$ rpki-client -vvf repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa File: 3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa (raw, json) Hash identifier: rbjJyAwc8hNNHHozNUZcHui2yrJ3XRP3MxmsmjgubzQ= Subject key identifier: 3F:BE:07:25:A6:23:45:D7:90:04:E4:27:7F:96:1F:DE:BA:3D:10:B4 Certificate issuer: /CN=7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793 Certificate serial: 2476410E0DC4CD844D77A37A8D92F15ECDFDE487 Authority key identifier: 7C:4E:AC:B6:A8:C8:C7:27:6D:4C:EB:86:DC:DC:A3:E7:F4:68:A7:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa Signing time: Thu 06 Mar 2025 05:01:16 +0000 ROA not before: Thu 06 Mar 2025 04:56:16 +0000 ROA not after: Thu 05 Mar 2026 05:01:16 +0000 asID: 152415 IP address blocks: 157.20.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.crl rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:76:41:0e:0d:c4:cd:84:4d:77:a3:7a:8d:92:f1:5e:cd:fd:e4:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793 Validity Not Before: Mar 6 04:56:16 2025 GMT Not After : Mar 5 05:01:16 2026 GMT Subject: CN=3FBE0725A62345D79004E4277F961FDEBA3D10B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:96:a6:e8:83:c8:91:48:53:49:ba:ed:41:2a: b5:7f:70:2e:f1:d0:e8:cf:2a:d8:85:0f:a0:46:0d: 5e:02:76:bd:e7:6e:42:fc:54:82:f2:2a:6f:a8:81: d9:00:9e:bf:39:68:8d:8c:61:f2:a4:4b:01:fa:a2: 3e:4a:bc:a6:23:9b:e1:ff:b2:c9:c7:e7:b5:f0:40: 57:49:f1:b5:8a:14:5a:77:de:bc:85:59:cc:ba:2a: dd:4e:a5:d8:68:da:05:a1:72:af:a5:24:f6:9f:fd: 2e:7e:39:c4:bd:e5:95:04:1b:41:6e:40:ef:d3:19: bc:59:ad:b5:3a:20:5d:0d:d9:b3:02:9d:06:10:b7: 0b:36:c1:c1:27:0b:a9:58:02:68:49:ec:81:e4:23: 5a:85:29:d4:e4:62:ce:cd:c5:bf:a7:22:04:25:3b: 2e:03:64:20:40:84:50:d0:7f:46:49:80:58:03:35: 54:55:3c:e9:9b:aa:ca:00:61:f3:eb:40:1d:a7:7f: 21:d9:c5:10:8a:0b:0d:14:7b:19:e3:e1:18:da:ab: 13:a2:dc:6b:1d:12:de:b2:90:2b:3c:71:64:e2:e6: 85:d3:c5:01:67:c2:21:2c:e4:33:54:35:ac:d8:e2: 7c:a2:49:09:7c:55:cd:00:30:f5:10:e5:eb:4b:da: 97:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BE:07:25:A6:23:45:D7:90:04:E4:27:7F:96:1F:DE:BA:3D:10:B4 X509v3 Authority Key Identifier: keyid:7C:4E:AC:B6:A8:C8:C7:27:6D:4C:EB:86:DC:DC:A3:E7:F4:68:A7:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.212.0/23 Signature Algorithm: sha256WithRSAEncryption 82:4f:03:19:12:9a:6b:21:77:f5:ac:76:8a:bf:ff:ae:1a:c3: ad:75:d6:a5:fb:e9:91:bf:8c:fd:7f:30:18:66:d8:be:88:99: 40:5a:2e:6a:46:c1:c1:a5:a1:3f:dc:e8:ec:e2:26:f6:3b:1c: 73:a8:49:63:c4:a7:b9:53:fa:c0:d5:4c:ed:0a:76:a3:b1:21: 84:31:fa:60:4e:11:48:6d:5a:1c:cb:90:47:b4:9d:4b:ba:55: c3:87:c5:8a:e0:4a:24:56:1d:d9:50:63:7e:a8:1c:69:df:71: a6:f0:9a:17:aa:1d:d7:2f:96:9b:5c:3c:71:fb:f2:67:7a:1e: f1:a1:65:c2:b8:9f:97:1c:e1:02:75:9a:8e:97:d7:c1:12:2b: 43:d6:27:49:1b:4c:1b:58:7c:70:91:41:c1:a8:bb:a1:59:c1: a5:c7:8b:b4:09:34:4a:f8:13:29:a9:81:eb:b8:14:fe:7d:2c: 7f:77:be:f1:a2:a3:fd:e4:58:37:c8:79:08:47:ea:b0:d0:f8: ed:2d:53:aa:06:4f:ff:1a:26:d8:2b:f8:be:fe:04:4e:f9:31: 9a:51:ef:97:fb:69:c4:8e:bb:78:f5:ef:ae:a8:02:ae:6d:28: cf:36:98:c4:99:e3:53:c1:a7:6f:22:49:98:08:34:29:0e:45: b8:65:28:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJHZBDg3EzYRNd6N6jZLxXs395IcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0RUFDQjZBOEM4QzcyNzZENENFQjg2RENEQ0EzRTdG NDY4QTc5MzAeFw0yNTAzMDYwNDU2MTZaFw0yNjAzMDUwNTAxMTZaMDMxMTAvBgNV BAMTKDNGQkUwNzI1QTYyMzQ1RDc5MDA0RTQyNzdGOTYxRkRFQkEzRDEwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5lqbog8iRSFNJuu1BKrV/cC7x 0OjPKtiFD6BGDV4Cdr3nbkL8VILyKm+ogdkAnr85aI2MYfKkSwH6oj5KvKYjm+H/ ssnH57XwQFdJ8bWKFFp33ryFWcy6Kt1Opdho2gWhcq+lJPaf/S5+OcS95ZUEG0Fu QO/TGbxZrbU6IF0N2bMCnQYQtws2wcEnC6lYAmhJ7IHkI1qFKdTkYs7Nxb+nIgQl Oy4DZCBAhFDQf0ZJgFgDNVRVPOmbqsoAYfPrQB2nfyHZxRCKCw0Uexnj4RjaqxOi 3GsdEt6ykCs8cWTi5oXTxQFnwiEs5DNUNazY4nyiSQl8Vc0AMPUQ5etL2pchAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP74HJaYjRdeQBOQnf5Yf3ro9ELQwHwYDVR0j BBgwFoAUfE6stqjIxydtTOuG3Nyj5/Rop5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2I0N2FiNi1kMWYxLTRkMmUtOWNmYy04MDg0YTRiYWNmMGIvMC83QzRFQUNCNkE4 QzhDNzI3NkQ0Q0VCODZEQ0RDQTNFN0Y0NjhBNzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0RUFDQjZBOEM4QzcyNzZENENFQjg2RENEQ0EzRTdGNDY4 QTc5My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYjQ3YWI2LWQxZjEtNGQyZS05 Y2ZjLTgwODRhNGJhY2YwYi8wLzMxMzUzNzJlMzIzMDJlMzIzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTUMA0GCSqG SIb3DQEBCwUAA4IBAQCCTwMZEpprIXf1rHaKv/+uGsOtddal++mRv4z9fzAYZti+ iJlAWi5qRsHBpaE/3Ojs4ib2OxxzqEljxKe5U/rA1UztCnajsSGEMfpgThFIbVoc y5BHtJ1LulXDh8WK4EokVh3ZUGN+qBxp33Gm8JoXqh3XL5abXDxx+/Jneh7xoWXC uJ+XHOECdZqOl9fBEitD1idJG0wbWHxwkUHBqLuhWcGlx4u0CTRK+BMpqYHruBT+ fSx/d77xoqP95Fg3yHkIR+qw0PjtLVOqBk//GibYK/i+/gRO+TGaUe+X+2nEjrt4 9e+uqAKubSjPNpjEmeNTwadvIkmYCDQpDkW4ZSiM -----END CERTIFICATE-----Generated at Thu Apr 17 23:28:38 2025 by rpki-client