$ rpki-client -vvf repo-rpki.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa File: 3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa (raw, json) Hash identifier: i4JiZSoYZHLIwwO6OZUV0v9wdjo3Gmg5PRc7UcGllf8= Subject key identifier: 81:CF:D2:EF:B8:63:A2:6A:BE:A5:09:90:8A:25:DF:D7:B8:DB:4D:DC Certificate issuer: /CN=84D5328962D0ADCA772ECA2A427E097F281CCEB4 Certificate serial: 3221B202B3531EC68C91EB3B2B692688F82A7899 Authority key identifier: 84:D5:32:89:62:D0:AD:CA:77:2E:CA:2A:42:7E:09:7F:28:1C:CE:B4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/84D5328962D0ADCA772ECA2A427E097F281CCEB4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa Signing time: Wed 14 May 2025 07:00:01 +0000 ROA not before: Wed 14 May 2025 06:55:01 +0000 ROA not after: Wed 13 May 2026 07:00:01 +0000 asID: 139937 IP address blocks: 157.66.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/84D5328962D0ADCA772ECA2A427E097F281CCEB4.crl rsync://repo-rpki.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/84D5328962D0ADCA772ECA2A427E097F281CCEB4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/84D5328962D0ADCA772ECA2A427E097F281CCEB4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:21:b2:02:b3:53:1e:c6:8c:91:eb:3b:2b:69:26:88:f8:2a:78:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84D5328962D0ADCA772ECA2A427E097F281CCEB4 Validity Not Before: May 14 06:55:01 2025 GMT Not After : May 13 07:00:01 2026 GMT Subject: CN=81CFD2EFB863A26ABEA509908A25DFD7B8DB4DDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0f:31:73:83:ca:55:37:d6:24:94:a2:83:04: c4:05:c8:0f:e6:90:b6:88:89:4d:49:c6:8b:be:33: a9:68:28:f5:9e:a0:ae:4f:f2:14:3a:7a:16:68:57: ef:2a:d6:4f:98:d0:45:10:f1:32:65:b3:9d:84:62: 69:c2:c5:c4:ef:df:c4:a1:c9:b3:6a:8c:3e:c1:97: 9d:2b:7a:2d:75:60:b7:f8:5c:7f:9c:56:a6:6a:83: cb:db:b6:bd:d8:c8:6b:c4:78:9b:20:f9:6c:25:c1: f5:cb:04:7e:ee:08:f0:e4:88:33:43:d9:f4:e6:b7: 4f:9c:32:4e:63:a4:c3:fe:3a:47:d1:69:13:b4:3a: 4a:5d:4c:c6:b7:ad:4b:8e:21:a2:74:41:f4:b4:29: 43:98:c7:73:99:7e:00:42:dd:b6:a4:44:ea:17:f2: dd:6a:5e:a5:4c:ce:b1:ac:81:c4:77:48:a8:9b:d5: a1:23:d8:dc:95:b8:8b:01:fa:1b:45:66:66:cc:25: a5:94:68:53:05:0a:cb:dc:09:f0:9d:33:c5:f0:5b: 38:f3:d1:64:75:22:d2:07:62:94:5e:2b:12:85:90: 5c:28:33:07:11:18:12:e4:1c:2c:d5:ad:66:96:46: f2:b6:05:e9:12:3b:3e:f3:94:c1:aa:4e:55:cf:2f: d1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CF:D2:EF:B8:63:A2:6A:BE:A5:09:90:8A:25:DF:D7:B8:DB:4D:DC X509v3 Authority Key Identifier: keyid:84:D5:32:89:62:D0:AD:CA:77:2E:CA:2A:42:7E:09:7F:28:1C:CE:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/84D5328962D0ADCA772ECA2A427E097F281CCEB4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/84D5328962D0ADCA772ECA2A427E097F281CCEB4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.131.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:43:2f:08:c4:ca:7a:bf:95:74:bc:2c:57:8a:69:5b:c2:e0: 79:63:ed:29:e3:df:92:e9:84:36:92:81:d9:51:f8:5d:02:06: 18:22:93:66:12:b2:3e:be:22:99:23:6b:42:6f:c7:60:a5:bb: d1:80:cb:e0:29:28:f2:8c:d9:e2:87:0d:76:42:c7:f2:ca:dd: f2:39:1b:0c:1d:92:a9:e4:8e:70:c4:7c:a9:89:a1:45:4c:81: 74:07:99:63:1b:d8:1c:cc:ed:eb:be:66:0c:5f:4f:3e:6d:5a: c5:22:0d:77:ad:95:67:91:6f:b2:b7:c0:0e:98:ba:dd:30:f7: 76:53:ab:cf:ab:cb:b9:eb:0a:46:9c:b6:31:39:4e:aa:60:4d: bb:7c:f6:f6:ea:40:14:08:db:d4:34:d2:7f:08:ba:6b:48:f2: 5f:e5:5c:00:b8:96:f5:5e:2a:7e:18:51:0d:89:d2:f0:d9:20: 41:69:0a:c3:37:e7:d4:e3:e9:31:4d:90:ec:2e:74:2d:4e:c1: 9a:a9:f3:5a:d0:6d:31:74:2d:c4:56:5d:ad:a9:da:10:d2:51: a8:ea:09:bc:c4:3a:f1:0a:68:c2:9f:d8:3b:db:33:71:8f:6a: 79:ff:be:56:fe:33:25:70:8a:d2:d4:e5:4b:57:47:86:7f:f1: 23:43:e1:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMiGyArNTHsaMkes7K2kmiPgqeJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODRENTMyODk2MkQwQURDQTc3MkVDQTJBNDI3RTA5N0Yy ODFDQ0VCNDAeFw0yNTA1MTQwNjU1MDFaFw0yNjA1MTMwNzAwMDFaMDMxMTAvBgNV BAMTKDgxQ0ZEMkVGQjg2M0EyNkFCRUE1MDk5MDhBMjVERkQ3QjhEQjREREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSDzFzg8pVN9YklKKDBMQFyA/m kLaIiU1Jxou+M6loKPWeoK5P8hQ6ehZoV+8q1k+Y0EUQ8TJls52EYmnCxcTv38Sh ybNqjD7Bl50rei11YLf4XH+cVqZqg8vbtr3YyGvEeJsg+WwlwfXLBH7uCPDkiDND 2fTmt0+cMk5jpMP+OkfRaRO0OkpdTMa3rUuOIaJ0QfS0KUOYx3OZfgBC3bakROoX 8t1qXqVMzrGsgcR3SKib1aEj2NyVuIsB+htFZmbMJaWUaFMFCsvcCfCdM8XwWzjz 0WR1ItIHYpReKxKFkFwoMwcRGBLkHCzVrWaWRvK2BekSOz7zlMGqTlXPL9EHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgc/S77hjomq+pQmQiiXf17jbTdwwHwYDVR0j BBgwFoAUhNUyiWLQrcp3LsoqQn4JfygczrQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjhkODI0ZC1kNmExLTQ1NDMtOWNmMC1kOTkyNjgzMmYyOWYvMC84NEQ1MzI4OTYy RDBBRENBNzcyRUNBMkE0MjdFMDk3RjI4MUNDRUI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODRENTMyODk2MkQwQURDQTc3MkVDQTJBNDI3RTA5N0YyODFD Q0VCNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmOGQ4MjRkLWQ2YTEtNDU0My05 Y2YwLWQ5OTI2ODMyZjI5Zi8wLzMxMzUzNzJlMzYzNjJlMzEzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKDMA0GCSqG SIb3DQEBCwUAA4IBAQCfQy8IxMp6v5V0vCxXimlbwuB5Y+0p49+S6YQ2koHZUfhd AgYYIpNmErI+viKZI2tCb8dgpbvRgMvgKSjyjNnihw12Qsfyyt3yORsMHZKp5I5w xHypiaFFTIF0B5ljG9gczO3rvmYMX08+bVrFIg13rZVnkW+yt8AOmLrdMPd2U6vP q8u56wpGnLYxOU6qYE27fPb26kAUCNvUNNJ/CLprSPJf5VwAuJb1Xip+GFENidLw 2SBBaQrDN+fU4+kxTZDsLnQtTsGaqfNa0G0xdC3EVl2tqdoQ0lGo6gm8xDrxCmjC n9g72zNxj2p5/75W/jMlcIrS1OVLV0eGf/EjQ+HP -----END CERTIFICATE-----Generated at Sun Jun 8 04:01:53 2025 by rpki-client