$ rpki-client -vvf repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa File: 3135372e31302e312e302f32342d3234203d3e20313532303739.roa (raw, json) Hash identifier: 8mKHP2haWx9nDqWVpffr2HLwx0PW3MsCMnqlWHBgH8s= Subject key identifier: 58:37:9A:A3:60:AA:14:68:31:72:DF:C5:56:1F:DB:CA:D7:90:41:56 Certificate issuer: /CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Certificate serial: 3771567CB27678AEFEA75224BF65851BEAAA582C Authority key identifier: FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa Signing time: Wed 29 Jan 2025 15:00:01 +0000 ROA not before: Wed 29 Jan 2025 14:55:01 +0000 ROA not after: Wed 28 Jan 2026 15:00:01 +0000 asID: 152079 IP address blocks: 157.10.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 18:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:71:56:7c:b2:76:78:ae:fe:a7:52:24:bf:65:85:1b:ea:aa:58:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Validity Not Before: Jan 29 14:55:01 2025 GMT Not After : Jan 28 15:00:01 2026 GMT Subject: CN=58379AA360AA14683172DFC5561FDBCAD7904156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:99:60:18:e8:cc:69:50:8b:70:87:71:38:f9: f4:ea:12:21:85:38:b9:eb:8e:cd:e2:d7:0f:30:36: 2c:c0:08:5f:f4:08:4a:ff:b4:3c:ed:3e:05:10:5f: 49:36:c9:90:3d:ca:22:39:26:ca:30:09:dc:40:65: 99:4f:9e:7c:01:33:dd:80:0c:02:f3:96:9c:cb:57: 82:af:d4:54:d0:9c:d7:82:12:ce:21:53:ad:1f:b3: 71:72:0c:b9:a6:88:44:6d:52:21:62:ba:a6:f4:89: be:78:93:d7:e1:ef:8c:87:8f:32:f6:5c:98:fd:d7: 2a:a8:09:f8:f0:83:77:10:46:63:17:dc:76:51:3b: d6:d2:d0:d6:93:f1:aa:46:5d:fb:59:0a:50:2e:6d: 10:bf:f5:97:46:17:10:d5:2d:dc:b8:6a:2c:b1:fa: 7f:eb:15:0e:4c:3e:2b:10:89:75:20:16:d4:05:8b: bd:cb:c6:0b:70:af:38:ef:f3:94:15:bc:19:4f:23: d8:4f:53:09:fc:3c:25:3e:29:2e:83:57:b5:bc:c6: fe:f9:2b:12:ce:c1:32:4e:07:b8:d7:b1:69:41:80: 4d:7d:49:39:12:14:32:71:be:d0:85:8b:cb:16:44: 50:86:67:ba:70:77:d1:a8:62:86:c2:d0:9d:3e:61: 80:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:37:9A:A3:60:AA:14:68:31:72:DF:C5:56:1F:DB:CA:D7:90:41:56 X509v3 Authority Key Identifier: keyid:FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.1.0/24 Signature Algorithm: sha256WithRSAEncryption 51:3b:68:25:c5:d5:ee:1a:ed:c0:56:c8:b7:2b:42:41:14:fd: 0a:d1:ca:d0:a7:e8:8e:59:53:23:36:d2:48:2a:d9:7e:09:61: 2a:19:94:73:f1:d6:6f:3d:cb:37:17:5b:cf:74:72:bb:18:ae: 00:95:5e:a1:4a:51:e9:21:6f:13:b0:9f:49:c5:20:98:77:b8: 60:5d:59:9c:b2:55:8e:54:cf:91:7d:47:2c:47:6a:32:05:ca: ee:da:c9:53:b3:b3:b8:ed:a1:bf:75:f5:15:35:cb:d5:24:88: 3f:c8:47:3d:a8:29:b9:ba:ea:80:05:c0:cd:36:58:58:77:8f: de:c4:f3:b8:2b:25:d6:5c:0d:e9:af:d0:d2:f6:03:17:b2:dc: cd:a5:6e:d3:1b:80:55:4c:75:8e:09:66:32:f8:df:80:4e:2d: 72:88:36:64:fe:8d:54:ac:d5:3e:ca:04:2b:75:f3:26:36:e4: bf:fb:29:b4:18:b9:9d:97:c9:a0:df:8a:b8:b5:8f:e4:01:28: 09:18:ea:de:98:df:19:95:c0:17:05:39:8e:34:3f:c9:56:8c: ec:bd:0e:25:8b:3f:ad:80:de:25:1d:ac:1c:51:fe:93:f2:6a: 55:94:e0:2f:97:56:88:31:f4:71:49:b8:3c:5f:b3:f4:df:ad: 88:40:ee:5e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUN3FWfLJ2eK7+p1Ikv2WFG+qqWCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIy MjBGNDhDRDAeFw0yNTAxMjkxNDU1MDFaFw0yNjAxMjgxNTAwMDFaMDMxMTAvBgNV BAMTKDU4Mzc5QUEzNjBBQTE0NjgzMTcyREZDNTU2MUZEQkNBRDc5MDQxNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/mWAY6MxpUItwh3E4+fTqEiGF OLnrjs3i1w8wNizACF/0CEr/tDztPgUQX0k2yZA9yiI5JsowCdxAZZlPnnwBM92A DALzlpzLV4Kv1FTQnNeCEs4hU60fs3FyDLmmiERtUiFiuqb0ib54k9fh74yHjzL2 XJj91yqoCfjwg3cQRmMX3HZRO9bS0NaT8apGXftZClAubRC/9ZdGFxDVLdy4aiyx +n/rFQ5MPisQiXUgFtQFi73Lxgtwrzjv85QVvBlPI9hPUwn8PCU+KS6DV7W8xv75 KxLOwTJOB7jXsWlBgE19STkSFDJxvtCFi8sWRFCGZ7pwd9GoYobC0J0+YYCZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUWDeao2CqFGgxct/FVh/byteQQVYwHwYDVR0j BBgwFoAU+rCB/NhqsPgdQcnl+5w9MiIPSM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRkMWY2Mi04NDg4LTQwODYtOGQ0Yy1mMmRlNWM3NmRhM2QvMC9GQUIwODFGQ0Q4 NkFCMEY4MUQ0MUM5RTVGQjlDM0QzMjIyMEY0OENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIyMjBG NDhDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCgEwDQYJKoZIhvcN AQELBQADggEBAFE7aCXF1e4a7cBWyLcrQkEU/QrRytCn6I5ZUyM20kgq2X4JYSoZ lHPx1m89yzcXW890crsYrgCVXqFKUekhbxOwn0nFIJh3uGBdWZyyVY5Uz5F9RyxH ajIFyu7ayVOzs7jtob919RU1y9UkiD/IRz2oKbm66oAFwM02WFh3j97E87grJdZc Demv0NL2Axey3M2lbtMbgFVMdY4JZjL434BOLXKINmT+jVSs1T7KBCt18yY25L/7 KbQYuZ2XyaDfiri1j+QBKAkY6t6Y3xmVwBcFOY40P8lWjOy9DiWLP62A3iUdrBxR /pPyalWU4C+XVogx9HFJuDxfs/TfrYhA7l4= -----END CERTIFICATE-----Generated at Thu Apr 24 04:31:38 2025 by rpki-client on console.sobornost.net