$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139302e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3139302e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: hfJYX7IXK2yRsIkXzTXumWYWspYzmgD5u1H3fLVubkc= Subject key identifier: 7A:FE:75:94:7F:D5:EE:FB:4B:C5:D5:2C:85:A1:7A:E6:88:13:FA:EC Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 03289801195E9EFED30FF5ACA16BACC53E08CE9B Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139302e302f32342d3234203d3e203234353334.roa Signing time: Sat 21 Jun 2025 12:00:01 +0000 ROA not before: Sat 21 Jun 2025 11:55:01 +0000 ROA not after: Sat 20 Jun 2026 12:00:01 +0000 asID: 24534 IP address blocks: 58.147.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 15:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:28:98:01:19:5e:9e:fe:d3:0f:f5:ac:a1:6b:ac:c5:3e:08:ce:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jun 21 11:55:01 2025 GMT Not After : Jun 20 12:00:01 2026 GMT Subject: CN=7AFE75947FD5EEFB4BC5D52C85A17AE68813FAEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:6d:32:23:83:1e:65:b5:2a:a1:db:0c:49: ac:82:5e:7f:5a:87:72:f7:cb:7b:34:7e:76:c9:57: 70:2a:31:c4:44:a6:c1:fe:47:99:3e:76:be:ce:d5: 3a:0f:92:3a:c5:e5:57:02:13:23:07:93:81:18:7a: a6:2f:b1:d4:4f:55:b6:ce:6f:84:e1:02:72:ea:51: 75:96:34:10:40:6f:38:74:44:71:5d:58:a3:aa:08: 46:11:31:52:c2:b5:2a:2c:38:52:9f:ea:77:1d:d1: 32:0e:3c:a5:08:c5:44:ef:80:d6:3b:06:a9:48:df: 18:70:47:f9:6b:e8:fe:57:0d:6f:c7:d9:13:ba:14: 67:c3:e5:ee:88:1e:ed:0d:9a:ce:5f:7a:ce:2d:9b: 93:35:23:fb:3a:e9:6b:61:db:99:96:5e:26:f7:22: 5d:2f:00:59:41:46:50:01:4a:fe:0c:36:4e:08:9d: 24:df:e0:84:ed:d2:15:a6:9f:8c:ee:53:3b:e9:e8: 19:13:f8:29:71:8b:73:71:5b:19:27:90:cd:97:e8: bb:6e:60:7c:7e:85:aa:65:65:ce:19:4d:e4:a0:3a: de:99:d1:9e:19:df:20:2e:4a:63:4a:83:e2:8e:22: 5d:18:a2:c0:92:94:d9:64:86:f2:bf:6f:9c:93:7d: 55:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FE:75:94:7F:D5:EE:FB:4B:C5:D5:2C:85:A1:7A:E6:88:13:FA:EC X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3139302e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.190.0/24 Signature Algorithm: sha256WithRSAEncryption 37:0e:98:e7:6e:da:21:de:6a:53:59:83:95:de:d4:c3:0f:1e: 3e:03:9e:ff:6d:da:ea:89:c9:c6:e7:e0:44:2f:30:dd:84:cc: 92:d4:68:0e:69:91:fd:5d:8a:60:2a:15:f8:13:e2:a5:47:b6: 97:c9:fd:a4:06:75:a7:22:65:12:64:4a:8a:e4:8e:93:50:c5: a6:c4:5d:e7:40:48:9c:5e:46:17:ea:23:f2:4a:91:03:68:58: 45:39:fe:42:45:46:9f:67:3f:a9:17:d0:84:94:57:30:a7:df: 9f:fc:86:9a:31:09:81:d2:21:71:61:8a:ce:32:a9:61:c2:17: 6f:3d:c4:6e:d9:28:bf:80:80:90:bc:85:de:22:15:31:2c:69: df:68:04:1c:57:c2:9e:a5:42:0c:f5:60:7c:4f:77:b3:b9:47: 25:a2:66:8a:d3:11:25:ae:62:f3:f3:3c:ad:1a:70:b9:b4:1e: 84:36:71:ad:a5:89:73:6b:ad:4f:4b:66:64:96:c6:70:24:cb: 39:03:db:46:74:25:6b:72:40:4c:69:ae:85:72:0c:4d:e9:a0: 68:62:94:2d:dd:70:13:94:5e:86:bf:ab:42:b1:26:7e:1d:39: 07:c0:5c:9c:76:86:25:ed:1e:0f:72:da:9d:ec:ae:07:cf:e8: 49:84:c5:fe -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAyiYARlenv7TD/WsoWusxT4IzpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA2MjExMTU1MDFaFw0yNjA2MjAxMjAwMDFaMDMxMTAvBgNV BAMTKDdBRkU3NTk0N0ZENUVFRkI0QkM1RDUyQzg1QTE3QUU2ODgxM0ZBRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvq20yI4MeZbUqodsMSayCXn9a h3L3y3s0fnbJV3AqMcREpsH+R5k+dr7O1ToPkjrF5VcCEyMHk4EYeqYvsdRPVbbO b4ThAnLqUXWWNBBAbzh0RHFdWKOqCEYRMVLCtSosOFKf6ncd0TIOPKUIxUTvgNY7 BqlI3xhwR/lr6P5XDW/H2RO6FGfD5e6IHu0Nms5fes4tm5M1I/s66Wth25mWXib3 Il0vAFlBRlABSv4MNk4InSTf4ITt0hWmn4zuUzvp6BkT+Clxi3NxWxknkM2X6Ltu YHx+haplZc4ZTeSgOt6Z0Z4Z3yAuSmNKg+KOIl0YosCSlNlkhvK/b5yTfVXVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUev51lH/V7vtLxdUshaF65ogT+uwwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTvjANBgkqhkiG 9w0BAQsFAAOCAQEANw6Y527aId5qU1mDld7Uww8ePgOe/23a6onJxufgRC8w3YTM ktRoDmmR/V2KYCoV+BPipUe2l8n9pAZ1pyJlEmRKiuSOk1DFpsRd50BInF5GF+oj 8kqRA2hYRTn+QkVGn2c/qRfQhJRXMKffn/yGmjEJgdIhcWGKzjKpYcIXbz3Ebtko v4CAkLyF3iIVMSxp32gEHFfCnqVCDPVgfE93s7lHJaJmitMRJa5i8/M8rRpwubQe hDZxraWJc2utT0tmZJbGcCTLOQPbRnQla3JATGmuhXIMTemgaGKULd1wE5Rehr+r QrEmfh05B8BcnHaGJe0eD3LaneyuB8/oSYTF/g== -----END CERTIFICATE-----Generated at Wed Jul 2 15:11:17 2025 by rpki-client