$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: PAUNyFLoTuXnyzJaaygCGIoZ2kkR7s3iDrCXWwkOWpM= Subject key identifier: 61:BB:EE:34:0C:16:C9:CD:18:BE:84:A8:4B:4C:85:73:21:60:96:45 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 13F5BAAA1096C999E133D7010357B3113402E747 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa Signing time: Mon 02 Jun 2025 01:02:35 +0000 ROA not before: Mon 02 Jun 2025 00:57:35 +0000 ROA not after: Mon 01 Jun 2026 01:02:35 +0000 asID: 46026 IP address blocks: 175.111.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 16:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:f5:ba:aa:10:96:c9:99:e1:33:d7:01:03:57:b3:11:34:02:e7:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jun 2 00:57:35 2025 GMT Not After : Jun 1 01:02:35 2026 GMT Subject: CN=61BBEE340C16C9CD18BE84A84B4C857321609645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f9:e6:c2:3d:8c:0e:aa:04:e2:0f:a1:b2:d5: ad:5f:9f:de:fc:4e:0a:91:05:d9:0a:85:3d:d5:88: bc:ed:b3:f6:1d:9f:ea:4b:a5:8a:46:8d:6a:e2:93: fb:a3:3b:d3:42:4a:20:d0:43:e9:80:c7:95:ee:9d: d7:e9:67:72:54:77:fe:94:84:9f:22:38:8c:e9:4e: 06:a5:34:bc:d8:49:e9:aa:f6:68:77:e7:ef:a2:fd: f9:74:65:49:9e:1a:51:39:2c:35:a4:22:b1:c0:ac: f1:be:48:79:ce:18:61:48:ec:40:6f:93:29:ad:eb: 54:bb:6f:cd:76:f4:ea:70:fd:10:67:4f:94:9f:ff: ab:7f:cc:6b:9f:e9:f3:45:f2:fd:af:91:cf:05:63: e6:83:28:e8:2f:f7:f3:97:26:f8:68:6d:87:97:35: b0:41:41:9c:4b:8b:60:f7:7a:66:92:5d:df:b7:3a: e3:37:0f:39:a3:ad:65:96:f9:45:9c:80:a8:7a:ba: 1d:67:95:ee:6e:6e:30:24:a9:53:b3:ec:8d:1a:50: ae:65:74:32:12:f5:1d:25:3d:d1:a8:e3:19:97:6a: a7:e0:ec:04:78:e8:a6:f0:d5:99:6a:b4:cb:bb:39: 6a:a6:42:09:b9:53:0a:39:68:78:7f:f1:d4:cb:0c: 23:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BB:EE:34:0C:16:C9:CD:18:BE:84:A8:4B:4C:85:73:21:60:96:45 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131372e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.117.0/24 Signature Algorithm: sha256WithRSAEncryption 74:cb:61:da:b7:11:79:1b:24:86:56:42:40:05:64:3e:d2:68: 68:f2:cc:97:7e:92:e5:6d:65:23:bb:c9:92:ed:1b:71:db:a2: cb:34:f0:57:68:67:69:69:ef:06:09:d7:6c:03:6f:be:da:f4: 70:0d:dd:71:44:04:bd:35:72:50:6b:10:f3:e2:fe:09:49:fa: 78:7c:cb:60:51:95:57:49:2c:89:ee:4e:ad:ba:03:3c:65:b5: e7:85:08:0c:1c:b5:f7:ec:c5:e3:e1:1f:a1:2c:c0:63:67:2b: 7a:3e:11:07:4c:5b:16:a2:a9:a2:af:13:2d:62:af:7b:66:29: 66:d8:a0:83:1a:ca:a5:97:b6:e6:78:08:0a:83:ac:8a:24:33: 22:48:cd:5a:57:b2:a8:c9:82:d7:8a:85:70:4b:ad:fb:b1:8b: 09:15:a3:3c:14:4e:4c:1e:7c:a5:1a:4d:d6:09:f8:90:97:47: 3f:ce:05:08:4f:b6:5d:ca:39:bf:70:0d:df:c4:f8:dc:0d:13: 53:de:d5:77:fb:4a:3f:b7:54:a0:b3:57:e9:fa:5f:bc:1b:4c: c1:b0:d9:6e:6c:59:3c:57:ab:08:20:42:28:f8:52:15:28:89: 69:95:db:8b:1d:53:5f:d4:e0:fb:74:83:24:91:54:aa:14:74: c2:13:1a:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE/W6qhCWyZnhM9cBA1ezETQC50cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNTA2MDIwMDU3MzVaFw0yNjA2MDEwMTAyMzVaMDMxMTAvBgNV BAMTKDYxQkJFRTM0MEMxNkM5Q0QxOEJFODRBODRCNEM4NTczMjE2MDk2NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3+ebCPYwOqgTiD6Gy1a1fn978 TgqRBdkKhT3ViLzts/Ydn+pLpYpGjWrik/ujO9NCSiDQQ+mAx5XundfpZ3JUd/6U hJ8iOIzpTgalNLzYSemq9mh35++i/fl0ZUmeGlE5LDWkIrHArPG+SHnOGGFI7EBv kymt61S7b8129Opw/RBnT5Sf/6t/zGuf6fNF8v2vkc8FY+aDKOgv9/OXJvhobYeX NbBBQZxLi2D3emaSXd+3OuM3DzmjrWWW+UWcgKh6uh1nle5ubjAkqVOz7I0aUK5l dDIS9R0lPdGo4xmXaqfg7AR46Kbw1ZlqtMu7OWqmQgm5Uwo5aHh/8dTLDCNfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYbvuNAwWyc0YvoSoS0yFcyFglkUwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr291MA0GCSqG SIb3DQEBCwUAA4IBAQB0y2HatxF5GySGVkJABWQ+0mho8syXfpLlbWUju8mS7Rtx 26LLNPBXaGdpae8GCddsA2++2vRwDd1xRAS9NXJQaxDz4v4JSfp4fMtgUZVXSSyJ 7k6tugM8ZbXnhQgMHLX37MXj4R+hLMBjZyt6PhEHTFsWoqmirxMtYq97Zilm2KCD Gsqll7bmeAgKg6yKJDMiSM1aV7KoyYLXioVwS637sYsJFaM8FE5MHnylGk3WCfiQ l0c/zgUIT7Zdyjm/cA3fxPjcDRNT3tV3+0o/t1Sgs1fp+l+8G0zBsNlubFk8V6sI IEIo+FIVKIlplduLHVNf1OD7dIMkkVSqFHTCExp8 -----END CERTIFICATE-----Generated at Mon Jun 16 13:10:09 2025 by rpki-client