$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138362e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138362e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: X9EKF8Z1uFLJC9IzjlT1aPQkzE/clRuy5X9NkdqNVow= Subject key identifier: 9D:4A:6E:1D:D5:B6:6D:92:72:91:A9:A7:86:FB:AB:E9:16:5A:7A:76 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 4706DC7393F52AA298AD7AA0A88555E42BD3C2DA Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138362e302f32342d3234203d3e203234353334.roa Signing time: Sat 21 Jun 2025 11:00:00 +0000 ROA not before: Sat 21 Jun 2025 10:55:00 +0000 ROA not after: Sat 20 Jun 2026 11:00:00 +0000 asID: 24534 IP address blocks: 58.147.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:06:dc:73:93:f5:2a:a2:98:ad:7a:a0:a8:85:55:e4:2b:d3:c2:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jun 21 10:55:00 2025 GMT Not After : Jun 20 11:00:00 2026 GMT Subject: CN=9D4A6E1DD5B66D927291A9A786FBABE9165A7A76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:89:a1:e0:e5:47:fb:8e:45:ac:9f:71:8b:42: d6:1f:08:db:3a:2c:4c:e3:ae:ea:6f:55:f8:93:a6: f7:b5:b0:f2:ce:cb:b1:62:bf:40:03:0c:8c:0b:25: da:e7:2f:99:73:b6:03:b1:35:0e:d1:ff:fd:fe:4c: cb:5a:40:d8:d4:29:9c:2d:e0:3d:de:da:2e:a6:4c: 22:07:c0:e7:23:19:c2:32:b1:08:05:93:0b:69:f6: b4:4d:c7:b8:36:f0:de:51:3e:5f:c0:30:66:f6:f5: cf:26:fc:a6:d8:a6:fc:17:a1:a7:a5:be:79:cf:04: a1:41:c7:ad:7b:0c:59:1e:c4:ea:87:7c:b2:23:de: cf:d3:eb:f1:d5:c0:e9:e0:94:1a:3a:3f:79:18:f1: 51:46:e2:63:a7:4b:30:34:a8:9c:44:a4:7f:87:f5: 45:10:a8:cf:c1:1b:bb:9b:44:b9:e3:f4:02:4d:f5: fd:88:58:9e:02:48:ed:ea:7b:96:f1:a9:ea:44:52: 38:3d:20:13:c7:97:60:3f:65:29:16:fc:a0:10:af: 78:73:34:0c:d8:67:ac:c3:df:e8:03:df:db:59:9d: 86:c3:11:3a:82:3c:99:7a:29:c3:62:b7:35:d1:14: 84:1f:b1:01:2e:06:65:22:48:84:f0:8f:4c:54:95: cd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4A:6E:1D:D5:B6:6D:92:72:91:A9:A7:86:FB:AB:E9:16:5A:7A:76 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138362e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.186.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:d6:b7:ed:68:ea:e4:9b:96:1e:91:43:7f:68:91:90:2a:78: 3f:6a:d8:58:e2:c8:04:ca:b1:6d:ca:ae:03:23:5b:9d:fc:80: 3e:c7:38:f2:c9:7c:7c:42:f1:62:a3:a6:6a:27:9a:4e:ca:2b: d2:44:d8:23:a1:7a:41:be:f5:2b:36:c5:f8:df:6d:82:7f:52: 6c:11:b5:3a:b2:65:67:4d:50:56:6a:cd:7a:24:14:93:0f:07: 68:61:a0:3d:0f:02:d4:b5:32:7e:45:f0:a1:0d:bf:24:0e:c1: 5f:14:ed:8f:4b:44:c7:45:dc:f8:17:cd:0f:38:f1:81:c5:0f: 3b:11:36:60:c1:a6:5e:28:4a:f4:ea:d3:b2:48:82:82:d9:8c: 05:46:06:3d:0b:26:d0:03:4b:bb:9e:22:3c:af:33:b6:cb:59: 5c:bb:69:3d:20:50:6f:9f:c0:7a:29:82:9b:7d:40:94:7a:45: 9e:e9:61:6e:90:d5:2c:3d:b8:03:9b:91:aa:49:3c:84:44:7b: 23:0d:87:18:98:34:b6:6f:22:58:74:da:ec:63:02:9b:aa:0b: 3d:1a:e4:19:39:7f:69:83:35:d6:01:ea:74:fa:bd:82:c9:84: 1e:c5:ba:99:66:bd:cd:87:84:f6:09:e4:36:b6:89:ac:83:0a: e5:7f:e3:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURwbcc5P1KqKYrXqgqIVV5CvTwtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA2MjExMDU1MDBaFw0yNjA2MjAxMTAwMDBaMDMxMTAvBgNV BAMTKDlENEE2RTFERDVCNjZEOTI3MjkxQTlBNzg2RkJBQkU5MTY1QTdBNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOiaHg5Uf7jkWsn3GLQtYfCNs6 LEzjrupvVfiTpve1sPLOy7Fiv0ADDIwLJdrnL5lztgOxNQ7R//3+TMtaQNjUKZwt 4D3e2i6mTCIHwOcjGcIysQgFkwtp9rRNx7g28N5RPl/AMGb29c8m/KbYpvwXoael vnnPBKFBx617DFkexOqHfLIj3s/T6/HVwOnglBo6P3kY8VFG4mOnSzA0qJxEpH+H 9UUQqM/BG7ubRLnj9AJN9f2IWJ4CSO3qe5bxqepEUjg9IBPHl2A/ZSkW/KAQr3hz NAzYZ6zD3+gD39tZnYbDETqCPJl6KcNitzXRFIQfsQEuBmUiSITwj0xUlc0PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnUpuHdW2bZJykamnhvur6RZaenYwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTujANBgkqhkiG 9w0BAQsFAAOCAQEACta37Wjq5JuWHpFDf2iRkCp4P2rYWOLIBMqxbcquAyNbnfyA Psc48sl8fELxYqOmaieaTsor0kTYI6F6Qb71KzbF+N9tgn9SbBG1OrJlZ01QVmrN eiQUkw8HaGGgPQ8C1LUyfkXwoQ2/JA7BXxTtj0tEx0Xc+BfNDzjxgcUPOxE2YMGm XihK9OrTskiCgtmMBUYGPQsm0ANLu54iPK8ztstZXLtpPSBQb5/AeimCm31AlHpF nulhbpDVLD24A5uRqkk8hER7Iw2HGJg0tm8iWHTa7GMCm6oLPRrkGTl/aYM11gHq dPq9gsmEHsW6mWa9zYeE9gnkNraJrIMK5X/jdQ== -----END CERTIFICATE-----Generated at Tue Jul 1 15:03:29 2025 by rpki-client