$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa File: 3135372e32302e39322e302f32332d3234203d3e20313532343037.roa (raw, json) Hash identifier: dOMygz5zltbqlA4IY/6P2zi8X+0Vf9OQi3HjL4HaSVo= Subject key identifier: 6F:12:DD:9F:45:8E:94:C0:28:E1:16:D2:EB:88:2E:96:62:32:F3:AB Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 0FFA051622C85523E165D4600F985047CE7B85FF Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa Signing time: Tue 18 Feb 2025 07:03:06 +0000 ROA not before: Tue 18 Feb 2025 06:58:06 +0000 ROA not after: Tue 17 Feb 2026 07:03:06 +0000 asID: 152407 IP address blocks: 157.20.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:fa:05:16:22:c8:55:23:e1:65:d4:60:0f:98:50:47:ce:7b:85:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Feb 18 06:58:06 2025 GMT Not After : Feb 17 07:03:06 2026 GMT Subject: CN=6F12DD9F458E94C028E116D2EB882E966232F3AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d0:0b:52:d6:4a:ac:83:61:bf:d2:d5:06:5b: 74:b5:4a:f3:48:88:95:0c:1b:61:d9:d6:2f:74:ca: 12:be:21:a7:42:e2:0b:4e:71:cc:3e:ac:f0:d2:79: 43:b2:79:52:6b:3b:a1:6c:dd:4e:6d:7d:1b:e6:b6: b2:1f:f1:60:f6:70:48:c6:93:00:ad:84:2f:4b:f9: ee:43:f5:1b:b1:20:49:d2:f6:13:82:d9:62:40:c9: fe:5e:e5:5a:8a:81:56:ed:bf:b5:04:bd:45:0e:97: 2e:8e:da:0b:02:c5:ef:0c:0d:28:8d:f5:cd:75:93: e9:40:ee:96:6d:b8:b6:a5:23:35:bb:f7:1b:3f:64: 0d:a2:66:3f:71:42:45:a9:de:3a:c4:8c:b4:6f:a0: e3:3f:32:b6:fc:cf:38:eb:ab:90:fb:d8:fa:c1:89: 51:af:54:77:c7:60:13:83:25:a3:aa:26:bf:25:7d: e0:3c:c8:36:d5:fe:3d:10:28:06:8c:f3:4c:5d:79: b1:16:74:4e:32:31:14:48:c1:c9:5a:50:70:a7:b4: c2:2f:15:a0:2b:5c:e2:4f:8f:38:75:05:e3:e2:72: 4b:36:a7:b6:9f:32:7c:e7:f7:eb:27:81:2d:11:ff: 63:df:5a:ee:a9:4f:83:ca:4b:3d:a4:2b:cd:43:f4: 3e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:12:DD:9F:45:8E:94:C0:28:E1:16:D2:EB:88:2E:96:62:32:F3:AB X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:05:2b:60:e0:c3:73:36:db:82:6c:13:6b:98:00:df:55:d8: e1:e1:94:54:b2:22:f2:ff:fc:2e:9c:40:5c:30:cb:e1:c2:71: a2:f2:12:68:a9:26:d6:48:f0:9e:8e:e9:98:98:1e:cf:cb:22: c0:a3:87:74:fb:e6:a5:cf:48:1e:8c:c8:f1:c1:59:53:10:63: b6:11:38:d1:16:43:bb:55:a1:b5:58:3a:6c:61:9c:62:91:82: 84:da:ac:f0:5c:b9:b7:b0:29:a4:cb:32:d0:d7:cd:31:f1:20: 18:b7:fc:e1:39:99:b7:c5:d2:fd:bf:e4:df:57:38:80:2e:ee: 82:15:4d:7d:db:7f:2f:0e:f7:65:f9:68:15:3e:e7:34:76:77: 24:8b:c7:81:75:fd:c1:33:f9:61:8f:ce:b1:d7:95:c9:ea:7c: e6:b7:03:f2:a2:bb:3c:25:e9:eb:56:d1:28:29:a9:74:84:3f: 12:1d:1d:4d:ba:ce:53:c8:32:b9:65:40:33:22:66:a7:00:00: 05:88:9e:fd:36:1d:15:5d:fa:82:02:a3:05:23:8a:4e:44:40: 5b:81:52:ac:43:72:b3:61:7d:1b:95:db:6b:9f:48:03:67:3f: a7:08:62:a9:6b:19:7b:76:1c:d9:20:e3:5f:ad:1e:c8:9a:a7: ab:7b:35:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD/oFFiLIVSPhZdRgD5hQR857hf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNTAyMTgwNjU4MDZaFw0yNjAyMTcwNzAzMDZaMDMxMTAvBgNV BAMTKDZGMTJERDlGNDU4RTk0QzAyOEUxMTZEMkVCODgyRTk2NjIzMkYzQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv0AtS1kqsg2G/0tUGW3S1SvNI iJUMG2HZ1i90yhK+IadC4gtOccw+rPDSeUOyeVJrO6Fs3U5tfRvmtrIf8WD2cEjG kwCthC9L+e5D9RuxIEnS9hOC2WJAyf5e5VqKgVbtv7UEvUUOly6O2gsCxe8MDSiN 9c11k+lA7pZtuLalIzW79xs/ZA2iZj9xQkWp3jrEjLRvoOM/Mrb8zzjrq5D72PrB iVGvVHfHYBODJaOqJr8lfeA8yDbV/j0QKAaM80xdebEWdE4yMRRIwclaUHCntMIv FaArXOJPjzh1BePicks2p7afMnzn9+sngS0R/2PfWu6pT4PKSz2kK81D9D7xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbxLdn0WOlMAo4RbS64gulmIy86swHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhODk2ZmRjLTU2MzgtNDFkMi04 YTk5LTY4Y2U4MTZiZDNjZi8wLzMxMzUzNzJlMzIzMDJlMzkzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UXDANBgkqhkiG 9w0BAQsFAAOCAQEAnwUrYODDczbbgmwTa5gA31XY4eGUVLIi8v/8LpxAXDDL4cJx ovISaKkm1kjwno7pmJgez8siwKOHdPvmpc9IHozI8cFZUxBjthE40RZDu1WhtVg6 bGGcYpGChNqs8Fy5t7AppMsy0NfNMfEgGLf84TmZt8XS/b/k31c4gC7ughVNfdt/ Lw73ZfloFT7nNHZ3JIvHgXX9wTP5YY/OsdeVyep85rcD8qK7PCXp61bRKCmpdIQ/ Eh0dTbrOU8gyuWVAMyJmpwAABYie/TYdFV36ggKjBSOKTkRAW4FSrENys2F9G5Xb a59IA2c/pwhiqWsZe3Yc2SDjX60eyJqnq3s1sw== -----END CERTIFICATE-----Generated at Tue Apr 8 00:47:08 2025 by rpki-client