$ rpki-client -vvf repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/3135372e31302e3137382e302f32342d3234203d3e20313532333435.roa File: 3135372e31302e3137382e302f32342d3234203d3e20313532333435.roa (raw, json) Hash identifier: +JuFG85/x7QzaCoYI5/f+ngEk0nIACmoHGyCt4qyPYU= Subject key identifier: 62:D3:E8:1E:51:9D:52:F5:F2:30:67:53:2A:60:3A:6C:6B:04:1E:A0 Certificate issuer: /CN=F8C9E79ADDDE2928BC5FA27C3D621C1D93252169 Certificate serial: 3B097AB65BFB5EB6628B7DACF4A4486F4BF7628C Authority key identifier: F8:C9:E7:9A:DD:DE:29:28:BC:5F:A2:7C:3D:62:1C:1D:93:25:21:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/3135372e31302e3137382e302f32342d3234203d3e20313532333435.roa Signing time: Tue 07 Jan 2025 00:00:02 +0000 ROA not before: Mon 06 Jan 2025 23:55:02 +0000 ROA not after: Tue 06 Jan 2026 00:00:02 +0000 asID: 152345 IP address blocks: 157.10.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.crl rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:09:7a:b6:5b:fb:5e:b6:62:8b:7d:ac:f4:a4:48:6f:4b:f7:62:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C9E79ADDDE2928BC5FA27C3D621C1D93252169 Validity Not Before: Jan 6 23:55:02 2025 GMT Not After : Jan 6 00:00:02 2026 GMT Subject: CN=62D3E81E519D52F5F23067532A603A6C6B041EA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:15:11:f9:b2:e7:da:36:97:85:ae:b4:a7:52: 03:cf:c3:67:8e:4d:da:e3:f2:f4:85:00:0d:9e:28: ee:72:61:84:8e:6c:e5:21:85:7f:41:2c:9d:03:c3: 48:1a:be:8e:a0:ad:5d:8d:a6:1d:cb:2e:fe:42:82: 74:63:52:c9:f5:0f:5f:ae:84:26:d6:48:f0:80:16: f2:5a:dd:b4:1f:00:2b:d0:7b:db:c8:7d:9d:38:c0: c6:aa:42:1a:be:34:28:6a:14:64:19:9e:04:41:76: 8b:e2:5b:a5:d0:f4:dc:14:9b:5d:53:87:e5:f3:96: 80:83:30:8b:51:3d:b6:cc:75:23:9c:d0:81:9a:ae: 78:9f:c0:74:85:af:8d:20:36:30:ac:b5:1d:12:ec: 42:c3:58:b2:26:91:35:3e:0f:46:fe:0a:8b:a5:9b: 7c:86:5c:1c:99:5e:f9:3e:2e:81:e7:4c:b2:7e:dc: 50:e4:e7:52:22:5e:7b:87:13:20:64:0a:7a:9e:cf: 78:e8:33:1a:09:17:61:ec:7c:72:7f:e0:15:75:bd: 15:8d:26:d6:1a:09:62:99:e1:57:82:2b:49:c6:bd: c6:a7:7c:6d:82:80:45:61:08:3b:08:b5:a3:73:e6: eb:78:10:e3:c4:e6:59:fa:54:fa:8f:b1:0b:23:ee: 69:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D3:E8:1E:51:9D:52:F5:F2:30:67:53:2A:60:3A:6C:6B:04:1E:A0 X509v3 Authority Key Identifier: keyid:F8:C9:E7:9A:DD:DE:29:28:BC:5F:A2:7C:3D:62:1C:1D:93:25:21:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/3135372e31302e3137382e302f32342d3234203d3e20313532333435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.178.0/24 Signature Algorithm: sha256WithRSAEncryption 30:14:66:6e:e9:f7:ce:43:a6:a6:14:fd:43:c4:e8:b9:61:4d: de:ef:98:24:ff:fa:c8:da:42:43:94:01:75:47:7b:25:db:e8: 1e:0f:14:28:52:09:d6:ca:96:71:58:84:dc:05:63:0f:c8:64: 1e:02:65:b1:70:5d:b2:28:17:23:1d:1b:35:a9:8a:f4:fb:6a: eb:16:e9:f9:23:82:80:cf:85:5c:80:91:d7:6c:02:83:0f:60: 83:c9:4b:27:7e:be:6b:23:f5:8c:47:35:a4:5a:b6:26:e0:8b: ac:93:f8:26:0d:f3:9b:aa:10:6e:47:22:89:76:6c:b3:bc:f8: af:55:17:39:18:64:63:39:9d:68:8e:f9:fa:1d:7c:7e:4a:5f: 8d:bb:43:3c:94:92:6c:da:4a:86:5d:1b:31:88:7f:a7:da:2d: 1f:2c:b5:3d:ed:9f:06:09:33:bf:30:71:f4:37:9e:4b:c7:45: dd:20:3a:5d:94:35:68:6f:26:e5:e3:47:e6:1f:bb:d2:2a:49: 4c:fc:b4:b3:0d:4c:ab:dd:d5:f0:c7:90:f6:46:63:87:99:15: 19:97:3b:4a:8f:ee:36:72:c7:b1:ba:19:09:46:7d:ac:39:a4: 61:de:3c:a3:4b:41:6a:ae:c3:96:44:d1:86:ca:49:ab:ed:03: 9b:83:ab:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOwl6tlv7XrZii32s9KRIb0v3YowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDOUU3OUFERERFMjkyOEJDNUZBMjdDM0Q2MjFDMUQ5 MzI1MjE2OTAeFw0yNTAxMDYyMzU1MDJaFw0yNjAxMDYwMDAwMDJaMDMxMTAvBgNV BAMTKDYyRDNFODFFNTE5RDUyRjVGMjMwNjc1MzJBNjAzQTZDNkIwNDFFQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1FRH5sufaNpeFrrSnUgPPw2eO Tdrj8vSFAA2eKO5yYYSObOUhhX9BLJ0Dw0gavo6grV2Nph3LLv5CgnRjUsn1D1+u hCbWSPCAFvJa3bQfACvQe9vIfZ04wMaqQhq+NChqFGQZngRBdoviW6XQ9NwUm11T h+XzloCDMItRPbbMdSOc0IGarnifwHSFr40gNjCstR0S7ELDWLImkTU+D0b+Coul m3yGXByZXvk+LoHnTLJ+3FDk51IiXnuHEyBkCnqez3joMxoJF2HsfHJ/4BV1vRWN JtYaCWKZ4VeCK0nGvcanfG2CgEVhCDsItaNz5ut4EOPE5ln6VPqPsQsj7mmNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYtPoHlGdUvXyMGdTKmA6bGsEHqAwHwYDVR0j BBgwFoAU+Mnnmt3eKSi8X6J8PWIcHZMlIWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2M4OTFkNy00ZmNjLTQ3NzAtODJkNC0zNjdiODdiYjU1MWUvMC9GOEM5RTc5QURE REUyOTI4QkM1RkEyN0MzRDYyMUMxRDkzMjUyMTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjhDOUU3OUFERERFMjkyOEJDNUZBMjdDM0Q2MjFDMUQ5MzI1 MjE2OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzYzg5MWQ3LTRmY2MtNDc3MC04 MmQ0LTM2N2I4N2JiNTUxZS8wLzMxMzUzNzJlMzEzMDJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQqyMA0GCSqG SIb3DQEBCwUAA4IBAQAwFGZu6ffOQ6amFP1DxOi5YU3e75gk//rI2kJDlAF1R3sl 2+geDxQoUgnWypZxWITcBWMPyGQeAmWxcF2yKBcjHRs1qYr0+2rrFun5I4KAz4Vc gJHXbAKDD2CDyUsnfr5rI/WMRzWkWrYm4Iusk/gmDfObqhBuRyKJdmyzvPivVRc5 GGRjOZ1ojvn6HXx+Sl+Nu0M8lJJs2kqGXRsxiH+n2i0fLLU97Z8GCTO/MHH0N55L x0XdIDpdlDVobybl40fmH7vSKklM/LSzDUyr3dXwx5D2RmOHmRUZlztKj+42csex uhkJRn2sOaRh3jyjS0FqrsOWRNGGykmr7QObg6sY -----END CERTIFICATE-----Generated at Fri Apr 18 01:13:28 2025 by rpki-client