$ rpki-client -vvf repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: o3X95QY7fg1x907JEuK0Tti5YWHdGjRCJ0G2QdlLS9w= Subject key identifier: 91:44:09:F2:D9:FB:C6:6C:43:AF:86:71:5D:8A:6D:39:D8:45:23:EC Certificate issuer: /CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Certificate serial: 0B5ADF5DCCEB5CD7414DD53EE8AB91E050D35DDE Authority key identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa Signing time: Tue 15 Jul 2025 02:29:24 +0000 ROA not before: Tue 15 Jul 2025 02:24:24 +0000 ROA not after: Tue 14 Jul 2026 02:29:24 +0000 asID: 152082 IP address blocks: 157.10.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.crl rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:5a:df:5d:cc:eb:5c:d7:41:4d:d5:3e:e8:ab:91:e0:50:d3:5d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Validity Not Before: Jul 15 02:24:24 2025 GMT Not After : Jul 14 02:29:24 2026 GMT Subject: CN=914409F2D9FBC66C43AF86715D8A6D39D84523EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fa:bf:1e:ce:6d:1e:0c:5d:1e:f3:ab:44:81: 42:14:6e:6c:1d:87:3c:3c:82:ad:14:4f:39:a0:fe: ca:dd:20:ae:16:49:93:f2:c3:be:ed:27:d1:3e:83: 91:b0:e2:e4:d6:26:c5:d1:2e:2a:db:bc:b4:f7:3e: 3e:81:02:de:3c:06:89:de:ea:92:67:2b:ee:f0:b0: 2a:3f:27:86:b6:58:8e:a9:56:ae:18:e0:fa:7b:1e: e7:b1:c4:3b:c7:88:d2:3a:39:d9:43:7f:1a:36:e9: f6:76:63:a0:1a:19:ab:d4:96:48:71:0b:5e:f5:09: 89:35:50:ee:51:9d:9d:d2:ec:7c:bc:0a:45:a4:26: be:63:fc:06:59:21:2f:e6:9a:52:4c:05:58:84:d7: 64:87:21:b3:7d:fb:25:38:a6:1a:30:6e:9a:0f:48: cf:60:5d:63:9e:1f:9c:ba:e7:af:f2:74:41:85:c4: 0c:41:75:c1:55:d0:60:a0:c6:40:69:9e:e5:ce:96: 6f:d2:5c:ad:66:e1:87:5d:91:e6:89:e6:d9:42:36: 43:1d:ef:89:7c:98:76:f3:c3:e7:c3:ed:55:f8:54: 7b:1d:86:b3:e4:0d:85:15:62:60:39:fc:31:9c:19: 25:8c:d7:03:e0:e0:6d:f2:7d:0c:42:83:2d:cb:c1: f7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:44:09:F2:D9:FB:C6:6C:43:AF:86:71:5D:8A:6D:39:D8:45:23:EC X509v3 Authority Key Identifier: keyid:C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/24 Signature Algorithm: sha256WithRSAEncryption a7:49:f2:d1:7e:e6:ac:f8:7b:9f:2c:5a:4b:85:eb:6c:7f:0f: 81:00:ca:88:24:3f:0d:00:bf:d8:bb:06:11:31:35:4c:1b:b1: 47:f6:bd:25:2f:72:f0:97:7b:ec:18:68:53:5e:33:24:d3:30: 8e:ac:ac:38:67:08:2e:4b:d9:4f:29:de:9e:36:a8:65:85:ec: fa:a4:21:1a:49:54:4f:73:a3:d0:c4:6d:2f:c6:d1:fb:66:e2: ad:e9:09:a0:bc:a2:15:e8:ec:42:c6:21:bc:8a:3c:dc:86:08: f5:b3:ae:9e:fb:e4:0f:8c:2b:ff:c1:7c:3a:5f:36:66:66:85: b9:44:7e:67:28:d9:38:1a:90:71:73:5f:5d:92:05:29:22:6a: 93:93:cb:ff:30:ac:41:f8:78:15:35:40:e8:40:22:bb:3f:80: db:26:45:01:23:09:04:d4:b1:24:ef:79:d5:82:83:f8:8f:9a: 4e:fa:72:ce:4a:fd:03:13:2e:a1:24:05:19:27:6a:d8:2e:40: f1:67:7c:cb:3c:a9:f4:e7:95:aa:b5:c2:63:84:c7:3f:77:98: a8:c9:08:62:d3:3c:7e:7d:15:88:84:dd:d6:e7:e7:5e:2e:ac: 97:36:bc:47:c5:13:d8:46:15:a7:f1:1e:2b:1c:41:bf:83:3c: 2b:d6:07:b2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC1rfXczrXNdBTdU+6KuR4FDTXd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE3MzI1NzE4MTBDOUQ0OTc2Q0QxQTQ3RDU1ODQ3MjZD RjBDQzdCRDAeFw0yNTA3MTUwMjI0MjRaFw0yNjA3MTQwMjI5MjRaMDMxMTAvBgNV BAMTKDkxNDQwOUYyRDlGQkM2NkM0M0FGODY3MTVEOEE2RDM5RDg0NTIzRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG+r8ezm0eDF0e86tEgUIUbmwd hzw8gq0UTzmg/srdIK4WSZPyw77tJ9E+g5Gw4uTWJsXRLirbvLT3Pj6BAt48Bone 6pJnK+7wsCo/J4a2WI6pVq4Y4Pp7HuexxDvHiNI6OdlDfxo26fZ2Y6AaGavUlkhx C171CYk1UO5RnZ3S7Hy8CkWkJr5j/AZZIS/mmlJMBViE12SHIbN9+yU4phowbpoP SM9gXWOeH5y656/ydEGFxAxBdcFV0GCgxkBpnuXOlm/SXK1m4YddkeaJ5tlCNkMd 74l8mHbzw+fD7VX4VHsdhrPkDYUVYmA5/DGcGSWM1wPg4G3yfQxCgy3LwfcfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkUQJ8tn7xmxDr4ZxXYptOdhFI+wwHwYDVR0j BBgwFoAUwXMlcYEMnUl2zRpH1VhHJs8Mx70wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMC9DMTczMjU3MTgx MEM5RDQ5NzZDRDFBNDdENTU4NDcyNkNGMENDN0JELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzE3MzI1NzE4MTBDOUQ0OTc2Q0QxQTQ3RDU1ODQ3MjZDRjBD QzdCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEyLWE3NDItNDUwYy1i MTkwLTUwMGU3NTQ1MjBkZS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAp0ny0X7mrPh7nyxaS4XrbH8PgQDKiCQ/DQC/2LsGETE1TBux R/a9JS9y8Jd77BhoU14zJNMwjqysOGcILkvZTynenjaoZYXs+qQhGklUT3Oj0MRt L8bR+2birekJoLyiFejsQsYhvIo83IYI9bOunvvkD4wr/8F8Ol82ZmaFuUR+ZyjZ OBqQcXNfXZIFKSJqk5PL/zCsQfh4FTVA6EAiuz+A2yZFASMJBNSxJO951YKD+I+a Tvpyzkr9AxMuoSQFGSdq2C5A8Wd8yzyp9OeVqrXCY4THP3eYqMkIYtM8fn0ViITd 1ufnXi6slza8R8UT2EYVp/EeKxxBv4M8K9YHsg== -----END CERTIFICATE-----Generated at Sat Jul 26 10:13:21 2025 by rpki-client