$ rpki-client -vvf repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34322e302f32332d3234203d3e20313532333635.roa File: 3135372e31352e34322e302f32332d3234203d3e20313532333635.roa (raw, json) Hash identifier: ySMjg/pkUv37Q0zTaOUXDRe+ryQNKPJrUvoPh4zMnMw= Subject key identifier: F4:F3:42:2A:6B:16:04:F1:6C:2B:2B:4F:68:97:EF:94:8B:1C:F6:E2 Certificate issuer: /CN=D8D82E797873C8877988A42E5C473D1919238C2A Certificate serial: 40DFEDEB621298333CFA22246BA9DC27E47A35A5 Authority key identifier: D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34322e302f32332d3234203d3e20313532333635.roa Signing time: Fri 10 Jan 2025 10:00:01 +0000 ROA not before: Fri 10 Jan 2025 09:55:01 +0000 ROA not after: Fri 09 Jan 2026 10:00:01 +0000 asID: 152365 IP address blocks: 157.15.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.crl rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 17:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:df:ed:eb:62:12:98:33:3c:fa:22:24:6b:a9:dc:27:e4:7a:35:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8D82E797873C8877988A42E5C473D1919238C2A Validity Not Before: Jan 10 09:55:01 2025 GMT Not After : Jan 9 10:00:01 2026 GMT Subject: CN=F4F3422A6B1604F16C2B2B4F6897EF948B1CF6E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a6:3e:d2:d0:91:24:19:ef:c7:8e:e5:f6:eb: a3:f7:2f:64:9e:ba:85:d4:34:e9:cd:46:a1:8d:04: af:d1:d3:15:ab:20:39:c4:24:46:27:35:d8:30:28: 9a:e8:9f:54:ea:f3:c8:b0:69:ff:5c:63:c2:fd:88: ba:3e:e8:7d:e0:71:4f:8e:66:d7:39:e9:59:74:22: 9c:fa:88:08:79:c0:c9:9e:11:e3:67:7f:ae:7b:c2: 6f:12:be:9a:ce:0b:57:2a:3d:bc:7b:5d:57:a1:b8: e2:9a:7d:90:3e:bc:0d:e8:43:96:b5:e7:43:ee:34: 91:7f:4b:6f:54:63:79:fa:a0:e5:32:2c:c1:bf:ed: 86:b2:4f:2c:28:73:11:4c:b9:85:d4:64:38:d4:fb: ae:c6:0b:ab:55:9a:19:a8:98:0b:50:15:ec:16:3d: 24:d5:1a:c9:d2:51:c7:df:8a:d1:0f:f6:d5:ef:82: 56:32:78:3f:28:2a:81:cc:29:c7:22:4d:cf:1d:8a: 3e:9e:2c:a6:ee:ee:67:73:e9:7c:5c:09:2f:bd:d2: 66:b2:2e:8c:fa:ac:9b:a6:43:66:64:9b:99:92:5d: 53:bd:ce:5d:c3:d7:23:77:20:e9:14:16:ea:11:36: 3f:03:e4:d4:bc:a8:b8:fb:01:f0:b7:02:87:ef:13: 88:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F3:42:2A:6B:16:04:F1:6C:2B:2B:4F:68:97:EF:94:8B:1C:F6:E2 X509v3 Authority Key Identifier: keyid:D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/3135372e31352e34322e302f32332d3234203d3e20313532333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.42.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:ca:f2:f4:ed:2c:17:dd:de:a1:3d:d3:08:15:a7:30:86:21: 51:e0:4f:26:0d:4c:33:94:9a:77:c4:3d:5a:b6:77:57:e6:82: e8:95:6f:30:cb:e4:da:d1:32:0f:18:1f:11:b8:6b:b2:9b:42: e0:2d:73:ab:ba:4d:d5:d5:72:01:84:3c:77:88:41:9b:2e:4f: 5e:81:6d:44:a8:43:f8:82:32:0b:2c:38:4b:2f:e6:64:56:1f: 22:c8:ec:fd:98:a6:e9:ab:58:b0:35:33:d6:4a:63:47:04:43: 49:4c:ea:82:e4:dc:02:a9:4b:d8:80:55:20:89:c7:3c:92:6c: e3:4f:75:06:bd:2e:e8:11:2b:37:23:d7:c1:6a:09:b0:07:03: 60:f5:f1:57:79:da:27:b4:33:b7:ed:20:9a:ae:d1:7f:11:99: 00:19:df:30:5a:b3:8c:6a:e8:bf:36:19:33:8b:44:59:6a:98: 53:9a:06:d3:1b:64:8b:27:2c:05:51:28:d9:df:37:7f:64:85: 3d:25:88:e6:00:4b:06:3a:22:1f:46:8b:ae:26:12:0a:a3:c0: 06:23:27:cf:86:72:65:fa:a0:48:c3:43:23:4e:a7:0d:77:b4: a8:66:72:87:94:9f:f2:a7:04:b3:d0:49:72:1a:91:ed:98:b0: 0a:66:fb:8f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQN/t62ISmDM8+iIka6ncJ+R6NaUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhEODJFNzk3ODczQzg4Nzc5ODhBNDJFNUM0NzNEMTkx OTIzOEMyQTAeFw0yNTAxMTAwOTU1MDFaFw0yNjAxMDkxMDAwMDFaMDMxMTAvBgNV BAMTKEY0RjM0MjJBNkIxNjA0RjE2QzJCMkI0RjY4OTdFRjk0OEIxQ0Y2RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMpj7S0JEkGe/HjuX266P3L2Se uoXUNOnNRqGNBK/R0xWrIDnEJEYnNdgwKJron1Tq88iwaf9cY8L9iLo+6H3gcU+O Ztc56Vl0Ipz6iAh5wMmeEeNnf657wm8SvprOC1cqPbx7XVehuOKafZA+vA3oQ5a1 50PuNJF/S29UY3n6oOUyLMG/7YayTywocxFMuYXUZDjU+67GC6tVmhmomAtQFewW PSTVGsnSUcffitEP9tXvglYyeD8oKoHMKcciTc8dij6eLKbu7mdz6XxcCS+90may Loz6rJumQ2Zkm5mSXVO9zl3D1yN3IOkUFuoRNj8D5NS8qLj7AfC3AofvE4iJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9PNCKmsWBPFsKytPaJfvlIsc9uIwHwYDVR0j BBgwFoAU2NgueXhzyId5iKQuXEc9GRkjjCowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWRlNzFhYy03ZjlmLTQ3ZDQtOTUzMy05ZGY4MmFmYzU5NzMvMC9EOEQ4MkU3OTc4 NzNDODg3Nzk4OEE0MkU1QzQ3M0QxOTE5MjM4QzJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDhEODJFNzk3ODczQzg4Nzc5ODhBNDJFNUM0NzNEMTkxOTIz OEMyQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1ZGU3MWFjLTdmOWYtNDdkNC05 NTMzLTlkZjgyYWZjNTk3My8wLzMxMzUzNzJlMzEzNTJlMzQzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PKjANBgkqhkiG 9w0BAQsFAAOCAQEAj8ry9O0sF93eoT3TCBWnMIYhUeBPJg1MM5Sad8Q9WrZ3V+aC 6JVvMMvk2tEyDxgfEbhrsptC4C1zq7pN1dVyAYQ8d4hBmy5PXoFtRKhD+IIyCyw4 Sy/mZFYfIsjs/Zim6atYsDUz1kpjRwRDSUzqguTcAqlL2IBVIInHPJJs4091Br0u 6BErNyPXwWoJsAcDYPXxV3naJ7Qzt+0gmq7RfxGZABnfMFqzjGrovzYZM4tEWWqY U5oG0xtkiycsBVEo2d83f2SFPSWI5gBLBjoiH0aLriYSCqPABiMnz4ZyZfqgSMND I06nDXe0qGZyh5Sf8qcEs9BJchqR7ZiwCmb7jw== -----END CERTIFICATE-----Generated at Sat Apr 19 12:48:40 2025 by rpki-client