$ rpki-client -vvf repo-rpki.idnic.net/repo/bed736dc-e5db-4381-971f-62436741854b/0/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa File: 3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa (raw, json) Hash identifier: jDuBPuo8FXkwHvuSx3l3NpRnjG6RnX6zvR23Pm7QMR8= Subject key identifier: 36:70:82:28:4B:1A:9E:4A:A8:36:78:4E:98:65:BA:6D:0A:34:35:FB Certificate issuer: /CN=E6E710DACC1F6D6DD9D78FA6117E43626642E6F6 Certificate serial: 526AB9967CDF41854FE6AC546A76786BC2410708 Authority key identifier: E6:E7:10:DA:CC:1F:6D:6D:D9:D7:8F:A6:11:7E:43:62:66:42:E6:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E6E710DACC1F6D6DD9D78FA6117E43626642E6F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bed736dc-e5db-4381-971f-62436741854b/0/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa Signing time: Wed 19 Feb 2025 03:00:00 +0000 ROA not before: Wed 19 Feb 2025 02:55:00 +0000 ROA not after: Wed 18 Feb 2026 03:00:00 +0000 asID: 152401 IP address blocks: 157.15.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bed736dc-e5db-4381-971f-62436741854b/0/E6E710DACC1F6D6DD9D78FA6117E43626642E6F6.crl rsync://repo-rpki.idnic.net/repo/bed736dc-e5db-4381-971f-62436741854b/0/E6E710DACC1F6D6DD9D78FA6117E43626642E6F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E6E710DACC1F6D6DD9D78FA6117E43626642E6F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 21:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:6a:b9:96:7c:df:41:85:4f:e6:ac:54:6a:76:78:6b:c2:41:07:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6E710DACC1F6D6DD9D78FA6117E43626642E6F6 Validity Not Before: Feb 19 02:55:00 2025 GMT Not After : Feb 18 03:00:00 2026 GMT Subject: CN=367082284B1A9E4AA836784E9865BA6D0A3435FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ff:c6:98:65:17:30:2d:5b:59:2c:42:7a:ec: 7f:0e:41:c4:98:75:5b:21:57:cc:24:bb:10:0c:34: b2:6a:77:79:9f:eb:ce:0e:fe:67:53:7f:08:58:d2: 79:3f:0b:f2:c0:a2:e4:5f:0f:f3:c4:31:c9:15:ed: 76:16:db:6c:bc:dd:c6:de:f0:bb:e9:ea:e4:5f:d8: f2:b2:db:26:c1:cb:b1:07:5d:b5:2b:e4:f1:c7:ef: 0f:ea:82:44:49:2a:85:19:14:f0:43:22:ba:88:ce: c5:1e:e7:da:63:cb:77:b0:90:62:bd:04:33:59:b8: ab:ba:8c:88:de:c0:04:9a:14:48:df:3e:08:99:25: dc:c4:bd:44:4c:26:3a:f4:f4:2d:bc:48:3f:28:d4: 86:53:73:10:c4:1c:72:84:c0:25:de:ae:b1:60:bc: 0f:af:0c:0b:50:79:45:de:55:64:49:d0:fe:da:cd: 0b:59:50:91:26:ca:b2:76:b5:62:4e:7b:00:7c:c8: f0:91:db:a9:b3:19:29:70:ac:dd:a9:d0:b7:9f:54: 61:dd:1f:44:55:4f:be:ab:2a:41:2e:29:ec:96:1d: c5:fc:e7:27:00:47:71:e9:f8:42:1c:da:ac:d3:87: 9f:7c:50:d9:5d:12:1c:77:09:46:ec:96:f5:ed:55: e1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:70:82:28:4B:1A:9E:4A:A8:36:78:4E:98:65:BA:6D:0A:34:35:FB X509v3 Authority Key Identifier: keyid:E6:E7:10:DA:CC:1F:6D:6D:D9:D7:8F:A6:11:7E:43:62:66:42:E6:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bed736dc-e5db-4381-971f-62436741854b/0/E6E710DACC1F6D6DD9D78FA6117E43626642E6F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E6E710DACC1F6D6DD9D78FA6117E43626642E6F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bed736dc-e5db-4381-971f-62436741854b/0/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.118.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:a0:4b:28:74:d1:96:6f:a7:60:80:68:c4:d9:f3:c0:77:38: cb:b3:ad:5f:55:04:3e:56:41:6f:02:0f:28:fd:39:2f:03:2f: c9:4d:67:9f:c3:8c:6c:f7:3b:b1:4e:ef:34:2b:b5:ee:30:35: ee:bc:33:2f:eb:53:64:74:58:18:aa:42:96:19:94:4d:3b:35: 35:ff:20:28:d6:68:00:5a:97:69:0e:fd:0f:e2:10:63:44:51: 00:6e:80:29:ea:f9:5e:9f:73:25:06:8b:ed:fb:54:22:2b:62: 3d:f2:bf:ec:d8:07:c2:1e:bd:29:29:61:92:b3:0e:81:44:ef: a7:3f:39:b3:32:f2:cd:3b:0c:41:0b:25:bd:94:50:23:92:3b: d0:78:e4:16:7b:1d:87:12:8a:81:3e:dc:f8:00:9f:77:c1:70: d6:d6:e5:82:b9:ab:e5:be:c4:2a:97:ff:8e:a7:1a:e1:2a:9a: 88:bd:31:ff:51:cf:63:74:20:cf:f9:3e:85:a1:f7:61:3a:0e: 27:1e:29:b0:34:69:a2:6e:eb:79:3c:f8:e0:61:0a:1b:db:03: a7:dc:67:ac:18:dd:bb:dc:5d:f0:5b:42:34:b8:66:84:35:f1: 72:70:92:cb:33:d5:c9:47:be:af:4a:5c:a5:c8:35:0f:32:aa: eb:04:1d:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUmq5lnzfQYVP5qxUanZ4a8JBBwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZFNzEwREFDQzFGNkQ2REQ5RDc4RkE2MTE3RTQzNjI2 NjQyRTZGNjAeFw0yNTAyMTkwMjU1MDBaFw0yNjAyMTgwMzAwMDBaMDMxMTAvBgNV BAMTKDM2NzA4MjI4NEIxQTlFNEFBODM2Nzg0RTk4NjVCQTZEMEEzNDM1RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC//8aYZRcwLVtZLEJ67H8OQcSY dVshV8wkuxAMNLJqd3mf684O/mdTfwhY0nk/C/LAouRfD/PEMckV7XYW22y83cbe 8Lvp6uRf2PKy2ybBy7EHXbUr5PHH7w/qgkRJKoUZFPBDIrqIzsUe59pjy3ewkGK9 BDNZuKu6jIjewASaFEjfPgiZJdzEvURMJjr09C28SD8o1IZTcxDEHHKEwCXerrFg vA+vDAtQeUXeVWRJ0P7azQtZUJEmyrJ2tWJOewB8yPCR26mzGSlwrN2p0LefVGHd H0RVT76rKkEuKeyWHcX85ycAR3Hp+EIc2qzTh598UNldEhx3CUbslvXtVeGFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNnCCKEsankqoNnhOmGW6bQo0NfswHwYDVR0j BBgwFoAU5ucQ2swfbW3Z14+mEX5DYmZC5vYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZWQ3MzZkYy1lNWRiLTQzODEtOTcxZi02MjQzNjc0MTg1NGIvMC9FNkU3MTBEQUND MUY2RDZERDlENzhGQTYxMTdFNDM2MjY2NDJFNkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRTZFNzEwREFDQzFGNkQ2REQ5RDc4RkE2MTE3RTQzNjI2NjQy RTZGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlZDczNmRjLWU1ZGItNDM4MS05 NzFmLTYyNDM2NzQxODU0Yi8wLzMxMzUzNzJlMzEzNTJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ92MA0GCSqG SIb3DQEBCwUAA4IBAQBvoEsodNGWb6dggGjE2fPAdzjLs61fVQQ+VkFvAg8o/Tkv Ay/JTWefw4xs9zuxTu80K7XuMDXuvDMv61NkdFgYqkKWGZRNOzU1/yAo1mgAWpdp Dv0P4hBjRFEAboAp6vlen3MlBovt+1QiK2I98r/s2AfCHr0pKWGSsw6BRO+nPzmz MvLNOwxBCyW9lFAjkjvQeOQWex2HEoqBPtz4AJ93wXDW1uWCuavlvsQql/+Opxrh KpqIvTH/Uc9jdCDP+T6FofdhOg4nHimwNGmibut5PPjgYQob2wOn3GesGN273F3w W0I0uGaENfFycJLLM9XJR76vSlylyDUPMqrrBB2V -----END CERTIFICATE-----Generated at Tue Apr 15 13:45:33 2025 by rpki-client