$ rpki-client -vvf repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa File: 3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa (raw, json) Hash identifier: bm0cLaD/jg5NiXGndb/98PNppE3HSK9OAR2k8wtE41Y= Subject key identifier: 37:70:5C:23:EC:44:DB:04:BF:5B:FF:25:24:AF:5E:6E:58:82:95:2B Certificate issuer: /CN=4ED16B9231905A1C7A353DF749BF99487E69E313 Certificate serial: 2D00A7D58FCE0003CFB41519CF6DCAE5721EF6C8 Authority key identifier: 4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa Signing time: Sat 29 Mar 2025 06:00:01 +0000 ROA not before: Sat 29 Mar 2025 05:55:01 +0000 ROA not after: Sat 28 Mar 2026 06:00:01 +0000 asID: 152425 IP address blocks: 157.20.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.crl rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:00:a7:d5:8f:ce:00:03:cf:b4:15:19:cf:6d:ca:e5:72:1e:f6:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ED16B9231905A1C7A353DF749BF99487E69E313 Validity Not Before: Mar 29 05:55:01 2025 GMT Not After : Mar 28 06:00:01 2026 GMT Subject: CN=37705C23EC44DB04BF5BFF2524AF5E6E5882952B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:41:30:d3:89:84:53:5b:1f:25:a1:53:39:a6: 09:a9:39:1d:9d:50:32:f1:81:6a:d0:a7:cd:48:8a: 39:e4:72:c8:e6:3c:fa:52:24:9b:b8:a6:46:39:20: c2:10:8b:75:59:74:7b:c9:0b:59:d0:48:c9:72:75: 8d:b7:d5:06:70:ab:59:6a:60:08:e9:42:24:e0:5f: af:b4:cf:1a:cb:90:b7:c7:8a:10:07:81:a3:34:62: 01:ec:5c:9d:eb:30:57:76:59:bd:ee:9b:da:4c:d1: 29:5f:83:67:ca:38:b9:7c:23:c0:dc:0a:e2:4a:3e: 38:ae:44:82:0d:99:d7:59:ed:21:b9:93:6e:74:c3: 72:7e:a6:71:6b:fc:fa:23:fb:ba:dc:2e:34:13:6a: 33:77:3d:86:85:a0:6c:78:d8:cb:50:b7:d7:ff:13: 90:ba:c1:72:92:be:6a:e0:fe:a9:2c:44:ff:fc:6e: df:1d:a8:b2:6f:0d:43:3f:ed:37:d5:19:aa:96:81: f9:19:40:ab:74:c7:f4:73:74:30:ca:66:cd:0e:2f: 11:dc:20:5c:3f:24:18:db:f4:a4:fd:7f:39:a7:90: d6:14:28:29:46:60:a8:b5:5b:71:36:5b:e7:44:cc: 3a:5b:bc:1f:b1:96:6d:d9:99:1f:53:4e:00:7e:27: 09:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:70:5C:23:EC:44:DB:04:BF:5B:FF:25:24:AF:5E:6E:58:82:95:2B X509v3 Authority Key Identifier: keyid:4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.100.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:22:45:89:c8:b4:a4:19:ec:06:47:3b:86:32:5b:28:80:2e: 71:2d:ae:96:e7:e9:4f:2a:85:9c:6d:71:7d:23:10:bb:f9:0e: 1b:df:ef:af:83:e4:a7:1f:ff:58:7e:cc:9d:a6:15:15:8a:ee: 5f:a6:63:27:79:73:7c:59:cd:b0:59:47:1a:a2:83:ae:0f:29: 27:12:a9:42:e5:7f:aa:b4:d2:61:ea:46:35:14:1b:9f:64:95: 40:b2:20:9c:2f:f3:7a:82:c6:e0:df:94:0e:81:d6:ba:63:35: 84:af:2c:29:7b:5f:07:5e:fc:e4:0d:66:3d:da:a1:2a:4d:f2: 8e:2e:54:4f:9a:24:15:e8:3f:4b:be:de:c2:bf:6c:be:55:2b: fa:c0:df:fa:86:4e:11:9e:0a:f6:00:9b:c6:75:db:a7:28:95: 46:41:0e:f8:4f:54:d6:3f:06:b9:e0:e0:c5:ca:b4:55:8f:3a: 75:15:9f:7b:37:ae:ca:b9:70:bc:84:a2:8f:b9:47:a0:e4:20: 7f:ec:1d:cc:be:de:73:02:e4:50:85:e3:c2:7b:27:04:98:9c: 20:f4:6f:37:b5:44:1a:b9:7f:17:17:51:a6:6e:1a:00:c1:c7: fc:9f:36:d8:9e:8f:5c:09:d9:df:d0:b8:74:de:1b:38:a4:35: 58:40:49:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULQCn1Y/OAAPPtBUZz23K5XIe9sgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVEMTZCOTIzMTkwNUExQzdBMzUzREY3NDlCRjk5NDg3 RTY5RTMxMzAeFw0yNTAzMjkwNTU1MDFaFw0yNjAzMjgwNjAwMDFaMDMxMTAvBgNV BAMTKDM3NzA1QzIzRUM0NERCMDRCRjVCRkYyNTI0QUY1RTZFNTg4Mjk1MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6QTDTiYRTWx8loVM5pgmpOR2d UDLxgWrQp81IijnkcsjmPPpSJJu4pkY5IMIQi3VZdHvJC1nQSMlydY231QZwq1lq YAjpQiTgX6+0zxrLkLfHihAHgaM0YgHsXJ3rMFd2Wb3um9pM0Slfg2fKOLl8I8Dc CuJKPjiuRIINmddZ7SG5k250w3J+pnFr/Poj+7rcLjQTajN3PYaFoGx42MtQt9f/ E5C6wXKSvmrg/qksRP/8bt8dqLJvDUM/7TfVGaqWgfkZQKt0x/RzdDDKZs0OLxHc IFw/JBjb9KT9fzmnkNYUKClGYKi1W3E2W+dEzDpbvB+xlm3ZmR9TTgB+JwnNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN3BcI+xE2wS/W/8lJK9ebliClSswHwYDVR0j BBgwFoAUTtFrkjGQWhx6NT33Sb+ZSH5p4xMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Yjg4ZDJjYS0yMjliLTRhYWMtOWI1Yy00MmMxNTEwNWJiODIvMC80RUQxNkI5MjMx OTA1QTFDN0EzNTNERjc0OUJGOTk0ODdFNjlFMzEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNEVEMTZCOTIzMTkwNUExQzdBMzUzREY3NDlCRjk5NDg3RTY5 RTMxMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiODhkMmNhLTIyOWItNGFhYy05 YjVjLTQyYzE1MTA1YmI4Mi8wLzMxMzUzNzJlMzIzMDJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRRkMA0GCSqG SIb3DQEBCwUAA4IBAQAeIkWJyLSkGewGRzuGMlsogC5xLa6W5+lPKoWcbXF9IxC7 +Q4b3++vg+SnH/9YfsydphUViu5fpmMneXN8Wc2wWUcaooOuDyknEqlC5X+qtNJh 6kY1FBufZJVAsiCcL/N6gsbg35QOgda6YzWErywpe18HXvzkDWY92qEqTfKOLlRP miQV6D9Lvt7Cv2y+VSv6wN/6hk4Rngr2AJvGddunKJVGQQ74T1TWPwa54ODFyrRV jzp1FZ97N67KuXC8hKKPuUeg5CB/7B3Mvt5zAuRQhePCeycEmJwg9G83tUQauX8X F1GmbhoAwcf8nzbYno9cCdnf0Lh03hs4pDVYQEmF -----END CERTIFICATE-----Generated at Tue Apr 8 00:22:42 2025 by rpki-client