$ rpki-client -vvf repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa File: 3135372e31302e38382e302f32332d3233203d3e20313532303832.roa (raw, json) Hash identifier: yHjDD2B7ssz0I97OhqKdQ6IMmUPUkeyrcBf6V6OA9mQ= Subject key identifier: 56:05:B3:A5:F9:CA:45:2A:33:1D:EF:09:6C:AD:77:91:11:86:85:3B Certificate issuer: /CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Certificate serial: 20AB7A5AFE58DA59DABA4C13778189B123DED337 Authority key identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa Signing time: Tue 15 Jul 2025 02:28:54 +0000 ROA not before: Tue 15 Jul 2025 02:23:54 +0000 ROA not after: Tue 14 Jul 2026 02:28:54 +0000 asID: 152082 IP address blocks: 157.10.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.crl rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ab:7a:5a:fe:58:da:59:da:ba:4c:13:77:81:89:b1:23:de:d3:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Validity Not Before: Jul 15 02:23:54 2025 GMT Not After : Jul 14 02:28:54 2026 GMT Subject: CN=5605B3A5F9CA452A331DEF096CAD77911186853B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4d:e9:b9:f8:bb:47:49:9c:47:96:34:a0:23: fa:df:3e:d7:b6:6e:f7:b3:8d:7c:f7:c7:9d:2a:09: dd:45:94:3c:74:6b:23:7f:cd:62:ab:fd:77:a5:63: ce:7b:9b:bf:3d:68:51:f5:98:45:0f:97:af:27:a8: 51:66:93:c2:07:fb:c8:79:56:01:36:7d:74:20:54: fa:b7:d1:b3:2d:83:5b:81:c1:b5:a8:d2:d6:19:4e: d3:d8:62:31:09:04:d2:23:3a:3a:12:97:f9:77:aa: 14:04:33:95:9e:88:58:e3:31:a7:ae:ef:50:3f:4b: 4a:5a:b9:2e:32:48:d2:7d:89:70:2b:7e:ee:c0:0a: 62:17:1b:a8:c0:7d:34:14:f5:3d:57:e5:e1:0d:f4: ac:ef:e4:ad:8e:6d:7f:79:7d:8f:c3:65:77:97:f3: f3:75:fe:1e:8b:69:6f:df:dc:58:db:46:fe:19:a8: d2:97:02:69:c0:47:f8:0e:3f:f9:75:7f:d4:ba:14: b2:81:4e:42:0c:c9:50:fd:a3:78:f5:81:5b:cd:f7: e8:a8:d5:a0:54:b3:07:ed:f9:57:e2:32:60:d8:1d: 5a:f8:28:a9:b4:b5:5c:22:2f:08:25:ec:a8:5d:13: c0:42:80:c3:a0:21:06:78:70:19:78:7b:c7:ac:6a: c2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:05:B3:A5:F9:CA:45:2A:33:1D:EF:09:6C:AD:77:91:11:86:85:3B X509v3 Authority Key Identifier: keyid:C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:42:7c:3b:e3:ef:74:a9:01:ab:48:12:06:01:6f:97:34:6b: 7a:d6:71:99:d1:77:0b:b8:52:87:4e:95:f6:d3:cd:fc:f2:c5: 55:0a:62:dd:14:3b:7a:88:83:b3:e1:2d:41:43:6b:1a:0d:00: 90:1f:a3:07:3e:06:b7:c6:7f:63:92:ba:83:91:5d:ae:04:94: 44:27:59:d2:1b:1a:32:15:a4:6e:1b:22:b2:94:55:c0:a2:31: 52:14:b5:0c:0d:56:fb:77:22:cc:62:a1:c7:8f:60:da:37:a9: 84:61:7d:3a:8e:35:38:9c:15:ab:2c:40:e6:b1:49:9d:ec:4d: 99:06:90:ef:37:8b:3e:0a:72:11:cb:61:87:95:dc:7d:17:95: 78:2d:dd:0d:ef:bb:e1:1b:38:cf:77:1f:67:43:48:97:33:3e: dd:d9:51:5d:8d:f8:0c:dd:99:ca:6d:1f:98:bb:11:8a:32:11: cb:d6:81:2a:7c:00:61:a3:1c:6c:b1:82:f0:14:1c:22:12:af: 86:de:c5:b1:91:dc:af:0a:dd:96:e4:3b:26:dc:fa:ab:35:f0: 37:61:9f:53:87:be:a9:d6:0d:75:56:73:5f:a6:44:ac:b4:1a: cb:e3:1e:68:83:9f:10:70:63:d3:ab:d7:47:dd:a4:da:5a:eb: f7:7e:88:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIKt6Wv5Y2lnaukwTd4GJsSPe0zcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE3MzI1NzE4MTBDOUQ0OTc2Q0QxQTQ3RDU1ODQ3MjZD RjBDQzdCRDAeFw0yNTA3MTUwMjIzNTRaFw0yNjA3MTQwMjI4NTRaMDMxMTAvBgNV BAMTKDU2MDVCM0E1RjlDQTQ1MkEzMzFERUYwOTZDQUQ3NzkxMTE4Njg1M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDATem5+LtHSZxHljSgI/rfPte2 bvezjXz3x50qCd1FlDx0ayN/zWKr/XelY857m789aFH1mEUPl68nqFFmk8IH+8h5 VgE2fXQgVPq30bMtg1uBwbWo0tYZTtPYYjEJBNIjOjoSl/l3qhQEM5WeiFjjMaeu 71A/S0pauS4ySNJ9iXArfu7ACmIXG6jAfTQU9T1X5eEN9Kzv5K2ObX95fY/DZXeX 8/N1/h6LaW/f3FjbRv4ZqNKXAmnAR/gOP/l1f9S6FLKBTkIMyVD9o3j1gVvN9+io 1aBUswft+VfiMmDYHVr4KKm0tVwiLwgl7KhdE8BCgMOgIQZ4cBl4e8esasKzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVgWzpfnKRSozHe8JbK13kRGGhTswHwYDVR0j BBgwFoAUwXMlcYEMnUl2zRpH1VhHJs8Mx70wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMC9DMTczMjU3MTgx MEM5RDQ5NzZDRDFBNDdENTU4NDcyNkNGMENDN0JELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzE3MzI1NzE4MTBDOUQ0OTc2Q0QxQTQ3RDU1ODQ3MjZDRjBD QzdCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEyLWE3NDItNDUwYy1i MTkwLTUwMGU3NTQ1MjBkZS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAHEJ8O+PvdKkBq0gSBgFvlzRretZxmdF3C7hSh06V9tPN/PLF VQpi3RQ7eoiDs+EtQUNrGg0AkB+jBz4Gt8Z/Y5K6g5FdrgSURCdZ0hsaMhWkbhsi spRVwKIxUhS1DA1W+3cizGKhx49g2jephGF9Oo41OJwVqyxA5rFJnexNmQaQ7zeL PgpyEcthh5XcfReVeC3dDe+74Rs4z3cfZ0NIlzM+3dlRXY34DN2Zym0fmLsRijIR y9aBKnwAYaMcbLGC8BQcIhKvht7FsZHcrwrdluQ7Jtz6qzXwN2GfU4e+qdYNdVZz X6ZErLQay+MeaIOfEHBj06vXR92k2lrr936I6A== -----END CERTIFICATE-----Generated at Sat Jul 26 19:16:29 2025 by rpki-client