$ rpki-client -vvf repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3138332e38312e3135322e302f32312d3234203d3e203234353237.roa File: 3138332e38312e3135322e302f32312d3234203d3e203234353237.roa (raw, json) Hash identifier: HrGCjeL9LpaajCgOCMCFmtzXiHgvf2onAjSq9sq+a5M= Subject key identifier: D7:F9:7C:F0:73:9D:FC:BE:BD:71:1A:90:9B:79:7C:3E:FF:6E:33:63 Certificate issuer: /CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Certificate serial: 01C5B634F5A5A0B8F46719F7331FB3C47B358050 Authority key identifier: E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3138332e38312e3135322e302f32312d3234203d3e203234353237.roa Signing time: Mon 02 Jun 2025 01:02:24 +0000 ROA not before: Mon 02 Jun 2025 00:57:24 +0000 ROA not after: Mon 01 Jun 2026 01:02:24 +0000 asID: 24527 IP address blocks: 183.81.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c5:b6:34:f5:a5:a0:b8:f4:67:19:f7:33:1f:b3:c4:7b:35:80:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Validity Not Before: Jun 2 00:57:24 2025 GMT Not After : Jun 1 01:02:24 2026 GMT Subject: CN=D7F97CF0739DFCBEBD711A909B797C3EFF6E3363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d3:1a:4c:5f:e5:3b:ed:08:0b:b4:18:93:f4: 7f:e0:4c:e2:e1:ea:de:c2:85:5c:1f:dc:d3:8e:0d: 55:b9:a3:c8:fd:e9:7b:31:50:ce:5f:d7:97:8e:d0: dd:8b:0e:de:d1:c8:b5:42:88:aa:43:51:ed:0e:df: 30:0b:5e:40:4e:32:34:a1:1d:05:c4:5f:58:cc:cb: b4:99:a0:51:2a:c5:4d:fe:cb:3d:e9:1d:71:74:4a: 9a:b6:8b:64:48:23:ef:a6:5f:67:07:f7:5f:25:7c: cf:69:1f:78:c1:f1:09:e1:68:a6:aa:5d:55:56:5b: 7d:b7:e2:87:9a:13:d0:78:32:d3:91:39:d0:64:51: 91:8d:18:ec:f0:df:5d:8e:d5:88:9b:75:18:24:e6: 5e:4d:4c:3c:f0:1d:1b:c7:ce:19:15:29:e7:78:fa: cc:9a:dc:4c:6e:8e:6e:50:77:32:14:5d:e3:c0:2c: b7:2a:6e:80:d3:f3:e1:23:44:1b:25:a4:3e:e8:80: 8d:f3:3f:c5:b7:6e:0e:a1:c3:5d:5f:8b:bf:94:a6: 95:93:d5:3a:63:6a:58:17:37:93:b3:dc:2e:b7:d0: 9c:ef:38:0e:e8:0f:47:f2:6d:ad:fd:b9:e2:19:e6: 49:f6:d0:57:24:9e:b7:c2:b8:05:d8:72:40:6d:13: 91:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F9:7C:F0:73:9D:FC:BE:BD:71:1A:90:9B:79:7C:3E:FF:6E:33:63 X509v3 Authority Key Identifier: keyid:E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3138332e38312e3135322e302f32312d3234203d3e203234353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 183.81.152.0/21 Signature Algorithm: sha256WithRSAEncryption 17:ed:1a:9a:ed:fb:9a:ff:ce:80:9b:e2:f8:90:5f:6f:62:ae: 16:e2:8c:d6:14:b2:0c:63:3c:eb:c3:a9:61:15:52:1a:cd:31: 1d:03:6f:07:47:6c:ad:18:ae:ce:42:8f:20:99:12:af:a3:39: 7f:24:4a:93:f4:bf:e3:30:0b:62:1d:d6:cb:40:9b:fe:76:c6: 19:63:aa:9d:31:d9:ad:dd:fe:e9:9c:e5:75:82:ec:67:33:0b: d1:53:2f:02:a9:33:19:9e:2a:4e:4d:81:a4:52:d1:17:2a:3b: e7:74:96:a2:0a:1a:23:06:a3:67:58:64:3d:f2:51:0b:55:69: d2:8f:3c:be:ec:c5:43:fe:60:3a:ff:28:d4:90:b6:bd:d8:a5: f1:d2:58:5f:4e:53:fc:17:62:a1:61:d9:b7:a6:6a:bc:0c:3e: b6:75:e0:4b:b8:43:8e:a8:04:57:84:6c:81:e0:f4:2d:8f:7a: 79:dc:a9:2b:f4:c9:5d:28:4d:ee:76:41:d4:8f:58:58:68:07: 46:d3:7d:46:3c:60:49:b9:bc:45:60:59:c8:b5:6f:63:c3:a5: 80:b2:83:cf:c9:8b:4c:c1:6f:a4:75:d2:98:be:da:2d:db:14: c3:77:78:76:47:2f:fa:83:f8:b2:fe:83:f1:b3:de:48:4c:f5: 58:37:23:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAcW2NPWloLj0Zxn3Mx+zxHs1gFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAw NEFCMkM2MTAeFw0yNTA2MDIwMDU3MjRaFw0yNjA2MDEwMTAyMjRaMDMxMTAvBgNV BAMTKEQ3Rjk3Q0YwNzM5REZDQkVCRDcxMUE5MDlCNzk3QzNFRkY2RTMzNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC50xpMX+U77QgLtBiT9H/gTOLh 6t7ChVwf3NOODVW5o8j96XsxUM5f15eO0N2LDt7RyLVCiKpDUe0O3zALXkBOMjSh HQXEX1jMy7SZoFEqxU3+yz3pHXF0Spq2i2RII++mX2cH918lfM9pH3jB8QnhaKaq XVVWW3234oeaE9B4MtOROdBkUZGNGOzw312O1YibdRgk5l5NTDzwHRvHzhkVKed4 +sya3Exujm5QdzIUXePALLcqboDT8+EjRBslpD7ogI3zP8W3bg6hw11fi7+UppWT 1TpjalgXN5Oz3C630JzvOA7oD0fyba39ueIZ5kn20FcknrfCuAXYckBtE5GFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1/l88HOd/L69cRqQm3l8Pv9uM2MwHwYDVR0j BBgwFoAU6fegqm3Mof99PWFGDVU0oASrLGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmI4N2ZlYi0wZmUyLTQxOGEtYTM3YS1iZTNkZDFmMGU2M2MvMC9FOUY3QTBBQTZE Q0NBMUZGN0QzRDYxNDYwRDU1MzRBMDA0QUIyQzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAwNEFC MkM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2Yjg3ZmViLTBmZTItNDE4YS1h MzdhLWJlM2RkMWYwZTYzYy8wLzMxMzgzMzJlMzgzMTJlMzEzNTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7dRmDANBgkqhkiG 9w0BAQsFAAOCAQEAF+0amu37mv/OgJvi+JBfb2KuFuKM1hSyDGM868OpYRVSGs0x HQNvB0dsrRiuzkKPIJkSr6M5fyRKk/S/4zALYh3Wy0Cb/nbGGWOqnTHZrd3+6Zzl dYLsZzML0VMvAqkzGZ4qTk2BpFLRFyo753SWogoaIwajZ1hkPfJRC1Vp0o88vuzF Q/5gOv8o1JC2vdil8dJYX05T/BdioWHZt6ZqvAw+tnXgS7hDjqgEV4RsgeD0LY96 edypK/TJXShN7nZB1I9YWGgHRtN9RjxgSbm8RWBZyLVvY8OlgLKDz8mLTMFvpHXS mL7aLdsUw3d4dkcv+oP4sv6D8bPeSEz1WDcj4Q== -----END CERTIFICATE-----Generated at Mon Jun 30 00:49:59 2025 by rpki-client