$ rpki-client -vvf repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa File: 3135372e32302e39352e302f32342d3234203d3e20313431363032.roa (raw, json) Hash identifier: 88y84elDiek3O/IhTaNMS2vLlPQVqlAnqgDoLBdJafc= Subject key identifier: ED:49:5B:9F:3A:67:C5:2F:1E:BC:1A:B4:C4:58:72:12:14:CD:97:AB Certificate issuer: /CN=FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC Certificate serial: 2557CFADFCCD9B9E6D4A872B3F0F1821FB0ED4DE Authority key identifier: FD:18:E3:EC:B5:F2:28:5C:07:51:C4:8E:AF:23:EF:21:0B:A8:FD:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa Signing time: Fri 23 May 2025 02:00:01 +0000 ROA not before: Fri 23 May 2025 01:55:01 +0000 ROA not after: Fri 22 May 2026 02:00:01 +0000 asID: 141602 IP address blocks: 157.20.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.crl rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:57:cf:ad:fc:cd:9b:9e:6d:4a:87:2b:3f:0f:18:21:fb:0e:d4:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC Validity Not Before: May 23 01:55:01 2025 GMT Not After : May 22 02:00:01 2026 GMT Subject: CN=ED495B9F3A67C52F1EBC1AB4C458721214CD97AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f5:9d:d6:56:b0:79:a7:7f:28:c4:0c:8d:b3: 58:23:cb:68:af:96:1c:ed:41:82:ca:48:0d:ac:5f: e3:bc:0c:ad:4d:bc:13:b5:b3:f7:19:ac:5a:0e:7f: 34:b4:9d:bd:d9:d6:58:6d:b6:d9:92:c7:cc:9f:f4: 68:ea:03:f9:df:48:64:d4:4a:bf:f3:3b:9c:b0:fc: 5f:6f:28:82:c2:5e:aa:3b:31:a8:3e:e4:7f:e1:2b: 0c:e3:19:43:3d:a4:41:df:10:6e:10:7a:22:fb:c4: f3:99:42:69:16:9d:46:06:b6:bd:36:85:1a:ca:b3: dd:22:12:b5:38:18:b3:da:00:c6:78:eb:53:c8:a2: 94:23:c2:b9:49:78:1c:95:e5:01:12:71:f8:d4:e4: 02:e6:56:2e:43:51:32:85:35:7a:cd:18:ad:46:5e: ac:18:6b:47:f7:d7:4f:0b:c4:4c:80:58:4b:bc:4b: 17:99:5c:85:83:77:67:7e:27:97:01:b4:d2:ac:4e: 30:60:df:9a:55:43:99:df:e4:0c:ea:32:08:80:aa: 97:e4:63:9e:c0:f7:ab:1a:f2:4a:6a:69:79:85:fd: 23:56:5f:d4:fb:be:f1:64:40:3b:11:70:5d:47:53: 50:09:16:e9:cf:b6:c8:f5:7e:a6:0f:37:98:0c:07: a5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:49:5B:9F:3A:67:C5:2F:1E:BC:1A:B4:C4:58:72:12:14:CD:97:AB X509v3 Authority Key Identifier: keyid:FD:18:E3:EC:B5:F2:28:5C:07:51:C4:8E:AF:23:EF:21:0B:A8:FD:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD18E3ECB5F2285C0751C48EAF23EF210BA8FDCC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.95.0/24 Signature Algorithm: sha256WithRSAEncryption 76:10:83:92:11:3a:47:b1:63:7c:7c:45:01:c5:7f:24:6c:94: 5f:27:ab:a6:0e:1d:86:20:9e:d8:16:0a:45:ff:66:e5:d7:9e: 6b:61:e6:21:25:14:e6:bc:a9:dd:7f:7e:24:14:f6:98:0f:49: b6:ae:e5:d3:92:ac:d6:f0:c3:ce:93:a0:84:c0:29:8c:3c:58: 15:5d:85:e6:97:fe:a3:72:e0:75:75:28:92:80:e6:3b:d1:36: 91:bd:66:f9:01:fa:a1:62:21:b6:b3:df:88:c5:f2:37:8e:43: e4:15:01:10:ef:a1:b4:5e:92:92:86:00:4d:42:b4:00:1b:4c: 54:35:84:71:1e:e9:0a:66:61:17:ba:02:f9:51:43:0a:b0:a8: 9e:29:13:9d:28:62:97:38:7c:40:53:82:f7:26:83:bf:ca:bf: e8:d4:fd:06:50:91:2b:47:98:5f:73:01:99:bc:3a:7f:9e:b0: 5b:54:cc:77:f0:b1:cd:2e:ec:d6:c7:53:a7:34:c9:ac:5e:0b: 84:a8:a1:02:0e:4e:fc:b6:c9:88:01:67:6e:a0:1a:17:88:59: 2a:a1:fd:fd:90:2a:c1:62:33:47:29:f9:1f:6f:bc:77:6c:7a: 98:c3:82:8a:33:27:1c:da:6a:7c:c9:7d:2d:e4:89:a3:fa:5a: 1f:0b:5c:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJVfPrfzNm55tSocrPw8YIfsO1N4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQxOEUzRUNCNUYyMjg1QzA3NTFDNDhFQUYyM0VGMjEw QkE4RkRDQzAeFw0yNTA1MjMwMTU1MDFaFw0yNjA1MjIwMjAwMDFaMDMxMTAvBgNV BAMTKEVENDk1QjlGM0E2N0M1MkYxRUJDMUFCNEM0NTg3MjEyMTRDRDk3QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR9Z3WVrB5p38oxAyNs1gjy2iv lhztQYLKSA2sX+O8DK1NvBO1s/cZrFoOfzS0nb3Z1lhtttmSx8yf9GjqA/nfSGTU Sr/zO5yw/F9vKILCXqo7Mag+5H/hKwzjGUM9pEHfEG4QeiL7xPOZQmkWnUYGtr02 hRrKs90iErU4GLPaAMZ461PIopQjwrlJeByV5QEScfjU5ALmVi5DUTKFNXrNGK1G XqwYa0f3108LxEyAWEu8SxeZXIWDd2d+J5cBtNKsTjBg35pVQ5nf5AzqMgiAqpfk Y57A96sa8kpqaXmF/SNWX9T7vvFkQDsRcF1HU1AJFunPtsj1fqYPN5gMB6UHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7UlbnzpnxS8evBq0xFhyEhTNl6swHwYDVR0j BBgwFoAU/Rjj7LXyKFwHUcSOryPvIQuo/cwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWUxM2JhYy05MWMxLTQ2M2ItODMzMy02NGVlYzZkMjc5N2UvMC9GRDE4RTNFQ0I1 RjIyODVDMDc1MUM0OEVBRjIzRUYyMTBCQThGRENDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQxOEUzRUNCNUYyMjg1QzA3NTFDNDhFQUYyM0VGMjEwQkE4 RkRDQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZTEzYmFjLTkxYzEtNDYzYi04 MzMzLTY0ZWVjNmQyNzk3ZS8wLzMxMzUzNzJlMzIzMDJlMzkzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UXzANBgkqhkiG 9w0BAQsFAAOCAQEAdhCDkhE6R7FjfHxFAcV/JGyUXyerpg4dhiCe2BYKRf9m5dee a2HmISUU5ryp3X9+JBT2mA9Jtq7l05Ks1vDDzpOghMApjDxYFV2F5pf+o3LgdXUo koDmO9E2kb1m+QH6oWIhtrPfiMXyN45D5BUBEO+htF6SkoYATUK0ABtMVDWEcR7p CmZhF7oC+VFDCrConikTnShilzh8QFOC9yaDv8q/6NT9BlCRK0eYX3MBmbw6f56w W1TMd/CxzS7s1sdTpzTJrF4LhKihAg5O/LbJiAFnbqAaF4hZKqH9/ZAqwWIzRyn5 H2+8d2x6mMOCijMnHNpqfMl9LeSJo/paHwtc6w== -----END CERTIFICATE-----Generated at Sun Jun 8 23:33:49 2025 by rpki-client