA0MjcwMTQ0MTNaMDMxMTAvBgNV BAMTKDQ5MDY4QTY5RjYwQzJGMTAzM0QyMThFNTRBMDJERDFDOTYwNzI4ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUcFTOuKyWirgaPmu6C0Stliyc WRl1GrjfLyJjXxBfYWa2UWQYIOUkKer/eLr9J4G3PGajgIRO1JMuMytrmEINyv+R 2QvX6gLnVG9i+Kt6bj+QucRFhDcW8V3rMaawdK2OPu5sJ/FsSbkeosT3k7hRHpRF OZvcIs06jwEbh3fTfeyjAXg9E8YfBoE5H3sRnKXjyd2gCsL2c+YUE5il11s+G5JA BBxh+C8ytdFH3ZfHhWrugrFBgwaODzpY8eP6jMGXI1N2COATTW/TNhU0789mOCtq Ppy/mT+Z7bHR4tYAiE400ZZNGH0kiWV7gB1NfMx2DKT6C4ZftnERw5dD1BuvAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUSQaKafYMLxAz0hjlSgLdHJYHKIgwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby9lODczNDlmYi00NjVlLTRlOGItYTk3NC05 MGU5MzliY2IwZmIvMC9BUzEzNzM0Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjBMBggrBgEFBQcBBwEB/wQ9MDswKgQCAAEwJAMEAnOyfAMEAHRCzQMEALYX qwMEAMpXuwMEAN8bkwMEAN8bmzANBAIAAjAHAwUAJAI3ADANBgkqhkiG9w0BAQsF AAOCAQEAOW8SRj/bI5BD3NmdMWXPS2+DrSVT7HWGApnwrilB6Zv0/3GENw7hYe8F s+eJPaPyLGk+vMmRLX/ESMdE0dDLq4yNrLsF38/FlmC6Jlw+exjD9qifZTqAbcwC XC/gs4qwgY4MGvGGjbTB3/edrQ2fbk8v3EUNPcqWRV2d1phNOjzl45N1R2fcLXNg Dhr+cE3hz7eU4XwxWgABrAPf/6vwTcQ463Ke6ht4+YxRZKdudvQkjSr3GvJMoG1k K6pad4WJ+OI0Q+YkQVp5SMdVZXgpj8SlypAToIjXVfbV5d6fRWU08+PsGJYtIoFs k/gc3h4km3oXGKexwCgoXmmSYmkRmw== -----END CERTIFICATE-----Generated at Sat Jun 7 13:26:48 2025 by rpki-client