$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa File: 3135372e31302e38382e302f32332d3233203d3e20313532303832.roa (raw, json) Hash identifier: 05UZd4BWdi52DY97e7aLuT6iJ/2mROnvelwIkUa/Mu0= Subject key identifier: E8:3B:13:5D:DD:21:9B:9E:77:9C:A0:DD:38:3B:19:31:3A:05:28:F3 Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Certificate serial: 0C02EAE0A26E3B455F674121C73B1E9AEFD8FDE0 Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa Signing time: Thu 12 Dec 2024 04:00:06 +0000 ROA not before: Thu 12 Dec 2024 03:55:06 +0000 ROA not after: Thu 11 Dec 2025 04:00:06 +0000 asID: 152082 IP address blocks: 157.10.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:45:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:02:ea:e0:a2:6e:3b:45:5f:67:41:21:c7:3b:1e:9a:ef:d8:fd:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Validity Not Before: Dec 12 03:55:06 2024 GMT Not After : Dec 11 04:00:06 2025 GMT Subject: CN=E83B135DDD219B9E779CA0DD383B19313A0528F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1a:17:e2:bc:72:e2:78:d7:f8:40:89:ed:fb: a0:a6:ff:30:9a:34:9b:2a:2c:d8:76:da:ba:79:b8: 40:ed:6b:3a:32:d8:83:3a:60:9b:3a:a9:f0:8e:1d: 27:c5:4f:71:0a:5b:61:86:85:78:ac:35:6a:cb:ee: 81:bf:e0:bd:f2:d6:ca:fa:47:fb:ac:9e:5d:52:f4: 26:a2:ba:ee:b0:3b:51:c1:c4:cf:22:17:83:14:1b: 69:f5:1b:15:08:dc:cd:1c:a5:83:be:ab:ff:1c:d8: 6d:be:8a:c0:23:81:f9:c5:eb:50:cc:f6:33:59:4e: de:30:ba:71:82:88:18:90:9d:fd:28:c0:de:e1:52: ca:d6:23:f8:c5:40:b8:28:83:bf:df:78:20:55:bd: 83:76:dc:3c:92:bd:95:43:b5:1c:a1:98:0c:53:a7: 40:8e:14:9a:ea:8c:1e:e2:60:5a:3d:56:eb:ed:c5: 6c:33:64:ce:99:77:93:e3:fe:bd:d0:f8:62:dc:0c: d6:44:74:d7:f8:a9:22:85:7c:b9:c0:2f:b6:c1:40: 73:b5:ff:d2:97:fb:cd:53:1d:c0:6d:96:d0:ae:17: 2d:f2:84:77:48:76:23:c9:1a:b2:39:8b:6d:7e:c2: c0:f3:ee:1e:e0:98:f5:d1:d0:5a:ba:c4:38:37:4c: fb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3B:13:5D:DD:21:9B:9E:77:9C:A0:DD:38:3B:19:31:3A:05:28:F3 X509v3 Authority Key Identifier: keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/23 Signature Algorithm: sha256WithRSAEncryption 59:6a:c6:92:4c:3b:42:41:16:b6:0b:ca:7d:9d:da:5f:b0:f3: 23:25:a3:3c:ae:0e:2c:b5:57:c7:4c:cd:d9:8c:8f:d1:78:c0: 1c:be:d7:4c:51:4f:93:91:13:72:b7:f6:3a:c2:6e:8c:1a:c6: f7:db:d3:90:e8:df:fc:d5:87:43:ae:98:95:83:7f:d0:6e:5b: 88:4f:13:81:5b:3d:96:50:f3:5c:1d:f0:44:7d:81:4c:73:00: 94:7c:5d:52:af:67:4a:67:3f:72:5a:e5:17:66:fc:fe:62:d9: d5:d1:a0:b8:31:e7:5c:e2:2b:e6:58:04:28:f7:71:87:0f:a3: 18:ee:cf:0f:05:10:23:85:49:57:38:9b:2a:d5:d4:02:ce:40: 1a:d6:1f:31:11:04:4a:8a:32:46:bc:99:f7:ef:95:ba:e0:b9: 2d:31:e9:c7:8b:93:8b:b9:e1:f1:81:d5:1a:6c:ac:4d:13:5d: da:7c:3a:8f:cf:e3:b0:59:a1:0d:ca:33:c2:9d:9e:31:c6:a0: e9:38:b2:fe:d3:3e:05:4a:a9:e0:09:a9:08:07:37:79:23:e0: 6b:93:2d:59:a9:4a:c3:77:e9:f5:23:9e:68:df:1f:1f:36:89: be:27:b3:f9:f1:b7:3e:70:b9:26:bb:01:ab:c8:63:28:4d:35: 1c:88:7f:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDALq4KJuO0VfZ0Ehxzsemu/Y/eAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRG NUY3OTI1NTAeFw0yNDEyMTIwMzU1MDZaFw0yNTEyMTEwNDAwMDZaMDMxMTAvBgNV BAMTKEU4M0IxMzVEREQyMTlCOUU3NzlDQTBERDM4M0IxOTMxM0EwNTI4RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2GhfivHLieNf4QInt+6Cm/zCa NJsqLNh22rp5uEDtazoy2IM6YJs6qfCOHSfFT3EKW2GGhXisNWrL7oG/4L3y1sr6 R/usnl1S9Caiuu6wO1HBxM8iF4MUG2n1GxUI3M0cpYO+q/8c2G2+isAjgfnF61DM 9jNZTt4wunGCiBiQnf0owN7hUsrWI/jFQLgog7/feCBVvYN23DySvZVDtRyhmAxT p0COFJrqjB7iYFo9VuvtxWwzZM6Zd5Pj/r3Q+GLcDNZEdNf4qSKFfLnAL7bBQHO1 /9KX+81THcBtltCuFy3yhHdIdiPJGrI5i21+wsDz7h7gmPXR0Fq6xDg3TPuzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6DsTXd0hm553nKDdODsZMToFKPMwHwYDVR0j BBgwFoAUyIhk3TwebQ1fqRRn8DsmbfX3klUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMC9DODg4NjRERDND MUU2RDBENUZBOTE0NjdGMDNCMjY2REY1Rjc5MjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRGNUY3 OTI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAWWrGkkw7QkEWtgvKfZ3aX7DzIyWjPK4OLLVXx0zN2YyP0XjA HL7XTFFPk5ETcrf2OsJujBrG99vTkOjf/NWHQ66YlYN/0G5biE8TgVs9llDzXB3w RH2BTHMAlHxdUq9nSmc/clrlF2b8/mLZ1dGguDHnXOIr5lgEKPdxhw+jGO7PDwUQ I4VJVzibKtXUAs5AGtYfMREESooyRryZ9++VuuC5LTHpx4uTi7nh8YHVGmysTRNd 2nw6j8/jsFmhDcozwp2eMcag6Tiy/tM+BUqp4AmpCAc3eSPga5MtWalKw3fp9SOe aN8fHzaJviez+fG3PnC5JrsBq8hjKE01HIh/9A== -----END CERTIFICATE-----Generated at Wed Apr 9 22:24:33 2025 by rpki-client