$ rpki-client -vvf repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa File: 3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa (raw, json) Hash identifier: 5wOzKGDtK4zeM+14oVf5CebWsbPEoKuI00n5y47Z804= Subject key identifier: F3:34:51:A9:92:5D:0B:E5:71:B6:83:69:9D:FE:A6:68:F1:53:89:55 Certificate issuer: /CN=EC1B9BE63137230F6756E222019318C640EBE42E Certificate serial: 0E3838646DADA71EFEDA8C32A88EF56D05246EA9 Authority key identifier: EC:1B:9B:E6:31:37:23:0F:67:56:E2:22:01:93:18:C6:40:EB:E4:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa Signing time: Tue 21 Jan 2025 02:00:00 +0000 ROA not before: Tue 21 Jan 2025 01:55:00 +0000 ROA not after: Tue 20 Jan 2026 02:00:00 +0000 asID: 152382 IP address blocks: 157.15.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.crl rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 11:20:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:38:38:64:6d:ad:a7:1e:fe:da:8c:32:a8:8e:f5:6d:05:24:6e:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC1B9BE63137230F6756E222019318C640EBE42E Validity Not Before: Jan 21 01:55:00 2025 GMT Not After : Jan 20 02:00:00 2026 GMT Subject: CN=F33451A9925D0BE571B683699DFEA668F1538955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:04:76:3e:f7:8c:b0:19:56:44:5b:52:34:9b: af:62:1e:8a:b3:7a:e0:a2:a5:cc:17:26:e6:2b:d6: 3c:ff:18:a1:5d:06:34:e7:70:ce:d1:28:0b:21:aa: e4:56:55:30:de:3c:b3:48:1d:be:b2:21:df:c2:1f: ed:57:6e:1d:c1:20:c6:85:37:0e:37:1a:53:03:7a: 97:67:4f:70:ee:97:a1:f1:d4:7c:82:8b:d2:6a:a9: 90:be:61:0e:9c:e9:5f:c6:f6:d2:4d:46:7b:4a:39: 04:47:61:6f:8e:ed:e7:2c:e9:92:e1:f3:f7:06:2a: be:1f:79:83:04:f1:9c:b1:ec:0e:ca:72:6b:76:c3: 64:be:7d:8e:d2:81:0e:74:4f:22:57:b9:e0:41:b7: 6d:08:a7:11:6c:30:44:c2:36:86:00:62:d8:6a:93: 73:5a:fc:36:4c:13:54:87:7e:21:61:d8:19:89:8f: f1:44:7b:ab:8b:56:44:da:ed:e9:38:6a:06:f8:28: 7d:7a:c3:16:db:a2:f6:cf:84:ce:2d:33:be:2e:20: b2:18:cf:53:e0:ca:1a:2b:ca:36:36:a4:93:ff:eb: 1a:35:72:aa:f3:52:c4:67:c2:4a:a0:ea:31:25:b1: ed:40:8e:9c:ac:dc:2d:51:19:64:7f:ac:32:0d:66: 1c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:34:51:A9:92:5D:0B:E5:71:B6:83:69:9D:FE:A6:68:F1:53:89:55 X509v3 Authority Key Identifier: keyid:EC:1B:9B:E6:31:37:23:0F:67:56:E2:22:01:93:18:C6:40:EB:E4:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.166.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:63:58:3e:58:96:83:7d:a7:80:b8:18:0f:41:ff:e5:b0:b4: 2f:e2:07:88:f0:cc:df:7e:02:98:54:ab:22:39:1c:8b:6f:ae: de:65:cc:f9:be:b8:34:74:91:15:f5:33:6a:08:25:a9:08:64: 79:99:92:c6:38:9a:39:02:81:0e:12:3e:1d:0f:7e:f8:b7:9d: d7:d3:d5:87:6b:27:01:37:df:0d:eb:2c:0d:17:d2:66:94:1b: b0:8a:18:5d:73:f8:f4:33:0c:07:a5:80:48:f6:fc:d0:6d:d9: 8d:16:40:ce:4e:57:fe:39:ee:ed:a0:b8:6a:81:37:ea:1a:61: 9e:8b:9e:4b:84:f5:03:77:bf:b5:7e:78:90:ac:d8:79:6d:0b: 85:04:d4:90:87:a3:c9:13:48:91:8a:af:14:ff:2d:eb:ab:4a: 9c:33:d6:63:aa:f3:27:ed:d8:67:ad:16:b3:7e:0e:3f:6c:fd: f9:a2:ba:30:79:e9:00:1d:89:f6:f9:69:52:ab:e3:31:6d:27: 2e:22:a1:fa:c3:52:2b:bb:a7:54:ae:1e:01:46:64:89:0d:c2: 1e:36:82:51:68:a8:64:76:05:61:31:b9:68:7c:97:ef:f1:2d: 09:90:f5:f8:3e:ee:82:a8:79:38:73:87:fc:e1:84:0b:1c:35: 18:02:c9:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDjg4ZG2tpx7+2owyqI71bQUkbqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUMxQjlCRTYzMTM3MjMwRjY3NTZFMjIyMDE5MzE4QzY0 MEVCRTQyRTAeFw0yNTAxMjEwMTU1MDBaFw0yNjAxMjAwMjAwMDBaMDMxMTAvBgNV BAMTKEYzMzQ1MUE5OTI1RDBCRTU3MUI2ODM2OTlERkVBNjY4RjE1Mzg5NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4BHY+94ywGVZEW1I0m69iHoqz euCipcwXJuYr1jz/GKFdBjTncM7RKAshquRWVTDePLNIHb6yId/CH+1Xbh3BIMaF Nw43GlMDepdnT3Dul6Hx1HyCi9JqqZC+YQ6c6V/G9tJNRntKOQRHYW+O7ecs6ZLh 8/cGKr4feYME8Zyx7A7Kcmt2w2S+fY7SgQ50TyJXueBBt20IpxFsMETCNoYAYthq k3Na/DZME1SHfiFh2BmJj/FEe6uLVkTa7ek4agb4KH16wxbbovbPhM4tM74uILIY z1PgyhoryjY2pJP/6xo1cqrzUsRnwkqg6jElse1Ajpys3C1RGWR/rDINZhzlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8zRRqZJdC+VxtoNpnf6maPFTiVUwHwYDVR0j BBgwFoAU7Bub5jE3Iw9nVuIiAZMYxkDr5C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTNhYzY2Ny00ZDllLTQ4ZDctYWZkNi04MmU5OGZhNzZjMWUvMC9FQzFCOUJFNjMx MzcyMzBGNjc1NkUyMjIwMTkzMThDNjQwRUJFNDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUMxQjlCRTYzMTM3MjMwRjY3NTZFMjIyMDE5MzE4QzY0MEVC RTQyRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1M2FjNjY3LTRkOWUtNDhkNy1h ZmQ2LTgyZTk4ZmE3NmMxZS8wLzMxMzUzNzJlMzEzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+mMA0GCSqG SIb3DQEBCwUAA4IBAQAqY1g+WJaDfaeAuBgPQf/lsLQv4geI8MzffgKYVKsiORyL b67eZcz5vrg0dJEV9TNqCCWpCGR5mZLGOJo5AoEOEj4dD374t53X09WHaycBN98N 6ywNF9JmlBuwihhdc/j0MwwHpYBI9vzQbdmNFkDOTlf+Oe7toLhqgTfqGmGei55L hPUDd7+1fniQrNh5bQuFBNSQh6PJE0iRiq8U/y3rq0qcM9ZjqvMn7dhnrRazfg4/ bP35oroweekAHYn2+WlSq+MxbScuIqH6w1Iru6dUrh4BRmSJDcIeNoJRaKhkdgVh MblofJfv8S0JkPX4Pu6CqHk4c4f84YQLHDUYAsms -----END CERTIFICATE-----Generated at Mon Apr 28 08:00:07 2025 by rpki-client