$ rpki-client -vvf repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32332d3234203d3e20313532333936.roa File: 3135372e31352e34362e302f32332d3234203d3e20313532333936.roa (raw, json) Hash identifier: G0a1IDIDp/6OW+B4SPVbcSdJGPsXh5ci397pwO85gSY= Subject key identifier: F2:F0:4A:2A:AF:99:B3:6C:98:15:27:80:E9:B9:E2:B0:8A:F6:13:1E Certificate issuer: /CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Certificate serial: 2C570D9E35E3366A781EC60A3DC97A95147423D5 Authority key identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32332d3234203d3e20313532333936.roa Signing time: Wed 22 Jan 2025 04:00:01 +0000 ROA not before: Wed 22 Jan 2025 03:55:01 +0000 ROA not after: Wed 21 Jan 2026 04:00:01 +0000 asID: 152396 IP address blocks: 157.15.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 21:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:57:0d:9e:35:e3:36:6a:78:1e:c6:0a:3d:c9:7a:95:14:74:23:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Validity Not Before: Jan 22 03:55:01 2025 GMT Not After : Jan 21 04:00:01 2026 GMT Subject: CN=F2F04A2AAF99B36C98152780E9B9E2B08AF6131E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5d:24:ad:a5:05:fc:0b:d5:5b:58:75:1b:19: 23:fb:7d:24:d5:d7:2b:9f:22:ea:79:4e:8c:e9:dd: 2b:fd:43:25:e0:05:93:7e:5f:52:3b:7a:d4:b5:a6: 4e:44:61:40:ab:33:42:f9:a2:17:73:83:5e:66:f9: 66:82:11:1f:f3:69:40:82:75:ad:fa:d5:b5:4d:5b: fa:13:ff:df:ee:2a:a9:43:16:3b:fc:fd:ef:8b:be: 90:68:19:07:59:6b:db:e6:c2:88:06:8b:14:89:cf: 4d:20:a6:d4:6d:cd:eb:f9:15:5b:85:6c:8f:f9:f1: b2:3c:c9:e0:68:69:9c:13:ff:66:14:bf:ba:29:6d: b5:23:70:1f:bc:dd:0c:17:2a:9c:cd:9e:ce:37:5c: 3d:cb:e7:cb:97:8c:bc:b2:37:94:d8:03:ff:b9:4e: 24:02:8f:44:3f:15:0b:ab:46:59:1b:4f:ca:71:8c: 33:d2:f1:d3:0a:f2:c8:13:0e:19:ca:bd:27:d8:74: db:4f:f7:a5:1d:cc:ae:8c:4f:5a:1e:10:0c:3a:5e: e9:f1:a6:cd:0b:2b:e2:cf:ee:1d:ef:6a:40:eb:73: 83:31:f2:60:b8:0b:ef:59:cb:d4:76:8a:92:57:59: 11:af:d1:63:6f:88:a3:e2:23:63:0b:d2:fc:4d:7f: 48:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F0:4A:2A:AF:99:B3:6C:98:15:27:80:E9:B9:E2:B0:8A:F6:13:1E X509v3 Authority Key Identifier: keyid:30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32332d3234203d3e20313532333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.46.0/23 Signature Algorithm: sha256WithRSAEncryption d4:fc:b3:bb:28:53:67:a8:a8:59:53:81:29:c5:b3:a0:db:bd: 6c:46:f5:d8:82:41:70:8d:fc:24:5d:65:ba:51:ef:a3:70:75: f2:12:bf:a3:1e:3a:5d:af:d7:63:7f:d9:1e:98:84:ad:7f:91: 0f:48:4d:b4:04:bf:16:b0:98:d8:c9:17:0d:16:67:80:52:92: 54:da:df:ac:09:0b:4d:ad:81:c2:d7:23:63:b3:e8:ae:fa:f1: 11:ac:1d:ac:95:08:35:e9:b1:b3:7c:da:23:6c:d9:89:51:d1: 8e:14:e5:64:8a:fd:6c:9d:bf:56:a1:4b:c0:cc:22:cf:ef:b5: bd:e6:6b:d5:0c:11:a7:a1:8a:e6:f8:d1:55:08:60:be:c0:34: 80:d4:11:9c:f8:1a:a1:76:a9:f7:8b:c3:90:d3:06:da:ea:29: 2a:80:c8:32:aa:84:6e:03:51:a3:58:03:93:4b:f2:8e:19:0d: 3d:05:d0:7e:87:60:0e:e5:ba:fe:4f:a0:76:e0:a7:86:33:0f: ff:6f:83:f4:5b:74:88:64:2b:72:78:0e:a2:30:d2:b7:25:4d: e5:ef:02:53:b1:fd:06:42:8c:18:e0:2b:33:39:78:6d:d6:eb: 85:02:11:81:1e:f7:75:be:5d:12:56:a9:0b:0b:98:3c:43:5d: bc:25:4d:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULFcNnjXjNmp4HsYKPcl6lRR0I9UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgw MEQ1MkQ2NDAeFw0yNTAxMjIwMzU1MDFaFw0yNjAxMjEwNDAwMDFaMDMxMTAvBgNV BAMTKEYyRjA0QTJBQUY5OUIzNkM5ODE1Mjc4MEU5QjlFMkIwOEFGNjEzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvXSStpQX8C9VbWHUbGSP7fSTV 1yufIup5Tozp3Sv9QyXgBZN+X1I7etS1pk5EYUCrM0L5ohdzg15m+WaCER/zaUCC da361bVNW/oT/9/uKqlDFjv8/e+LvpBoGQdZa9vmwogGixSJz00gptRtzev5FVuF bI/58bI8yeBoaZwT/2YUv7opbbUjcB+83QwXKpzNns43XD3L58uXjLyyN5TYA/+5 TiQCj0Q/FQurRlkbT8pxjDPS8dMK8sgTDhnKvSfYdNtP96UdzK6MT1oeEAw6Xunx ps0LK+LP7h3vakDrc4Mx8mC4C+9Zy9R2ipJXWRGv0WNviKPiI2ML0vxNf0glAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8vBKKq+Zs2yYFSeA6bnisIr2Ex4wHwYDVR0j BBgwFoAUMAivlIxHQqUlIB8/2n77GADVLWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzM0ZWVkOS0xODdlLTRmNDYtYTViYi0wZWE4ZjY2OWFlOTAvMC8zMDA4QUY5NDhD NDc0MkE1MjUyMDFGM0ZEQTdFRkIxODAwRDUyRDY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgwMEQ1 MkQ2NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMzRlZWQ5LTE4N2UtNGY0Ni1h NWJiLTBlYThmNjY5YWU5MC8wLzMxMzUzNzJlMzEzNTJlMzQzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PLjANBgkqhkiG 9w0BAQsFAAOCAQEA1PyzuyhTZ6ioWVOBKcWzoNu9bEb12IJBcI38JF1lulHvo3B1 8hK/ox46Xa/XY3/ZHpiErX+RD0hNtAS/FrCY2MkXDRZngFKSVNrfrAkLTa2Bwtcj Y7PorvrxEawdrJUINemxs3zaI2zZiVHRjhTlZIr9bJ2/VqFLwMwiz++1veZr1QwR p6GK5vjRVQhgvsA0gNQRnPgaoXap94vDkNMG2uopKoDIMqqEbgNRo1gDk0vyjhkN PQXQfodgDuW6/k+gduCnhjMP/2+D9Ft0iGQrcngOojDStyVN5e8CU7H9BkKMGOAr Mzl4bdbrhQIRgR73db5dElapCwuYPENdvCVNTQ== -----END CERTIFICATE-----Generated at Sat Apr 12 20:52:53 2025 by rpki-client