$ rpki-client -vvf repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa File: 3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa (raw, json) Hash identifier: 31fCRfNUFIYAvmAMKXAqFxsON/60EF/0rmnL9f/SdJI= Subject key identifier: FF:49:19:51:47:A1:61:DF:CA:B9:5A:48:4A:DD:5F:27:89:2D:9C:0F Certificate issuer: /CN=1073C0AF2447C17B85643987B72701D1AE52823D Certificate serial: 66933FB00372314208D36139E5B3F6D5FAA5669B Authority key identifier: 10:73:C0:AF:24:47:C1:7B:85:64:39:87:B7:27:01:D1:AE:52:82:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa Signing time: Tue 20 May 2025 02:00:05 +0000 ROA not before: Tue 20 May 2025 01:55:05 +0000 ROA not after: Tue 19 May 2026 02:00:05 +0000 asID: 152397 IP address blocks: 157.15.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.crl rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:93:3f:b0:03:72:31:42:08:d3:61:39:e5:b3:f6:d5:fa:a5:66:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1073C0AF2447C17B85643987B72701D1AE52823D Validity Not Before: May 20 01:55:05 2025 GMT Not After : May 19 02:00:05 2026 GMT Subject: CN=FF49195147A161DFCAB95A484ADD5F27892D9C0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2a:41:9f:68:b7:8d:b2:e7:39:a4:d2:42:32: 4e:f5:68:16:57:cc:c9:da:69:5f:9a:4e:22:6a:3c: 0c:d8:0d:ed:a6:37:95:30:fe:fd:f4:67:16:29:35: 39:4f:7d:96:8d:0a:b4:d7:e2:58:07:72:83:b8:aa: 2d:82:3a:8e:12:5d:4c:8d:0c:35:1e:49:fd:09:ca: 12:7e:68:38:d3:d2:84:ab:3b:b4:a2:a9:b6:b1:a0: 0e:6f:72:53:65:83:5c:47:1d:15:08:6b:d1:72:1e: 95:6d:40:b0:93:b2:49:88:27:01:9c:ae:fb:95:8f: 65:d9:35:bc:c0:6a:8e:1f:31:99:2d:3d:16:1b:77: 8b:0a:4d:d1:63:fd:50:27:f8:dc:f4:93:4e:67:c4: ce:02:9e:b5:c0:41:8d:a0:a5:10:fd:2b:4b:3f:1a: 96:89:39:d5:e6:fe:40:47:47:bf:30:56:33:df:fd: d0:76:83:0f:5e:36:93:d2:db:ab:c7:af:51:80:a6: 5b:ab:d0:43:05:52:4f:0e:30:d1:a0:bf:0e:41:4e: 93:8f:d8:e6:e1:fc:88:b7:0b:a8:77:fa:ea:73:10: 75:92:0f:95:17:1f:eb:c0:9a:3c:80:c6:85:f2:ff: ac:f6:68:ff:51:6a:55:4b:2f:2d:13:21:b9:ca:a8: d1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:49:19:51:47:A1:61:DF:CA:B9:5A:48:4A:DD:5F:27:89:2D:9C:0F X509v3 Authority Key Identifier: keyid:10:73:C0:AF:24:47:C1:7B:85:64:39:87:B7:27:01:D1:AE:52:82:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.122.0/24 Signature Algorithm: sha256WithRSAEncryption 96:78:15:01:7a:d3:07:fb:5c:94:75:0a:18:73:1a:f5:07:62: 80:1c:14:d4:16:d7:b6:8d:2a:fd:38:44:7d:92:64:f4:eb:1c: 95:18:29:57:d6:ed:49:6d:f5:31:8c:14:f4:1b:39:af:2e:5c: 10:05:9c:5c:ef:da:08:15:77:aa:6b:7e:d1:c7:2c:1b:84:50: 4e:64:71:12:dc:86:e0:59:6f:74:69:00:cd:0e:43:c1:f4:61: ab:db:0f:f6:35:7d:33:a0:03:1e:3c:f4:22:51:bb:f7:df:f3: ec:79:28:84:3d:76:d3:e4:04:f7:24:c6:74:f6:ae:3c:ce:af: 55:64:b1:76:32:d1:48:42:f3:7e:f3:4f:a1:dc:db:d6:6a:9a: 1b:eb:03:ac:c7:55:13:c8:98:01:55:4b:70:d2:5b:aa:94:12: cf:5d:1f:81:00:1d:0f:01:a4:10:5f:6a:e1:6b:00:dc:eb:1c: e7:ca:73:b8:f1:f5:dc:eb:ef:69:77:62:c3:da:0c:71:7f:59: c8:b7:23:45:ae:d7:3e:f6:4a:94:94:b5:77:d2:5b:ef:f7:85: 06:67:a9:52:6c:de:7b:fa:97:55:eb:ba:6d:1b:b6:af:ac:c0: 8e:d1:a0:c0:c4:3e:61:33:34:2b:18:c0:45:e3:cb:66:37:78: 4e:7e:49:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZpM/sANyMUII02E55bP21fqlZpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA3M0MwQUYyNDQ3QzE3Qjg1NjQzOTg3QjcyNzAxRDFB RTUyODIzRDAeFw0yNTA1MjAwMTU1MDVaFw0yNjA1MTkwMjAwMDVaMDMxMTAvBgNV BAMTKEZGNDkxOTUxNDdBMTYxREZDQUI5NUE0ODRBREQ1RjI3ODkyRDlDMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwKkGfaLeNsuc5pNJCMk71aBZX zMnaaV+aTiJqPAzYDe2mN5Uw/v30ZxYpNTlPfZaNCrTX4lgHcoO4qi2COo4SXUyN DDUeSf0JyhJ+aDjT0oSrO7SiqbaxoA5vclNlg1xHHRUIa9FyHpVtQLCTskmIJwGc rvuVj2XZNbzAao4fMZktPRYbd4sKTdFj/VAn+Nz0k05nxM4CnrXAQY2gpRD9K0s/ GpaJOdXm/kBHR78wVjPf/dB2gw9eNpPS26vHr1GAplur0EMFUk8OMNGgvw5BTpOP 2Obh/Ii3C6h3+upzEHWSD5UXH+vAmjyAxoXy/6z2aP9RalVLLy0TIbnKqNEJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/0kZUUehYd/KuVpISt1fJ4ktnA8wHwYDVR0j BBgwFoAUEHPAryRHwXuFZDmHtycB0a5Sgj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmRkMTVlMy05ZWU1LTRkNTItOWVlZS03MTJiYjNiN2JmZmIvMC8xMDczQzBBRjI0 NDdDMTdCODU2NDM5ODdCNzI3MDFEMUFFNTI4MjNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTA3M0MwQUYyNDQ3QzE3Qjg1NjQzOTg3QjcyNzAxRDFBRTUy ODIzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2ZGQxNWUzLTllZTUtNGQ1Mi05 ZWVlLTcxMmJiM2I3YmZmYi8wLzMxMzUzNzJlMzEzNTJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ96MA0GCSqG SIb3DQEBCwUAA4IBAQCWeBUBetMH+1yUdQoYcxr1B2KAHBTUFte2jSr9OER9kmT0 6xyVGClX1u1JbfUxjBT0GzmvLlwQBZxc79oIFXeqa37RxywbhFBOZHES3IbgWW90 aQDNDkPB9GGr2w/2NX0zoAMePPQiUbv33/PseSiEPXbT5AT3JMZ09q48zq9VZLF2 MtFIQvN+80+h3NvWapob6wOsx1UTyJgBVUtw0luqlBLPXR+BAB0PAaQQX2rhawDc 6xznynO48fXc6+9pd2LD2gxxf1nItyNFrtc+9kqUlLV30lvv94UGZ6lSbN57+pdV 67ptG7avrMCO0aDAxD5hMzQrGMBF48tmN3hOfkn9 -----END CERTIFICATE-----Generated at Sat Jun 7 10:46:06 2025 by rpki-client