$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34342e302f32342d3234203d3e20313532333932.roa File: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (raw, json) Hash identifier: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo= Subject key identifier: 3A:B5:20:DE:AC:C3:FC:A5:F1:1C:26:8A:2B:EA:67:2E:3B:25:F8:CF Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 37D408640A45B26E891F50607A8F7C7BFF21065D Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34342e302f32342d3234203d3e20313532333932.roa Signing time: Mon 16 Jun 2025 04:00:46 +0000 ROA not before: Mon 16 Jun 2025 03:55:46 +0000 ROA not after: Mon 15 Jun 2026 04:00:46 +0000 asID: 152392 IP address blocks: 157.20.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 12:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d4:08:64:0a:45:b2:6e:89:1f:50:60:7a:8f:7c:7b:ff:21:06:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Jun 16 03:55:46 2025 GMT Not After : Jun 15 04:00:46 2026 GMT Subject: CN=3AB520DEACC3FCA5F11C268A2BEA672E3B25F8CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e8:a7:4a:f9:5a:04:f0:9c:32:1b:c4:cd:c6: d5:aa:60:02:cb:9b:0b:2b:d4:fb:44:b5:4a:5a:a9: a7:69:77:cd:9e:22:54:e1:a4:d1:3d:7e:9b:a9:a0: a7:84:44:5c:15:26:70:08:3f:69:02:f2:12:ed:59: 71:91:ce:07:d4:d5:47:33:46:f1:09:c6:94:97:22: 71:59:f3:39:c0:db:0b:8f:e4:32:0e:c0:61:18:bb: ce:db:a5:f1:c1:68:3a:9e:10:2f:90:fd:1d:a9:32: c4:76:0e:27:0f:0e:f7:03:31:7e:cc:ec:62:a2:7a: 69:07:42:4d:e7:31:16:de:2b:e7:e5:89:3d:ae:f4: 66:a1:b3:5c:09:95:34:60:37:84:bc:86:08:fe:1f: ed:55:c3:c1:5d:0f:1b:56:f2:91:6a:01:9c:8c:b8: f1:6e:04:35:f6:24:91:5a:4b:4a:b8:ea:e1:5f:2d: 3d:a2:22:f6:e3:2d:4f:b1:60:4b:b0:b2:eb:f5:41: 0e:31:92:d6:87:f1:d4:26:50:f5:94:87:94:fa:24: 0c:96:e4:9e:67:9c:33:04:99:de:e6:95:b0:12:cb: ab:25:82:d9:de:f5:5a:45:de:f3:c1:28:43:04:91: 60:42:13:b6:7a:8e:41:7a:ba:47:f3:3d:98:76:eb: 1f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B5:20:DE:AC:C3:FC:A5:F1:1C:26:8A:2B:EA:67:2E:3B:25:F8:CF X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34342e302f32342d3234203d3e20313532333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.44.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:7a:6e:70:62:4e:98:44:9a:f8:7d:bc:43:ce:27:f0:e0:3c: 95:5d:22:a7:90:73:6e:2a:bc:1f:88:82:bc:92:51:70:5f:f7: 56:17:51:85:15:5a:fc:6d:01:8a:ac:9a:dc:9f:5d:f4:22:15: a6:89:cc:2e:d4:80:78:2e:ac:6b:b9:0c:be:93:c1:24:a3:65: 8d:45:9b:30:e1:06:28:92:cf:b0:ab:5a:fd:f7:46:72:32:44: 22:5e:98:7f:d3:39:a9:ec:b9:a4:84:05:43:31:25:e7:49:71: e6:bb:46:51:51:c9:0d:bf:50:77:02:51:69:92:c0:73:0a:82: 73:ab:7d:c2:87:a5:50:68:7a:87:29:ce:b9:f8:aa:8b:1a:e1: 8f:94:2c:7e:af:be:f6:da:bf:4b:18:00:c9:36:7a:fb:1e:dc: 13:be:09:af:4a:8a:cc:f6:1e:f6:91:5f:37:b4:20:4d:c7:d0: d2:18:42:81:64:2b:69:2b:6e:be:5b:ea:f3:09:be:87:e7:d2: 23:8a:e0:0b:1c:a1:56:1a:78:27:1b:ff:c6:29:e4:48:8d:92: 76:0b:7b:9e:12:a6:c6:97:c9:e7:2f:25:f1:3d:d8:e3:8a:34: 1f:17:7d:ba:27:6f:4e:df:f1:9f:60:76:71:22:0a:f4:03:7c: 57:d9:f3:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN9QIZApFsm6JH1Bgeo98e/8hBl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTA2MTYwMzU1NDZaFw0yNjA2MTUwNDAwNDZaMDMxMTAvBgNV BAMTKDNBQjUyMERFQUNDM0ZDQTVGMTFDMjY4QTJCRUE2NzJFM0IyNUY4Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs6KdK+VoE8JwyG8TNxtWqYALL mwsr1PtEtUpaqadpd82eIlThpNE9fpupoKeERFwVJnAIP2kC8hLtWXGRzgfU1Ucz RvEJxpSXInFZ8znA2wuP5DIOwGEYu87bpfHBaDqeEC+Q/R2pMsR2DicPDvcDMX7M 7GKiemkHQk3nMRbeK+fliT2u9Gahs1wJlTRgN4S8hgj+H+1Vw8FdDxtW8pFqAZyM uPFuBDX2JJFaS0q46uFfLT2iIvbjLU+xYEuwsuv1QQ4xktaH8dQmUPWUh5T6JAyW 5J5nnDMEmd7mlbASy6slgtne9VpF3vPBKEMEkWBCE7Z6jkF6ukfzPZh26x+jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOrUg3qzD/KXxHCaKK+pnLjsl+M8wHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3LTZhOTItNDI5My04 ODAwLWI1M2UyYTkxOGFjYS8wLzMxMzUzNzJlMzIzMDJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0ULDANBgkqhkiG 9w0BAQsFAAOCAQEAH3pucGJOmESa+H28Q84n8OA8lV0ip5Bzbiq8H4iCvJJRcF/3 VhdRhRVa/G0Biqya3J9d9CIVponMLtSAeC6sa7kMvpPBJKNljUWbMOEGKJLPsKta /fdGcjJEIl6Yf9M5qey5pIQFQzEl50lx5rtGUVHJDb9QdwJRaZLAcwqCc6t9woel UGh6hynOufiqixrhj5Qsfq++9tq/SxgAyTZ6+x7cE74Jr0qKzPYe9pFfN7QgTcfQ 0hhCgWQraStuvlvq8wm+h+fSI4rgCxyhVhp4Jxv/xinkSI2Sdgt7nhKmxpfJ5y8l 8T3Y44o0Hxd9uidvTt/xn2B2cSIK9AN8V9nz2Q== -----END CERTIFICATE-----Generated at Tue Jun 17 18:02:11 2025 by rpki-client