$ rpki-client -vvf repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39302e302f32332d3233203d3e20313532303836.roa File: 3135372e31302e39302e302f32332d3233203d3e20313532303836.roa (raw, json) Hash identifier: sqhh6fhWizwXoH9l3XVTNUts+MHffcu11O/8GZa+UZk= Subject key identifier: B9:23:86:FE:26:E8:22:C5:C2:B1:D4:78:3E:BC:7C:6D:F5:9A:48:77 Certificate issuer: /CN=5EC928AFD73AFC70F10C468E21482031920DF521 Certificate serial: 593E9ADA9ADB9773CCE81E3FA791C42B7203EF1C Authority key identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39302e302f32332d3233203d3e20313532303836.roa Signing time: Sun 19 Jan 2025 17:00:02 +0000 ROA not before: Sun 19 Jan 2025 16:55:02 +0000 ROA not after: Sun 18 Jan 2026 17:00:02 +0000 asID: 152086 IP address blocks: 157.10.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:3e:9a:da:9a:db:97:73:cc:e8:1e:3f:a7:91:c4:2b:72:03:ef:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC928AFD73AFC70F10C468E21482031920DF521 Validity Not Before: Jan 19 16:55:02 2025 GMT Not After : Jan 18 17:00:02 2026 GMT Subject: CN=B92386FE26E822C5C2B1D4783EBC7C6DF59A4877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9c:7e:5d:ce:ff:cf:57:0c:48:20:b0:e4:39: 0b:c0:56:73:11:61:2e:94:e6:d0:63:52:90:c4:2b: 52:18:a0:2e:cd:ee:3b:43:a6:33:bd:1b:3d:83:6f: 3b:ae:f9:d6:52:16:fe:85:2f:f1:80:0a:a1:85:3d: 9d:c8:e5:eb:a0:51:0d:d1:b1:fc:48:20:bd:40:de: 2a:fa:88:38:71:8b:ad:16:0e:a9:d5:cd:6e:8d:71: d9:50:84:d0:23:c2:2e:fb:dd:96:ac:c0:cc:80:16: 2b:41:02:db:08:1d:fa:d3:44:cb:1a:a4:6d:08:29: d1:54:cc:d1:58:c0:e7:48:72:9a:22:38:8b:d9:72: f0:ca:c8:6b:c0:52:d6:cd:45:d1:97:a3:28:c1:9c: d8:23:28:4b:1b:ff:51:4d:c3:06:d5:6c:01:df:f1: 2e:28:da:83:5b:88:6b:f1:9e:09:f1:69:fc:14:48: 54:30:60:6e:06:f1:f3:db:84:8a:b5:cd:66:13:3d: c6:45:fe:de:4e:b0:49:05:38:06:75:65:84:9f:28: 63:f1:c1:e8:d5:cf:0f:85:e7:21:3c:d1:da:7a:ab: eb:da:23:c6:30:66:a6:34:b7:c8:2e:27:15:15:a2: 01:b2:dd:6f:2d:25:07:7d:de:d8:a7:b7:d6:cf:49: 03:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:23:86:FE:26:E8:22:C5:C2:B1:D4:78:3E:BC:7C:6D:F5:9A:48:77 X509v3 Authority Key Identifier: keyid:5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39302e302f32332d3233203d3e20313532303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.90.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:ec:98:9c:16:c8:a8:55:a6:82:01:12:63:a8:10:50:fc:12: 8e:6a:f9:73:56:5f:6c:b6:1f:d1:ce:05:46:21:eb:7f:55:9d: 1c:be:01:aa:2f:70:6d:91:c9:c8:71:e9:bb:14:5c:ac:f6:f8: 90:2f:74:ff:44:5f:bd:c6:6c:e8:01:81:d3:5e:98:a8:10:41: ca:8e:bb:22:14:2e:a4:34:5c:c2:bd:e3:21:90:21:d3:b4:64: 3a:2f:55:d7:f9:07:dd:72:ed:e1:f8:74:ef:f2:65:5d:3d:4b: d6:76:19:ea:b4:df:3a:52:5a:fb:8a:9b:8d:33:fa:0b:93:a8: a8:23:c0:21:a4:a4:56:b3:03:fb:4f:8e:56:64:68:34:b4:29: 3b:eb:0c:1e:bc:a1:5f:74:df:0b:fc:7c:66:74:0c:f7:e4:05: 42:03:2a:18:92:32:b5:2c:de:a4:bd:37:70:c7:3d:32:cd:65: 0c:ac:50:78:13:49:b7:01:78:13:7b:a6:c3:e8:59:2a:13:d1: 93:eb:b5:8e:b4:d6:d4:56:5b:0b:73:bb:e0:ec:d0:6e:ab:58: 25:4b:34:2f:47:93:37:8d:ca:33:65:a1:f5:52:ce:10:c7:91: e6:d0:b2:14:ca:2d:de:ad:b4:f0:05:6a:86:29:bc:f6:1d:83: 60:75:44:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWT6a2prbl3PM6B4/p5HEK3ID7xwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5 MjBERjUyMTAeFw0yNTAxMTkxNjU1MDJaFw0yNjAxMTgxNzAwMDJaMDMxMTAvBgNV BAMTKEI5MjM4NkZFMjZFODIyQzVDMkIxRDQ3ODNFQkM3QzZERjU5QTQ4NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDonH5dzv/PVwxIILDkOQvAVnMR YS6U5tBjUpDEK1IYoC7N7jtDpjO9Gz2Dbzuu+dZSFv6FL/GACqGFPZ3I5eugUQ3R sfxIIL1A3ir6iDhxi60WDqnVzW6NcdlQhNAjwi773ZaswMyAFitBAtsIHfrTRMsa pG0IKdFUzNFYwOdIcpoiOIvZcvDKyGvAUtbNRdGXoyjBnNgjKEsb/1FNwwbVbAHf 8S4o2oNbiGvxngnxafwUSFQwYG4G8fPbhIq1zWYTPcZF/t5OsEkFOAZ1ZYSfKGPx wejVzw+F5yE80dp6q+vaI8YwZqY0t8guJxUVogGy3W8tJQd93tint9bPSQOVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuSOG/iboIsXCsdR4Prx8bfWaSHcwHwYDVR0j BBgwFoAUXskor9c6/HDxDEaOIUggMZIN9SEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Y2YzZjhjOC0wNDA2LTRiMzgtYTdhOC1kY2IxNWU0MWYyYjcvMC81RUM5MjhBRkQ3 M0FGQzcwRjEwQzQ2OEUyMTQ4MjAzMTkyMERGNTIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5MjBE RjUyMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjZjNmOGM4LTA0MDYtNGIzOC1h N2E4LWRjYjE1ZTQxZjJiNy8wLzMxMzUzNzJlMzEzMDJlMzkzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KWjANBgkqhkiG 9w0BAQsFAAOCAQEAHOyYnBbIqFWmggESY6gQUPwSjmr5c1ZfbLYf0c4FRiHrf1Wd HL4Bqi9wbZHJyHHpuxRcrPb4kC90/0RfvcZs6AGB016YqBBByo67IhQupDRcwr3j IZAh07RkOi9V1/kH3XLt4fh07/JlXT1L1nYZ6rTfOlJa+4qbjTP6C5OoqCPAIaSk VrMD+0+OVmRoNLQpO+sMHryhX3TfC/x8ZnQM9+QFQgMqGJIytSzepL03cMc9Ms1l DKxQeBNJtwF4E3umw+hZKhPRk+u1jrTW1FZbC3O74OzQbqtYJUs0L0eTN43KM2Wh 9VLOEMeR5tCyFMot3q208AVqhim89h2DYHVEoA== -----END CERTIFICATE-----Generated at Sun Apr 6 19:00:01 2025 by rpki-client