$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: addoLGX7l1qN9yrFfHEwbDZZ1vggnAx8LkSg4qCXPoA= Subject key identifier: 87:C0:25:6D:F8:BB:0A:CA:E4:2F:C9:6B:0C:22:3C:C7:67:2C:14:E1 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 42D1A6A204706E92B94E257ED4CC4411787ED709 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa Signing time: Mon 02 Jun 2025 01:02:36 +0000 ROA not before: Mon 02 Jun 2025 00:57:36 +0000 ROA not after: Mon 01 Jun 2026 01:02:36 +0000 asID: 46026 IP address blocks: 175.111.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 16:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d1:a6:a2:04:70:6e:92:b9:4e:25:7e:d4:cc:44:11:78:7e:d7:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jun 2 00:57:36 2025 GMT Not After : Jun 1 01:02:36 2026 GMT Subject: CN=87C0256DF8BB0ACAE42FC96B0C223CC7672C14E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:25:56:f9:02:57:f5:1b:36:b7:28:1a:ca:d9: 2b:12:e5:50:ef:67:79:46:13:f7:18:82:0d:c4:89: 61:47:67:69:5d:1a:8c:5c:97:bd:25:9e:95:ff:df: 3a:b8:88:7e:31:54:d7:d5:69:09:19:3c:5b:e6:3c: 2c:04:9b:2d:36:d3:24:d9:2f:f1:cb:a7:00:65:2b: 01:2c:f3:3c:c6:e8:ff:9b:8e:6e:ef:a2:4c:1e:d1: 7f:34:95:8f:93:9b:93:0e:2f:48:3d:2f:dd:f9:51: a4:9b:d1:bc:22:f3:56:4d:62:70:82:9a:f8:ee:0a: 8d:2e:32:31:69:09:d9:8c:e5:c2:50:04:a7:25:0f: 90:0d:92:64:85:0a:65:5f:da:24:bb:91:69:b5:b2: b8:f6:fb:52:f0:84:29:f8:08:81:15:cb:16:67:ca: b7:23:bf:34:08:95:ca:b1:dd:0b:b7:88:a9:55:1f: 6a:41:41:4c:db:c4:39:55:fa:f6:03:11:f1:2d:15: 83:84:b1:60:77:9b:6c:16:8f:31:5d:e2:d7:22:d2: ae:c1:f5:4a:0a:61:42:28:dc:2a:04:5e:22:e1:b3: b9:16:72:f8:ef:c9:72:e9:26:39:9d:39:c1:0f:1c: 20:01:18:01:84:c7:91:45:4f:3b:9b:7d:c6:51:3b: 73:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C0:25:6D:F8:BB:0A:CA:E4:2F:C9:6B:0C:22:3C:C7:67:2C:14:E1 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.112.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:bf:cf:c7:d8:98:c2:0d:ee:d0:d9:d6:3a:3c:78:97:ec:89: 9b:ae:fd:f2:a1:09:04:84:cb:2c:d3:55:94:9e:6c:75:8d:37: 54:f0:7b:e9:e1:da:4d:c9:32:45:2d:bb:02:2a:5a:4a:6d:f0: a1:9b:fc:39:dd:42:bd:5e:27:c7:1a:10:1f:f7:e7:4e:b4:06: 7d:e8:3c:0e:20:68:fb:6c:d6:1e:2b:d3:a3:af:d1:59:e6:f4: 33:fe:fd:cb:7a:af:38:66:89:79:a3:2f:25:9b:c1:9f:a4:d5: fc:56:cb:2b:5e:37:41:eb:bd:c1:72:9b:74:59:af:02:1e:7a: 71:82:2c:00:4f:47:bd:77:10:56:fd:18:44:e9:9c:ae:89:7e: 62:1c:e8:69:ee:ad:01:b7:08:8b:47:b0:bf:dc:a3:62:91:19: 76:a0:7a:f7:6e:b0:50:32:34:7c:58:01:6a:70:85:66:3f:56: 68:67:8a:1e:1a:21:2a:dc:f1:f6:82:c6:db:b1:67:e3:45:67: 9b:ef:95:59:c7:ff:12:57:db:c4:dd:bc:85:18:b5:8a:1f:eb: 8c:ee:2a:10:d3:0d:fa:03:54:4b:82:43:ee:24:36:5d:46:77: 75:fd:09:d9:b5:93:06:4f:4e:f1:7e:aa:75:fe:ca:79:4f:46: 23:c0:e9:66 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQtGmogRwbpK5TiV+1MxEEXh+1wkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNTA2MDIwMDU3MzZaFw0yNjA2MDEwMTAyMzZaMDMxMTAvBgNV BAMTKDg3QzAyNTZERjhCQjBBQ0FFNDJGQzk2QjBDMjIzQ0M3NjcyQzE0RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUJVb5Alf1Gza3KBrK2SsS5VDv Z3lGE/cYgg3EiWFHZ2ldGoxcl70lnpX/3zq4iH4xVNfVaQkZPFvmPCwEmy020yTZ L/HLpwBlKwEs8zzG6P+bjm7vokwe0X80lY+Tm5MOL0g9L935UaSb0bwi81ZNYnCC mvjuCo0uMjFpCdmM5cJQBKclD5ANkmSFCmVf2iS7kWm1srj2+1LwhCn4CIEVyxZn yrcjvzQIlcqx3Qu3iKlVH2pBQUzbxDlV+vYDEfEtFYOEsWB3m2wWjzFd4tci0q7B 9UoKYUIo3CoEXiLhs7kWcvjvyXLpJjmdOcEPHCABGAGEx5FFTzubfcZRO3MVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUh8Albfi7CsrkL8lrDCI8x2csFOEwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29wMA0GCSqG SIb3DQEBCwUAA4IBAQA8v8/H2JjCDe7Q2dY6PHiX7Imbrv3yoQkEhMss01WUnmx1 jTdU8Hvp4dpNyTJFLbsCKlpKbfChm/w53UK9XifHGhAf9+dOtAZ96DwOIGj7bNYe K9Ojr9FZ5vQz/v3Leq84Zol5oy8lm8GfpNX8VssrXjdB673Bcpt0Wa8CHnpxgiwA T0e9dxBW/RhE6ZyuiX5iHOhp7q0BtwiLR7C/3KNikRl2oHr3brBQMjR8WAFqcIVm P1ZoZ4oeGiEq3PH2gsbbsWfjRWeb75VZx/8SV9vE3byFGLWKH+uM7ioQ0w36A1RL gkPuJDZdRnd1/QnZtZMGT07xfqp1/sp5T0YjwOlm -----END CERTIFICATE-----Generated at Mon Jun 16 13:13:52 2025 by rpki-client