$ rpki-client -vvf repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa File: 3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa (raw, json) Hash identifier: 0XtLIEJG3py88w82k3Uk1bJyRF5CgN3WezTFPdzYJTo= Subject key identifier: 61:AE:4F:19:D1:52:D4:43:F1:5A:C5:55:8B:24:B4:1A:80:F9:D6:D3 Certificate issuer: /CN=46F8E3AC44B2F2208037674979268378CA60B901 Certificate serial: 422D1EA9FF52AC02487F0B9F3A4EB7B90BC8C98C Authority key identifier: 46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa Signing time: Fri 11 Apr 2025 16:33:54 +0000 ROA not before: Fri 11 Apr 2025 16:28:54 +0000 ROA not after: Fri 10 Apr 2026 16:33:54 +0000 asID: 152423 IP address blocks: 157.20.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.crl rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:2d:1e:a9:ff:52:ac:02:48:7f:0b:9f:3a:4e:b7:b9:0b:c8:c9:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46F8E3AC44B2F2208037674979268378CA60B901 Validity Not Before: Apr 11 16:28:54 2025 GMT Not After : Apr 10 16:33:54 2026 GMT Subject: CN=61AE4F19D152D443F15AC5558B24B41A80F9D6D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:37:e8:f1:ef:c4:b8:37:8b:7b:f6:c0:4c: cb:ea:89:a0:fd:c2:46:96:80:28:d0:a8:8c:e3:a9: b1:fe:3a:73:15:5d:8d:48:bc:0e:bb:89:45:69:02: 05:b9:1f:9a:95:26:ba:22:66:c8:da:85:0c:c7:fe: 64:09:38:9d:87:b4:6b:1f:26:05:f4:a7:13:dd:7b: 3a:a0:86:42:6a:50:e3:ab:73:5b:5f:f7:90:6f:ab: 54:31:cb:2d:10:57:49:ad:aa:5c:59:d3:3e:6b:a8: ee:1f:d4:c1:af:e0:b8:6e:d8:e8:4d:2e:e0:6c:b9: ac:f6:e6:23:60:39:72:49:47:5a:9a:6a:4b:b3:2c: e2:96:02:df:27:ec:8b:90:17:a9:8e:3e:66:ba:0b: 0a:09:44:fa:ad:3e:83:a5:0e:66:3b:b6:4c:5b:cc: 16:0c:2d:2e:09:5f:c9:53:5d:08:33:52:08:9c:2c: d5:1a:d4:0d:d3:ac:fd:a6:df:61:b8:18:16:4e:79: 80:f0:e8:cb:7a:fa:92:08:9b:22:89:4b:6b:64:99: fd:51:1e:08:55:94:22:db:95:1f:dc:d7:c1:13:90: bb:41:40:da:a4:01:9b:4f:19:78:f5:5c:b9:a0:67: 41:b6:29:2c:ab:9e:f5:c5:dd:6c:64:38:e0:9f:a8: 34:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:AE:4F:19:D1:52:D4:43:F1:5A:C5:55:8B:24:B4:1A:80:F9:D6:D3 X509v3 Authority Key Identifier: keyid:46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.218.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:cc:6c:52:f2:07:f7:9a:6c:7f:26:94:7d:2c:82:ae:55:b7: 9a:2d:c9:b3:71:5b:67:d0:b1:0b:1a:88:1e:99:19:43:10:b1: 55:2a:95:00:df:2c:44:2b:41:f1:20:6b:c9:76:0e:35:8c:53: 33:84:b7:f2:51:29:4a:ff:05:fe:03:f4:a5:87:35:6b:0b:a7: db:18:5b:70:10:ef:66:c8:a8:42:e8:8c:da:a5:da:17:7b:f1: 0b:e0:9a:af:43:9c:d6:69:0b:99:cb:46:57:05:8f:02:cb:4b: ff:c0:c0:8a:e8:b3:99:e0:60:47:58:42:9d:82:1d:0d:47:e9: 6f:bc:d6:22:ca:c2:03:71:d8:e8:a2:06:84:cf:5c:bf:7e:9e: 23:fb:21:0d:45:bd:1d:88:b1:bb:fa:fa:3b:3d:8b:51:4e:27: ea:15:94:d2:62:4a:d3:90:62:b5:1e:f9:27:89:16:0b:52:8d: 9c:0d:5a:73:2c:be:0e:c9:01:d2:2c:14:fc:e9:05:17:45:f4: 8a:c6:01:48:eb:94:c3:7f:e3:ed:a7:c7:18:a2:0f:7c:07:2b: 50:c2:1a:3b:cd:76:a1:ce:ef:58:a3:2b:91:b4:e7:f0:19:3f: 8c:c4:66:84:b6:d0:b4:9f:a3:95:9b:94:fe:0b:e7:95:ba:14: 3d:a6:c5:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQi0eqf9SrAJIfwufOk63uQvIyYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZGOEUzQUM0NEIyRjIyMDgwMzc2NzQ5NzkyNjgzNzhD QTYwQjkwMTAeFw0yNTA0MTExNjI4NTRaFw0yNjA0MTAxNjMzNTRaMDMxMTAvBgNV BAMTKDYxQUU0RjE5RDE1MkQ0NDNGMTVBQzU1NThCMjRCNDFBODBGOUQ2RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Njfo8e/EuDeLe/bATMvqiaD9 wkaWgCjQqIzjqbH+OnMVXY1IvA67iUVpAgW5H5qVJroiZsjahQzH/mQJOJ2HtGsf JgX0pxPdezqghkJqUOOrc1tf95Bvq1Qxyy0QV0mtqlxZ0z5rqO4f1MGv4Lhu2OhN LuBsuaz25iNgOXJJR1qaakuzLOKWAt8n7IuQF6mOPma6CwoJRPqtPoOlDmY7tkxb zBYMLS4JX8lTXQgzUgicLNUa1A3TrP2m32G4GBZOeYDw6Mt6+pIImyKJS2tkmf1R HghVlCLblR/c18ETkLtBQNqkAZtPGXj1XLmgZ0G2KSyrnvXF3WxkOOCfqDSPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYa5PGdFS1EPxWsVViyS0GoD51tMwHwYDVR0j BBgwFoAURvjjrESy8iCAN2dJeSaDeMpguQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmU4M2FmZS0zYmRjLTQ0YjItYTcwMi1iNDU1NWRhYTY1ZWEvMC80NkY4RTNBQzQ0 QjJGMjIwODAzNzY3NDk3OTI2ODM3OENBNjBCOTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDZGOEUzQUM0NEIyRjIyMDgwMzc2NzQ5NzkyNjgzNzhDQTYw QjkwMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZTgzYWZlLTNiZGMtNDRiMi1h NzAyLWI0NTU1ZGFhNjVlYS8wLzMxMzUzNzJlMzIzMDJlMzIzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTaMA0GCSqG SIb3DQEBCwUAA4IBAQBezGxS8gf3mmx/JpR9LIKuVbeaLcmzcVtn0LELGogemRlD ELFVKpUA3yxEK0HxIGvJdg41jFMzhLfyUSlK/wX+A/SlhzVrC6fbGFtwEO9myKhC 6IzapdoXe/EL4JqvQ5zWaQuZy0ZXBY8Cy0v/wMCK6LOZ4GBHWEKdgh0NR+lvvNYi ysIDcdjoogaEz1y/fp4j+yENRb0diLG7+vo7PYtRTifqFZTSYkrTkGK1HvkniRYL Uo2cDVpzLL4OyQHSLBT86QUXRfSKxgFI65TDf+Ptp8cYog98BytQwho7zXahzu9Y oyuRtOfwGT+MxGaEttC0n6OVm5T+C+eVuhQ9psXU -----END CERTIFICATE-----Generated at Fri Apr 25 17:12:02 2025 by rpki-client on console.sobornost.net