$ rpki-client -vvf repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa File: 3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa (raw, json) Hash identifier: XdvAlT7dYr0rIgwIFapXg1zX6SWW1AjtQQfUFNhrdwk= Subject key identifier: F7:23:03:72:96:EF:70:46:1B:E8:DA:0C:D4:1C:38:C6:5D:59:8E:04 Certificate issuer: /CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Certificate serial: 0D40985871C4078C4E7B823AF1F61B8D4AB28CA1 Authority key identifier: C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa Signing time: Thu 04 Sep 2025 05:01:45 +0000 ROA not before: Thu 04 Sep 2025 04:56:45 +0000 ROA not after: Thu 03 Sep 2026 05:01:45 +0000 asID: 152429 IP address blocks: 157.20.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 07:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:40:98:58:71:c4:07:8c:4e:7b:82:3a:f1:f6:1b:8d:4a:b2:8c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7839427F44C8ED89E6C2720F19CCF279270FD2A Validity Not Before: Sep 4 04:56:45 2025 GMT Not After : Sep 3 05:01:45 2026 GMT Subject: CN=F723037296EF70461BE8DA0CD41C38C65D598E04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cf:a9:d4:7e:a9:1a:63:c9:6b:ec:b1:76:72: a8:eb:bf:2a:e3:1e:c5:b2:11:e8:a3:a4:47:5e:58: d7:77:c0:8a:83:28:34:11:f5:90:d6:09:50:c5:23: df:6f:40:8e:a8:15:4c:84:2a:ec:ba:cd:c5:c7:17: c5:d0:7d:b9:f2:c2:c7:1d:d8:71:6e:28:42:7d:dd: 77:1a:1b:03:5d:ea:be:77:f3:d4:ba:d2:67:81:20: 86:a1:2f:b0:11:05:52:c0:9e:cd:a5:53:f3:5d:d9: 70:f8:2a:cd:cc:40:bd:25:25:ca:4e:f0:44:f6:a5: 6c:56:ee:32:9e:04:c3:35:ee:b4:13:80:0a:b6:86: df:23:64:46:e6:74:e0:ab:4f:10:fa:10:7e:6e:62: 02:94:f1:7c:bd:47:73:67:7b:34:68:44:0c:8c:77: 82:c6:a2:f3:78:2c:c9:1c:84:0f:00:9e:d0:2d:92: ad:71:fa:c5:29:9d:4d:c2:d7:ba:e8:9b:c1:8c:41: ab:1a:eb:7f:17:7e:ac:03:6d:b0:5d:87:10:ad:3f: 31:8c:bb:c0:f4:36:13:99:80:fe:8f:18:87:7d:ed: 94:02:c4:7a:5d:5b:10:7a:f1:51:ca:1c:75:9b:a2: 1e:6b:32:53:ea:4a:fa:38:43:a6:4a:4d:c8:7d:f4: 92:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:23:03:72:96:EF:70:46:1B:E8:DA:0C:D4:1C:38:C6:5D:59:8E:04 X509v3 Authority Key Identifier: keyid:C7:83:94:27:F4:4C:8E:D8:9E:6C:27:20:F1:9C:CF:27:92:70:FD:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/C7839427F44C8ED89E6C2720F19CCF279270FD2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C7839427F44C8ED89E6C2720F19CCF279270FD2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.239.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:da:1e:d9:30:06:6c:72:0d:47:0b:97:22:58:7a:c1:c5:c5: b1:50:79:9e:68:4f:e9:f1:31:9e:6b:29:53:33:d2:b5:c8:a0: 3d:de:01:c7:d9:03:4c:8e:a7:b2:83:db:96:cf:73:ea:81:ec: 2f:f3:0d:41:d2:f6:99:4a:98:42:9c:fe:13:c4:f4:38:e6:e7: 2f:9b:cb:13:c7:e5:ea:e1:eb:7a:02:a0:dc:1f:ac:5a:48:74: 04:a0:c5:08:ce:88:bb:b4:fd:52:a9:0f:d2:51:1f:5e:c7:4c: b5:6a:d7:d1:8f:2a:b7:a6:14:79:4f:a1:12:a6:b1:ea:9a:80: 2f:35:6c:b8:b8:21:8c:05:bb:81:46:f4:af:17:c1:6d:85:f2: 2b:99:da:56:f2:30:4d:1a:4e:ba:8d:84:27:d5:c4:f1:85:60: e8:39:25:03:e5:63:c6:07:e3:dd:13:05:dc:d0:ab:9f:50:9d: 01:ba:72:f9:52:aa:c4:95:12:5c:98:f6:bb:31:79:32:4d:5c: e6:09:e9:af:bc:98:bd:1f:58:c7:e3:a1:5f:89:64:d6:65:9e: 4a:b6:6e:32:7e:9c:2c:6e:20:d6:8b:87:bd:66:29:61:30:57: d5:1e:c9:33:fc:6f:b1:d0:c2:b4:0d:9e:a2:11:64:96:13:be: 4b:c0:f7:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDUCYWHHEB4xOe4I68fYbjUqyjKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5 MjcwRkQyQTAeFw0yNTA5MDQwNDU2NDVaFw0yNjA5MDMwNTAxNDVaMDMxMTAvBgNV BAMTKEY3MjMwMzcyOTZFRjcwNDYxQkU4REEwQ0Q0MUMzOEM2NUQ1OThFMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuz6nUfqkaY8lr7LF2cqjrvyrj HsWyEeijpEdeWNd3wIqDKDQR9ZDWCVDFI99vQI6oFUyEKuy6zcXHF8XQfbnywscd 2HFuKEJ93XcaGwNd6r5389S60meBIIahL7ARBVLAns2lU/Nd2XD4Ks3MQL0lJcpO 8ET2pWxW7jKeBMM17rQTgAq2ht8jZEbmdOCrTxD6EH5uYgKU8Xy9R3NnezRoRAyM d4LGovN4LMkchA8AntAtkq1x+sUpnU3C17rom8GMQasa638XfqwDbbBdhxCtPzGM u8D0NhOZgP6PGId97ZQCxHpdWxB68VHKHHWboh5rMlPqSvo4Q6ZKTch99JJJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9yMDcpbvcEYb6NoM1Bw4xl1ZjgQwHwYDVR0j BBgwFoAUx4OUJ/RMjtiebCcg8ZzPJ5Jw/SowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OGQxYzQ0OS05NzhjLTQ4NDUtYjgyMy1iNTkyNWE5MDU0MjcvMC9DNzgzOTQyN0Y0 NEM4RUQ4OUU2QzI3MjBGMTlDQ0YyNzkyNzBGRDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzc4Mzk0MjdGNDRDOEVEODlFNkMyNzIwRjE5Q0NGMjc5Mjcw RkQyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4ZDFjNDQ5LTk3OGMtNDg0NS1i ODIzLWI1OTI1YTkwNTQyNy8wLzMxMzUzNzJlMzIzMDJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTvMA0GCSqG SIb3DQEBCwUAA4IBAQB62h7ZMAZscg1HC5ciWHrBxcWxUHmeaE/p8TGeaylTM9K1 yKA93gHH2QNMjqeyg9uWz3Pqgewv8w1B0vaZSphCnP4TxPQ45ucvm8sTx+Xq4et6 AqDcH6xaSHQEoMUIzoi7tP1SqQ/SUR9ex0y1atfRjyq3phR5T6ESprHqmoAvNWy4 uCGMBbuBRvSvF8FthfIrmdpW8jBNGk66jYQn1cTxhWDoOSUD5WPGB+PdEwXc0Kuf UJ0BunL5UqrElRJcmPa7MXkyTVzmCemvvJi9H1jH46FfiWTWZZ5Ktm4yfpwsbiDW i4e9ZilhMFfVHskz/G+x0MK0DZ6iEWSWE75LwPcR -----END CERTIFICATE-----Generated at Mon Sep 8 21:40:49 2025 by rpki-client