$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa File: 3135372e32302e33362e302f32332d3233203d3e20313430343730.roa (raw, json) Hash identifier: RHyzhtAgplvJvuCV7fIv62s8sggnnXtZnxO1BaRf1q4= Subject key identifier: 2F:ED:65:79:A8:1E:9D:D8:DB:9E:90:5A:93:77:50:30:85:50:37:B0 Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 3A72537F7FE17121CE0C1EDCE952405FF446838C Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa Signing time: Wed 12 Feb 2025 08:02:23 +0000 ROA not before: Wed 12 Feb 2025 07:57:23 +0000 ROA not after: Wed 11 Feb 2026 08:02:23 +0000 asID: 140470 IP address blocks: 157.20.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 02:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:72:53:7f:7f:e1:71:21:ce:0c:1e:dc:e9:52:40:5f:f4:46:83:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Feb 12 07:57:23 2025 GMT Not After : Feb 11 08:02:23 2026 GMT Subject: CN=2FED6579A81E9DD8DB9E905A93775030855037B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:a7:c4:3a:7d:fd:25:30:bc:5a:cb:ba:d4: 9e:33:a5:a8:d4:52:69:53:3a:f7:a6:6e:28:90:8d: 21:62:a4:4b:31:69:5b:0b:88:8f:d6:8c:6d:ce:da: 7d:e9:dd:67:7a:82:da:87:ba:31:77:97:3d:22:f4: 68:27:76:26:99:7a:8d:b4:e2:e1:fe:a5:d8:0e:99: 94:0e:10:bb:b9:15:a9:99:3e:4c:46:b9:b2:e3:08: a4:0c:4e:32:6b:86:6a:e2:2f:ab:3e:22:f8:8f:3e: 16:f1:54:a2:97:ac:7f:0e:94:2a:4c:0e:40:0e:ea: ea:73:b2:49:f8:d7:31:9a:69:19:b3:1d:d3:fb:19: 41:b4:7c:41:ec:2f:99:02:eb:b3:62:ae:e1:d0:04: b3:c1:7a:a4:ab:03:5c:db:1e:96:14:b9:e5:ed:70: 59:86:3d:4e:fc:dd:d1:44:81:42:e8:7f:47:eb:b0: 79:69:b0:4d:3e:88:e9:9e:44:64:2e:a9:db:ce:b6: a3:1d:27:0f:1b:08:d6:44:28:49:52:7b:75:c5:af: 15:97:d7:4e:13:12:69:bd:00:92:c8:7a:22:36:0e: 11:ad:17:2d:d0:c1:17:57:24:17:5d:7e:b9:6c:52: 2b:90:9c:58:18:0c:b1:b3:a7:40:71:2c:2b:90:a1: 0e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:ED:65:79:A8:1E:9D:D8:DB:9E:90:5A:93:77:50:30:85:50:37:B0 X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.36.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:fb:06:1a:89:9a:49:79:53:75:15:64:d0:84:3d:6d:00:f4: 77:bc:85:84:2e:2d:c1:7a:a1:d6:02:f2:3e:62:f0:2e:5f:da: e5:f5:b1:45:bb:5d:2f:84:80:54:6c:16:25:35:42:88:65:3c: d5:59:92:21:ff:1d:24:7d:84:a8:c9:b2:de:54:f4:68:e1:c1: bd:64:3e:86:4f:85:b0:2a:e1:cd:70:2b:64:5f:8f:5b:b0:dc: 72:96:34:32:ec:20:2b:de:c6:7d:3f:9f:de:f9:14:09:57:82: 65:3f:d3:79:b9:19:71:2f:72:36:22:15:7a:fb:2d:52:e1:29: 84:f2:fb:56:bf:57:53:dc:5f:8b:33:98:ea:64:fc:85:1c:9d: c6:fb:0e:11:f3:6f:c2:fa:29:45:4e:50:5c:7c:d1:37:99:b4: fd:1b:52:7c:bb:77:53:d4:77:9e:ec:c8:a5:74:e9:43:fb:8e: 53:79:1d:4e:37:a5:d7:67:e2:b1:36:92:2f:71:61:6d:02:fe: 56:ab:8a:00:95:92:a3:d4:c9:ea:e0:89:35:cf:32:95:3e:d6: ce:73:8d:ef:5a:d1:14:c9:76:fc:f6:87:12:96:38:01:7d:f8: 0c:ac:d7:31:13:9a:bd:a6:9d:f1:f9:a2:f7:9e:f1:62:4e:62: 33:e1:9b:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOnJTf3/hcSHODB7c6VJAX/RGg4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNTAyMTIwNzU3MjNaFw0yNjAyMTEwODAyMjNaMDMxMTAvBgNV BAMTKDJGRUQ2NTc5QTgxRTlERDhEQjlFOTA1QTkzNzc1MDMwODU1MDM3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1dafEOn39JTC8Wsu61J4zpajU UmlTOvembiiQjSFipEsxaVsLiI/WjG3O2n3p3Wd6gtqHujF3lz0i9GgndiaZeo20 4uH+pdgOmZQOELu5FamZPkxGubLjCKQMTjJrhmriL6s+IviPPhbxVKKXrH8OlCpM DkAO6upzskn41zGaaRmzHdP7GUG0fEHsL5kC67NiruHQBLPBeqSrA1zbHpYUueXt cFmGPU783dFEgULof0frsHlpsE0+iOmeRGQuqdvOtqMdJw8bCNZEKElSe3XFrxWX 104TEmm9AJLIeiI2DhGtFy3QwRdXJBddfrlsUiuQnFgYDLGzp0BxLCuQoQ7zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL+1leagendjbnpBak3dQMIVQN7AwHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UJDANBgkqhkiG 9w0BAQsFAAOCAQEALPsGGomaSXlTdRVk0IQ9bQD0d7yFhC4twXqh1gLyPmLwLl/a 5fWxRbtdL4SAVGwWJTVCiGU81VmSIf8dJH2EqMmy3lT0aOHBvWQ+hk+FsCrhzXAr ZF+PW7DccpY0MuwgK97GfT+f3vkUCVeCZT/TebkZcS9yNiIVevstUuEphPL7Vr9X U9xfizOY6mT8hRydxvsOEfNvwvopRU5QXHzRN5m0/RtSfLt3U9R3nuzIpXTpQ/uO U3kdTjel12fisTaSL3FhbQL+VquKAJWSo9TJ6uCJNc8ylT7WznON71rRFMl2/PaH EpY4AX34DKzXMROavaad8fmi957xYk5iM+GbAg== -----END CERTIFICATE-----Generated at Sun Apr 6 10:55:27 2025 by rpki-client