$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131332e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131332e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: 6tYZRHS1gp6lxrRLkcMQOZpyzT7UZqMxo9oLwoeh2Kk= Subject key identifier: 21:E5:26:3F:CC:34:D8:23:2E:87:F4:6E:3E:7E:A8:4E:88:DC:19:C9 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 0606233BD592958A14CEA0B9D8C555E3A69E3783 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131332e302f32342d3234203d3e203436303236.roa Signing time: Mon 02 Jun 2025 01:02:35 +0000 ROA not before: Mon 02 Jun 2025 00:57:35 +0000 ROA not after: Mon 01 Jun 2026 01:02:35 +0000 asID: 46026 IP address blocks: 175.111.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 16:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:06:23:3b:d5:92:95:8a:14:ce:a0:b9:d8:c5:55:e3:a6:9e:37:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jun 2 00:57:35 2025 GMT Not After : Jun 1 01:02:35 2026 GMT Subject: CN=21E5263FCC34D8232E87F46E3E7EA84E88DC19C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6e:6c:24:19:6e:6c:8c:b3:ee:89:cb:d6:a4: 29:8f:2c:c6:30:de:06:9f:f6:48:da:17:e9:b6:9c: 7c:a3:1b:a5:8a:4c:3c:f4:f4:66:36:fa:93:36:3d: 81:96:ca:c6:89:b1:7f:82:d6:ec:96:4d:f0:56:d0: ee:80:e7:b9:e2:67:91:2e:d3:58:57:2f:6c:9b:67: 6f:86:c0:38:c0:a5:69:72:da:39:21:dd:ff:ea:31: cc:f2:04:3e:4c:ed:00:ef:bc:90:45:3c:b5:22:bb: 32:d8:a4:0f:20:32:fd:0f:30:4a:01:a7:4a:94:e2: e3:30:64:a3:ab:e2:35:f4:90:cd:d0:fe:39:65:bc: 31:ae:e0:d1:1e:b1:59:c7:7c:19:17:fd:fb:48:a9: 25:4d:42:5e:83:7b:1b:6a:97:2f:f2:c5:b4:fd:72: f1:f1:11:1f:14:9e:6d:f4:15:ad:88:ee:22:cc:56: 33:b5:48:e4:4c:14:b9:4a:ef:99:e1:1a:45:5a:be: e6:7b:9e:3e:5c:2d:61:38:43:78:4d:d1:db:cc:d3: 0a:5e:05:f3:0c:f2:8d:ff:9c:69:c5:f5:33:ca:29: b9:7a:4f:d3:65:1d:98:b7:96:e6:31:3f:64:2d:e6: ea:e0:49:58:d8:fd:0d:fe:17:df:0f:f0:dd:50:c2: 75:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E5:26:3F:CC:34:D8:23:2E:87:F4:6E:3E:7E:A8:4E:88:DC:19:C9 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131332e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.113.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:d4:31:9a:20:73:3a:48:71:1d:42:fc:5d:4a:0c:1f:51:30: dd:ec:57:04:c2:a1:d5:11:9f:df:37:d5:c1:ee:02:d0:bd:78: 38:c1:91:0f:ef:2d:a1:ee:a0:ba:33:0d:db:ef:aa:e6:5b:34: a7:bc:ae:f1:df:e2:9b:cb:b4:c7:49:0f:ae:bd:1a:c5:47:c4: 42:4a:36:d8:a0:78:7c:2a:e8:50:07:4e:fa:c7:4f:80:bf:a1: 5d:a8:5a:f9:a3:fb:c4:5d:2e:d9:c0:51:70:63:c9:c0:02:62: 4b:ce:c5:ed:5f:26:7c:de:cf:6e:34:77:60:75:ac:04:1f:2d: 76:10:69:72:e9:dc:a5:4d:4a:a0:d3:37:d0:0d:08:c0:e4:0c: 18:fd:66:05:58:60:c2:90:48:4f:80:d9:8e:fc:65:3d:2e:44: 03:05:eb:d1:f0:45:90:20:ae:a9:97:90:4a:6c:9e:86:58:2f: 97:cd:30:f6:54:5c:d3:ed:32:79:94:ce:f7:07:5d:59:8f:44: 6a:d6:f8:b5:c2:80:76:b1:8d:57:a2:54:59:13:91:a0:25:d1: c5:62:bc:5b:68:71:3a:32:61:6c:09:97:c3:89:8a:72:0e:4e: 52:6b:b5:df:f0:0f:6a:68:d6:d2:24:aa:e0:63:56:b1:a3:6f: e3:cd:01:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBgYjO9WSlYoUzqC52MVV46aeN4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNTA2MDIwMDU3MzVaFw0yNjA2MDEwMTAyMzVaMDMxMTAvBgNV BAMTKDIxRTUyNjNGQ0MzNEQ4MjMyRTg3RjQ2RTNFN0VBODRFODhEQzE5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQbmwkGW5sjLPuicvWpCmPLMYw 3gaf9kjaF+m2nHyjG6WKTDz09GY2+pM2PYGWysaJsX+C1uyWTfBW0O6A57niZ5Eu 01hXL2ybZ2+GwDjApWly2jkh3f/qMczyBD5M7QDvvJBFPLUiuzLYpA8gMv0PMEoB p0qU4uMwZKOr4jX0kM3Q/jllvDGu4NEesVnHfBkX/ftIqSVNQl6Dextqly/yxbT9 cvHxER8Unm30Fa2I7iLMVjO1SORMFLlK75nhGkVavuZ7nj5cLWE4Q3hN0dvM0wpe BfMM8o3/nGnF9TPKKbl6T9NlHZi3luYxP2Qt5urgSVjY/Q3+F98P8N1QwnVxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIeUmP8w02CMuh/RuPn6oTojcGckwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29xMA0GCSqG SIb3DQEBCwUAA4IBAQB91DGaIHM6SHEdQvxdSgwfUTDd7FcEwqHVEZ/fN9XB7gLQ vXg4wZEP7y2h7qC6Mw3b76rmWzSnvK7x3+Kby7THSQ+uvRrFR8RCSjbYoHh8KuhQ B076x0+Av6FdqFr5o/vEXS7ZwFFwY8nAAmJLzsXtXyZ83s9uNHdgdawEHy12EGly 6dylTUqg0zfQDQjA5AwY/WYFWGDCkEhPgNmO/GU9LkQDBevR8EWQIK6pl5BKbJ6G WC+XzTD2VFzT7TJ5lM73B11Zj0Rq1vi1woB2sY1XolRZE5GgJdHFYrxbaHE6MmFs CZfDiYpyDk5Sa7Xf8A9qaNbSJKrgY1axo2/jzQGk -----END CERTIFICATE-----Generated at Mon Jun 16 13:16:55 2025 by rpki-client