$ rpki-client -vvf repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa File: 3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa (raw, json) Hash identifier: UvJvnJi0DpPbEtS7oOVZoco+ytQPNHRypimtkzre3+M= Subject key identifier: 5B:9C:EB:B3:65:A7:31:DD:D4:21:C8:B2:65:83:45:EB:3D:4B:63:EA Certificate issuer: /CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Certificate serial: 43E2C84C45C99CE759F124D73FFB32883464C72D Authority key identifier: 04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa Signing time: Thu 01 May 2025 10:00:02 +0000 ROA not before: Thu 01 May 2025 09:55:02 +0000 ROA not after: Thu 30 Apr 2026 10:00:02 +0000 asID: 138089 IP address blocks: 157.20.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e2:c8:4c:45:c9:9c:e7:59:f1:24:d7:3f:fb:32:88:34:64:c7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Validity Not Before: May 1 09:55:02 2025 GMT Not After : Apr 30 10:00:02 2026 GMT Subject: CN=5B9CEBB365A731DDD421C8B2658345EB3D4B63EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4e:14:a8:ab:35:78:00:51:23:17:52:08:fb: 4d:a1:7c:8c:02:7d:39:61:10:5a:b4:d3:77:fd:b4: 4a:04:93:be:8c:c3:a0:44:65:1d:77:f9:a6:a7:21: 61:e9:5e:c8:a1:4a:cd:9c:dc:6f:ca:8b:21:00:72: 30:d0:1f:c2:3a:3b:b9:71:25:63:b2:9d:2f:b0:17: 7e:72:aa:b3:01:2a:75:06:c8:d7:6f:d7:b3:74:ca: dd:3d:a9:79:94:57:df:06:65:ea:ff:cc:27:65:0b: bd:98:ba:30:e7:eb:36:d6:03:7c:c7:bd:f0:c0:3f: 49:bd:86:f9:8c:92:a5:cc:ac:57:f0:ed:86:64:04: 03:c1:0f:4a:92:86:e0:20:ec:81:5f:b3:1d:5f:e3: 8d:1d:f2:4d:bc:ad:78:51:be:24:0c:c9:f7:1a:88: 04:80:23:98:7d:59:76:b2:f9:de:e8:b2:61:c7:6b: 56:dc:85:2c:4f:29:62:61:56:9d:04:47:ff:c3:4c: 0e:77:a6:c7:20:2e:bf:19:49:6a:f3:e3:40:fa:3b: 87:8a:8f:7e:08:ce:e0:58:ed:d0:bd:98:4e:76:b9: 8a:9e:56:e0:ba:f9:5a:11:c4:99:8a:18:7f:56:a2: 37:19:7d:b7:3a:6c:42:03:55:f8:d2:4b:b7:9a:16: ce:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9C:EB:B3:65:A7:31:DD:D4:21:C8:B2:65:83:45:EB:3D:4B:63:EA X509v3 Authority Key Identifier: keyid:04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.252.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:a9:a0:33:3a:0d:6f:2e:8a:e9:75:79:76:62:74:26:43:3d: b4:20:03:a3:d8:c0:fc:0e:24:79:85:7f:3a:5e:f3:1c:b3:1c: 8e:28:f6:cd:6f:57:ab:32:b2:9e:86:fc:46:b2:24:be:fc:ad: 55:12:4f:7a:30:06:23:2c:7e:12:3c:fd:5a:65:db:3c:8d:09: fc:ca:ac:fe:4a:1f:a3:19:c6:35:42:23:8d:e9:c4:9e:69:e4: 65:11:29:ff:94:00:d5:63:a0:de:92:9a:c1:26:87:cb:71:f2: fe:eb:df:36:35:8b:07:8e:75:d6:5b:3a:9a:ae:82:32:09:a2: c7:bf:4d:cf:22:c7:e0:bc:5a:ef:c8:7c:e2:b8:36:cc:d9:de: 99:7f:06:7a:c7:10:e7:e5:3b:f3:7a:2a:14:63:94:55:ec:cc: ee:8c:4a:6d:31:55:af:a5:e3:0d:db:00:28:42:2f:e2:34:6f: 79:b5:d3:39:ba:ad:72:f9:48:e3:2f:a6:27:3e:ed:2b:ba:f2: af:e5:07:60:5e:d9:80:07:2b:a5:d5:60:2a:7a:94:55:a2:0f: 37:86:40:89:49:bb:a4:0b:8a:ad:64:83:a4:87:df:18:f9:6e: fd:2b:56:fb:0a:cb:e8:74:82:7f:7a:fd:39:14:1d:9b:85:61: d1:3d:0b:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ+LITEXJnOdZ8STXP/syiDRkxy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1 RURFMzMwMDAeFw0yNTA1MDEwOTU1MDJaFw0yNjA0MzAxMDAwMDJaMDMxMTAvBgNV BAMTKDVCOUNFQkIzNjVBNzMxRERENDIxQzhCMjY1ODM0NUVCM0Q0QjYzRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLThSoqzV4AFEjF1II+02hfIwC fTlhEFq003f9tEoEk76Mw6BEZR13+aanIWHpXsihSs2c3G/KiyEAcjDQH8I6O7lx JWOynS+wF35yqrMBKnUGyNdv17N0yt09qXmUV98GZer/zCdlC72YujDn6zbWA3zH vfDAP0m9hvmMkqXMrFfw7YZkBAPBD0qShuAg7IFfsx1f440d8k28rXhRviQMyfca iASAI5h9WXay+d7osmHHa1bchSxPKWJhVp0ER//DTA53pscgLr8ZSWrz40D6O4eK j34IzuBY7dC9mE52uYqeVuC6+VoRxJmKGH9WojcZfbc6bEIDVfjSS7eaFs7LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW5zrs2WnMd3UIciyZYNF6z1LY+owHwYDVR0j BBgwFoAUBNPS4GAkOtkX1PaCki5KgF7eMwAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZThkNThhOC1lMTk3LTQxNzktYjczYy02MDhlMDQ3ZDA5YTMvMC8wNEQzRDJFMDYw MjQzQUQ5MTdENEY2ODI5MjJFNEE4MDVFREUzMzAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1RURF MzMwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlOGQ1OGE4LWUxOTctNDE3OS1i NzNjLTYwOGUwNDdkMDlhMy8wLzMxMzUzNzJlMzIzMDJlMzIzNTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRT8MA0GCSqG SIb3DQEBCwUAA4IBAQBbqaAzOg1vLorpdXl2YnQmQz20IAOj2MD8DiR5hX86XvMc sxyOKPbNb1erMrKehvxGsiS+/K1VEk96MAYjLH4SPP1aZds8jQn8yqz+Sh+jGcY1 QiON6cSeaeRlESn/lADVY6DekprBJofLcfL+6982NYsHjnXWWzqaroIyCaLHv03P IsfgvFrvyHziuDbM2d6ZfwZ6xxDn5TvzeioUY5RV7MzujEptMVWvpeMN2wAoQi/i NG95tdM5uq1y+UjjL6YnPu0ruvKv5QdgXtmAByul1WAqepRVog83hkCJSbukC4qt ZIOkh98Y+W79K1b7CsvodIJ/ev05FB2bhWHRPQtp -----END CERTIFICATE-----Generated at Sat Jun 7 12:04:39 2025 by rpki-client