$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33362e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: GpC0yHwXQ5lbHiYUnaLrCvfX3lNPHMkYotv+J++l4RE= Subject key identifier: F4:33:D7:18:F6:47:26:B2:AF:CA:D7:D6:18:4D:B5:BC:C5:B3:8B:6D Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 1C02CADFD294AD3E6E7724183D651833F467E52B Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa Signing time: Wed 12 Feb 2025 08:02:24 +0000 ROA not before: Wed 12 Feb 2025 07:57:24 +0000 ROA not after: Wed 11 Feb 2026 08:02:24 +0000 asID: 140470 IP address blocks: 157.20.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 02:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:02:ca:df:d2:94:ad:3e:6e:77:24:18:3d:65:18:33:f4:67:e5:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Feb 12 07:57:24 2025 GMT Not After : Feb 11 08:02:24 2026 GMT Subject: CN=F433D718F64726B2AFCAD7D6184DB5BCC5B38B6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c4:6d:5d:e4:17:86:d8:a0:9c:56:c2:ba:3a: 89:39:5b:70:ee:51:40:3a:88:67:a2:19:f0:a9:9f: ef:b2:e2:eb:23:f0:3b:36:b2:ba:45:4e:e1:98:d3: 2f:3e:de:5f:c4:8a:ba:12:df:aa:12:a3:d9:47:9f: b5:7c:0c:ab:0f:3f:6e:8e:f7:df:6a:2f:11:fa:cb: 45:6c:85:dd:c7:a7:bb:d9:6d:b9:5a:fb:52:2f:71: d9:1e:89:c9:07:37:38:a2:71:3a:e5:9b:73:2f:ed: 81:04:7f:16:bf:dd:2a:fe:b2:2a:39:ef:30:d0:59: 8d:9b:72:1d:f1:7e:9f:77:ad:03:cb:68:20:11:4c: b9:ae:f9:50:0c:f0:ca:7e:1b:fa:e6:c3:02:4d:2b: 2c:8f:78:22:00:e3:66:d9:0e:ba:8a:bb:0a:0e:bd: 85:5e:7f:f7:1e:9e:a6:77:3d:1e:e6:4e:74:72:0c: 3a:42:b5:24:e9:1c:38:52:0b:12:48:81:dc:2a:48: 63:f4:59:f7:50:90:ef:cb:6b:54:4c:40:76:d0:8d: 93:de:c8:e8:04:7e:0b:06:17:d1:78:af:9a:f2:70: 72:c8:81:a6:0c:91:74:63:d3:98:c8:a6:af:13:7b: 4f:55:e0:b7:46:a2:b3:7d:e9:ef:e5:0b:f6:24:3e: 5f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:33:D7:18:F6:47:26:B2:AF:CA:D7:D6:18:4D:B5:BC:C5:B3:8B:6D X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.36.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:a3:13:2e:0c:a2:5b:d5:bb:1b:d7:ce:84:41:f7:c3:cf:71: cc:4e:cf:85:51:fd:24:4c:4e:66:e1:fe:57:1a:2d:1d:70:ac: c2:60:4b:27:ba:8f:31:fa:5a:6a:3d:ac:a7:ba:d8:a7:c9:1b: 24:01:83:d1:8d:38:05:9a:ca:78:24:62:7e:ce:42:92:71:9e: 90:9f:e3:a4:1f:f3:8c:01:94:73:03:8a:2e:39:91:20:76:50: 36:7b:ed:0a:43:42:15:ff:33:71:3f:b6:d9:d3:bd:da:ea:98: bd:51:d4:bb:9a:4c:bf:98:78:e2:59:dd:a2:21:8f:39:c2:cc: 29:ee:14:e0:92:60:36:a9:d0:92:63:4f:bc:9a:97:1c:20:50: db:a2:dc:e2:37:f9:2d:76:38:4a:6c:b8:62:12:88:7f:63:c9: e7:e8:6c:7a:5a:88:7c:54:7d:31:10:08:29:2f:70:fe:78:eb: ac:7a:b1:a1:c6:6f:fe:65:15:23:c8:67:2e:4e:28:db:cc:8b: 22:9c:58:d4:b4:cf:3c:62:b9:ba:f0:e6:ab:f1:e1:ab:0c:ce: af:6d:c8:f1:76:2d:cc:c9:19:76:ac:e9:e3:0d:28:af:d2:a5: 28:c1:89:fb:24:f7:6f:70:b8:22:79:dc:8b:94:06:ea:55:08: 12:bd:3c:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHALK39KUrT5udyQYPWUYM/Rn5SswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNTAyMTIwNzU3MjRaFw0yNjAyMTEwODAyMjRaMDMxMTAvBgNV BAMTKEY0MzNENzE4RjY0NzI2QjJBRkNBRDdENjE4NERCNUJDQzVCMzhCNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfxG1d5BeG2KCcVsK6Ook5W3Du UUA6iGeiGfCpn++y4usj8Ds2srpFTuGY0y8+3l/EiroS36oSo9lHn7V8DKsPP26O 999qLxH6y0Vshd3Hp7vZbbla+1IvcdkeickHNziicTrlm3Mv7YEEfxa/3Sr+sio5 7zDQWY2bch3xfp93rQPLaCARTLmu+VAM8Mp+G/rmwwJNKyyPeCIA42bZDrqKuwoO vYVef/cenqZ3PR7mTnRyDDpCtSTpHDhSCxJIgdwqSGP0WfdQkO/La1RMQHbQjZPe yOgEfgsGF9F4r5rycHLIgaYMkXRj05jIpq8Te09V4LdGorN96e/lC/YkPl8nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9DPXGPZHJrKvytfWGE21vMWzi20wHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJDANBgkqhkiG 9w0BAQsFAAOCAQEAWqMTLgyiW9W7G9fOhEH3w89xzE7PhVH9JExOZuH+VxotHXCs wmBLJ7qPMfpaaj2sp7rYp8kbJAGD0Y04BZrKeCRifs5CknGekJ/jpB/zjAGUcwOK LjmRIHZQNnvtCkNCFf8zcT+22dO92uqYvVHUu5pMv5h44lndoiGPOcLMKe4U4JJg NqnQkmNPvJqXHCBQ26Lc4jf5LXY4Smy4YhKIf2PJ5+hselqIfFR9MRAIKS9w/njr rHqxocZv/mUVI8hnLk4o28yLIpxY1LTPPGK5uvDmq/HhqwzOr23I8XYtzMkZdqzp 4w0or9KlKMGJ+yT3b3C4Innci5QG6lUIEr08pA== -----END CERTIFICATE-----Generated at Sun Apr 6 11:00:01 2025 by rpki-client