$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36332e302f32342d3234203d3e20313532333733.roa File: 3135372e31352e36332e302f32342d3234203d3e20313532333733.roa (raw, json) Hash identifier: O3gcBChIby3AdjPp6ABgzZyB6Dva+5HT0HMij4bC+80= Subject key identifier: 16:0E:CA:DF:6E:96:89:9A:4D:FB:AE:01:18:8B:7B:5C:41:02:9C:22 Certificate issuer: /CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Certificate serial: 4089FFD97B2E421B83BE9C4D32E288EBA230330D Authority key identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36332e302f32342d3234203d3e20313532333733.roa Signing time: Thu 20 Feb 2025 20:00:01 +0000 ROA not before: Thu 20 Feb 2025 19:55:01 +0000 ROA not after: Thu 19 Feb 2026 20:00:01 +0000 asID: 152373 IP address blocks: 157.15.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:89:ff:d9:7b:2e:42:1b:83:be:9c:4d:32:e2:88:eb:a2:30:33:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Validity Not Before: Feb 20 19:55:01 2025 GMT Not After : Feb 19 20:00:01 2026 GMT Subject: CN=160ECADF6E96899A4DFBAE01188B7B5C41029C22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:66:70:53:7c:e5:12:45:f2:3d:6f:cb:b1:64: 9d:e9:bc:43:9e:c3:3c:b2:7a:81:8e:bf:3c:70:92: ca:af:8b:7e:c6:4e:22:5d:4b:68:20:d8:25:a3:50: e4:16:0b:84:bb:da:0f:d2:1b:98:a1:3c:01:ba:3e: 26:2f:fe:76:dd:69:20:7e:0d:22:1c:82:0d:6d:53: f7:5f:14:e6:a7:f1:6e:e2:62:37:55:a3:e9:88:a3: 4c:a1:52:33:6a:c1:87:da:fc:32:7f:c7:a4:6f:00: 92:8f:02:44:61:fe:ae:d0:b3:b8:ed:33:9e:fd:d7: 30:1f:2f:52:27:db:d4:9b:3f:c1:27:94:76:e7:53: 71:d9:1f:be:7f:80:86:2d:86:ad:7b:db:43:7e:3f: 08:a1:b2:83:f5:4b:85:4c:d3:2e:e9:d6:52:ad:2e: 3c:e1:20:73:ed:ed:fb:76:c3:43:b9:c2:aa:6d:0d: 1e:02:33:fd:db:63:df:e5:54:c4:db:6c:2d:6e:15: 17:05:7c:f8:83:22:fd:63:6f:a7:b1:fd:81:d4:f9: b9:fc:c8:8f:b7:df:fd:bc:e0:2d:c0:ac:ba:cd:0c: 6f:12:1b:cf:dd:1e:03:00:99:68:05:0a:24:40:d8: 71:4c:60:ff:3b:5e:c3:68:8a:59:56:28:95:3d:e4: 12:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0E:CA:DF:6E:96:89:9A:4D:FB:AE:01:18:8B:7B:5C:41:02:9C:22 X509v3 Authority Key Identifier: keyid:CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/3135372e31352e36332e302f32342d3234203d3e20313532333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.63.0/24 Signature Algorithm: sha256WithRSAEncryption b4:4a:0a:92:e9:b0:2b:99:a1:c2:db:bd:3a:30:e7:3e:a8:f1: e4:7c:fd:7f:65:94:c9:4e:b5:b9:8b:48:3b:74:8f:4b:e1:11: 71:3c:ef:e1:27:ec:62:ae:44:e5:8c:45:90:a7:ba:95:5d:75: d2:43:1c:10:76:9a:2d:c5:87:aa:fe:d2:5b:d3:c6:56:20:ae: 21:c0:33:63:ac:97:99:d7:70:fc:9d:78:20:ba:1d:f4:fc:25: 03:a8:94:27:bb:03:5b:83:72:a1:8a:ce:85:fa:d8:d4:32:38: ce:e3:a0:e0:66:da:4c:b0:ab:16:15:10:14:e9:ad:7e:dc:c1: 6d:80:0d:7e:0f:98:73:a9:49:e7:fd:c0:a9:5e:1e:8f:69:6f: b4:1e:93:2d:67:fc:7d:b2:e1:01:40:86:51:56:0e:80:13:51: 0c:eb:93:d1:95:82:03:e6:71:30:1d:b4:93:9c:3c:2b:42:54: 62:08:54:39:6b:5a:b6:d7:4d:2e:70:99:33:f9:b5:b4:2d:6b: 64:70:b4:f1:5d:0a:f2:56:92:ca:64:c2:c5:ae:77:d6:b7:7d: 11:30:37:87:6d:4d:dd:d0:f5:a5:1f:69:f6:31:82:2f:1a:7c: 6e:4b:c4:e4:44:c2:13:fd:2b:29:c1:d3:b7:3a:a0:c4:fe:19: 40:ef:08:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQIn/2XsuQhuDvpxNMuKI66IwMw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJF MzlCRjhFODAeFw0yNTAyMjAxOTU1MDFaFw0yNjAyMTkyMDAwMDFaMDMxMTAvBgNV BAMTKDE2MEVDQURGNkU5Njg5OUE0REZCQUUwMTE4OEI3QjVDNDEwMjlDMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ZnBTfOUSRfI9b8uxZJ3pvEOe wzyyeoGOvzxwksqvi37GTiJdS2gg2CWjUOQWC4S72g/SG5ihPAG6PiYv/nbdaSB+ DSIcgg1tU/dfFOan8W7iYjdVo+mIo0yhUjNqwYfa/DJ/x6RvAJKPAkRh/q7Qs7jt M5791zAfL1In29SbP8EnlHbnU3HZH75/gIYthq1720N+PwihsoP1S4VM0y7p1lKt LjzhIHPt7ft2w0O5wqptDR4CM/3bY9/lVMTbbC1uFRcFfPiDIv1jb6ex/YHU+bn8 yI+33/284C3ArLrNDG8SG8/dHgMAmWgFCiRA2HFMYP87XsNoillWKJU95BINAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFg7K326WiZpN+64BGIt7XEECnCIwHwYDVR0j BBgwFoAUy1TcUm+iFPn3NpJuaqoWq+Ob+OgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMC9DQjU0REM1MjZG QTIxNEY5RjczNjkyNkU2QUFBMTZBQkUzOUJGOEU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0I1NERDNTI2RkEyMTRGOUY3MzY5MjZFNkFBQTE2QUJFMzlC RjhFOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRhLWE4ZmYtNDAzNi04 NDIwLWRhODE2MjExMTgwNi8wLzMxMzUzNzJlMzEzNTJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PPzANBgkqhkiG 9w0BAQsFAAOCAQEAtEoKkumwK5mhwtu9OjDnPqjx5Hz9f2WUyU61uYtIO3SPS+ER cTzv4SfsYq5E5YxFkKe6lV110kMcEHaaLcWHqv7SW9PGViCuIcAzY6yXmddw/J14 ILod9PwlA6iUJ7sDW4NyoYrOhfrY1DI4zuOg4GbaTLCrFhUQFOmtftzBbYANfg+Y c6lJ5/3AqV4ej2lvtB6TLWf8fbLhAUCGUVYOgBNRDOuT0ZWCA+ZxMB20k5w8K0JU YghUOWtattdNLnCZM/m1tC1rZHC08V0K8laSymTCxa531rd9ETA3h21N3dD1pR9p 9jGCLxp8bkvE5ETCE/0rKcHTtzqgxP4ZQO8I8Q== -----END CERTIFICATE-----Generated at Sun Apr 6 20:51:30 2025 by rpki-client