$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa File: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (raw, json) Hash identifier: Gr1mlE+rzWEpOTNh6WPoTj4w/1KCxiBabRIKttXDzDg= Subject key identifier: E5:50:ED:27:15:F1:9E:90:6D:DC:8F:12:CE:F2:2F:43:51:C5:30:F5 Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 322369A76AA5EBC9ACCE3689713FEB9AA1059593 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa Signing time: Thu 01 May 2025 13:00:01 +0000 ROA not before: Thu 01 May 2025 12:55:01 +0000 ROA not after: Thu 30 Apr 2026 13:00:01 +0000 asID: 152418 IP address blocks: 157.20.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 09:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:23:69:a7:6a:a5:eb:c9:ac:ce:36:89:71:3f:eb:9a:a1:05:95:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: May 1 12:55:01 2025 GMT Not After : Apr 30 13:00:01 2026 GMT Subject: CN=E550ED2715F19E906DDC8F12CEF22F4351C530F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4b:2c:78:aa:ec:91:f9:e0:72:50:c2:23:44: d0:29:32:a0:35:66:89:43:05:03:40:c9:2b:7a:b7: bd:e3:b8:7c:b5:fc:b1:9d:e7:a6:07:69:3d:0b:9c: 58:15:f6:bc:86:47:bf:5d:26:c4:ab:51:ab:d8:ab: a7:ae:64:21:a8:50:bf:9d:74:ed:29:a4:22:77:38: dd:9a:0b:29:5c:42:67:92:37:fa:69:f6:3c:6a:a3: 06:f3:fb:eb:90:8b:e1:0c:5a:0b:77:19:58:cc:64: 54:ac:35:dc:4b:d6:a7:c0:c0:45:3c:50:c5:e2:57: 23:e1:c9:e2:51:98:ef:8f:80:51:5a:8c:41:4d:27: c6:bf:77:86:fb:83:d0:3f:36:26:33:ca:8a:87:52: 4d:99:7d:69:f3:bd:1c:5b:40:c9:99:7e:2d:04:e0: 57:3d:96:4d:02:72:7e:02:61:5a:e0:51:da:3e:20: a2:98:ec:7e:16:73:51:c8:b0:fa:9b:68:99:50:06: 1b:af:0d:be:c8:fc:12:e3:c5:d4:38:09:46:6d:c8: be:bf:86:b6:e6:d8:f1:fe:e4:38:10:fe:17:ee:ac: 7b:71:86:14:08:5a:e0:4c:b1:43:12:0a:0f:12:1a: c9:0d:69:21:bf:11:d1:97:f4:17:39:5c:e9:38:5c: 6b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:50:ED:27:15:F1:9E:90:6D:DC:8F:12:CE:F2:2F:43:51:C5:30:F5 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.178.0/23 Signature Algorithm: sha256WithRSAEncryption 30:82:eb:a1:00:5c:d6:e3:5b:4f:37:ae:73:7f:9b:e0:61:13: 22:c6:1a:56:cf:9b:74:e0:1b:21:8c:0e:25:2b:fa:a7:b4:ec: a1:b1:81:8f:8b:98:6f:5a:57:d1:f8:ce:14:d8:9d:89:11:69: 61:8a:81:36:c8:e7:98:62:b9:23:b2:e8:ee:4e:bf:6e:fd:fe: d7:0b:02:95:e3:16:dd:d7:56:e1:66:d8:b0:7c:9d:43:c1:79: 36:dc:03:80:b9:0b:1e:23:51:5b:32:44:ce:ac:ff:2a:6f:59: ad:f4:ce:27:7e:12:4f:e3:98:e1:d5:d8:c5:d5:31:f8:34:cf: 51:a9:a4:9d:c0:34:b2:a3:71:25:06:b7:bd:5b:ef:db:e4:28: 1e:aa:34:ba:65:76:1b:04:5b:2a:60:9a:dc:ed:93:a4:b5:1a: 6a:b5:52:df:3e:5a:01:a6:08:43:ff:8d:12:72:ba:0e:9b:8b: 4a:fc:80:6d:b8:74:67:88:8c:34:b7:43:9b:02:ee:78:c2:f7: cd:6e:f2:45:df:95:52:cf:c3:d9:06:fa:c5:54:c8:60:8b:d6: 2a:3a:d9:da:58:51:3b:51:92:bf:27:62:75:b2:ee:fc:72:f3: 23:9f:ac:be:3e:f7:ec:2e:2d:b2:cc:64:19:a2:60:99:02:ce: 4e:83:40:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMiNpp2ql68mszjaJcT/rmqEFlZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNTA1MDExMjU1MDFaFw0yNjA0MzAxMzAwMDFaMDMxMTAvBgNV BAMTKEU1NTBFRDI3MTVGMTlFOTA2RERDOEYxMkNFRjIyRjQzNTFDNTMwRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Syx4quyR+eByUMIjRNApMqA1 ZolDBQNAySt6t73juHy1/LGd56YHaT0LnFgV9ryGR79dJsSrUavYq6euZCGoUL+d dO0ppCJ3ON2aCylcQmeSN/pp9jxqowbz++uQi+EMWgt3GVjMZFSsNdxL1qfAwEU8 UMXiVyPhyeJRmO+PgFFajEFNJ8a/d4b7g9A/NiYzyoqHUk2ZfWnzvRxbQMmZfi0E 4Fc9lk0Ccn4CYVrgUdo+IKKY7H4Wc1HIsPqbaJlQBhuvDb7I/BLjxdQ4CUZtyL6/ hrbm2PH+5DgQ/hfurHtxhhQIWuBMsUMSCg8SGskNaSG/EdGX9Bc5XOk4XGsfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5VDtJxXxnpBt3I8SzvIvQ1HFMPUwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSyMA0GCSqG SIb3DQEBCwUAA4IBAQAwguuhAFzW41tPN65zf5vgYRMixhpWz5t04BshjA4lK/qn tOyhsYGPi5hvWlfR+M4U2J2JEWlhioE2yOeYYrkjsujuTr9u/f7XCwKV4xbd11bh ZtiwfJ1DwXk23AOAuQseI1FbMkTOrP8qb1mt9M4nfhJP45jh1djF1TH4NM9RqaSd wDSyo3ElBre9W+/b5CgeqjS6ZXYbBFsqYJrc7ZOktRpqtVLfPloBpghD/40ScroO m4tK/IBtuHRniIw0t0ObAu54wvfNbvJF35VSz8PZBvrFVMhgi9YqOtnaWFE7UZK/ J2J1su78cvMjn6y+PvfsLi2yzGQZomCZAs5Og0BF -----END CERTIFICATE-----Generated at Sat Jun 7 10:42:38 2025 by rpki-client