$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: +kWoeqncIsg2yG08LA8FNhnez+6IikrA0zXpF5e1dxk= Subject key identifier: 87:CA:82:8A:BD:BB:A5:A1:7A:2B:FB:71:EE:74:D2:E5:53:3D:CB:0E Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 764F2E9782443446424C9BF79E6EF55AF6BAD96F Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa Signing time: Mon 02 Jun 2025 01:02:35 +0000 ROA not before: Mon 02 Jun 2025 00:57:35 +0000 ROA not after: Mon 01 Jun 2026 01:02:35 +0000 asID: 46026 IP address blocks: 175.111.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 05:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4f:2e:97:82:44:34:46:42:4c:9b:f7:9e:6e:f5:5a:f6:ba:d9:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jun 2 00:57:35 2025 GMT Not After : Jun 1 01:02:35 2026 GMT Subject: CN=87CA828ABDBBA5A17A2BFB71EE74D2E5533DCB0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:25:d0:d6:f4:af:c5:1c:df:0d:cd:af:6f:b4: 3a:71:08:6e:85:df:0e:2a:23:e2:a9:f3:99:ea:a7: f9:1c:c9:ea:a9:bf:fe:78:68:c6:4e:68:63:06:de: 15:95:b0:78:2a:d2:b5:92:76:1e:06:a7:c9:04:3a: 7b:89:49:0d:ad:0c:06:1d:1a:64:59:3f:e2:9d:e8: 50:a0:a3:99:e1:fb:7a:1e:b1:a4:51:31:85:41:1d: 26:3e:7e:8b:ce:a2:d1:2b:4d:a9:c5:d0:69:26:34: 0a:cc:d1:41:4e:9f:ca:9f:b3:cb:95:2d:7f:df:96: 87:c1:99:7c:df:a4:e9:f1:e5:b5:3d:4d:dd:9b:71: 1b:31:d0:42:8e:08:50:7a:65:45:65:39:89:83:ee: 88:2c:bb:17:6b:e9:e4:3a:72:b9:19:29:1a:15:31: 8d:ba:a8:bc:e4:7d:3b:b2:5f:e4:26:c2:3e:22:7e: c0:db:b2:0a:c2:b2:c3:87:cb:58:de:fd:62:b8:f2: c2:20:d4:e9:3a:16:9b:19:cc:4e:0a:44:c5:2e:4a: 13:73:c4:20:75:fc:53:62:2c:72:b4:67:c9:00:01: 09:23:77:33:54:ee:8c:62:52:95:06:88:5c:18:7d: e6:bf:cc:22:7a:68:7f:ad:c6:dd:da:60:56:5b:4c: e4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:CA:82:8A:BD:BB:A5:A1:7A:2B:FB:71:EE:74:D2:E5:53:3D:CB:0E X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.114.0/24 Signature Algorithm: sha256WithRSAEncryption 89:d8:91:53:ea:5d:c1:d5:0f:ca:db:55:70:03:09:19:19:c1: d1:28:a6:6d:f3:2f:eb:ca:00:a2:a1:8e:1a:ad:84:2e:83:bd: 1f:1c:44:c5:67:ef:64:e4:10:5b:d9:95:1a:bd:d6:ac:73:9c: 0a:f4:4b:52:c3:4e:87:d0:34:e9:11:4e:a0:16:d9:1c:37:f1: d2:59:c0:ea:ff:55:d3:76:b0:71:8e:68:7d:fe:64:4d:2f:25: f5:50:59:ff:32:ec:63:14:35:29:1f:37:66:ba:cf:cb:14:f1: 93:6e:27:56:58:e0:f7:4e:0c:a5:16:06:d6:ab:2f:26:d4:c8: b4:42:17:32:81:7c:4f:95:43:6c:45:ce:32:af:d1:bf:1c:f9: ab:d0:46:b1:d3:63:81:e1:cd:e7:08:6a:b9:88:26:0d:da:ab: 05:7c:8c:d2:37:ad:53:ce:7d:a5:d7:e9:59:36:29:70:b6:8e: 99:9a:ba:19:17:35:4b:9b:cb:06:3e:5c:f8:88:c8:b2:ad:00: 04:8d:0b:b1:df:c7:76:7b:30:f6:e6:3f:e4:1d:1a:40:b4:5d: d6:28:bf:66:c4:90:34:19:f2:11:89:03:a4:78:3e:f4:0a:d4: 2f:a7:44:8a:0b:ff:b4:13:19:c4:c5:a0:a1:1a:97:23:20:b5: b3:cd:02:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdk8ul4JENEZCTJv3nm71Wva62W8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNTA2MDIwMDU3MzVaFw0yNjA2MDEwMTAyMzVaMDMxMTAvBgNV BAMTKDg3Q0E4MjhBQkRCQkE1QTE3QTJCRkI3MUVFNzREMkU1NTMzRENCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9JdDW9K/FHN8Nza9vtDpxCG6F 3w4qI+Kp85nqp/kcyeqpv/54aMZOaGMG3hWVsHgq0rWSdh4Gp8kEOnuJSQ2tDAYd GmRZP+Kd6FCgo5nh+3oesaRRMYVBHSY+fovOotErTanF0GkmNArM0UFOn8qfs8uV LX/flofBmXzfpOnx5bU9Td2bcRsx0EKOCFB6ZUVlOYmD7ogsuxdr6eQ6crkZKRoV MY26qLzkfTuyX+Qmwj4ifsDbsgrCssOHy1je/WK48sIg1Ok6FpsZzE4KRMUuShNz xCB1/FNiLHK0Z8kAAQkjdzNU7oxiUpUGiFwYfea/zCJ6aH+txt3aYFZbTOTfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUh8qCir27paF6K/tx7nTS5VM9yw4wHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29yMA0GCSqG SIb3DQEBCwUAA4IBAQCJ2JFT6l3B1Q/K21VwAwkZGcHRKKZt8y/rygCioY4arYQu g70fHETFZ+9k5BBb2ZUavdasc5wK9EtSw06H0DTpEU6gFtkcN/HSWcDq/1XTdrBx jmh9/mRNLyX1UFn/MuxjFDUpHzdmus/LFPGTbidWWOD3TgylFgbWqy8m1Mi0Qhcy gXxPlUNsRc4yr9G/HPmr0Eax02OB4c3nCGq5iCYN2qsFfIzSN61Tzn2l1+lZNilw to6ZmroZFzVLm8sGPlz4iMiyrQAEjQux38d2ezD25j/kHRpAtF3WKL9mxJA0GfIR iQOkeD70CtQvp0SKC/+0ExnExaChGpcjILWzzQIa -----END CERTIFICATE-----Generated at Mon Jun 30 19:16:28 2025 by rpki-client