$ rpki-client -vvf repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa File: 3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa (raw, json) Hash identifier: HO0xgGTKI8hDqeJBD1vkonWKYqVkEjngRgMiBcK+FFk= Subject key identifier: AA:BB:06:1F:D0:D9:D9:86:4A:0F:13:06:E1:AA:96:5A:04:B9:F5:DF Certificate issuer: /CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Certificate serial: 64DE327B09624BCA1A8939140C6DF48BD494D7E6 Authority key identifier: 19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa Signing time: Mon 02 Jun 2025 02:03:31 +0000 ROA not before: Mon 02 Jun 2025 01:58:31 +0000 ROA not after: Mon 01 Jun 2026 02:03:31 +0000 asID: 45302 IP address blocks: 157.119.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:de:32:7b:09:62:4b:ca:1a:89:39:14:0c:6d:f4:8b:d4:94:d7:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C Validity Not Before: Jun 2 01:58:31 2025 GMT Not After : Jun 1 02:03:31 2026 GMT Subject: CN=AABB061FD0D9D9864A0F1306E1AA965A04B9F5DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:aa:06:ca:aa:d6:b4:d7:f6:b8:f8:68:c6:09: aa:16:1b:85:d2:bf:f2:48:7e:64:ef:43:f4:42:49: 34:eb:c2:97:1a:5d:a7:99:9b:15:b8:e4:5d:ed:ce: b7:83:f1:3e:41:3c:75:8b:74:7d:4c:5a:ce:16:f8: f2:e6:7a:07:f2:51:8f:af:8f:8b:ab:5a:6b:e4:b3: 7a:ca:7b:e7:ff:e0:a3:cd:a4:cb:07:6c:83:f6:64: 9e:02:64:83:26:a9:da:29:2a:d0:94:be:13:fa:3e: b2:4f:6b:48:18:d7:da:3b:39:a3:0e:2d:b8:a1:57: 15:a1:25:a7:a7:ec:02:13:09:01:6b:f7:dd:fa:e5: 09:f6:78:fa:18:cd:ef:df:0d:8d:08:c3:07:ff:9d: 2d:2e:15:85:5b:ed:f8:a1:c8:01:d7:65:b6:b0:49: c6:41:3a:69:08:0f:ae:42:3a:b9:8f:8d:b0:7e:51: 4f:d6:79:b3:e1:d4:1d:18:6c:01:3d:fe:2c:3f:e0: 79:7c:f2:97:42:45:0e:2e:86:99:bd:09:e4:50:32: 70:74:4e:88:b9:72:4e:0f:da:d2:2b:44:62:a0:04: 3e:78:f0:44:92:81:23:fd:fd:6d:33:82:76:f8:d4: 56:1e:a9:2d:b7:97:17:00:ba:58:19:cc:10:e4:6d: 2d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:BB:06:1F:D0:D9:D9:86:4A:0F:13:06:E1:AA:96:5A:04:B9:F5:DF X509v3 Authority Key Identifier: keyid:19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.119.220.0/22 Signature Algorithm: sha256WithRSAEncryption 76:6e:5c:7e:8c:a2:fd:dc:bc:c5:f5:d9:14:dc:3c:3f:29:bf: 89:57:06:dc:8e:8b:2a:75:d4:7b:11:f8:3d:96:77:2b:31:a5: 52:3f:c6:ec:ee:4b:e7:e6:33:77:f2:d8:9d:df:e7:b6:c0:3f: d5:3e:0c:1e:3d:97:f6:6a:cc:a4:4e:9d:d2:20:09:c5:26:8e: 30:96:a9:e6:e0:3d:a3:71:b2:9f:6c:78:8c:73:39:d8:13:3c: f6:14:9f:ed:0d:74:40:1b:bd:e4:4a:2b:8e:cf:77:ab:c4:cf: 7c:fb:f1:76:68:cf:49:02:7f:7f:62:56:bc:d1:b2:d1:a1:a6: 99:18:27:4f:69:46:62:71:cd:23:6b:f3:41:bd:4e:d1:03:fb: b2:52:d6:5f:58:da:ed:df:38:8d:07:f6:d9:08:ea:bf:7e:4e: 92:dd:dc:7c:5f:6b:8b:2d:dc:14:02:4b:56:57:34:80:6c:c8: 8a:eb:ce:b2:79:07:6a:31:b4:3b:6c:91:17:58:a5:62:bb:8f: 4a:ec:6a:f3:ce:31:dd:d1:83:2a:de:f5:f7:38:df:35:5f:88: d8:73:e6:9d:00:ff:1e:28:a2:24:cc:0c:71:19:19:fa:14:af: f1:1b:73:6d:95:f4:c5:a7:e3:b4:91:c7:0e:dc:52:a0:4d:e5: a2:4f:12:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZN4yewliS8oaiTkUDG30i9SU1+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4 N0U2NUMzQzAeFw0yNTA2MDIwMTU4MzFaFw0yNjA2MDEwMjAzMzFaMDMxMTAvBgNV BAMTKEFBQkIwNjFGRDBEOUQ5ODY0QTBGMTMwNkUxQUE5NjVBMDRCOUY1REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+qgbKqta01/a4+GjGCaoWG4XS v/JIfmTvQ/RCSTTrwpcaXaeZmxW45F3tzreD8T5BPHWLdH1MWs4W+PLmegfyUY+v j4urWmvks3rKe+f/4KPNpMsHbIP2ZJ4CZIMmqdopKtCUvhP6PrJPa0gY19o7OaMO LbihVxWhJaen7AITCQFr99365Qn2ePoYze/fDY0Iwwf/nS0uFYVb7fihyAHXZbaw ScZBOmkID65COrmPjbB+UU/WebPh1B0YbAE9/iw/4Hl88pdCRQ4uhpm9CeRQMnB0 Toi5ck4P2tIrRGKgBD548ESSgSP9/W0zgnb41FYeqS23lxcAulgZzBDkbS3bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqrsGH9DZ2YZKDxMG4aqWWgS59d8wHwYDVR0j BBgwFoAUGaGW9eW6ujGSbFru9E/BY4fmXDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Yjg4NThlMC1lY2YwLTRlNTMtYTQ5MC0zYjdjMmRlMTY5M2MvMC8xOUExOTZGNUU1 QkFCQTMxOTI2QzVBRUVGNDRGQzE2Mzg3RTY1QzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTlBMTk2RjVFNUJBQkEzMTkyNkM1QUVFRjQ0RkMxNjM4N0U2 NUMzQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiODg1OGUwLWVjZjAtNGU1My1h NDkwLTNiN2MyZGUxNjkzYy8wLzMxMzUzNzJlMzEzMTM5MmUzMjMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzMzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnXfcMA0GCSqG SIb3DQEBCwUAA4IBAQB2blx+jKL93LzF9dkU3Dw/Kb+JVwbcjosqddR7Efg9lncr MaVSP8bs7kvn5jN38tid3+e2wD/VPgwePZf2asykTp3SIAnFJo4wlqnm4D2jcbKf bHiMcznYEzz2FJ/tDXRAG73kSiuOz3erxM98+/F2aM9JAn9/Yla80bLRoaaZGCdP aUZicc0ja/NBvU7RA/uyUtZfWNrt3ziNB/bZCOq/fk6S3dx8X2uLLdwUAktWVzSA bMiK686yeQdqMbQ7bJEXWKViu49K7GrzzjHd0YMq3vX3ON81X4jYc+adAP8eKKIk zAxxGRn6FK/xG3NtlfTFp+O0kccO3FKgTeWiTxL0 -----END CERTIFICATE-----Generated at Sat Jun 7 18:59:40 2025 by rpki-client