$ rpki-client -vvf repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa File: 3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa (raw, json) Hash identifier: xA0yIhK/pel57ulFN3HOQ4z99q0P1jOo4pSKaz4ovzA= Subject key identifier: 43:F4:84:CB:89:A5:FF:CD:ED:1B:79:A9:4C:26:0D:F6:FC:B4:73:4E Certificate issuer: /CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Certificate serial: 1331C5C1E05AB566EE5BE4AECCF9F82FC6A00826 Authority key identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa Signing time: Wed 14 May 2025 05:00:02 +0000 ROA not before: Wed 14 May 2025 04:55:02 +0000 ROA not after: Wed 13 May 2026 05:00:02 +0000 asID: 152437 IP address blocks: 157.20.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:31:c5:c1:e0:5a:b5:66:ee:5b:e4:ae:cc:f9:f8:2f:c6:a0:08:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Validity Not Before: May 14 04:55:02 2025 GMT Not After : May 13 05:00:02 2026 GMT Subject: CN=43F484CB89A5FFCDED1B79A94C260DF6FCB4734E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:75:6d:aa:34:16:72:f4:15:5e:d2:fd:67:7d: 9d:85:5b:2e:2f:ad:d7:f8:bd:60:4c:0b:69:0f:b7: 33:9a:f7:b4:c9:d5:4a:45:f6:d8:7e:9b:0b:3d:14: a9:71:20:9c:79:da:c7:a8:79:79:89:fb:0f:a9:79: 79:27:42:06:ed:27:35:10:53:83:dd:cf:d3:cb:f7: 2e:6b:ae:2c:94:b8:63:ae:00:9a:a4:2c:63:90:f8: ee:9d:a0:a0:d0:97:8b:fb:1c:7c:01:ff:9d:32:ca: 56:b3:8e:53:55:d8:7a:37:24:a5:ee:78:da:1c:39: 12:a2:5f:9e:a0:e6:f5:ac:97:d2:45:7b:fc:0a:bb: 9d:c6:1a:cb:af:6f:e3:fa:35:9f:35:d3:8b:6e:d7: d1:9e:bc:ee:e0:2d:34:37:4c:dc:10:dd:3c:e0:c4: 74:2f:ec:8b:b8:dd:f1:4b:d5:b9:22:4f:fe:da:0f: 98:26:9a:84:9f:af:67:0f:29:e1:10:86:b8:62:9f: 23:10:90:40:31:1f:23:6f:84:a2:2b:82:47:03:7e: 4b:52:0a:6e:63:fd:0f:1f:6f:c9:45:90:54:13:dd: e0:65:b3:5f:08:ae:5c:ae:bb:ca:ed:15:e3:4d:50: b1:d0:e5:77:24:4b:bb:67:2e:32:1a:3d:99:9c:59: 5a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F4:84:CB:89:A5:FF:CD:ED:1B:79:A9:4C:26:0D:F6:FC:B4:73:4E X509v3 Authority Key Identifier: keyid:FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.222.0/24 Signature Algorithm: sha256WithRSAEncryption 70:f5:c4:25:cf:a5:69:65:08:7d:d0:3b:e7:22:a8:86:e1:49: 79:ea:0f:07:af:07:b1:95:5a:b3:db:72:06:e5:63:94:8f:92: 33:60:5f:ed:18:10:75:71:1c:7d:d4:23:8b:8c:82:7a:af:8a: 46:e5:8c:7d:f6:88:66:e5:d3:33:f7:9d:7a:7c:9a:c3:46:44: ce:1c:f4:9b:3d:d2:aa:6f:33:15:37:ea:35:1b:10:63:0e:65: 63:3f:c9:b1:db:29:82:ae:af:ad:a5:09:ed:4b:7d:e3:22:d2: ad:9c:d4:a0:0e:52:5c:9e:4c:14:f9:9f:f3:ff:0f:db:1c:0b: 66:f2:d8:9e:78:c0:83:06:70:98:ea:e4:20:66:af:d3:51:71: 3d:25:d3:6b:c0:6d:53:42:27:6e:0d:0d:ae:3b:83:00:d0:6b: ae:15:05:f1:a6:06:f0:ce:ec:3a:92:b0:10:ac:9c:48:2b:7f: 93:ea:cf:78:2f:2e:82:15:53:99:b5:5f:06:e7:52:58:9b:35: 0b:b1:7a:75:45:34:e1:6a:ec:94:d8:cb:fb:ac:cd:5b:43:ec: d3:7d:25:75:62:f5:90:f5:e6:79:1a:e9:9f:08:0f:64:db:4e: b6:ea:70:06:55:c5:7b:b5:4f:4a:4c:4f:c4:82:f3:da:ee:a2: d6:2b:0c:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEzHFweBatWbuW+SuzPn4L8agCCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4 MDlEMDczOTAeFw0yNTA1MTQwNDU1MDJaFw0yNjA1MTMwNTAwMDJaMDMxMTAvBgNV BAMTKDQzRjQ4NENCODlBNUZGQ0RFRDFCNzlBOTRDMjYwREY2RkNCNDczNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIdW2qNBZy9BVe0v1nfZ2FWy4v rdf4vWBMC2kPtzOa97TJ1UpF9th+mws9FKlxIJx52seoeXmJ+w+peXknQgbtJzUQ U4Pdz9PL9y5rriyUuGOuAJqkLGOQ+O6doKDQl4v7HHwB/50yylazjlNV2Ho3JKXu eNocORKiX56g5vWsl9JFe/wKu53GGsuvb+P6NZ8104tu19GevO7gLTQ3TNwQ3Tzg xHQv7Iu43fFL1bkiT/7aD5gmmoSfr2cPKeEQhrhinyMQkEAxHyNvhKIrgkcDfktS Cm5j/Q8fb8lFkFQT3eBls18Irlyuu8rtFeNNULHQ5XckS7tnLjIaPZmcWVq7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ/SEy4ml/83tG3mpTCYN9vy0c04wHwYDVR0j BBgwFoAU/nnlbL6Zx3PNch33qw5cooCdBzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MWYxNWExZC01ZGFjLTRjYzktODExYS1lNDljYjRlN2JjZTEvMC9GRTc5RTU2Q0JF OTlDNzczQ0Q3MjFERjdBQjBFNUNBMjgwOUQwNzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4MDlE MDczOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZjE1YTFkLTVkYWMtNGNjOS04 MTFhLWU0OWNiNGU3YmNlMS8wLzMxMzUzNzJlMzIzMDJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTeMA0GCSqG SIb3DQEBCwUAA4IBAQBw9cQlz6VpZQh90DvnIqiG4Ul56g8HrwexlVqz23IG5WOU j5IzYF/tGBB1cRx91COLjIJ6r4pG5Yx99ohm5dMz9516fJrDRkTOHPSbPdKqbzMV N+o1GxBjDmVjP8mx2ymCrq+tpQntS33jItKtnNSgDlJcnkwU+Z/z/w/bHAtm8tie eMCDBnCY6uQgZq/TUXE9JdNrwG1TQiduDQ2uO4MA0GuuFQXxpgbwzuw6krAQrJxI K3+T6s94Ly6CFVOZtV8G51JYmzULsXp1RTThauyU2Mv7rM1bQ+zTfSV1YvWQ9eZ5 GumfCA9k20626nAGVcV7tU9KTE/EgvPa7qLWKwws -----END CERTIFICATE-----Generated at Sat Jun 7 21:06:44 2025 by rpki-client