$ rpki-client -vvf repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa File: 3135372e31352e34362e302f32342d3234203d3e20313532333936.roa (raw, json) Hash identifier: mMVF2hYAKg0sTXxaBuy+2bvelwvkw1QteJi5RAQF2oo= Subject key identifier: 52:B2:C6:AC:25:9E:DC:A8:18:7D:10:D4:92:7E:A3:16:83:5A:C5:6E Certificate issuer: /CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Certificate serial: 58616E7E1A0D424379A877AF62FE5DA03AD7C565 Authority key identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa Signing time: Wed 22 Jan 2025 04:00:01 +0000 ROA not before: Wed 22 Jan 2025 03:55:01 +0000 ROA not after: Wed 21 Jan 2026 04:00:01 +0000 asID: 152396 IP address blocks: 157.15.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:61:6e:7e:1a:0d:42:43:79:a8:77:af:62:fe:5d:a0:3a:d7:c5:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Validity Not Before: Jan 22 03:55:01 2025 GMT Not After : Jan 21 04:00:01 2026 GMT Subject: CN=52B2C6AC259EDCA8187D10D4927EA316835AC56E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b1:94:6d:56:00:38:68:6c:c7:a8:ad:67:ce: 57:2b:2b:0b:a0:37:d2:40:cf:c2:e4:16:b6:a7:94: 38:ef:c4:9b:f8:f6:8f:b2:2a:d3:e8:eb:01:44:bb: a3:e0:03:da:76:14:d0:02:1c:d0:52:34:8e:53:ba: 12:2a:11:e3:7c:58:ac:35:99:6e:ce:18:71:90:d7: d2:20:b4:54:e1:ca:96:44:f3:d5:cb:0c:58:88:90: 26:3b:3c:5d:fc:0f:78:a1:70:53:88:b1:ed:07:fe: f6:33:c0:e9:9b:35:82:2c:08:3c:31:c2:05:6a:b1: 32:19:5a:c8:04:df:55:94:81:d7:ad:38:c8:8b:24: b7:b2:5b:cb:49:3e:92:fe:f4:33:97:bf:87:29:77: ed:7d:68:20:e1:0b:fa:b0:47:41:1c:7d:1f:6d:2e: b1:e7:04:92:83:43:7f:c1:29:d0:12:c1:03:fa:ba: 57:8d:4b:0f:3d:9c:e0:4b:c4:50:fb:97:0b:4d:22: 1d:33:dd:14:c9:45:49:8f:b7:0c:7c:83:fa:78:bd: 68:38:5f:f4:3b:fa:b7:6a:78:ff:c9:1e:7a:e5:dd: 92:7e:f3:60:fc:5b:c0:b0:28:b9:03:9c:35:aa:0c: 1a:d8:ba:32:86:3f:49:0e:9d:5b:66:55:48:3d:06: a6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B2:C6:AC:25:9E:DC:A8:18:7D:10:D4:92:7E:A3:16:83:5A:C5:6E X509v3 Authority Key Identifier: keyid:30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.46.0/24 Signature Algorithm: sha256WithRSAEncryption 79:b4:c4:9d:19:84:bd:b0:03:87:bc:4f:a9:b2:c2:b0:df:f3: 88:59:e5:81:31:50:30:0b:af:5b:a3:f6:4a:cc:09:b6:ff:8c: bf:9f:2d:2e:41:1f:67:85:e7:83:f0:fe:18:3d:4f:77:16:ab: 56:01:da:4a:de:12:1a:d1:a9:b6:b1:d4:24:3b:6f:9f:9d:95: 85:33:ca:e8:14:f7:2e:8e:1e:ec:e7:17:62:4d:d7:5c:b4:13: 5b:97:bc:38:3e:d5:5f:3c:fa:b5:f0:fc:17:d7:1d:3c:07:5a: 2d:7f:4b:67:04:42:2a:d8:9b:a6:7f:88:9f:6e:46:a6:43:eb: 6e:4a:c7:cd:3a:a0:2a:a6:a7:45:a8:55:a7:40:42:b3:33:f3: 1c:d8:79:fa:33:72:41:71:a0:58:07:c3:42:e2:72:b7:cb:87: 6b:3d:77:79:2e:24:3b:b8:d7:82:07:0a:4c:4a:bb:cc:50:ce: 51:bc:54:1a:dc:46:25:92:44:6b:7f:47:f9:46:85:63:d0:30: 0b:0d:34:3e:4b:a5:c2:21:b4:69:22:43:be:06:e7:46:e9:15: 45:b2:5e:dd:4e:b8:7d:e6:a2:67:73:24:24:f3:58:40:a7:11: 44:f3:10:06:7a:4d:f1:c2:43:79:e0:95:2f:0e:c5:ce:91:dc: b6:93:40:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWGFufhoNQkN5qHevYv5doDrXxWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgw MEQ1MkQ2NDAeFw0yNTAxMjIwMzU1MDFaFw0yNjAxMjEwNDAwMDFaMDMxMTAvBgNV BAMTKDUyQjJDNkFDMjU5RURDQTgxODdEMTBENDkyN0VBMzE2ODM1QUM1NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCssZRtVgA4aGzHqK1nzlcrKwug N9JAz8LkFranlDjvxJv49o+yKtPo6wFEu6PgA9p2FNACHNBSNI5TuhIqEeN8WKw1 mW7OGHGQ19IgtFThypZE89XLDFiIkCY7PF38D3ihcFOIse0H/vYzwOmbNYIsCDwx wgVqsTIZWsgE31WUgdetOMiLJLeyW8tJPpL+9DOXv4cpd+19aCDhC/qwR0EcfR9t LrHnBJKDQ3/BKdASwQP6uleNSw89nOBLxFD7lwtNIh0z3RTJRUmPtwx8g/p4vWg4 X/Q7+rdqeP/JHnrl3ZJ+82D8W8CwKLkDnDWqDBrYujKGP0kOnVtmVUg9Bqb7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUrLGrCWe3KgYfRDUkn6jFoNaxW4wHwYDVR0j BBgwFoAUMAivlIxHQqUlIB8/2n77GADVLWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzM0ZWVkOS0xODdlLTRmNDYtYTViYi0wZWE4ZjY2OWFlOTAvMC8zMDA4QUY5NDhD NDc0MkE1MjUyMDFGM0ZEQTdFRkIxODAwRDUyRDY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgwMEQ1 MkQ2NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMzRlZWQ5LTE4N2UtNGY0Ni1h NWJiLTBlYThmNjY5YWU5MC8wLzMxMzUzNzJlMzEzNTJlMzQzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PLjANBgkqhkiG 9w0BAQsFAAOCAQEAebTEnRmEvbADh7xPqbLCsN/ziFnlgTFQMAuvW6P2SswJtv+M v58tLkEfZ4Xng/D+GD1PdxarVgHaSt4SGtGptrHUJDtvn52VhTPK6BT3Lo4e7OcX Yk3XXLQTW5e8OD7VXzz6tfD8F9cdPAdaLX9LZwRCKtibpn+In25GpkPrbkrHzTqg KqanRahVp0BCszPzHNh5+jNyQXGgWAfDQuJyt8uHaz13eS4kO7jXggcKTEq7zFDO UbxUGtxGJZJEa39H+UaFY9AwCw00PkulwiG0aSJDvgbnRukVRbJe3U64feaiZ3Mk JPNYQKcRRPMQBnpN8cJDeeCVLw7FzpHctpNAhA== -----END CERTIFICATE-----Generated at Tue Apr 8 03:31:27 2025 by rpki-client