$ rpki-client -vvf repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa File: 3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa (raw, json) Hash identifier: bbNh5IhzL1rNJLyhy7hiFZkFXcVeHuBdSs69IB8xXPA= Subject key identifier: 2A:5A:E6:EC:4B:CB:37:99:84:59:64:F5:C9:76:78:57:34:E7:03:6F Certificate issuer: /CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Certificate serial: 5BE6B6A70AD2EA91170BFB85C1544842378BC576 Authority key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa Signing time: Mon 31 Mar 2025 06:00:01 +0000 ROA not before: Mon 31 Mar 2025 05:55:01 +0000 ROA not after: Mon 30 Mar 2026 06:00:01 +0000 asID: 152376 IP address blocks: 157.15.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 06:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:e6:b6:a7:0a:d2:ea:91:17:0b:fb:85:c1:54:48:42:37:8b:c5:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Validity Not Before: Mar 31 05:55:01 2025 GMT Not After : Mar 30 06:00:01 2026 GMT Subject: CN=2A5AE6EC4BCB3799845964F5C976785734E7036F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:87:2e:c4:db:fd:9b:93:7d:e6:f2:1a:66:1e: 9f:ea:2d:69:31:ff:95:88:41:fe:c7:0d:68:4a:b8: de:ac:dd:a5:cb:1c:62:58:47:b7:fb:ef:09:f9:98: 69:89:99:8c:11:b6:30:71:fd:2d:ab:1e:2d:a9:66: 70:33:21:70:11:28:85:35:57:2c:1f:16:1f:a7:c3: 96:f4:21:8d:3d:54:1a:2d:aa:80:a1:19:14:68:db: 78:c7:4b:46:03:94:79:3c:d1:3c:6b:24:8f:7f:4c: 14:3c:9a:1c:81:85:99:1c:73:5e:c5:f4:b1:29:98: d0:a3:16:69:ff:25:b5:94:79:94:a4:56:cb:57:07: ee:74:3a:49:0a:ce:0e:b9:5b:57:27:a8:84:56:fd: c0:7c:1b:f0:73:5b:de:32:81:2f:0b:da:25:41:7e: a6:27:10:2e:21:1e:c0:59:a7:ad:aa:ce:c9:b0:24: c3:03:27:cc:35:a6:b4:9b:ae:15:bb:2a:8e:54:d3: 48:61:4b:93:71:f6:a3:6b:23:a0:ce:56:20:87:60: af:33:5e:a4:cf:b8:44:76:62:48:1b:ca:53:44:fe: 5e:b4:89:92:aa:3c:b4:cf:70:02:9f:53:ed:3f:be: ec:62:9e:b9:86:5e:67:6c:99:1b:74:26:46:cf:e8: 01:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5A:E6:EC:4B:CB:37:99:84:59:64:F5:C9:76:78:57:34:E7:03:6F X509v3 Authority Key Identifier: keyid:22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.145.0/24 Signature Algorithm: sha256WithRSAEncryption a5:83:81:bb:8c:08:31:e9:91:c8:1a:5a:8f:6d:e7:b1:67:bb: ce:ee:b2:91:4f:ab:10:00:b8:56:0a:58:48:e6:fd:c6:35:d7: 5a:bc:dd:7b:5e:9f:87:1e:a5:30:6c:29:5a:cc:49:03:7a:ca: fd:ee:ba:6c:36:ac:23:ce:4c:76:10:b7:24:37:d1:e7:8f:75: aa:5f:fd:b8:81:f9:2a:2f:1a:ca:f5:37:88:dc:a8:4d:22:70: a2:f0:8e:9d:48:46:21:3b:4d:96:22:05:64:01:f7:24:4b:de: 33:55:be:62:92:30:d9:99:0c:66:a0:63:f8:41:32:c5:97:99: 2a:d8:59:b5:8c:60:3d:ca:75:e7:55:f2:01:5d:a6:58:7d:7a: c2:c6:fb:96:46:d3:56:ad:ed:57:81:17:3f:eb:71:9e:9d:57: 08:8f:ff:c3:14:c2:a9:ca:f2:b0:5b:73:51:58:3f:56:a4:80: 81:86:46:8b:cd:a8:74:6d:48:cb:dd:2a:c5:47:29:5b:5c:66: 9b:b1:e8:f8:74:4d:18:a0:c4:67:c6:4e:fc:3b:da:40:36:33: d3:5e:a3:0e:04:34:fd:df:80:b1:26:44:34:c7:74:7e:46:df: 16:d4:c3:79:9d:95:a9:ab:dd:cf:55:60:72:0d:d2:64:c1:40: 8e:15:88:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW+a2pwrS6pEXC/uFwVRIQjeLxXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1 RkE1RTczRjAeFw0yNTAzMzEwNTU1MDFaFw0yNjAzMzAwNjAwMDFaMDMxMTAvBgNV BAMTKDJBNUFFNkVDNEJDQjM3OTk4NDU5NjRGNUM5NzY3ODU3MzRFNzAzNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDhy7E2/2bk33m8hpmHp/qLWkx /5WIQf7HDWhKuN6s3aXLHGJYR7f77wn5mGmJmYwRtjBx/S2rHi2pZnAzIXARKIU1 VywfFh+nw5b0IY09VBotqoChGRRo23jHS0YDlHk80TxrJI9/TBQ8mhyBhZkcc17F 9LEpmNCjFmn/JbWUeZSkVstXB+50OkkKzg65W1cnqIRW/cB8G/BzW94ygS8L2iVB fqYnEC4hHsBZp62qzsmwJMMDJ8w1prSbrhW7Ko5U00hhS5Nx9qNrI6DOViCHYK8z XqTPuER2YkgbylNE/l60iZKqPLTPcAKfU+0/vuxinrmGXmdsmRt0JkbP6AFJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKlrm7EvLN5mEWWT1yXZ4VzTnA28wHwYDVR0j BBgwFoAUIkYBX/8vxV/vucRKitQWtV+l5z8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMC8yMjQ2MDE1RkZG MkZDNTVGRUZCOUM0NEE4QUQ0MTZCNTVGQTVFNzNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1RkE1 RTczRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+RMA0GCSqG SIb3DQEBCwUAA4IBAQClg4G7jAgx6ZHIGlqPbeexZ7vO7rKRT6sQALhWClhI5v3G NddavN17Xp+HHqUwbClazEkDesr97rpsNqwjzkx2ELckN9Hnj3WqX/24gfkqLxrK 9TeI3KhNInCi8I6dSEYhO02WIgVkAfckS94zVb5ikjDZmQxmoGP4QTLFl5kq2Fm1 jGA9ynXnVfIBXaZYfXrCxvuWRtNWre1XgRc/63GenVcIj//DFMKpyvKwW3NRWD9W pICBhkaLzah0bUjL3SrFRylbXGabsej4dE0YoMRnxk78O9pANjPTXqMOBDT934Cx JkQ0x3R+Rt8W1MN5nZWpq93PVWByDdJkwUCOFYj/ -----END CERTIFICATE-----Generated at Thu Apr 17 23:28:20 2025 by rpki-client