$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33372e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: xOyiM0EcaCp+QM0RHt1mndAJkrKKxlB6dJJDF4X/v7Y= Subject key identifier: 46:E3:B6:61:A6:EA:94:05:76:26:55:97:17:03:29:C5:4D:98:0E:9C Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 7AAF52AD5595C3EC4D65DE110C700A7A0E1A30A8 Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa Signing time: Wed 12 Feb 2025 08:02:23 +0000 ROA not before: Wed 12 Feb 2025 07:57:23 +0000 ROA not after: Wed 11 Feb 2026 08:02:23 +0000 asID: 140470 IP address blocks: 157.20.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 02:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:af:52:ad:55:95:c3:ec:4d:65:de:11:0c:70:0a:7a:0e:1a:30:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Feb 12 07:57:23 2025 GMT Not After : Feb 11 08:02:23 2026 GMT Subject: CN=46E3B661A6EA940576265597170329C54D980E9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:e7:3a:9e:12:3c:73:01:4c:71:7f:68:6f: bb:6f:f8:86:87:94:76:fb:ea:79:a9:98:0c:d3:1b: 3c:7e:04:cf:09:9b:69:9b:f3:24:13:19:75:8f:b5: 04:c9:4f:73:b3:b3:0a:81:0a:57:29:ee:86:19:87: 40:08:69:a3:a4:8e:50:cb:ab:06:b1:4a:dd:27:da: f5:00:30:60:fe:ac:b4:41:d3:34:bd:f3:72:1d:7f: 2f:b0:55:60:f4:03:e6:90:98:ad:8b:b1:1a:72:90: 77:f7:43:10:83:5f:e6:f6:d6:fb:c1:8d:c7:f8:a5: b7:e1:76:d3:3b:93:71:cb:8a:cf:8d:5d:eb:52:3b: f3:6e:3b:eb:e6:d8:43:2e:45:97:d0:90:69:0a:3e: d3:c6:24:b9:cb:bc:67:5b:84:1c:7f:05:69:d8:08: c4:8c:ea:56:4b:27:16:cf:f4:12:98:47:42:46:2a: dc:07:57:c1:88:4f:03:92:ee:44:63:34:0a:7c:0d: cd:dd:47:6e:13:1b:bd:bb:4a:1b:f4:00:b1:9f:2f: 93:a0:4f:cd:21:a0:0f:09:64:8e:4d:8a:eb:ac:00: 0b:ac:30:9c:b1:97:a0:77:ce:59:7d:5a:d7:97:48: 17:05:01:20:8b:65:b0:94:24:02:b2:1e:ba:cf:76: 1b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E3:B6:61:A6:EA:94:05:76:26:55:97:17:03:29:C5:4D:98:0E:9C X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.37.0/24 Signature Algorithm: sha256WithRSAEncryption 47:d6:46:55:d3:44:bd:cc:e1:64:fd:d6:2f:38:18:9d:b7:c9: 87:e7:29:b6:1d:1b:c2:8d:83:e4:94:9f:9b:94:3b:12:2e:99: d7:e9:2f:6c:d3:33:26:b6:35:32:f5:e9:72:c4:59:49:66:86: 71:de:7a:01:a1:f2:66:47:34:5a:ed:5e:e3:a5:b8:c5:5b:a9: fc:58:9e:c8:c5:02:0b:61:23:89:c1:0f:a0:e5:dd:82:2e:21: df:27:3c:62:f8:ca:d3:be:6e:0f:8a:6a:5b:0c:d5:d2:f7:dc: 5a:6d:a9:5b:4c:bd:de:76:35:53:49:f8:81:6f:72:0a:d4:b2: 6a:d0:46:14:e0:d2:b5:b5:d1:0f:7f:04:7f:d2:66:7d:a0:f0: 3e:d7:34:46:b9:a9:5a:6f:2d:b0:2e:af:f0:5c:d4:e2:38:f7: eb:67:10:95:0a:60:51:08:57:40:49:7c:f6:98:54:bc:55:57: 1d:18:82:10:e8:75:f3:be:6f:32:e3:47:7c:6d:78:0e:98:7e: bb:fb:da:44:af:6e:f0:01:91:a5:58:2d:c1:87:b4:2e:fb:37: f4:01:1b:c2:1d:60:f5:23:51:1a:5e:e2:72:c2:55:9f:fb:67: b8:29:7f:c2:fd:5f:29:ed:23:b6:35:fa:00:d4:92:74:f9:0a: b0:67:f7:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeq9SrVWVw+xNZd4RDHAKeg4aMKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNTAyMTIwNzU3MjNaFw0yNjAyMTEwODAyMjNaMDMxMTAvBgNV BAMTKDQ2RTNCNjYxQTZFQTk0MDU3NjI2NTU5NzE3MDMyOUM1NEQ5ODBFOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCjOc6nhI8cwFMcX9ob7tv+IaH lHb76nmpmAzTGzx+BM8Jm2mb8yQTGXWPtQTJT3OzswqBClcp7oYZh0AIaaOkjlDL qwaxSt0n2vUAMGD+rLRB0zS983Idfy+wVWD0A+aQmK2LsRpykHf3QxCDX+b21vvB jcf4pbfhdtM7k3HLis+NXetSO/NuO+vm2EMuRZfQkGkKPtPGJLnLvGdbhBx/BWnY CMSM6lZLJxbP9BKYR0JGKtwHV8GITwOS7kRjNAp8Dc3dR24TG727Shv0ALGfL5Og T80hoA8JZI5NiuusAAusMJyxl6B3zll9WteXSBcFASCLZbCUJAKyHrrPdhuFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURuO2YabqlAV2JlWXFwMpxU2YDpwwHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJTANBgkqhkiG 9w0BAQsFAAOCAQEAR9ZGVdNEvczhZP3WLzgYnbfJh+cpth0bwo2D5JSfm5Q7Ei6Z 1+kvbNMzJrY1MvXpcsRZSWaGcd56AaHyZkc0Wu1e46W4xVup/FieyMUCC2EjicEP oOXdgi4h3yc8YvjK075uD4pqWwzV0vfcWm2pW0y93nY1U0n4gW9yCtSyatBGFODS tbXRD38Ef9JmfaDwPtc0RrmpWm8tsC6v8FzU4jj362cQlQpgUQhXQEl89phUvFVX HRiCEOh1875vMuNHfG14Dph+u/vaRK9u8AGRpVgtwYe0Lvs39AEbwh1g9SNRGl7i csJVn/tnuCl/wv1fKe0jtjX6ANSSdPkKsGf3rw== -----END CERTIFICATE-----Generated at Sun Apr 6 10:57:52 2025 by rpki-client