$ rpki-client -vvf repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/3135372e36362e3137322e302f32332d3234203d3e20313533313339.roa File: 3135372e36362e3137322e302f32332d3234203d3e20313533313339.roa (raw, json) Hash identifier: IcWkQYDLFcPwwtzYdPcj5i2iEcvHXh39BUHPHZLmTXs= Subject key identifier: 95:30:E5:77:B2:58:DF:03:9A:0C:47:61:B1:B9:05:A7:75:D1:CB:C6 Certificate issuer: /CN=F5BC050A20C516FEBC061A1B70E488BB426444BC Certificate serial: 1CA3C79E837D3CCCDCFD0A9C5299BDA509224373 Authority key identifier: F5:BC:05:0A:20:C5:16:FE:BC:06:1A:1B:70:E4:88:BB:42:64:44:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5BC050A20C516FEBC061A1B70E488BB426444BC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/3135372e36362e3137322e302f32332d3234203d3e20313533313339.roa Signing time: Thu 15 May 2025 08:02:16 +0000 ROA not before: Thu 15 May 2025 07:57:16 +0000 ROA not after: Thu 14 May 2026 08:02:16 +0000 asID: 153139 IP address blocks: 157.66.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/F5BC050A20C516FEBC061A1B70E488BB426444BC.crl rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/F5BC050A20C516FEBC061A1B70E488BB426444BC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5BC050A20C516FEBC061A1B70E488BB426444BC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a3:c7:9e:83:7d:3c:cc:dc:fd:0a:9c:52:99:bd:a5:09:22:43:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5BC050A20C516FEBC061A1B70E488BB426444BC Validity Not Before: May 15 07:57:16 2025 GMT Not After : May 14 08:02:16 2026 GMT Subject: CN=9530E577B258DF039A0C4761B1B905A775D1CBC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:16:3b:17:2c:94:0d:53:03:58:2c:6f:1e:82: fc:69:80:e9:61:b6:4d:aa:3f:f5:2b:a9:7c:40:67: ee:ab:10:c3:6d:b2:18:a6:54:d8:aa:87:27:50:7c: 55:cf:f9:fe:71:a8:84:98:d7:0a:e3:2c:dd:a5:90: 7e:bb:89:b6:fc:1b:16:e6:d2:9b:3c:ef:0b:8e:3e: b3:5b:18:61:e9:82:9e:6a:c6:0d:da:bd:eb:f2:72: 82:b2:e1:97:93:97:94:62:21:61:1b:1e:f3:99:2e: 97:43:92:7f:ee:05:b3:46:56:92:04:d8:4c:27:01: 57:16:44:28:fd:e2:a8:d3:73:0b:82:c8:47:52:27: 7e:d8:44:43:ea:f8:ba:70:6f:a7:e9:97:bc:f4:ee: 9f:c3:fd:7c:cf:c7:f1:a7:8a:03:e9:71:61:2a:f0: 59:c1:99:08:8b:db:28:b2:3a:9f:e3:25:48:c1:e2: 8a:3c:98:6f:0d:c4:03:3f:06:79:a7:30:62:f3:3b: b6:ea:1e:fc:29:69:f2:60:a5:a8:10:43:69:80:0d: 25:a4:35:55:a7:ef:fc:56:0a:ec:9f:c4:19:2b:61: f8:0d:5c:e6:ea:07:6b:45:ad:8d:be:66:69:70:d1: bd:20:6b:69:35:33:9e:c6:ce:a9:83:a2:04:ad:96: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:30:E5:77:B2:58:DF:03:9A:0C:47:61:B1:B9:05:A7:75:D1:CB:C6 X509v3 Authority Key Identifier: keyid:F5:BC:05:0A:20:C5:16:FE:BC:06:1A:1B:70:E4:88:BB:42:64:44:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/F5BC050A20C516FEBC061A1B70E488BB426444BC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F5BC050A20C516FEBC061A1B70E488BB426444BC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/032f98a0-0947-4f7a-bee7-ffc3d05b940e/0/3135372e36362e3137322e302f32332d3234203d3e20313533313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.172.0/23 Signature Algorithm: sha256WithRSAEncryption 37:72:b3:e7:88:ee:02:73:a4:6a:12:96:65:b7:b4:67:06:37: 68:59:18:2c:0c:33:5d:9e:30:29:ad:38:6f:d8:b9:f6:67:b4: d3:0a:cd:a7:6d:f9:75:86:34:8d:4a:81:bf:3a:3b:64:7d:fe: f5:b7:a4:72:74:0f:12:34:ab:dd:d3:60:6c:71:85:7b:c7:93: 28:fb:0a:60:f2:4f:bd:35:71:d8:f6:29:46:96:6c:fc:83:6e: 8f:5a:ef:c1:bc:e2:00:e2:2e:c2:06:0d:8f:b4:c9:47:89:57: cd:86:1a:f3:9f:5f:2d:8d:aa:4e:7a:0f:51:70:b3:01:d4:39: 6e:12:ac:7c:13:4d:61:7e:c0:48:f7:1e:05:f2:90:64:2f:20: fc:6a:d0:84:09:34:50:9b:d4:c7:f8:ef:17:b3:5d:3e:62:21: fe:df:80:4a:6e:53:34:79:30:ef:61:53:59:20:28:47:db:aa: 8e:54:ed:e4:94:7f:91:c3:59:13:14:c5:bb:55:62:59:fc:ea: 3c:02:5d:63:f5:2d:4e:ce:e1:1d:23:64:90:a8:ba:a0:6b:02: 7b:06:0c:4e:77:62:9d:ac:d8:86:c8:0b:b2:96:04:2f:01:b1: ed:c9:ed:17:e6:46:88:d5:58:97:d9:5f:5d:53:0b:11:11:a5: 4e:f7:c0:c5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHKPHnoN9PMzc/QqcUpm9pQkiQ3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVCQzA1MEEyMEM1MTZGRUJDMDYxQTFCNzBFNDg4QkI0 MjY0NDRCQzAeFw0yNTA1MTUwNzU3MTZaFw0yNjA1MTQwODAyMTZaMDMxMTAvBgNV BAMTKDk1MzBFNTc3QjI1OERGMDM5QTBDNDc2MUIxQjkwNUE3NzVEMUNCQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyFjsXLJQNUwNYLG8egvxpgOlh tk2qP/UrqXxAZ+6rEMNtshimVNiqhydQfFXP+f5xqISY1wrjLN2lkH67ibb8Gxbm 0ps87wuOPrNbGGHpgp5qxg3avevycoKy4ZeTl5RiIWEbHvOZLpdDkn/uBbNGVpIE 2EwnAVcWRCj94qjTcwuCyEdSJ37YREPq+Lpwb6fpl7z07p/D/XzPx/GnigPpcWEq 8FnBmQiL2yiyOp/jJUjB4oo8mG8NxAM/BnmnMGLzO7bqHvwpafJgpagQQ2mADSWk NVWn7/xWCuyfxBkrYfgNXObqB2tFrY2+Zmlw0b0ga2k1M57GzqmDogStlqCPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlTDld7JY3wOaDEdhsbkFp3XRy8YwHwYDVR0j BBgwFoAU9bwFCiDFFv68BhobcOSIu0JkRLwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzJmOThhMC0wOTQ3LTRmN2EtYmVlNy1mZmMzZDA1Yjk0MGUvMC9GNUJDMDUwQTIw QzUxNkZFQkMwNjFBMUI3MEU0ODhCQjQyNjQ0NEJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjVCQzA1MEEyMEM1MTZGRUJDMDYxQTFCNzBFNDg4QkI0MjY0 NDRCQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzMmY5OGEwLTA5NDctNGY3YS1i ZWU3LWZmYzNkMDViOTQwZS8wLzMxMzUzNzJlMzYzNjJlMzEzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKsMA0GCSqG SIb3DQEBCwUAA4IBAQA3crPniO4Cc6RqEpZlt7RnBjdoWRgsDDNdnjAprThv2Ln2 Z7TTCs2nbfl1hjSNSoG/Ojtkff71t6RydA8SNKvd02BscYV7x5Mo+wpg8k+9NXHY 9ilGlmz8g26PWu/BvOIA4i7CBg2PtMlHiVfNhhrzn18tjapOeg9RcLMB1DluEqx8 E01hfsBI9x4F8pBkLyD8atCECTRQm9TH+O8Xs10+YiH+34BKblM0eTDvYVNZIChH 26qOVO3klH+Rw1kTFMW7VWJZ/Oo8Al1j9S1OzuEdI2SQqLqgawJ7BgxOd2KdrNiG yAuylgQvAbHtye0X5kaI1ViX2V9dUwsREaVO98DF -----END CERTIFICATE-----Generated at Sat Jun 7 22:55:12 2025 by rpki-client