$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: yHFhz7s9vTM+0GwcewjykllWnmywdIchHv+vwnUyUtQ= Subject key identifier: C3:F6:11:D7:D0:46:2C:5F:64:BA:F6:EC:B4:33:B3:99:BF:95:1B:0E Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 3885C641C2994830B8E44FFBBACECA0BB1F53395 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa Signing time: Sat 21 Jun 2025 11:00:01 +0000 ROA not before: Sat 21 Jun 2025 10:55:01 +0000 ROA not after: Sat 20 Jun 2026 11:00:01 +0000 asID: 24534 IP address blocks: 58.147.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:85:c6:41:c2:99:48:30:b8:e4:4f:fb:ba:ce:ca:0b:b1:f5:33:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jun 21 10:55:01 2025 GMT Not After : Jun 20 11:00:01 2026 GMT Subject: CN=C3F611D7D0462C5F64BAF6ECB433B399BF951B0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e3:67:33:5b:c7:bb:6f:4d:f9:80:12:8d:53: d8:e8:99:89:9b:8f:5c:45:39:d1:41:ed:fe:a4:56: ff:c0:80:22:12:70:9d:f9:6e:69:ed:ce:4f:03:53: 3e:6d:d2:fb:2e:f5:54:1b:1f:aa:71:a1:86:88:40: 57:ed:74:af:a9:de:71:ef:ee:5c:7d:37:a7:b9:01: ec:a5:60:b6:bf:fa:2b:7a:c3:8c:32:42:09:81:c3: 2b:0a:2f:ab:95:5d:49:5d:e2:4d:02:4b:82:83:28: cf:e1:f8:fa:8f:b7:84:d9:b1:19:c5:84:77:8b:46: a4:78:9f:ad:7d:6c:fd:cf:f7:48:29:cb:25:aa:b9: 68:be:b5:27:c1:6c:d3:38:a3:d9:e0:d5:a2:5c:7d: 57:37:c2:6f:8b:cf:39:80:e4:f6:cf:26:20:d1:ef: 81:63:96:df:c2:6b:e4:66:5f:1e:70:f1:87:92:a8: ff:d8:8a:41:cc:26:6b:48:4e:05:45:0a:03:2a:cc: b2:bc:b0:f9:bc:76:ff:95:fd:52:43:31:db:4e:fa: d1:f7:d3:64:70:22:78:b8:42:6c:8d:06:7b:62:c7: 65:3e:55:48:01:fb:89:b1:bb:14:d1:9d:6c:31:29: 86:a6:9d:6f:31:97:2f:25:07:4e:53:e4:87:e0:4a: 02:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F6:11:D7:D0:46:2C:5F:64:BA:F6:EC:B4:33:B3:99:BF:95:1B:0E X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138392e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.189.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:b7:d3:bf:f8:f4:53:3d:b3:d7:a1:9a:0d:0c:c2:db:b0:53: e3:d3:cf:ad:08:06:44:4d:1f:85:e6:f1:0b:a0:ac:b5:08:26: 64:79:dc:9c:61:52:02:4f:26:08:88:21:0d:8b:c9:28:92:3a: 30:29:3f:e8:ea:ec:2d:59:6c:da:9e:71:c2:85:5e:59:1c:87: 07:84:c8:36:fe:8d:73:d3:e7:cc:8d:45:e0:9a:7e:3f:54:67: 11:e3:52:d5:d0:f6:1f:01:0d:c4:8c:b8:e1:2a:5e:25:61:17: 28:7d:8f:96:f2:0c:a9:7c:8a:a0:07:2a:9f:39:c5:57:15:c6: 11:87:89:f7:18:64:36:9b:83:83:21:80:d3:80:6c:ff:b9:9c: 84:d9:d6:80:4b:5d:6f:f8:ed:39:66:59:ef:98:6e:d9:54:a2: 1f:49:33:ba:f1:de:ad:3f:2b:df:1e:fd:e0:0e:21:f3:b8:64: 2a:12:1b:11:90:61:f3:d1:8d:f8:78:b5:23:19:03:e0:1c:a0: b1:fc:5c:64:30:cf:13:ad:b2:51:df:60:7e:93:d3:c5:cb:be: cb:bf:da:ba:98:25:9d:7c:32:b8:8e:72:e6:c7:d6:14:37:6b: 3a:2c:72:a3:20:a2:1f:e2:dc:d3:3f:b7:24:57:28:4e:7c:f4: 36:c9:fe:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOIXGQcKZSDC45E/7us7KC7H1M5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA2MjExMDU1MDFaFw0yNjA2MjAxMTAwMDFaMDMxMTAvBgNV BAMTKEMzRjYxMUQ3RDA0NjJDNUY2NEJBRjZFQ0I0MzNCMzk5QkY5NTFCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe42czW8e7b035gBKNU9jomYmb j1xFOdFB7f6kVv/AgCIScJ35bmntzk8DUz5t0vsu9VQbH6pxoYaIQFftdK+p3nHv 7lx9N6e5AeylYLa/+it6w4wyQgmBwysKL6uVXUld4k0CS4KDKM/h+PqPt4TZsRnF hHeLRqR4n619bP3P90gpyyWquWi+tSfBbNM4o9ng1aJcfVc3wm+LzzmA5PbPJiDR 74Fjlt/Ca+RmXx5w8YeSqP/YikHMJmtITgVFCgMqzLK8sPm8dv+V/VJDMdtO+tH3 02RwIni4QmyNBntix2U+VUgB+4mxuxTRnWwxKYamnW8xly8lB05T5IfgSgJNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUw/YR19BGLF9kuvbstDOzmb+VGw4wHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvTANBgkqhkiG 9w0BAQsFAAOCAQEAT7fTv/j0Uz2z16GaDQzC27BT49PPrQgGRE0fhebxC6CstQgm ZHncnGFSAk8mCIghDYvJKJI6MCk/6OrsLVls2p5xwoVeWRyHB4TINv6Nc9PnzI1F 4Jp+P1RnEeNS1dD2HwENxIy44SpeJWEXKH2PlvIMqXyKoAcqnznFVxXGEYeJ9xhk NpuDgyGA04Bs/7mchNnWgEtdb/jtOWZZ75hu2VSiH0kzuvHerT8r3x794A4h87hk KhIbEZBh89GN+Hi1IxkD4BygsfxcZDDPE62yUd9gfpPTxcu+y7/aupglnXwyuI5y 5sfWFDdrOixyoyCiH+Lc0z+3JFcoTnz0Nsn+zA== -----END CERTIFICATE-----Generated at Tue Jul 1 21:12:35 2025 by rpki-client