$ rpki-client -vvf repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa File: 3135372e32302e32342e302f32342d3234203d3e203633353036.roa (raw, json) Hash identifier: V+YjkhbIydkZ+oGTevb+ipQYCKYryW/Ib0ruhbJynjY= Subject key identifier: C8:02:B7:EA:80:10:0C:C3:A1:4E:A6:45:90:CD:BD:D5:BA:88:A6:5F Certificate issuer: /CN=2A2E185B12379871494114828D5D5D713982E469 Certificate serial: 59E5F49D913697C8B8FDABE58DDF2E42A0D2A3A3 Authority key identifier: 2A:2E:18:5B:12:37:98:71:49:41:14:82:8D:5D:5D:71:39:82:E4:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A2E185B12379871494114828D5D5D713982E469.cer Subject info access: rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa Signing time: Thu 16 Jan 2025 17:01:38 +0000 ROA not before: Thu 16 Jan 2025 16:56:38 +0000 ROA not after: Thu 15 Jan 2026 17:01:38 +0000 asID: 63506 IP address blocks: 157.20.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.crl rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A2E185B12379871494114828D5D5D713982E469.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 17:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e5:f4:9d:91:36:97:c8:b8:fd:ab:e5:8d:df:2e:42:a0:d2:a3:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2E185B12379871494114828D5D5D713982E469 Validity Not Before: Jan 16 16:56:38 2025 GMT Not After : Jan 15 17:01:38 2026 GMT Subject: CN=C802B7EA80100CC3A14EA64590CDBDD5BA88A65F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ca:d4:f6:5f:f3:f2:65:b8:51:af:69:f5:df: 68:52:1d:30:01:19:3d:f7:96:f3:fb:d5:3a:28:57: 9d:d3:7a:5b:2e:5d:a0:47:03:c0:13:4c:68:d2:24: 4e:0b:58:03:68:13:d4:22:b2:38:19:e1:e0:d2:ef: ff:f1:ba:b6:54:30:12:f7:69:2e:bf:ea:c4:b6:67: 18:f7:03:96:a7:53:a3:61:7e:55:3b:93:a3:2f:ad: aa:be:6c:94:bd:8f:5f:f7:5e:7c:b2:9d:af:06:f0: f3:cf:aa:d8:46:b2:5f:97:2e:36:22:99:9b:14:3c: 07:64:11:dc:f1:44:41:2b:dc:e7:27:c1:7d:73:5d: 74:0d:52:68:0b:8a:e1:e7:7b:a0:91:ec:3a:73:77: 73:77:38:6d:1d:db:7b:29:e9:5c:82:06:7f:e4:40: bc:13:3e:30:14:dc:bf:cc:8b:ef:8c:ff:e3:22:67: 5f:2b:72:c1:fc:6a:c5:ee:8c:5c:02:dd:a4:82:3c: c5:bf:24:dd:bc:f7:2a:c6:1f:09:01:5f:76:f7:53: 2c:10:3a:94:8c:f3:23:0a:3f:db:17:5c:1a:a6:17: 51:d9:22:24:1a:24:65:1c:eb:17:76:aa:31:c8:90: b0:6a:e9:9f:9b:e8:20:bd:91:6a:c2:36:ca:e4:57: 27:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:02:B7:EA:80:10:0C:C3:A1:4E:A6:45:90:CD:BD:D5:BA:88:A6:5F X509v3 Authority Key Identifier: keyid:2A:2E:18:5B:12:37:98:71:49:41:14:82:8D:5D:5D:71:39:82:E4:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A2E185B12379871494114828D5D5D713982E469.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.24.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:66:4f:26:f0:7d:9d:e6:40:c2:29:e7:ea:14:17:0e:a7:ec: 8e:b3:fc:2b:66:6d:bc:dc:f0:5f:79:22:37:8c:93:b9:e3:31: 0c:20:12:fc:1d:00:1e:55:5e:88:44:f6:d9:af:79:71:a6:77: e0:f8:34:69:2b:5c:4c:91:34:90:46:d9:20:8a:07:15:63:06: b9:88:24:95:7c:0a:b7:04:05:68:35:c3:19:47:20:ba:ba:83: 88:60:21:c8:4f:e8:3b:f9:04:a6:b7:7c:37:61:b9:7d:2b:15: 8d:df:c9:65:d4:a8:a5:d3:86:6b:03:49:fc:07:97:ba:5e:88: 02:74:f1:7b:b8:85:b8:a6:2b:6e:5e:bc:13:3c:4a:c5:46:b6: 80:66:7a:77:1e:d4:3a:c5:7a:48:ad:f6:53:3e:e0:74:0f:09: b3:50:2b:7a:2c:0d:3b:e5:b1:80:c2:2c:4a:20:6b:3f:ca:56: 8e:3f:e5:ac:c1:fa:8b:1b:af:a6:a5:bb:96:03:67:54:a5:02: a3:10:f7:fc:9c:1f:c9:70:ad:0f:28:cc:be:06:12:e7:1d:98: 4d:03:dd:2f:d5:96:cc:a9:0c:5f:d4:0e:a2:78:61:cd:3a:c0: 63:91:8a:13:5f:ac:63:7b:3e:57:40:36:9a:07:6d:20:3f:47: 67:9d:c8:89 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWeX0nZE2l8i4/avljd8uQqDSo6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRTE4NUIxMjM3OTg3MTQ5NDExNDgyOEQ1RDVENzEz OTgyRTQ2OTAeFw0yNTAxMTYxNjU2MzhaFw0yNjAxMTUxNzAxMzhaMDMxMTAvBgNV BAMTKEM4MDJCN0VBODAxMDBDQzNBMTRFQTY0NTkwQ0RCREQ1QkE4OEE2NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ytT2X/PyZbhRr2n132hSHTAB GT33lvP71TooV53TelsuXaBHA8ATTGjSJE4LWANoE9QisjgZ4eDS7//xurZUMBL3 aS6/6sS2Zxj3A5anU6NhflU7k6Mvraq+bJS9j1/3Xnyyna8G8PPPqthGsl+XLjYi mZsUPAdkEdzxREEr3OcnwX1zXXQNUmgLiuHne6CR7Dpzd3N3OG0d23sp6VyCBn/k QLwTPjAU3L/Mi++M/+MiZ18rcsH8asXujFwC3aSCPMW/JN289yrGHwkBX3b3UywQ OpSM8yMKP9sXXBqmF1HZIiQaJGUc6xd2qjHIkLBq6Z+b6CC9kWrCNsrkVyfLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyAK36oAQDMOhTqZFkM291bqIpl8wHwYDVR0j BBgwFoAUKi4YWxI3mHFJQRSCjV1dcTmC5GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NWJhZTMwYy1iMzYzLTQwN2ItYTBhYi0zMTU0ZWIzMDlhZTkvMC8yQTJFMTg1QjEy Mzc5ODcxNDk0MTE0ODI4RDVENUQ3MTM5ODJFNDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkEyRTE4NUIxMjM3OTg3MTQ5NDExNDgyOEQ1RDVENzEzOTgy RTQ2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1YmFlMzBjLWIzNjMtNDA3Yi1h MGFiLTMxNTRlYjMwOWFlOS8wLzMxMzUzNzJlMzIzMDJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzNTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdFBgwDQYJKoZIhvcN AQELBQADggEBAB9mTybwfZ3mQMIp5+oUFw6n7I6z/Ctmbbzc8F95IjeMk7njMQwg EvwdAB5VXohE9tmveXGmd+D4NGkrXEyRNJBG2SCKBxVjBrmIJJV8CrcEBWg1wxlH ILq6g4hgIchP6Dv5BKa3fDdhuX0rFY3fyWXUqKXThmsDSfwHl7peiAJ08Xu4hbim K25evBM8SsVGtoBmence1DrFekit9lM+4HQPCbNQK3osDTvlsYDCLEogaz/KVo4/ 5azB+osbr6alu5YDZ1SlAqMQ9/ycH8lwrQ8ozL4GEucdmE0D3S/VlsypDF/UDqJ4 Yc06wGORihNfrGN7PldANpoHbSA/R2edyIk= -----END CERTIFICATE-----Generated at Sun Apr 27 23:55:42 2025 by rpki-client