$ rpki-client -vvf repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa File: 3135372e31302e39372e302f32342d3234203d3e203538383231.roa (raw, json) Hash identifier: UPR5y8V0jVDX7lorT6sk4sYb0YCh+EKPNMakCdOkBwI= Subject key identifier: 07:B3:50:1E:B9:ED:7F:B1:D8:58:3A:96:52:F0:0E:AB:33:3F:8B:1F Certificate issuer: /CN=B9A55DD123C2F224C4E245856905F78F2F354D92 Certificate serial: 68123DF5359846A8826F33E7508FDAB6877DF017 Authority key identifier: B9:A5:5D:D1:23:C2:F2:24:C4:E2:45:85:69:05:F7:8F:2F:35:4D:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B9A55DD123C2F224C4E245856905F78F2F354D92.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa Signing time: Fri 09 May 2025 05:02:27 +0000 ROA not before: Fri 09 May 2025 04:57:27 +0000 ROA not after: Fri 08 May 2026 05:02:27 +0000 asID: 58821 IP address blocks: 157.10.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/B9A55DD123C2F224C4E245856905F78F2F354D92.crl rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/B9A55DD123C2F224C4E245856905F78F2F354D92.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B9A55DD123C2F224C4E245856905F78F2F354D92.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 09:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:12:3d:f5:35:98:46:a8:82:6f:33:e7:50:8f:da:b6:87:7d:f0:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9A55DD123C2F224C4E245856905F78F2F354D92 Validity Not Before: May 9 04:57:27 2025 GMT Not After : May 8 05:02:27 2026 GMT Subject: CN=07B3501EB9ED7FB1D8583A9652F00EAB333F8B1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d0:c5:ba:ed:e3:98:fe:26:cb:70:68:23:d6: 1c:94:b6:ae:59:86:2e:d1:12:c9:38:2c:0a:2d:ca: 41:44:c1:f2:20:d8:4e:c2:d8:04:86:35:e8:fc:e4: 4e:64:d0:45:1f:cb:55:1c:87:57:e5:f7:8b:8d:03: 06:bd:4c:f4:b5:06:29:a3:a7:0c:ee:70:d7:db:4e: 06:a4:7d:ba:bb:5c:82:ad:42:49:98:a4:47:99:3e: a1:99:eb:bf:38:85:ba:9d:15:1d:21:f0:3f:c0:a1: 36:e2:ba:2d:3b:e1:e2:d5:49:33:64:96:1c:db:82: 99:b2:89:7a:2b:ab:11:76:f5:bb:64:9b:25:2e:81: 2f:4c:4c:76:10:97:74:7b:b8:ce:c2:71:79:77:48: 79:a3:29:73:9d:14:5d:87:16:b2:3d:d1:f6:af:30: 0b:b3:b9:ae:5e:27:19:d6:51:2c:27:8b:83:6b:b4: 85:51:b3:5e:da:c6:2a:20:42:5f:0c:3f:bd:79:c7: d5:d5:a6:1f:2d:50:d4:6e:ca:88:69:0a:a9:98:14: 2b:3d:89:87:16:73:d4:21:e0:3d:58:cb:8e:29:b4: 5b:d3:c3:2d:54:d6:5c:df:e1:d7:a1:1b:d8:f5:b2: 14:ea:34:d9:9e:3e:6b:f1:6a:6f:c6:6c:99:fc:2e: 1b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B3:50:1E:B9:ED:7F:B1:D8:58:3A:96:52:F0:0E:AB:33:3F:8B:1F X509v3 Authority Key Identifier: keyid:B9:A5:5D:D1:23:C2:F2:24:C4:E2:45:85:69:05:F7:8F:2F:35:4D:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/B9A55DD123C2F224C4E245856905F78F2F354D92.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B9A55DD123C2F224C4E245856905F78F2F354D92.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.97.0/24 Signature Algorithm: sha256WithRSAEncryption 65:49:23:9f:8c:ce:88:f5:b3:b4:46:4f:28:c7:bf:f9:50:30: b2:24:c7:23:42:69:20:72:9c:71:cc:4f:7e:2f:d2:70:dd:9a: 15:83:5e:48:d0:9b:40:d1:e3:36:8b:c7:43:ba:78:0c:8f:4d: 3c:0d:ab:9d:9c:88:cf:a7:9c:de:d1:21:57:b9:e7:58:10:5a: 57:b6:22:24:3d:35:a9:9d:00:e7:85:bc:c4:b0:4f:04:89:80: b7:55:f3:5a:c1:9e:c0:2e:c3:56:8e:df:68:e9:09:6a:50:2f: 1c:90:cb:9f:6d:79:8e:7d:f9:15:aa:e1:ab:30:4c:34:db:7a: ad:26:7e:51:62:00:3c:fc:83:47:d0:ad:20:67:02:d5:e1:c5: df:d8:0d:e3:de:2c:85:e7:b2:a6:ae:00:56:d7:2e:5b:df:d2: 10:83:4a:74:d3:ab:e5:c6:36:03:fc:a5:28:b4:ad:f4:7f:f6: 68:32:b0:14:0c:e7:d8:76:71:7d:8d:31:af:3e:d8:ff:02:f1: 25:49:3f:58:6c:aa:b6:c6:ea:1b:24:b4:07:24:79:da:af:2c: 1a:21:2e:e1:69:7f:2d:16:f8:64:9f:24:22:38:2a:b3:8e:ec: dc:8b:e3:3e:2c:18:3a:a1:e5:0c:6a:01:51:24:db:f5:c6:49: ca:18:ab:ec -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaBI99TWYRqiCbzPnUI/atod98BcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlBNTVERDEyM0MyRjIyNEM0RTI0NTg1NjkwNUY3OEYy RjM1NEQ5MjAeFw0yNTA1MDkwNDU3MjdaFw0yNjA1MDgwNTAyMjdaMDMxMTAvBgNV BAMTKDA3QjM1MDFFQjlFRDdGQjFEODU4M0E5NjUyRjAwRUFCMzMzRjhCMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw0MW67eOY/ibLcGgj1hyUtq5Z hi7REsk4LAotykFEwfIg2E7C2ASGNej85E5k0EUfy1Uch1fl94uNAwa9TPS1Bimj pwzucNfbTgakfbq7XIKtQkmYpEeZPqGZ6784hbqdFR0h8D/AoTbiui074eLVSTNk lhzbgpmyiXorqxF29btkmyUugS9MTHYQl3R7uM7CcXl3SHmjKXOdFF2HFrI90fav MAuzua5eJxnWUSwni4NrtIVRs17axiogQl8MP715x9XVph8tUNRuyohpCqmYFCs9 iYcWc9Qh4D1Yy44ptFvTwy1U1lzf4dehG9j1shTqNNmePmvxam/GbJn8LhtBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUB7NQHrntf7HYWDqWUvAOqzM/ix8wHwYDVR0j BBgwFoAUuaVd0SPC8iTE4kWFaQX3jy81TZIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZjJmNjRjYS1mYTU0LTQ5OWUtYmMzMy00ODYyZGNhNzk0ZjcvMC9COUE1NUREMTIz QzJGMjI0QzRFMjQ1ODU2OTA1Rjc4RjJGMzU0RDkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjlBNTVERDEyM0MyRjIyNEM0RTI0NTg1NjkwNUY3OEYyRjM1 NEQ5Mi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmMmY2NGNhLWZhNTQtNDk5ZS1i YzMzLTQ4NjJkY2E3OTRmNy8wLzMxMzUzNzJlMzEzMDJlMzkzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCmEwDQYJKoZIhvcN AQELBQADggEBAGVJI5+Mzoj1s7RGTyjHv/lQMLIkxyNCaSBynHHMT34v0nDdmhWD XkjQm0DR4zaLx0O6eAyPTTwNq52ciM+nnN7RIVe551gQWle2IiQ9NamdAOeFvMSw TwSJgLdV81rBnsAuw1aO32jpCWpQLxyQy59teY59+RWq4aswTDTbeq0mflFiADz8 g0fQrSBnAtXhxd/YDePeLIXnsqauAFbXLlvf0hCDSnTTq+XGNgP8pSi0rfR/9mgy sBQM59h2cX2NMa8+2P8C8SVJP1hsqrbG6hsktAckedqvLBohLuFpfy0W+GSfJCI4 KrOO7NyL4z4sGDqh5QxqAVEk2/XGScoYq+w= -----END CERTIFICATE-----Generated at Sat May 10 05:02:43 2025 by rpki-client