$ rpki-client -vvf repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa File: 3135372e31352e38322e302f32332d3233203d3e20313532333633.roa (raw, json) Hash identifier: TxbDMhKSioNeR20MqOvnLPpYmLwOjXBp9YQNGW/Dswg= Subject key identifier: 7A:5A:D4:18:A4:F5:28:D5:09:2A:09:3A:39:F0:24:0B:76:39:03:EB Certificate issuer: /CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Certificate serial: 1F09494298861417A017D241294FEAE8B9EBD62D Authority key identifier: FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa Signing time: Thu 01 May 2025 15:02:20 +0000 ROA not before: Thu 01 May 2025 14:57:20 +0000 ROA not after: Thu 30 Apr 2026 15:02:20 +0000 asID: 152363 IP address blocks: 157.15.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 11:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:09:49:42:98:86:14:17:a0:17:d2:41:29:4f:ea:e8:b9:eb:d6:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Validity Not Before: May 1 14:57:20 2025 GMT Not After : Apr 30 15:02:20 2026 GMT Subject: CN=7A5AD418A4F528D5092A093A39F0240B763903EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0b:ba:f6:1c:41:42:63:4f:6f:a6:a5:62:e8: 73:c0:0d:34:e2:72:c2:24:3a:bb:46:fa:09:b5:46: f0:5a:2e:98:9e:11:e5:b5:6e:84:47:f0:65:6e:4a: 0b:f1:79:a2:b1:e0:ba:9f:e4:cd:17:7a:d8:ac:68: 70:1d:35:97:40:55:15:ac:be:32:1b:b8:94:8f:48: e0:b1:0d:b4:0e:17:5c:36:1b:c0:50:5a:20:69:76: bb:91:f6:cc:4c:d9:72:e3:36:e9:7b:dd:aa:11:b5: 87:5b:f3:46:d3:9e:01:a4:a8:2c:ca:10:6a:b6:d3: 0b:c0:94:dc:88:71:a5:c1:84:23:9b:ff:e2:80:59: 63:f3:e5:60:89:c4:03:ea:9c:d2:12:03:0b:60:a8: 81:1b:35:be:92:56:7a:84:a3:33:3f:88:20:e4:38: 93:cc:b2:f9:05:89:17:41:d5:7e:82:47:e3:ff:7e: a3:21:dc:e5:74:5e:64:0e:17:05:b3:3f:5f:3e:66: 54:cc:10:39:5a:97:b2:25:a1:8b:c0:a9:a4:d7:b2: 32:df:4a:32:5b:ee:2d:de:f9:f1:f6:36:a1:a2:06: 98:57:f5:be:52:62:8a:7a:e4:14:14:5b:e8:b8:ec: 26:0f:73:78:fb:a2:d6:16:1d:73:ef:32:b6:c5:7c: 74:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5A:D4:18:A4:F5:28:D5:09:2A:09:3A:39:F0:24:0B:76:39:03:EB X509v3 Authority Key Identifier: keyid:FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.82.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:30:83:42:06:4d:e1:83:1c:aa:3f:da:65:a2:8a:f6:c5:b1: 5a:ab:e2:54:02:0e:95:05:e4:95:f7:f3:25:d8:7a:3d:1b:da: 5a:3e:b7:0f:b2:5a:13:30:56:8d:1d:d0:1d:a3:23:e2:d3:ad: d5:38:98:4b:23:87:01:12:80:cc:33:8f:a1:7a:1e:fa:bb:37: b2:f0:c2:94:ad:1c:2a:75:1a:f2:92:4e:6a:d3:e8:5c:dc:47: 22:35:3d:09:6c:ac:40:ad:2c:5b:c2:77:e2:39:fc:c3:4c:00: ab:b6:10:2e:d8:c0:29:bf:43:7c:66:6b:e7:24:f7:70:c6:d4: 68:98:76:8d:ca:bc:9b:87:bd:ff:65:16:3c:65:5e:89:e1:31: 50:fb:fd:8e:d5:2d:1a:a5:c0:b0:1f:05:bc:c6:33:c2:ac:f1: 8a:13:85:62:9f:95:14:e7:8c:56:3f:c7:12:8b:c4:45:7c:e1: 0d:f8:e0:d7:00:9b:98:9b:6a:ca:39:47:a8:4d:1d:a9:09:1b: 16:4f:f1:99:55:06:1d:57:14:b8:c0:a4:49:b4:e2:03:aa:d7: 4d:e3:f1:0c:62:a3:6c:a2:e0:bc:36:bd:8c:77:e0:7a:97:eb: 19:5e:61:be:b2:24:ba:a8:15:68:5f:9c:b7:82:64:5c:5f:21: a2:f7:53:26 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHwlJQpiGFBegF9JBKU/q6Lnr1i0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUw MEE2NkFEODAeFw0yNTA1MDExNDU3MjBaFw0yNjA0MzAxNTAyMjBaMDMxMTAvBgNV BAMTKDdBNUFENDE4QTRGNTI4RDUwOTJBMDkzQTM5RjAyNDBCNzYzOTAzRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjC7r2HEFCY09vpqVi6HPADTTi csIkOrtG+gm1RvBaLpieEeW1boRH8GVuSgvxeaKx4Lqf5M0XetisaHAdNZdAVRWs vjIbuJSPSOCxDbQOF1w2G8BQWiBpdruR9sxM2XLjNul73aoRtYdb80bTngGkqCzK EGq20wvAlNyIcaXBhCOb/+KAWWPz5WCJxAPqnNISAwtgqIEbNb6SVnqEozM/iCDk OJPMsvkFiRdB1X6CR+P/fqMh3OV0XmQOFwWzP18+ZlTMEDlal7IloYvAqaTXsjLf SjJb7i3e+fH2NqGiBphX9b5SYop65BQUW+i47CYPc3j7otYWHXPvMrbFfHR1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUelrUGKT1KNUJKgk6OfAkC3Y5A+swHwYDVR0j BBgwFoAU/z8Gal6auPmIuOF8elbdLgCmatgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZDAxMWExYy1hMGFkLTRkOTMtODZhZi0zZjBhYWRkOTY4NGYvMC9GRjNGMDY2QTVF OUFCOEY5ODhCOEUxN0M3QTU2REQyRTAwQTY2QUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUwMEE2 NkFEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkMDExYTFjLWEwYWQtNGQ5My04 NmFmLTNmMGFhZGQ5Njg0Zi8wLzMxMzUzNzJlMzEzNTJlMzgzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PUjANBgkqhkiG 9w0BAQsFAAOCAQEATDCDQgZN4YMcqj/aZaKK9sWxWqviVAIOlQXklffzJdh6PRva Wj63D7JaEzBWjR3QHaMj4tOt1TiYSyOHARKAzDOPoXoe+rs3svDClK0cKnUa8pJO atPoXNxHIjU9CWysQK0sW8J34jn8w0wAq7YQLtjAKb9DfGZr5yT3cMbUaJh2jcq8 m4e9/2UWPGVeieExUPv9jtUtGqXAsB8FvMYzwqzxihOFYp+VFOeMVj/HEovERXzh Dfjg1wCbmJtqyjlHqE0dqQkbFk/xmVUGHVcUuMCkSbTiA6rXTePxDGKjbKLgvDa9 jHfgepfrGV5hvrIkuqgVaF+ct4JkXF8hovdTJg== -----END CERTIFICATE-----Generated at Sun May 11 06:28:15 2025 by rpki-client