$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: R+HBHXL62WCqMu+S9XZ2lfDd7q3jJVRrizTgz3Qq4sM= Subject key identifier: 4F:39:BC:9E:9F:46:D5:10:17:B5:CC:54:2F:BB:D5:8F:45:2D:AD:4C Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 492CC690E2E1ABCB07E7F146FA4B12D5C8DBA36B Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa Signing time: Sat 21 Jun 2025 12:00:01 +0000 ROA not before: Sat 21 Jun 2025 11:55:01 +0000 ROA not after: Sat 20 Jun 2026 12:00:01 +0000 asID: 24534 IP address blocks: 58.147.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2c:c6:90:e2:e1:ab:cb:07:e7:f1:46:fa:4b:12:d5:c8:db:a3:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jun 21 11:55:01 2025 GMT Not After : Jun 20 12:00:01 2026 GMT Subject: CN=4F39BC9E9F46D51017B5CC542FBBD58F452DAD4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8c:58:ee:7e:c4:82:26:70:e2:20:28:6e:26: 25:d1:d1:36:b9:e2:d0:55:32:b6:88:98:81:94:7c: c9:81:0e:4a:56:f3:f8:bb:cf:88:60:9f:40:1c:da: 22:c6:b1:a0:b8:e1:8c:99:63:42:24:39:63:98:55: f8:3e:6b:8c:86:26:5e:0a:3b:46:15:3c:d2:7e:25: 14:5f:43:a3:03:20:78:04:3b:7b:b2:d2:ad:2a:eb: d8:6c:cb:39:49:60:29:d7:d4:81:5c:5e:88:79:97: 06:d4:a3:9a:a9:f5:b6:0b:54:9c:2e:62:6e:72:bf: 15:c9:42:49:b8:9e:8b:cc:0a:74:1e:ba:cd:80:ec: da:bb:bf:b3:0a:34:4e:08:e5:fd:5a:75:96:7c:55: c1:48:78:c8:0a:73:14:34:6c:25:5d:65:b4:88:67: e6:95:7c:8b:11:f6:a9:b7:8d:a0:15:f5:81:00:ed: 40:e2:97:85:7f:16:88:5b:f6:b8:dd:66:8e:17:8e: 09:a9:5f:b7:27:c2:44:e5:e7:f0:fb:c3:3c:9a:a4: 03:98:0e:56:80:46:5e:99:42:01:33:36:a9:6a:08: 6f:b8:d6:94:14:b5:95:c1:ea:2c:c9:93:8d:d2:a4: de:c8:64:e7:07:5f:fc:7a:25:e5:68:1a:a4:5a:8a: 64:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:39:BC:9E:9F:46:D5:10:17:B5:CC:54:2F:BB:D5:8F:45:2D:AD:4C X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.187.0/24 Signature Algorithm: sha256WithRSAEncryption 74:81:24:e8:c5:31:8f:3d:d0:8f:9d:9e:89:59:a5:35:24:39: f1:bf:98:4f:21:c9:77:ed:04:53:e4:da:96:ba:2a:36:c0:4a: 65:d8:0d:5f:9f:b2:fb:7e:2f:cb:d1:79:63:b9:9b:c6:ca:ad: c2:ff:12:b6:ac:0d:60:61:a2:3e:d8:f0:2d:1c:82:44:20:33: b6:7c:de:bb:50:9c:86:d9:ea:2b:35:b6:f7:84:2d:54:e7:83: b7:bb:81:23:53:30:f1:28:86:b5:b4:cd:d3:c5:0b:9a:a1:a5: 02:20:38:48:c0:ea:b0:2f:fc:ec:21:37:4a:e7:6e:7e:31:80: cc:da:cc:c7:bf:a0:82:ae:e3:7f:6a:8b:cb:8c:4b:43:fa:fc: 18:59:8c:af:93:4e:5a:92:ea:36:e0:f3:ae:73:ea:4b:6f:7d: 19:93:e4:a3:4b:88:ce:4c:2d:1b:d1:5d:12:40:c7:9c:db:3b: 14:2d:a0:7d:07:ab:90:87:6b:08:54:67:7e:d9:cf:aa:d3:a6: 8e:07:31:90:ae:03:48:28:1a:d8:c1:9b:4b:da:af:bc:b1:36: 6b:c4:07:17:8d:7d:d1:e4:4f:c8:c6:c4:8c:7a:4a:6f:70:b3: 56:25:8d:43:51:cd:62:cc:f6:f0:91:ac:79:7e:ee:33:a7:4c: df:1b:28:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSSzGkOLhq8sH5/FG+ksS1cjbo2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA2MjExMTU1MDFaFw0yNjA2MjAxMjAwMDFaMDMxMTAvBgNV BAMTKDRGMzlCQzlFOUY0NkQ1MTAxN0I1Q0M1NDJGQkJENThGNDUyREFENEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6jFjufsSCJnDiIChuJiXR0Ta5 4tBVMraImIGUfMmBDkpW8/i7z4hgn0Ac2iLGsaC44YyZY0IkOWOYVfg+a4yGJl4K O0YVPNJ+JRRfQ6MDIHgEO3uy0q0q69hsyzlJYCnX1IFcXoh5lwbUo5qp9bYLVJwu Ym5yvxXJQkm4novMCnQeus2A7Nq7v7MKNE4I5f1adZZ8VcFIeMgKcxQ0bCVdZbSI Z+aVfIsR9qm3jaAV9YEA7UDil4V/Fohb9rjdZo4XjgmpX7cnwkTl5/D7wzyapAOY DlaARl6ZQgEzNqlqCG+41pQUtZXB6izJk43SpN7IZOcHX/x6JeVoGqRaimQbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTzm8np9G1RAXtcxUL7vVj0UtrUwwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTuzANBgkqhkiG 9w0BAQsFAAOCAQEAdIEk6MUxjz3Qj52eiVmlNSQ58b+YTyHJd+0EU+TalroqNsBK ZdgNX5+y+34vy9F5Y7mbxsqtwv8StqwNYGGiPtjwLRyCRCAztnzeu1CchtnqKzW2 94QtVOeDt7uBI1Mw8SiGtbTN08ULmqGlAiA4SMDqsC/87CE3SudufjGAzNrMx7+g gq7jf2qLy4xLQ/r8GFmMr5NOWpLqNuDzrnPqS299GZPko0uIzkwtG9FdEkDHnNs7 FC2gfQerkIdrCFRnftnPqtOmjgcxkK4DSCga2MGbS9qvvLE2a8QHF4190eRPyMbE jHpKb3CzViWNQ1HNYsz28JGseX7uM6dM3xsoxA== -----END CERTIFICATE-----Generated at Tue Jul 1 17:42:46 2025 by rpki-client