$ rpki-client -vvf repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa File: 3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: MxcV0VQaTxMuBGbZxjauXv5QA5Vg8BL6BVoMBR3myP8= Subject key identifier: 6A:B0:DD:81:61:9D:31:78:B1:9C:EF:A3:A7:DE:80:8D:03:0A:10:2B Certificate issuer: /CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Certificate serial: 036D88BBEFB30EBCDBA87026504512B9D2212121 Authority key identifier: 04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa Signing time: Thu 01 May 2025 10:00:02 +0000 ROA not before: Thu 01 May 2025 09:55:02 +0000 ROA not after: Thu 30 Apr 2026 10:00:02 +0000 asID: 138089 IP address blocks: 157.20.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:6d:88:bb:ef:b3:0e:bc:db:a8:70:26:50:45:12:b9:d2:21:21:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04D3D2E060243AD917D4F682922E4A805EDE3300 Validity Not Before: May 1 09:55:02 2025 GMT Not After : Apr 30 10:00:02 2026 GMT Subject: CN=6AB0DD81619D3178B19CEFA3A7DE808D030A102B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:e0:d3:4a:7a:23:5b:9a:75:4c:26:2e:38: c6:28:98:e4:b8:f4:c2:0e:3a:0b:0d:b8:dd:8f:6f: ec:ea:9c:78:9e:0e:e2:86:96:4c:c4:b0:46:70:ab: 76:df:4b:fd:5e:c2:49:cf:d9:eb:60:ac:96:09:cf: b3:b0:4d:11:81:8f:c5:55:0b:53:d8:2b:83:cd:3d: 8e:5a:c1:e5:20:99:7d:a8:d8:ec:c4:14:a7:ee:5c: b9:01:48:c1:25:ff:0c:68:75:b9:fd:95:bc:c4:e4: fc:eb:a0:5a:07:b8:d4:aa:6d:b8:2b:2e:ae:3b:43: 5d:66:e3:c0:7a:a9:da:0e:2d:5f:62:67:72:f5:6d: 5e:24:c6:9b:a0:f1:a4:cd:09:2b:55:5a:e9:2c:48: dc:a5:72:86:95:42:00:18:61:72:cc:c5:6a:b3:48: f1:56:9a:ab:09:be:94:ef:64:6a:63:77:2a:f5:fc: e1:33:e0:8b:be:a1:27:6d:0f:51:83:70:d4:e0:cd: b2:7d:6a:50:b8:ee:ef:e9:90:c3:da:c7:4d:f9:cd: 57:f4:4f:a0:06:ad:20:10:d6:c9:e3:7a:f6:ac:45: 21:b7:ce:09:cf:59:f3:2b:7f:c5:55:d3:eb:0b:24: f2:3e:1c:92:ef:32:6b:aa:14:ee:00:a7:48:96:4e: 1d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B0:DD:81:61:9D:31:78:B1:9C:EF:A3:A7:DE:80:8D:03:0A:10:2B X509v3 Authority Key Identifier: keyid:04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.253.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:6e:ec:aa:54:01:7a:46:3d:ae:f5:10:0a:c1:80:7c:de:86: e4:c8:86:1b:4f:c5:c2:37:d3:37:4d:d0:7e:9f:16:b5:64:24: 05:ce:95:f4:60:bf:76:5c:6c:9e:2c:c8:88:2f:25:74:0b:b6: 7a:5d:be:42:3b:6c:0f:5c:9b:86:52:fa:bb:18:82:3e:aa:c4: 89:fe:91:90:3d:71:85:5f:b1:93:15:c9:6d:31:1b:1a:fa:b6: f6:c0:42:01:f8:ce:f0:3d:65:0c:d4:98:03:a8:7d:17:80:ec: 1c:fe:c4:8d:52:27:98:bb:55:3b:e9:9d:95:02:b4:81:c3:12: 21:b4:d7:af:2c:95:e0:c3:07:12:60:10:3d:af:e1:5f:be:6c: 5f:5c:4f:c1:a9:20:d5:1a:29:3d:d8:ae:10:42:a8:30:60:a0: bc:0f:05:92:77:87:a2:89:b4:2d:db:fc:7b:4e:57:5d:4f:5a: cb:f5:53:2b:b3:f4:f7:27:bd:c1:9a:40:3c:fa:46:01:00:ac: d0:6f:64:ba:9e:75:6f:fa:65:7f:33:5f:6c:e1:63:d7:d0:00: b3:1d:54:40:19:2b:92:27:1b:13:b9:ee:6e:12:a2:9a:51:69: 8b:f2:a5:86:64:b0:66:d2:3d:d1:a0:82:04:37:72:1c:68:df: 90:36:3e:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA22Iu++zDrzbqHAmUEUSudIhISEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1 RURFMzMwMDAeFw0yNTA1MDEwOTU1MDJaFw0yNjA0MzAxMDAwMDJaMDMxMTAvBgNV BAMTKDZBQjBERDgxNjE5RDMxNzhCMTlDRUZBM0E3REU4MDhEMDMwQTEwMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDET+DTSnojW5p1TCYuOMYomOS4 9MIOOgsNuN2Pb+zqnHieDuKGlkzEsEZwq3bfS/1ewknP2etgrJYJz7OwTRGBj8VV C1PYK4PNPY5aweUgmX2o2OzEFKfuXLkBSMEl/wxodbn9lbzE5PzroFoHuNSqbbgr Lq47Q11m48B6qdoOLV9iZ3L1bV4kxpug8aTNCStVWuksSNylcoaVQgAYYXLMxWqz SPFWmqsJvpTvZGpjdyr1/OEz4Iu+oSdtD1GDcNTgzbJ9alC47u/pkMPax035zVf0 T6AGrSAQ1snjevasRSG3zgnPWfMrf8VV0+sLJPI+HJLvMmuqFO4Ap0iWTh01AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUarDdgWGdMXixnO+jp96AjQMKECswHwYDVR0j BBgwFoAUBNPS4GAkOtkX1PaCki5KgF7eMwAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZThkNThhOC1lMTk3LTQxNzktYjczYy02MDhlMDQ3ZDA5YTMvMC8wNEQzRDJFMDYw MjQzQUQ5MTdENEY2ODI5MjJFNEE4MDVFREUzMzAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDREM0QyRTA2MDI0M0FEOTE3RDRGNjgyOTIyRTRBODA1RURF MzMwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlOGQ1OGE4LWUxOTctNDE3OS1i NzNjLTYwOGUwNDdkMDlhMy8wLzMxMzUzNzJlMzIzMDJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRT9MA0GCSqG SIb3DQEBCwUAA4IBAQB/buyqVAF6Rj2u9RAKwYB83obkyIYbT8XCN9M3TdB+nxa1 ZCQFzpX0YL92XGyeLMiILyV0C7Z6Xb5CO2wPXJuGUvq7GII+qsSJ/pGQPXGFX7GT FcltMRsa+rb2wEIB+M7wPWUM1JgDqH0XgOwc/sSNUieYu1U76Z2VArSBwxIhtNev LJXgwwcSYBA9r+FfvmxfXE/BqSDVGik92K4QQqgwYKC8DwWSd4eiibQt2/x7Tldd T1rL9VMrs/T3J73BmkA8+kYBAKzQb2S6nnVv+mV/M19s4WPX0ACzHVRAGSuSJxsT ue5uEqKaUWmL8qWGZLBm0j3RoIIEN3IcaN+QNj4S -----END CERTIFICATE-----Generated at Sat Jun 7 03:23:45 2025 by rpki-client