$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa File: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (raw, json) Hash identifier: t349gF8xh8M32UG8Ruer+VIkvNUKNNfdFe/xLjKGLjs= Subject key identifier: 9D:E0:2D:7E:E1:F9:30:B9:D0:16:0F:37:A1:7C:1F:8F:5C:F0:9C:DE Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 284116EE8C8940ED42A4DB62912A1BF2929A00E3 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa Signing time: Thu 01 May 2025 13:00:01 +0000 ROA not before: Thu 01 May 2025 12:55:01 +0000 ROA not after: Thu 30 Apr 2026 13:00:01 +0000 asID: 152418 IP address blocks: 157.20.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:41:16:ee:8c:89:40:ed:42:a4:db:62:91:2a:1b:f2:92:9a:00:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: May 1 12:55:01 2025 GMT Not After : Apr 30 13:00:01 2026 GMT Subject: CN=9DE02D7EE1F930B9D0160F37A17C1F8F5CF09CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b2:58:b7:a7:c9:d3:48:09:8a:e4:10:4c:4a: 92:11:22:3c:80:19:e3:08:89:a1:2e:c3:29:4b:5e: a4:54:2e:a3:37:7e:22:19:ec:68:8a:17:70:9b:f7: 17:88:24:26:d6:10:15:8a:49:b2:a6:e1:0a:40:3f: ac:82:71:a0:fa:c8:f5:43:af:5f:66:a8:37:be:87: 32:df:d9:31:bc:25:d3:6e:ab:35:5b:07:06:3d:41: 0d:c0:c6:8c:46:3f:1d:87:7a:29:98:da:7b:ad:31: 81:ce:c2:15:94:9a:4c:07:bf:d8:73:bf:46:3e:32: 96:11:79:e3:08:da:2c:9b:ae:97:4b:78:70:8e:cf: b3:5c:bb:2d:df:44:6b:92:7c:d5:71:63:6d:80:5c: 53:69:90:01:07:c1:90:1a:25:f5:5e:14:fc:57:ee: 6e:7c:f8:75:10:9e:02:be:63:e2:b4:6d:1f:ed:b6: 6a:5e:6b:c2:89:a4:bb:1f:0a:13:4d:db:1d:15:8e: f5:87:cb:66:62:03:11:01:65:69:b9:e9:4a:5a:43: 87:ea:22:87:91:63:9b:bc:b5:75:48:20:0e:80:16: e2:81:99:f2:f5:7b:6d:f3:87:88:a6:60:ba:87:95: 1d:57:9e:b6:01:ac:98:af:ce:01:c8:34:4d:e5:2e: 71:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E0:2D:7E:E1:F9:30:B9:D0:16:0F:37:A1:7C:1F:8F:5C:F0:9C:DE X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.178.0/24 Signature Algorithm: sha256WithRSAEncryption 04:60:3f:e6:84:de:8c:14:34:af:33:a8:8d:26:b1:ad:d2:09: 17:af:ab:9c:2e:98:79:c1:31:99:52:a6:20:f6:32:b8:d2:04: fa:60:74:b8:21:2f:39:25:5d:5b:83:67:0c:e5:09:32:bb:0d: 24:3f:d8:35:9c:a4:55:2e:60:fa:aa:00:b8:d9:ee:a1:f1:86: 9e:68:e2:2a:33:73:34:3e:b1:e9:bb:7e:91:0b:ad:c5:40:77: 7f:2d:11:d9:1f:30:69:5d:dc:1a:47:e2:d9:50:38:a1:c4:2d: fc:63:2c:07:f4:61:e6:3b:60:70:e9:0a:18:bc:5f:4a:75:cd: 20:86:60:0e:6f:18:d9:40:e5:55:3c:2c:0c:21:69:8c:9d:3a: ff:4e:75:58:a1:2b:81:17:64:90:6f:27:d7:71:0a:20:68:da: 86:2f:89:3b:d9:9c:be:30:c9:c1:19:61:94:2a:a4:5c:fa:bc: a6:77:fb:35:66:83:d5:99:4b:de:85:4c:f6:92:39:88:d8:bb: a3:78:df:49:d4:58:ab:26:4f:6a:68:37:35:cf:29:8a:80:da: 6b:1c:ed:87:cd:ae:19:cf:78:03:60:d1:40:91:88:1e:1f:5d: 66:32:3f:ef:c1:7a:f1:71:e4:92:16:93:96:f7:60:af:2b:52: e4:ba:ee:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKEEW7oyJQO1CpNtikSob8pKaAOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNTA1MDExMjU1MDFaFw0yNjA0MzAxMzAwMDFaMDMxMTAvBgNV BAMTKDlERTAyRDdFRTFGOTMwQjlEMDE2MEYzN0ExN0MxRjhGNUNGMDlDREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGsli3p8nTSAmK5BBMSpIRIjyA GeMIiaEuwylLXqRULqM3fiIZ7GiKF3Cb9xeIJCbWEBWKSbKm4QpAP6yCcaD6yPVD r19mqDe+hzLf2TG8JdNuqzVbBwY9QQ3AxoxGPx2HeimY2nutMYHOwhWUmkwHv9hz v0Y+MpYReeMI2iybrpdLeHCOz7Ncuy3fRGuSfNVxY22AXFNpkAEHwZAaJfVeFPxX 7m58+HUQngK+Y+K0bR/ttmpea8KJpLsfChNN2x0VjvWHy2ZiAxEBZWm56UpaQ4fq IoeRY5u8tXVIIA6AFuKBmfL1e23zh4imYLqHlR1XnrYBrJivzgHINE3lLnEPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUneAtfuH5MLnQFg83oXwfj1zwnN4wHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSyMA0GCSqG SIb3DQEBCwUAA4IBAQAEYD/mhN6MFDSvM6iNJrGt0gkXr6ucLph5wTGZUqYg9jK4 0gT6YHS4IS85JV1bg2cM5Qkyuw0kP9g1nKRVLmD6qgC42e6h8YaeaOIqM3M0PrHp u36RC63FQHd/LRHZHzBpXdwaR+LZUDihxC38YywH9GHmO2Bw6QoYvF9Kdc0ghmAO bxjZQOVVPCwMIWmMnTr/TnVYoSuBF2SQbyfXcQogaNqGL4k72Zy+MMnBGWGUKqRc +rymd/s1ZoPVmUvehUz2kjmI2LujeN9J1FirJk9qaDc1zymKgNprHO2Hza4Zz3gD YNFAkYgeH11mMj/vwXrxceSSFpOW92CvK1Lkuu66 -----END CERTIFICATE-----Generated at Fri May 9 02:47:37 2025 by rpki-client