$ rpki-client -vvf repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa File: 3135372e31302e302e302f32332d3233203d3e20313532303739.roa (raw, json) Hash identifier: LI/HMaoSlImx3bWiKBUR5SBmy9IHEOgEnYbWctfALp8= Subject key identifier: A6:2B:7A:BB:C1:18:55:9E:37:30:16:C1:14:0B:CC:42:85:54:27:E2 Certificate issuer: /CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Certificate serial: 7AE772A4BB76672F2403E8E7BF7E00DE45100D18 Authority key identifier: FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa Signing time: Wed 29 Jan 2025 15:00:01 +0000 ROA not before: Wed 29 Jan 2025 14:55:01 +0000 ROA not after: Wed 28 Jan 2026 15:00:01 +0000 asID: 152079 IP address blocks: 157.10.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 13:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e7:72:a4:bb:76:67:2f:24:03:e8:e7:bf:7e:00:de:45:10:0d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Validity Not Before: Jan 29 14:55:01 2025 GMT Not After : Jan 28 15:00:01 2026 GMT Subject: CN=A62B7ABBC118559E373016C1140BCC42855427E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:42:47:8a:8b:9e:b9:7e:76:de:f0:63:fd:af: 5f:9a:4e:ac:44:06:f8:fe:57:e3:6b:3c:e4:5f:0d: ca:44:45:9f:c4:b6:a2:57:48:a2:31:d0:91:e4:47: 48:ae:ba:8d:00:9e:a1:e4:31:cf:f5:26:63:8c:cb: c6:6b:0b:a3:f0:4f:c3:77:bc:4f:26:a7:db:2d:99: cb:99:76:21:f9:85:02:9a:74:1e:54:53:f1:53:42: e8:17:21:9a:cc:e5:fb:e2:cb:03:c8:41:19:8e:10: 19:57:f7:ea:f0:f6:d3:27:f0:04:a5:92:f9:4e:b3: e2:37:14:9f:93:21:ab:ed:43:28:6b:e5:85:5f:61: 9a:b9:80:90:7b:2c:64:f9:a3:f8:13:84:a3:5b:79: 70:b6:68:24:a2:8f:41:40:38:8c:56:47:ad:c6:71: 2c:39:c8:49:22:24:24:e8:4b:17:ed:21:c9:5a:d0: 7a:42:79:5f:ed:33:e0:5e:1b:0c:5c:a1:aa:ee:4e: e8:e4:09:0c:c4:19:3e:64:76:f6:94:92:43:33:a8: 17:ad:99:66:d9:18:dc:e2:a2:c4:7d:a4:10:8a:ca: c0:6a:e5:aa:2b:37:f6:9c:6b:a3:ca:2b:b2:26:68: 3b:9d:f2:22:1f:50:b1:01:84:b5:cb:2c:74:20:f3: 47:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:2B:7A:BB:C1:18:55:9E:37:30:16:C1:14:0B:CC:42:85:54:27:E2 X509v3 Authority Key Identifier: keyid:FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/23 Signature Algorithm: sha256WithRSAEncryption 64:1b:d5:19:dd:10:f5:05:c4:80:63:ff:0e:b4:9c:1a:17:6b: 22:ed:3f:9b:39:5f:16:65:49:5f:e2:65:88:b8:e5:53:b8:d8: a6:06:93:76:f9:bc:e1:8f:8c:92:1f:10:86:f0:91:2f:7e:65: a9:b1:7a:6c:75:f6:b4:db:2d:56:eb:62:52:59:c5:ac:8b:9a: 18:3f:c9:f0:57:3c:74:db:0c:17:ab:94:d2:ca:3a:a5:70:8c: 31:d6:9d:05:d6:ad:a9:2b:bb:02:9c:80:5b:38:0f:b7:93:62: 63:47:20:30:66:01:75:52:41:20:03:d5:bd:b8:c4:e8:90:c5: e8:48:84:95:2b:25:e9:17:1a:05:81:e5:ac:c1:bd:76:f8:1d: de:b6:f5:51:56:04:c9:85:51:fd:8a:b7:ca:6c:1b:e7:d6:89: 41:a0:fb:d9:8d:40:75:9b:40:25:99:1d:30:24:dd:74:ae:bc: 42:79:24:25:0e:0a:6b:99:e4:09:92:df:20:e5:4c:5e:44:9a: 30:67:e4:3d:d2:84:13:ba:d1:87:10:58:99:94:29:29:7a:62: 77:1a:45:a4:87:05:29:0a:e3:e7:72:a3:b7:b9:22:c7:04:69: 9e:ee:9c:3c:d1:d3:21:7c:9b:41:bb:68:d1:4c:c8:3a:24:06: be:33:1d:7b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeudypLt2Zy8kA+jnv34A3kUQDRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIy MjBGNDhDRDAeFw0yNTAxMjkxNDU1MDFaFw0yNjAxMjgxNTAwMDFaMDMxMTAvBgNV BAMTKEE2MkI3QUJCQzExODU1OUUzNzMwMTZDMTE0MEJDQzQyODU1NDI3RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2QkeKi565fnbe8GP9r1+aTqxE Bvj+V+NrPORfDcpERZ/EtqJXSKIx0JHkR0iuuo0AnqHkMc/1JmOMy8ZrC6PwT8N3 vE8mp9stmcuZdiH5hQKadB5UU/FTQugXIZrM5fviywPIQRmOEBlX9+rw9tMn8ASl kvlOs+I3FJ+TIavtQyhr5YVfYZq5gJB7LGT5o/gThKNbeXC2aCSij0FAOIxWR63G cSw5yEkiJCToSxftIcla0HpCeV/tM+BeGwxcoaruTujkCQzEGT5kdvaUkkMzqBet mWbZGNziosR9pBCKysBq5aorN/aca6PKK7ImaDud8iIfULEBhLXLLHQg80cDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUpit6u8EYVZ43MBbBFAvMQoVUJ+IwHwYDVR0j BBgwFoAU+rCB/NhqsPgdQcnl+5w9MiIPSM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRkMWY2Mi04NDg4LTQwODYtOGQ0Yy1mMmRlNWM3NmRhM2QvMC9GQUIwODFGQ0Q4 NkFCMEY4MUQ0MUM5RTVGQjlDM0QzMjIyMEY0OENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIyMjBG NDhDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzAyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdCgAwDQYJKoZIhvcN AQELBQADggEBAGQb1RndEPUFxIBj/w60nBoXayLtP5s5XxZlSV/iZYi45VO42KYG k3b5vOGPjJIfEIbwkS9+Zamxemx19rTbLVbrYlJZxayLmhg/yfBXPHTbDBerlNLK OqVwjDHWnQXWrakruwKcgFs4D7eTYmNHIDBmAXVSQSAD1b24xOiQxehIhJUrJekX GgWB5azBvXb4Hd629VFWBMmFUf2Kt8psG+fWiUGg+9mNQHWbQCWZHTAk3XSuvEJ5 JCUOCmuZ5AmS3yDlTF5EmjBn5D3ShBO60YcQWJmUKSl6YncaRaSHBSkK4+dyo7e5 IscEaZ7unDzR0yF8m0G7aNFMyDokBr4zHXs= -----END CERTIFICATE-----Generated at Sat Apr 19 11:39:22 2025 by rpki-client