$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa File: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (raw, json) Hash identifier: Z2FYRByoR87CHEnziWjFnKQyuENb6OACYT6R1ULlqwE= Subject key identifier: C5:43:9B:84:C6:BB:85:61:84:D6:C5:D5:36:25:B5:FE:EC:36:A7:77 Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 495D59A85FF6836EB8A9CF7CB20E9F19A8BE070C Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa Signing time: Thu 01 May 2025 13:00:00 +0000 ROA not before: Thu 01 May 2025 12:55:00 +0000 ROA not after: Thu 30 Apr 2026 13:00:00 +0000 asID: 152418 IP address blocks: 157.20.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:5d:59:a8:5f:f6:83:6e:b8:a9:cf:7c:b2:0e:9f:19:a8:be:07:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: May 1 12:55:00 2025 GMT Not After : Apr 30 13:00:00 2026 GMT Subject: CN=C5439B84C6BB856184D6C5D53625B5FEEC36A777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:68:db:bb:c6:71:9b:1c:ac:3a:48:08:c3:98: 8c:3b:9b:55:4e:93:3a:fb:a4:e4:aa:88:70:3e:24: f3:0c:80:7f:cf:e6:c4:e2:30:2a:e5:f1:df:03:60: 44:4b:bf:66:7b:43:8c:ad:70:51:e5:5f:87:d9:65: fb:21:99:82:bc:3c:89:31:8c:01:28:b4:9f:d6:23: b9:e5:f1:95:fb:57:3e:21:01:cd:33:83:2c:42:d1: f4:f9:e7:5d:8c:bc:00:09:1c:45:ff:57:71:f5:1c: 21:f7:35:97:43:f6:b9:34:45:69:b9:dd:58:b5:16: d3:dc:62:cc:43:cb:9b:30:50:b5:53:73:dd:b3:55: ed:7b:ff:46:30:34:4f:d5:b0:f0:a9:ed:9f:7f:c6: 5a:38:2d:49:aa:34:d8:9f:53:a2:7f:86:4c:73:e0: 10:02:4f:44:5d:c0:92:f5:9c:92:ca:a7:25:5f:5c: 20:30:e0:72:22:7a:60:ef:7b:38:eb:71:a6:93:c3: f8:67:08:a9:a4:e3:60:e6:77:27:6c:77:20:6e:26: 32:9b:4a:37:a2:af:8b:03:cf:d1:1e:23:30:0f:a9: f5:ac:99:f9:ed:41:83:7e:b7:a0:0e:a0:3a:54:3e: 4b:65:89:58:99:18:ae:71:c5:fe:e8:a0:08:a8:7a: 3a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:43:9B:84:C6:BB:85:61:84:D6:C5:D5:36:25:B5:FE:EC:36:A7:77 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.179.0/24 Signature Algorithm: sha256WithRSAEncryption 60:04:2f:cf:cf:b6:85:f2:32:65:0c:48:94:a1:d3:00:e1:4c: 39:c3:6b:6b:75:13:ca:ae:9b:06:9c:1a:42:d6:ad:c6:b0:18: 0c:03:c2:81:d3:55:4b:8e:6b:1a:90:ca:e2:ec:cd:67:2b:bc: 1b:c8:f7:91:8e:d5:54:68:cc:07:4d:51:82:5e:cd:3b:16:0b: 89:2f:e3:96:93:55:00:1e:08:eb:98:77:df:82:b4:a4:ac:b4: 9e:8c:f8:59:82:4a:77:d9:cf:44:b1:c0:d0:8d:e0:95:f8:41: aa:16:4c:b4:e7:55:6d:5d:79:08:5b:a5:a1:74:8e:13:3a:02: 4c:fc:57:5a:2e:71:2e:b6:ac:d2:c8:4e:09:73:c8:12:54:87: f9:2f:1c:37:b0:64:f7:ae:cb:3a:25:9e:8b:df:aa:1d:dc:e9: 75:b7:1d:e3:51:6d:64:d3:ab:65:35:c5:31:f8:31:69:0d:35: 2d:66:a3:c2:08:94:a0:da:11:a5:7c:7c:21:df:66:0d:50:e2: 71:78:5c:c9:86:b3:a1:4d:35:1c:ee:e6:67:57:e1:f3:b1:5d: 54:64:39:60:28:00:aa:d1:40:0c:e6:76:d3:ab:d5:77:ff:76: 0b:ab:2d:8a:f6:77:ee:c4:4a:c5:f3:3f:8c:d2:71:e5:bc:bd: c3:5c:1f:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSV1ZqF/2g264qc98sg6fGai+BwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNTA1MDExMjU1MDBaFw0yNjA0MzAxMzAwMDBaMDMxMTAvBgNV BAMTKEM1NDM5Qjg0QzZCQjg1NjE4NEQ2QzVENTM2MjVCNUZFRUMzNkE3NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBaNu7xnGbHKw6SAjDmIw7m1VO kzr7pOSqiHA+JPMMgH/P5sTiMCrl8d8DYERLv2Z7Q4ytcFHlX4fZZfshmYK8PIkx jAEotJ/WI7nl8ZX7Vz4hAc0zgyxC0fT5512MvAAJHEX/V3H1HCH3NZdD9rk0RWm5 3Vi1FtPcYsxDy5swULVTc92zVe17/0YwNE/VsPCp7Z9/xlo4LUmqNNifU6J/hkxz 4BACT0RdwJL1nJLKpyVfXCAw4HIiemDvezjrcaaTw/hnCKmk42DmdydsdyBuJjKb Sjeir4sDz9EeIzAPqfWsmfntQYN+t6AOoDpUPktliViZGK5xxf7ooAioejp3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxUObhMa7hWGE1sXVNiW1/uw2p3cwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSzMA0GCSqG SIb3DQEBCwUAA4IBAQBgBC/Pz7aF8jJlDEiUodMA4Uw5w2trdRPKrpsGnBpC1q3G sBgMA8KB01VLjmsakMri7M1nK7wbyPeRjtVUaMwHTVGCXs07FguJL+OWk1UAHgjr mHffgrSkrLSejPhZgkp32c9EscDQjeCV+EGqFky051VtXXkIW6WhdI4TOgJM/Fda LnEutqzSyE4Jc8gSVIf5Lxw3sGT3rss6JZ6L36od3Ol1tx3jUW1k06tlNcUx+DFp DTUtZqPCCJSg2hGlfHwh32YNUOJxeFzJhrOhTTUc7uZnV+HzsV1UZDlgKACq0UAM 5nbTq9V3/3YLqy2K9nfuxErF8z+M0nHlvL3DXB9+ -----END CERTIFICATE-----Generated at Fri May 9 02:48:50 2025 by rpki-client