$ rpki-client -vvf repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa File: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (raw, json) Hash identifier: W4T3x6W6F80SSirpXVn9D/iy5Cn3YHJGBUQbdlxcTEY= Subject key identifier: 4F:96:25:8F:D2:99:FE:4D:4D:41:4F:F7:64:68:CE:69:D5:0A:36:BA Certificate issuer: /CN=99A17325620A243689E32E6074D5CFCA91D915EB Certificate serial: 67D62616BEE076714B8E0A39CCBB6F02AB61BBCA Authority key identifier: 99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa Signing time: Sun 02 Mar 2025 18:00:01 +0000 ROA not before: Sun 02 Mar 2025 17:55:01 +0000 ROA not after: Sun 01 Mar 2026 18:00:01 +0000 asID: 152411 IP address blocks: 157.20.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d6:26:16:be:e0:76:71:4b:8e:0a:39:cc:bb:6f:02:ab:61:bb:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99A17325620A243689E32E6074D5CFCA91D915EB Validity Not Before: Mar 2 17:55:01 2025 GMT Not After : Mar 1 18:00:01 2026 GMT Subject: CN=4F96258FD299FE4D4D414FF76468CE69D50A36BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1c:6e:e0:08:71:c7:93:3c:9b:a7:f0:86:25: 2c:19:c6:c4:70:b3:19:fd:f2:59:98:07:21:5d:69: a3:c1:4b:89:bd:b9:fd:03:99:08:38:da:86:ce:b1: 5e:07:12:e0:99:e9:03:f6:b7:4d:3f:b9:58:95:ab: d1:9c:d2:3f:18:4a:3f:b1:df:41:20:0e:85:42:06: 88:21:7d:4f:1f:3e:37:72:67:f7:d7:33:24:15:b5: 3c:08:02:bd:10:a7:c7:17:d9:0f:43:ff:65:7e:49: 82:2e:47:9d:21:fc:76:9a:83:40:2c:0d:66:ce:a0: 9a:0b:a3:1b:18:4e:05:44:02:9f:76:92:b3:a3:4f: c3:ed:78:6b:18:3f:27:78:fb:68:8b:4a:30:ad:f5: 2c:84:c7:44:41:99:af:e1:e0:c7:20:ac:c6:d8:4b: bd:8d:31:f8:fb:54:7f:39:c7:ee:2d:fc:72:3d:d6: b1:05:d0:ff:36:f8:4f:36:ef:44:17:a8:61:cb:59: 25:9c:94:98:c0:d5:9f:ce:de:be:e7:21:ba:da:8d: 3c:c6:57:af:41:59:fb:90:61:0b:f6:69:9e:62:0c: f1:f3:5f:4d:d9:75:2f:bf:ef:98:ae:0a:42:9a:ae: e7:bc:bf:52:99:5b:22:af:33:cc:aa:2a:10:e6:de: 23:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:96:25:8F:D2:99:FE:4D:4D:41:4F:F7:64:68:CE:69:D5:0A:36:BA X509v3 Authority Key Identifier: keyid:99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.156.0/23 Signature Algorithm: sha256WithRSAEncryption 39:dc:bd:c0:10:08:8b:f3:83:53:db:7c:84:95:a2:38:3f:b9: 77:fc:b8:da:d4:12:23:d7:c9:a6:59:28:2a:97:33:5d:6e:70: 20:d4:4b:f1:ff:54:35:98:ed:e3:05:64:fb:4c:ea:5d:d0:3f: 51:2b:a5:24:4b:64:9c:61:23:a5:a2:e5:f6:e1:b1:11:c1:b6: fe:5f:f0:5a:a2:c7:6d:41:d7:b1:20:d7:60:d0:b4:62:b6:20: 4e:60:a9:cb:f9:9b:ce:15:f7:4a:f4:5a:4f:12:8f:bf:76:c0: a8:0c:12:13:0d:72:71:20:f7:57:e0:98:05:bb:15:9a:d2:1c: ca:f5:44:1c:b2:36:ae:01:07:b9:4f:4a:59:19:16:b3:8f:33: 12:66:95:4e:30:92:16:8b:75:d2:f5:50:0a:12:cb:b6:b6:29: c3:8a:df:02:32:45:e7:f6:64:39:32:f9:61:01:5d:e8:a4:53: 02:cb:c7:63:84:ba:36:b9:3d:36:4e:ae:0a:e8:c5:78:08:f7: 11:ef:2d:a4:68:32:25:ab:3d:38:fe:1b:ff:b2:f2:1b:29:d5: 2f:13:bb:49:06:e6:52:60:f3:63:1a:b7:88:a1:6c:ca:bf:86: e5:53:dc:1e:20:37:59:6e:b0:02:35:86:04:fa:dd:43:1e:a7: 77:8e:17:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ9YmFr7gdnFLjgo5zLtvAqthu8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5 MUQ5MTVFQjAeFw0yNTAzMDIxNzU1MDFaFw0yNjAzMDExODAwMDFaMDMxMTAvBgNV BAMTKDRGOTYyNThGRDI5OUZFNEQ0RDQxNEZGNzY0NjhDRTY5RDUwQTM2QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoHG7gCHHHkzybp/CGJSwZxsRw sxn98lmYByFdaaPBS4m9uf0DmQg42obOsV4HEuCZ6QP2t00/uViVq9Gc0j8YSj+x 30EgDoVCBoghfU8fPjdyZ/fXMyQVtTwIAr0Qp8cX2Q9D/2V+SYIuR50h/Haag0As DWbOoJoLoxsYTgVEAp92krOjT8PteGsYPyd4+2iLSjCt9SyEx0RBma/h4McgrMbY S72NMfj7VH85x+4t/HI91rEF0P82+E8270QXqGHLWSWclJjA1Z/O3r7nIbrajTzG V69BWfuQYQv2aZ5iDPHzX03ZdS+/75iuCkKarue8v1KZWyKvM8yqKhDm3iPjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT5Ylj9KZ/k1NQU/3ZGjOadUKNrowHwYDVR0j BBgwFoAUmaFzJWIKJDaJ4y5gdNXPypHZFeswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDU5YjgyMi01YzA4LTQ2ZjEtYjI1ZS03NThkYzE4ZTk5MDUvMC85OUExNzMyNTYy MEEyNDM2ODlFMzJFNjA3NEQ1Q0ZDQTkxRDkxNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5MUQ5 MTVFQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkNTliODIyLTVjMDgtNDZmMS1i MjVlLTc1OGRjMThlOTkwNS8wLzMxMzUzNzJlMzIzMDJlMzEzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRScMA0GCSqG SIb3DQEBCwUAA4IBAQA53L3AEAiL84NT23yElaI4P7l3/Lja1BIj18mmWSgqlzNd bnAg1Evx/1Q1mO3jBWT7TOpd0D9RK6UkS2ScYSOlouX24bERwbb+X/BaosdtQdex INdg0LRitiBOYKnL+ZvOFfdK9FpPEo+/dsCoDBITDXJxIPdX4JgFuxWa0hzK9UQc sjauAQe5T0pZGRazjzMSZpVOMJIWi3XS9VAKEsu2tinDit8CMkXn9mQ5MvlhAV3o pFMCy8djhLo2uT02Tq4K6MV4CPcR7y2kaDIlqz04/hv/svIbKdUvE7tJBuZSYPNj GreIoWzKv4blU9weIDdZbrACNYYE+t1DHqd3jhf/ -----END CERTIFICATE-----Generated at Tue Apr 8 03:29:26 2025 by rpki-client