$ rpki-client -vvf repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa File: 3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa (raw, json) Hash identifier: WH9oEmWb7QCWvMI7938Ik3XMbgOCFpaDBMXkH3Xj3ws= Subject key identifier: A3:A1:53:D2:DC:2E:B7:BB:83:7F:13:87:BE:5D:40:38:1E:CA:FB:3E Certificate issuer: /CN=969449FF3E24842B0CECC61AB398E88F83709FC1 Certificate serial: 7D7C27E0252D5FE14DBDE22560382BA1D11690DF Authority key identifier: 96:94:49:FF:3E:24:84:2B:0C:EC:C6:1A:B3:98:E8:8F:83:70:9F:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa Signing time: Thu 27 Feb 2025 03:02:56 +0000 ROA not before: Thu 27 Feb 2025 02:57:56 +0000 ROA not after: Thu 26 Feb 2026 03:02:56 +0000 asID: 152421 IP address blocks: 157.20.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.crl rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:7c:27:e0:25:2d:5f:e1:4d:bd:e2:25:60:38:2b:a1:d1:16:90:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=969449FF3E24842B0CECC61AB398E88F83709FC1 Validity Not Before: Feb 27 02:57:56 2025 GMT Not After : Feb 26 03:02:56 2026 GMT Subject: CN=A3A153D2DC2EB7BB837F1387BE5D40381ECAFB3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:07:ef:13:86:bd:ee:22:57:57:29:8f:c3:ae: 21:ec:33:bf:2f:ff:17:7c:16:c6:23:62:cc:70:94: 5e:66:e0:a0:3e:0e:cb:5c:ae:7a:fb:47:c5:b9:58: ed:6c:4f:30:b2:1f:2d:87:4b:12:69:7b:04:50:8b: 49:f3:48:e8:37:23:2e:3f:a0:1e:be:3e:cb:6a:1f: dd:01:f4:ee:25:1f:d6:88:45:9b:0f:22:f8:8b:29: 9f:a6:31:ec:57:4d:58:23:5f:1c:0d:bb:12:e2:03: 01:67:53:5f:50:d1:64:0b:5b:b8:23:e1:42:47:15: 7b:6a:0c:01:94:72:d1:c2:12:4a:f1:c9:b0:ff:b7: ed:33:f4:d4:60:76:1f:91:38:e3:37:17:cd:2a:10: 35:d4:17:25:35:d1:e1:00:ce:86:1a:c3:03:03:d4: ef:60:6e:3e:27:7d:76:06:e3:d6:af:a1:4e:8b:87: a0:9d:27:35:12:6c:bf:f9:93:b6:d6:c3:a1:8c:e4: 0f:df:f2:d2:70:08:48:f8:24:1b:87:ee:bf:0a:75: d0:3a:7f:42:b2:b5:42:d5:3f:d6:1d:e9:0e:f2:7e: 89:d8:b6:5a:2e:70:8b:3c:7d:a6:af:71:05:74:96: d5:05:36:e4:b5:d9:c3:65:4c:4c:25:2c:c6:24:e5: e5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A1:53:D2:DC:2E:B7:BB:83:7F:13:87:BE:5D:40:38:1E:CA:FB:3E X509v3 Authority Key Identifier: keyid:96:94:49:FF:3E:24:84:2B:0C:EC:C6:1A:B3:98:E8:8F:83:70:9F:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.145.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:c0:9c:3d:38:91:0f:59:1b:22:e5:2f:02:73:15:cb:7d:84: 8c:26:b8:3c:c8:e3:4f:2c:45:ab:37:da:83:5c:be:66:25:7d: 81:f2:58:e7:1d:5d:0e:23:1f:9e:8c:4e:9b:dd:1c:6f:f2:1a: 05:e1:b7:c3:46:a0:cd:0c:6e:ef:e5:34:91:b3:75:1f:d6:0f: 51:8b:50:d7:a3:97:8a:67:71:29:ac:4f:22:f1:c2:04:c9:88: a7:f7:ab:0d:7e:10:29:d6:7b:2a:3c:fb:09:cb:60:65:85:5e: 5d:66:ce:dc:96:a7:2a:46:03:de:d6:cc:01:b9:04:f0:ef:3b: 85:e2:2a:af:3d:61:60:d0:ff:c5:fc:9d:3e:ef:cd:81:7b:1e: 30:b0:bd:01:83:f0:48:2f:54:40:a2:01:c9:40:87:8e:bf:af: e3:5c:b1:e5:35:61:22:fe:1c:d1:61:df:ec:4c:bf:c4:9b:ac: e1:8f:8f:d9:93:8b:1d:50:81:c9:05:37:b3:29:0d:89:36:e9: 6e:f0:e7:28:7e:cb:ee:96:3a:85:f6:97:04:6a:6b:ff:aa:85: ee:35:91:44:f2:c7:04:09:3c:1d:2f:e4:b7:b9:e7:bb:d4:c5: a7:3f:83:0d:07:35:aa:2e:81:69:e3:02:8e:84:39:33:df:d0: 91:e3:e8:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfXwn4CUtX+FNveIlYDgrodEWkN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY5NDQ5RkYzRTI0ODQyQjBDRUNDNjFBQjM5OEU4OEY4 MzcwOUZDMTAeFw0yNTAyMjcwMjU3NTZaFw0yNjAyMjYwMzAyNTZaMDMxMTAvBgNV BAMTKEEzQTE1M0QyREMyRUI3QkI4MzdGMTM4N0JFNUQ0MDM4MUVDQUZCM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPB+8Thr3uIldXKY/DriHsM78v /xd8FsYjYsxwlF5m4KA+Dstcrnr7R8W5WO1sTzCyHy2HSxJpewRQi0nzSOg3Iy4/ oB6+PstqH90B9O4lH9aIRZsPIviLKZ+mMexXTVgjXxwNuxLiAwFnU19Q0WQLW7gj 4UJHFXtqDAGUctHCEkrxybD/t+0z9NRgdh+ROOM3F80qEDXUFyU10eEAzoYawwMD 1O9gbj4nfXYG49avoU6Lh6CdJzUSbL/5k7bWw6GM5A/f8tJwCEj4JBuH7r8KddA6 f0KytULVP9Yd6Q7yfonYtloucIs8faavcQV0ltUFNuS12cNlTEwlLMYk5eUjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUo6FT0twut7uDfxOHvl1AOB7K+z4wHwYDVR0j BBgwFoAUlpRJ/z4khCsM7MYas5joj4Nwn8EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTRmNzkzNC1jZGM3LTQwODItODNmYi1kZjdkNGY4MjE5YWYvMC85Njk0NDlGRjNF MjQ4NDJCMENFQ0M2MUFCMzk4RTg4RjgzNzA5RkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTY5NDQ5RkYzRTI0ODQyQjBDRUNDNjFBQjM5OEU4OEY4Mzcw OUZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNGY3OTM0LWNkYzctNDA4Mi04 M2ZiLWRmN2Q0ZjgyMTlhZi8wLzMxMzUzNzJlMzIzMDJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSRMA0GCSqG SIb3DQEBCwUAA4IBAQBawJw9OJEPWRsi5S8CcxXLfYSMJrg8yONPLEWrN9qDXL5m JX2B8ljnHV0OIx+ejE6b3Rxv8hoF4bfDRqDNDG7v5TSRs3Uf1g9Ri1DXo5eKZ3Ep rE8i8cIEyYin96sNfhAp1nsqPPsJy2BlhV5dZs7clqcqRgPe1swBuQTw7zuF4iqv PWFg0P/F/J0+782Bex4wsL0Bg/BIL1RAogHJQIeOv6/jXLHlNWEi/hzRYd/sTL/E m6zhj4/Zk4sdUIHJBTezKQ2JNulu8OcofsvuljqF9pcEamv/qoXuNZFE8scECTwd L+S3uee71MWnP4MNBzWqLoFp4wKOhDkz39CR4+hS -----END CERTIFICATE-----Generated at Mon Apr 7 23:43:54 2025 by rpki-client