$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32342d3234203d3e20313532333733.roa File: 3135372e31352e36322e302f32342d3234203d3e20313532333733.roa (raw, json) Hash identifier: lS5KueYMn8bh5TmvZ4yUXAkTqzodamQRrumfFCdScxY= Subject key identifier: 57:A7:2E:FC:4F:2B:33:76:07:EB:33:0E:24:80:84:87:A0:00:F7:DD Certificate issuer: /CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Certificate serial: 76BCDDF641221ED5C47B599675704F9195B2BF17 Authority key identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32342d3234203d3e20313532333733.roa Signing time: Thu 20 Feb 2025 20:00:01 +0000 ROA not before: Thu 20 Feb 2025 19:55:01 +0000 ROA not after: Thu 19 Feb 2026 20:00:01 +0000 asID: 152373 IP address blocks: 157.15.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:bc:dd:f6:41:22:1e:d5:c4:7b:59:96:75:70:4f:91:95:b2:bf:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Validity Not Before: Feb 20 19:55:01 2025 GMT Not After : Feb 19 20:00:01 2026 GMT Subject: CN=57A72EFC4F2B337607EB330E24808487A000F7DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f9:38:bc:14:cf:9a:e4:32:1b:bc:86:27:5c: 09:6b:a7:39:24:91:70:46:c2:ad:76:0b:b0:91:fb: da:33:82:4e:e7:95:db:d0:fd:dd:49:56:79:18:6c: 82:fc:aa:fa:4d:4c:a3:a7:11:fa:b8:c7:8a:1f:2f: 3b:80:f6:42:bf:ce:bc:e6:30:bd:3d:df:b6:2e:fa: 9d:49:4d:dd:80:bd:e1:5a:5b:45:bb:ad:a1:b9:a9: 36:9b:7e:88:f3:c7:92:23:c5:33:e5:5f:73:5b:a1: 7a:0c:4b:ea:31:a9:60:bd:72:7d:c9:dc:a7:ae:24: cd:d8:ee:e2:13:82:3d:76:d3:90:5a:2d:5e:2b:0b: 6a:7e:35:15:b3:ab:9a:d0:ca:61:a0:9a:12:43:d8: a0:6b:11:28:9b:d2:f6:da:89:ad:4a:ea:e1:ab:7f: d8:0d:74:77:e2:94:51:b9:fd:80:bb:51:8e:2d:41: d3:8c:98:19:42:95:9f:c0:73:0a:1b:f8:1b:51:39: 48:31:43:fe:6a:08:d3:28:f2:f5:49:82:7f:3f:ef: eb:49:3f:6f:dd:b6:94:28:62:63:bc:00:77:a1:8a: 29:f9:ae:2d:13:fd:3a:80:cf:0f:65:f1:ce:a7:4e: e9:86:6c:be:c0:0c:bb:4f:8a:9e:a1:e0:53:33:c2: 8b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A7:2E:FC:4F:2B:33:76:07:EB:33:0E:24:80:84:87:A0:00:F7:DD X509v3 Authority Key Identifier: keyid:CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36322e302f32342d3234203d3e20313532333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.62.0/24 Signature Algorithm: sha256WithRSAEncryption 39:5e:d0:83:e6:4c:2d:e9:2b:87:44:4a:bf:50:5f:18:10:e7: 3b:17:2e:4b:bf:73:a8:03:c9:ff:2c:68:5a:ea:cb:4d:65:4f: 03:68:24:61:b2:44:4c:47:31:7b:f1:b5:ad:aa:e4:e2:4e:77: c8:e2:80:eb:57:c1:8a:a1:bc:83:ac:6b:5c:ee:a6:13:01:14: b1:b6:42:74:03:bf:28:29:db:0d:e9:e7:81:b6:1e:e2:39:a9: 11:73:3b:10:6c:28:f9:72:a4:32:20:65:21:ef:fd:ab:35:46: 51:50:b7:fe:c8:63:9b:a6:af:05:0b:49:89:6e:80:5c:ef:c3: 0a:53:a1:af:f5:1d:ef:53:39:68:dc:08:4e:3a:49:7f:f1:4d: 45:94:3f:df:8b:7b:96:f9:fd:da:07:8e:4a:dd:17:c1:ea:67: 87:61:3e:bf:7d:da:a9:52:51:de:c8:92:d5:e7:a0:75:e7:6e: 28:23:f3:6b:f4:38:80:37:2e:46:2a:78:60:fc:55:17:ae:c9: 54:a3:0f:1e:06:93:36:ea:af:e1:de:bb:f7:01:61:4f:d5:0c: 60:25:2f:83:38:c5:00:b8:34:70:5b:51:38:01:3d:e9:89:4e: 14:db:69:a1:46:5a:ec:40:02:c0:8a:1d:df:88:a0:81:cc:ff: c0:90:96:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdrzd9kEiHtXEe1mWdXBPkZWyvxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJF MzlCRjhFODAeFw0yNTAyMjAxOTU1MDFaFw0yNjAyMTkyMDAwMDFaMDMxMTAvBgNV BAMTKDU3QTcyRUZDNEYyQjMzNzYwN0VCMzMwRTI0ODA4NDg3QTAwMEY3REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9+Ti8FM+a5DIbvIYnXAlrpzkk kXBGwq12C7CR+9ozgk7nldvQ/d1JVnkYbIL8qvpNTKOnEfq4x4ofLzuA9kK/zrzm ML0937Yu+p1JTd2AveFaW0W7raG5qTabfojzx5IjxTPlX3NboXoMS+oxqWC9cn3J 3KeuJM3Y7uITgj1205BaLV4rC2p+NRWzq5rQymGgmhJD2KBrESib0vbaia1K6uGr f9gNdHfilFG5/YC7UY4tQdOMmBlClZ/Acwob+BtROUgxQ/5qCNMo8vVJgn8/7+tJ P2/dtpQoYmO8AHehiin5ri0T/TqAzw9l8c6nTumGbL7ADLtPip6h4FMzwottAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUV6cu/E8rM3YH6zMOJICEh6AA990wHwYDVR0j BBgwFoAUy1TcUm+iFPn3NpJuaqoWq+Ob+OgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMC9DQjU0REM1MjZG QTIxNEY5RjczNjkyNkU2QUFBMTZBQkUzOUJGOEU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJFMzlC RjhFOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRhLWE4ZmYtNDAzNi04 NDIwLWRhODE2MjExMTgwNi8wLzMxMzUzNzJlMzEzNTJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PPjANBgkqhkiG 9w0BAQsFAAOCAQEAOV7Qg+ZMLekrh0RKv1BfGBDnOxcuS79zqAPJ/yxoWurLTWVP A2gkYbJETEcxe/G1rark4k53yOKA61fBiqG8g6xrXO6mEwEUsbZCdAO/KCnbDenn gbYe4jmpEXM7EGwo+XKkMiBlIe/9qzVGUVC3/shjm6avBQtJiW6AXO/DClOhr/Ud 71M5aNwITjpJf/FNRZQ/34t7lvn92geOSt0Xwepnh2E+v33aqVJR3siS1eegdedu KCPza/Q4gDcuRip4YPxVF67JVKMPHgaTNuqv4d679wFhT9UMYCUvgzjFALg0cFtR OAE96YlOFNtpoUZa7EACwIod34iggcz/wJCWfA== -----END CERTIFICATE-----Generated at Mon Apr 7 00:18:37 2025 by rpki-client