$ rpki-client -vvf repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/3135372e36362e32312e302f32342d3234203d3e20313431353932.roa File: 3135372e36362e32312e302f32342d3234203d3e20313431353932.roa (raw, json) Hash identifier: 3IUGvQHYckh9j4psQSuGBFM7lfhV4EtYEKWC7HzE4TE= Subject key identifier: 84:C6:7B:C9:F9:53:CC:E3:F3:7A:3F:60:5C:8D:17:A2:99:00:21:AD Certificate issuer: /CN=7ABD31DD828DD58C9D91180021903EA04D8EB58E Certificate serial: 3ABC2012086D8E59F7E76FBF0B963AE0F8BE81FD Authority key identifier: 7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/3135372e36362e32312e302f32342d3234203d3e20313431353932.roa Signing time: Fri 04 Jul 2025 04:00:50 +0000 ROA not before: Fri 04 Jul 2025 03:55:50 +0000 ROA not after: Fri 03 Jul 2026 04:00:50 +0000 asID: 141592 IP address blocks: 157.66.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.crl rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 05:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bc:20:12:08:6d:8e:59:f7:e7:6f:bf:0b:96:3a:e0:f8:be:81:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ABD31DD828DD58C9D91180021903EA04D8EB58E Validity Not Before: Jul 4 03:55:50 2025 GMT Not After : Jul 3 04:00:50 2026 GMT Subject: CN=84C67BC9F953CCE3F37A3F605C8D17A2990021AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a8:dd:6b:83:42:40:e9:07:e7:fa:d2:66:78: 8a:5d:90:df:1f:58:e4:c8:42:fb:5e:75:29:99:71: a3:a6:ef:d6:00:c8:ed:ea:ce:e5:62:48:d5:25:26: 29:54:80:e5:66:25:73:56:6e:06:13:19:5b:3e:10: 66:90:95:48:0f:0b:11:7f:7a:27:59:6f:b4:d6:ca: dc:10:32:d1:7f:45:a7:65:88:3f:0a:b4:90:9b:ac: 37:59:5d:06:2c:45:9e:c1:90:98:3e:bb:a6:1b:d4: af:65:8c:3e:91:f7:60:49:9f:47:ca:f5:3c:f9:2d: f4:eb:17:52:21:e2:d9:76:f9:1d:4c:31:fb:52:17: 1e:b8:53:45:38:32:5a:93:05:0e:03:57:bb:07:6d: d6:47:f0:3a:9d:14:19:d9:15:68:e7:3a:c4:ef:51: f4:e4:59:2e:bd:42:82:45:c6:b1:52:02:fb:fc:36: 37:22:0e:45:b9:f4:d9:6d:34:9c:6c:9b:53:6d:71: 7d:ed:cd:d3:a5:1f:21:66:b8:95:b5:7f:92:39:2f: 8e:47:5d:cf:7b:2a:3e:17:c0:01:88:ee:e0:aa:17: 2c:c3:8a:c9:5c:b5:69:b9:dc:40:fd:ef:49:24:57: b6:6b:20:0f:c5:f7:d6:35:6e:48:fc:c7:d8:cd:f5: db:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C6:7B:C9:F9:53:CC:E3:F3:7A:3F:60:5C:8D:17:A2:99:00:21:AD X509v3 Authority Key Identifier: keyid:7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/3135372e36362e32312e302f32342d3234203d3e20313431353932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.21.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:ed:ab:50:9c:7b:ae:87:fc:91:14:ee:58:e4:1f:20:13:c7: c9:7e:5a:96:1b:c3:60:7a:de:f4:4a:13:1b:61:21:f3:59:9e: 12:2d:ac:b7:9d:0c:56:ca:1a:c8:fe:45:d0:ca:04:2b:6a:89: f2:2a:9a:f2:d9:a2:4a:3f:ee:2e:fd:fc:b5:7b:7f:1f:9d:58: 6b:9f:db:70:33:6f:2a:b9:5d:27:65:17:cf:78:61:45:e7:94: 94:48:4d:56:c2:fc:07:31:a4:9d:ea:c4:8c:a5:9e:66:74:12: 0c:5f:c1:eb:13:f9:5f:91:0d:da:d3:ec:e9:ee:70:c9:6e:1f: 2c:53:dd:1e:53:bd:9f:4f:7e:48:5e:bb:b2:a4:d5:eb:84:5d: bf:5a:89:6a:98:9a:17:68:d9:78:c1:f2:69:97:f5:2c:bf:89: 8e:f1:e3:dc:a6:60:21:54:81:ec:ed:8a:85:a2:ac:f1:e4:cd: 2f:77:90:bf:db:b0:9b:ba:5d:3d:2f:d9:9b:51:89:65:c2:c1: 71:c3:7b:7e:b4:e1:68:04:bf:e4:7a:0e:04:48:40:74:04:f7: 2c:b4:61:c6:4f:08:95:98:b7:9e:8a:c8:bb:c9:76:8a:6e:fc: e1:00:87:03:aa:75:c7:e5:b5:35:ac:09:a8:b8:56:23:5e:89: 1e:6f:40:ae -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOrwgEghtjln352+/C5Y64Pi+gf0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0FCRDMxREQ4MjhERDU4QzlEOTExODAwMjE5MDNFQTA0 RDhFQjU4RTAeFw0yNTA3MDQwMzU1NTBaFw0yNjA3MDMwNDAwNTBaMDMxMTAvBgNV BAMTKDg0QzY3QkM5Rjk1M0NDRTNGMzdBM0Y2MDVDOEQxN0EyOTkwMDIxQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHqN1rg0JA6Qfn+tJmeIpdkN8f WOTIQvtedSmZcaOm79YAyO3qzuViSNUlJilUgOVmJXNWbgYTGVs+EGaQlUgPCxF/ eidZb7TWytwQMtF/RadliD8KtJCbrDdZXQYsRZ7BkJg+u6Yb1K9ljD6R92BJn0fK 9Tz5LfTrF1Ih4tl2+R1MMftSFx64U0U4MlqTBQ4DV7sHbdZH8DqdFBnZFWjnOsTv UfTkWS69QoJFxrFSAvv8NjciDkW59NltNJxsm1NtcX3tzdOlHyFmuJW1f5I5L45H Xc97Kj4XwAGI7uCqFyzDislctWm53ED970kkV7ZrIA/F99Y1bkj8x9jN9duHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhMZ7yflTzOPzej9gXI0XopkAIa0wHwYDVR0j BBgwFoAUer0x3YKN1YydkRgAIZA+oE2OtY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NWY1ZWYxOC02ZmZhLTRkNjktOGMwYy0zNTE4Y2ZhODc1OGUvMC83QUJEMzFERDgy OERENThDOUQ5MTE4MDAyMTkwM0VBMDREOEVCNThFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0FCRDMxREQ4MjhERDU4QzlEOTExODAwMjE5MDNFQTA0RDhF QjU4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1ZjVlZjE4LTZmZmEtNGQ2OS04 YzBjLTM1MThjZmE4NzU4ZS8wLzMxMzUzNzJlMzYzNjJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM1MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CFTANBgkqhkiG 9w0BAQsFAAOCAQEATe2rUJx7rof8kRTuWOQfIBPHyX5alhvDYHre9EoTG2Eh81me Ei2st50MVsoayP5F0MoEK2qJ8iqa8tmiSj/uLv38tXt/H51Ya5/bcDNvKrldJ2UX z3hhReeUlEhNVsL8BzGknerEjKWeZnQSDF/B6xP5X5EN2tPs6e5wyW4fLFPdHlO9 n09+SF67sqTV64Rdv1qJapiaF2jZeMHyaZf1LL+JjvHj3KZgIVSB7O2KhaKs8eTN L3eQv9uwm7pdPS/Zm1GJZcLBccN7frThaAS/5HoOBEhAdAT3LLRhxk8IlZi3norI u8l2im784QCHA6p1x+W1NawJqLhWI16JHm9Arg== -----END CERTIFICATE-----Generated at Mon Jul 21 15:00:41 2025 by rpki-client