$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3135372e3131392e35362e302f32322d3234203d3e2039333431.roa File: 3135372e3131392e35362e302f32322d3234203d3e2039333431.roa (raw, json) Hash identifier: Ge5GfodvUV19FoBTNTwKm+rEHN1DaN+K01GurhXLVWc= Subject key identifier: CB:F1:A8:D8:5C:58:A7:9B:69:9F:33:47:5A:E9:03:CA:17:68:C9:20 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 3C32D40747A04445503DA1E97640CE2957483D13 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3135372e3131392e35362e302f32322d3234203d3e2039333431.roa Signing time: Wed 11 Dec 2024 01:00:01 +0000 ROA not before: Wed 11 Dec 2024 00:55:01 +0000 ROA not after: Wed 10 Dec 2025 01:00:01 +0000 asID: 9341 IP address blocks: 157.119.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:32:d4:07:47:a0:44:45:50:3d:a1:e9:76:40:ce:29:57:48:3d:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Dec 11 00:55:01 2024 GMT Not After : Dec 10 01:00:01 2025 GMT Subject: CN=CBF1A8D85C58A79B699F33475AE903CA1768C920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:42:10:b3:00:aa:4f:41:d7:fd:bb:a9:fa:8a: e1:16:8f:6e:df:53:e8:f0:30:03:d9:4c:06:ef:dc: 46:74:6e:a2:64:cf:3c:b0:7e:8c:2e:15:2e:65:d2: 38:7d:73:85:16:5d:cd:90:16:5f:58:b8:f0:f7:f5: a7:02:92:3c:da:aa:9d:fd:96:06:eb:1b:23:8d:a5: 91:d2:3b:33:91:00:27:f6:6a:ae:ea:dc:f6:37:1f: 04:d8:25:30:85:5a:1d:1f:e0:ba:93:63:42:f4:45: 6f:0f:b8:28:b8:d1:97:9d:1f:13:86:06:14:66:44: 80:2b:af:5e:37:a1:54:6a:a4:5f:0f:6c:fd:f5:3b: b0:aa:d1:a9:f6:a8:bd:f7:84:90:2e:9c:da:bc:12: 85:30:fc:25:89:e8:7f:65:7c:9e:20:8a:f3:40:34: 53:9f:77:77:05:39:5d:25:7a:39:8c:1b:19:b1:6d: d9:29:d6:a0:2b:b4:47:c7:24:97:04:4e:02:30:ea: 07:4b:33:b9:06:0f:f3:14:5c:8f:6c:55:9e:6e:5b: 3a:c0:1e:f0:cf:c4:8d:fa:6e:d9:0f:b2:1e:f4:0f: 20:96:eb:62:3f:74:fb:86:7c:2f:77:9e:b0:5d:23: 7d:7f:9e:0b:86:c4:17:f5:49:67:a8:fd:b3:ff:3e: ba:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F1:A8:D8:5C:58:A7:9B:69:9F:33:47:5A:E9:03:CA:17:68:C9:20 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3135372e3131392e35362e302f32322d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.119.56.0/22 Signature Algorithm: sha256WithRSAEncryption a7:99:ac:c4:84:7c:05:97:5d:5a:96:0e:ff:f0:35:cd:67:bc: 93:8a:bf:6b:08:a8:09:79:75:d3:b8:2c:fe:2a:86:de:c4:f2: e4:b4:04:a9:3e:d4:17:e1:04:46:2c:c3:cd:c7:fe:4b:dd:49: 6b:7e:90:7a:07:d2:3e:c7:9e:9e:4f:1a:4e:f2:14:a3:dd:1e: bc:7e:cf:b7:e9:5a:3f:11:53:bf:01:38:46:a1:e8:ae:64:f9: 93:9f:3e:80:3b:57:5c:61:35:32:1d:7f:9e:e7:99:57:c6:23: 5a:7f:38:3c:64:e4:87:b9:b7:e3:4b:0a:27:d0:17:ba:48:62: 82:e7:94:94:ac:1b:ae:ef:6d:72:fc:f9:95:8e:3f:d4:40:ed: 1c:d4:0e:88:b0:14:9a:ab:d1:e4:60:a8:39:4e:60:df:f5:5f: 97:53:94:85:f7:c5:c7:33:34:64:00:4f:c7:9d:ca:25:37:ba: ce:ea:6f:bb:6d:5d:0a:c0:a8:29:f0:73:fc:49:05:c4:9b:25: 69:58:f3:d1:4d:ac:cf:b3:35:fe:00:d9:42:7e:61:b2:fe:3a: 3f:36:95:fd:93:24:e1:34:6d:b2:a1:0f:84:f9:b0:6f:62:e7: 2c:20:d0:97:e6:b0:5d:fb:a2:74:5f:e3:3e:9e:43:fb:a2:2c: 7a:62:bf:6e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPDLUB0egREVQPaHpdkDOKVdIPRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDEyMTEwMDU1MDFaFw0yNTEyMTAwMTAwMDFaMDMxMTAvBgNV BAMTKENCRjFBOEQ4NUM1OEE3OUI2OTlGMzM0NzVBRTkwM0NBMTc2OEM5MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXQhCzAKpPQdf9u6n6iuEWj27f U+jwMAPZTAbv3EZ0bqJkzzywfowuFS5l0jh9c4UWXc2QFl9YuPD39acCkjzaqp39 lgbrGyONpZHSOzORACf2aq7q3PY3HwTYJTCFWh0f4LqTY0L0RW8PuCi40ZedHxOG BhRmRIArr143oVRqpF8PbP31O7Cq0an2qL33hJAunNq8EoUw/CWJ6H9lfJ4givNA NFOfd3cFOV0lejmMGxmxbdkp1qArtEfHJJcETgIw6gdLM7kGD/MUXI9sVZ5uWzrA HvDPxI36btkPsh70DyCW62I/dPuGfC93nrBdI31/nguGxBf1SWeo/bP/Prq3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUy/Go2FxYp5tpnzNHWukDyhdoySAwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzUzNzJlMzEzMTM5MmUzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKddzgwDQYJKoZIhvcN AQELBQADggEBAKeZrMSEfAWXXVqWDv/wNc1nvJOKv2sIqAl5ddO4LP4qht7E8uS0 BKk+1BfhBEYsw83H/kvdSWt+kHoH0j7Hnp5PGk7yFKPdHrx+z7fpWj8RU78BOEah 6K5k+ZOfPoA7V1xhNTIdf57nmVfGI1p/ODxk5Ie5t+NLCifQF7pIYoLnlJSsG67v bXL8+ZWOP9RA7RzUDoiwFJqr0eRgqDlOYN/1X5dTlIX3xcczNGQAT8edyiU3us7q b7ttXQrAqCnwc/xJBcSbJWlY89FNrM+zNf4A2UJ+YbL+Oj82lf2TJOE0bbKhD4T5 sG9i5ywg0JfmsF37onRf4z6eQ/uiLHpiv24= -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:41 2025 by rpki-client