$ rpki-client -vvf repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32342d3234203d3e20313532333633.roa File: 3135372e31352e38322e302f32342d3234203d3e20313532333633.roa (raw, json) Hash identifier: LhdUiZ829jnCYzP+T/q1kR6KjN+CYgUrJ54OONbPWMo= Subject key identifier: 97:76:20:A3:8B:A1:05:B0:9E:F5:D6:BC:6A:93:2D:39:48:C2:0B:7B Certificate issuer: /CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Certificate serial: 3F90B4AF531DB7A33F531B9E992595E4861EA336 Authority key identifier: FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32342d3234203d3e20313532333633.roa Signing time: Fri 16 May 2025 14:02:24 +0000 ROA not before: Fri 16 May 2025 13:57:24 +0000 ROA not after: Fri 15 May 2026 14:02:24 +0000 asID: 152363 IP address blocks: 157.15.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 08:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:90:b4:af:53:1d:b7:a3:3f:53:1b:9e:99:25:95:e4:86:1e:a3:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Validity Not Before: May 16 13:57:24 2025 GMT Not After : May 15 14:02:24 2026 GMT Subject: CN=977620A38BA105B09EF5D6BC6A932D3948C20B7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:96:9c:f3:04:82:dc:3a:15:c2:a3:e2:bc:f4: 1b:7f:c0:f4:67:0d:fb:4c:fc:e9:4a:86:9e:5c:54: 1e:25:1c:e8:30:63:ba:07:5c:aa:a6:1e:1f:29:0b: 0b:47:dc:0e:a3:ee:ed:17:ff:14:5c:e0:4c:d4:58: 3f:05:b2:b7:e9:5d:c8:bc:28:03:d3:20:e4:d3:a8: d6:ba:7d:f1:66:e7:c4:b7:99:dc:cb:40:a6:2e:e4: 28:ab:32:15:02:dd:f0:41:6c:1c:be:6f:eb:f5:46: 06:bc:a3:cc:f7:81:bb:08:cd:76:f1:c4:0f:58:bf: ad:d5:21:38:6c:81:c3:95:91:6b:af:7e:cf:6a:e0: 0f:97:d4:e0:b7:8a:8a:b9:91:1a:4f:a0:d4:22:b3: aa:76:fd:17:06:30:f6:ca:04:8c:87:7d:8a:3c:63: b3:71:63:d1:e8:c7:46:64:fc:a0:fd:0b:b6:f5:58: e4:c4:15:9a:55:71:d2:1a:4c:39:77:b0:97:47:69: c8:98:e2:ed:8f:2c:36:5f:d2:41:27:dd:f5:9a:8f: 14:a8:ea:91:f2:66:90:32:24:27:a6:43:3e:0b:8f: 6f:10:c4:0e:b8:f3:48:8a:de:47:f2:93:a8:c0:41: bb:00:53:ac:59:72:52:e3:b0:44:91:2a:97:4c:b7: 7e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:76:20:A3:8B:A1:05:B0:9E:F5:D6:BC:6A:93:2D:39:48:C2:0B:7B X509v3 Authority Key Identifier: keyid:FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32342d3234203d3e20313532333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.82.0/24 Signature Algorithm: sha256WithRSAEncryption 31:c3:2c:35:76:c8:ff:33:1e:bf:a3:98:4c:f2:0f:86:fc:16: 74:5b:b1:9b:e3:fc:98:5f:59:26:36:8d:36:71:94:05:47:e3: 8c:05:df:dd:ae:50:db:ae:7a:e5:27:ef:81:ff:93:83:ef:4e: 51:52:df:24:7a:e7:0c:38:d9:51:8c:6b:75:fd:e8:e1:40:ed: a6:b7:10:af:7c:13:3b:c5:73:22:53:83:63:8a:5a:da:6b:57: c8:51:9a:72:a2:52:8e:73:73:00:f4:f3:83:26:47:96:b1:23: 53:21:4e:a6:1e:29:a0:e7:2e:b3:39:d7:33:73:fd:a6:bb:93: 66:fa:62:7c:08:17:c5:b6:bf:09:89:8f:3d:c7:80:26:5d:62: 4b:b7:ae:83:3c:33:19:4f:7c:ab:e2:08:05:89:05:ae:96:d0: ae:aa:5f:80:ff:e9:b3:f9:dd:86:03:d0:d8:11:d9:b9:fa:d5: 93:7a:cd:ad:2b:eb:8e:4e:dc:e8:48:8b:d8:91:60:86:df:fd: ff:d7:1d:84:6c:1a:a8:b1:af:7c:62:02:d9:30:8f:c6:7d:11: 9e:7c:ef:cb:d8:1d:f9:63:79:9b:c8:f5:6b:80:38:e9:92:86: bf:1d:b1:12:cb:73:23:e8:30:96:52:7b:74:6c:26:71:c1:65: cd:55:08:7f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP5C0r1Mdt6M/UxuemSWV5IYeozYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUw MEE2NkFEODAeFw0yNTA1MTYxMzU3MjRaFw0yNjA1MTUxNDAyMjRaMDMxMTAvBgNV BAMTKDk3NzYyMEEzOEJBMTA1QjA5RUY1RDZCQzZBOTMyRDM5NDhDMjBCN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXlpzzBILcOhXCo+K89Bt/wPRn DftM/OlKhp5cVB4lHOgwY7oHXKqmHh8pCwtH3A6j7u0X/xRc4EzUWD8FsrfpXci8 KAPTIOTTqNa6ffFm58S3mdzLQKYu5CirMhUC3fBBbBy+b+v1Rga8o8z3gbsIzXbx xA9Yv63VIThsgcOVkWuvfs9q4A+X1OC3ioq5kRpPoNQis6p2/RcGMPbKBIyHfYo8 Y7NxY9Hox0Zk/KD9C7b1WOTEFZpVcdIaTDl3sJdHaciY4u2PLDZf0kEn3fWajxSo 6pHyZpAyJCemQz4Lj28QxA6480iK3kfyk6jAQbsAU6xZclLjsESRKpdMt37XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl3Ygo4uhBbCe9da8apMtOUjCC3swHwYDVR0j BBgwFoAU/z8Gal6auPmIuOF8elbdLgCmatgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZDAxMWExYy1hMGFkLTRkOTMtODZhZi0zZjBhYWRkOTY4NGYvMC9GRjNGMDY2QTVF OUFCOEY5ODhCOEUxN0M3QTU2REQyRTAwQTY2QUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUwMEE2 NkFEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkMDExYTFjLWEwYWQtNGQ5My04 NmFmLTNmMGFhZGQ5Njg0Zi8wLzMxMzUzNzJlMzEzNTJlMzgzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PUjANBgkqhkiG 9w0BAQsFAAOCAQEAMcMsNXbI/zMev6OYTPIPhvwWdFuxm+P8mF9ZJjaNNnGUBUfj jAXf3a5Q26565Sfvgf+Tg+9OUVLfJHrnDDjZUYxrdf3o4UDtprcQr3wTO8VzIlOD Y4pa2mtXyFGacqJSjnNzAPTzgyZHlrEjUyFOph4poOcusznXM3P9pruTZvpifAgX xba/CYmPPceAJl1iS7eugzwzGU98q+IIBYkFrpbQrqpfgP/ps/ndhgPQ2BHZufrV k3rNrSvrjk7c6EiL2JFght/9/9cdhGwaqLGvfGIC2TCPxn0Rnnzvy9gd+WN5m8j1 a4A46ZKGvx2xEstzI+gwllJ7dGwmccFlzVUIfw== -----END CERTIFICATE-----Generated at Sat Jun 7 12:25:32 2025 by rpki-client