$ rpki-client -vvf repo-rpki.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/3135372e36362e32392e302f32342d3234203d3e203539323831.roa File: 3135372e36362e32392e302f32342d3234203d3e203539323831.roa (raw, json) Hash identifier: zTHLGAwQAsHOZagfs3+O24ipzV4m2EM9CneqRLVHTaQ= Subject key identifier: 89:74:1C:74:52:F8:AC:D7:15:CF:7F:EE:1E:C5:21:37:D9:30:74:B9 Certificate issuer: /CN=EAD173629E4F955F44EC781A3739775E738ACCFD Certificate serial: 1C76BE757A5AA0688EB5AD4A3C0E9F26B38B2277 Authority key identifier: EA:D1:73:62:9E:4F:95:5F:44:EC:78:1A:37:39:77:5E:73:8A:CC:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EAD173629E4F955F44EC781A3739775E738ACCFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/3135372e36362e32392e302f32342d3234203d3e203539323831.roa Signing time: Tue 15 Apr 2025 08:02:22 +0000 ROA not before: Tue 15 Apr 2025 07:57:22 +0000 ROA not after: Tue 14 Apr 2026 08:02:22 +0000 asID: 59281 IP address blocks: 157.66.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/EAD173629E4F955F44EC781A3739775E738ACCFD.crl rsync://repo-rpki.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/EAD173629E4F955F44EC781A3739775E738ACCFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EAD173629E4F955F44EC781A3739775E738ACCFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 19:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:76:be:75:7a:5a:a0:68:8e:b5:ad:4a:3c:0e:9f:26:b3:8b:22:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAD173629E4F955F44EC781A3739775E738ACCFD Validity Not Before: Apr 15 07:57:22 2025 GMT Not After : Apr 14 08:02:22 2026 GMT Subject: CN=89741C7452F8ACD715CF7FEE1EC52137D93074B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:18:de:c8:a9:6a:72:a4:96:fc:2d:ac:d9:77: 84:35:a7:fd:35:62:f8:3b:ef:26:8e:e5:7c:d0:41: 7d:84:20:67:d1:c4:01:40:c0:9e:23:5e:0d:1c:49: 59:b6:15:04:59:40:2b:ba:85:26:ec:83:d8:c9:72: 99:b5:95:99:fb:26:b2:bf:2f:a8:97:5b:f1:fb:d0: 5d:6a:42:4d:c7:b7:50:9c:bd:b8:21:8a:67:d4:89: a9:c7:27:8b:06:a5:c0:5a:ad:80:17:5e:c0:ae:c2: b8:29:c7:95:a2:2c:c7:4b:b5:86:d5:f8:27:c2:77: 45:ba:2a:ea:07:6d:de:af:0a:8a:d2:a7:da:f6:9b: 77:9f:2b:71:d9:c1:e5:24:b7:47:01:6c:4d:a6:7d: 4f:7b:97:81:fa:af:4b:6e:c5:bf:56:70:aa:dd:b5: ec:03:2f:a0:62:64:b5:f5:e4:ec:18:e6:e1:01:e9: 23:35:3f:e4:a1:ae:dc:c7:fc:25:83:d9:ee:e1:05: 89:e9:98:a3:a8:c0:95:e6:ad:f3:d4:10:1a:de:8a: 6a:83:65:5f:53:ed:0e:0d:74:8f:df:29:39:36:9e: 49:57:b8:1a:d8:90:91:62:44:69:31:07:cc:fb:e3: 55:fc:c3:05:1e:66:78:5b:cf:3b:0e:cc:f2:83:9c: 9f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:74:1C:74:52:F8:AC:D7:15:CF:7F:EE:1E:C5:21:37:D9:30:74:B9 X509v3 Authority Key Identifier: keyid:EA:D1:73:62:9E:4F:95:5F:44:EC:78:1A:37:39:77:5E:73:8A:CC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/EAD173629E4F955F44EC781A3739775E738ACCFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EAD173629E4F955F44EC781A3739775E738ACCFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/3135372e36362e32392e302f32342d3234203d3e203539323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.29.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:88:0c:33:f6:29:22:be:0b:f3:70:1b:e9:a8:c5:d4:03:36: 68:a0:05:99:0b:f6:41:f5:7a:53:7d:5d:a4:ce:f4:26:62:ff: c9:f9:af:7e:26:6c:a6:be:08:7d:5b:00:a8:12:be:d0:2a:1d: a7:0f:7e:7f:63:cd:05:99:97:13:44:89:86:0a:59:18:f3:b9: 8b:05:6a:b2:ab:04:6e:93:47:1e:e0:74:34:ff:77:8d:a5:98: 0a:17:cc:e5:e8:68:93:6b:a4:7f:8b:b9:13:3e:0a:a0:77:17: b9:67:52:94:ed:5e:2f:fe:8b:7b:c8:9e:c9:da:5b:35:36:23: 4d:d5:4a:35:f7:9a:fe:f7:8d:24:a7:91:75:51:5f:eb:44:d9: da:94:5f:09:ed:82:45:f4:65:43:72:3e:a8:ff:cf:5f:b8:24: 4d:e2:68:67:43:4c:54:b6:57:b5:6f:fa:c2:c0:0c:e3:af:aa: 0c:1d:3f:55:e3:25:b0:8b:13:8f:b1:26:74:b7:5c:af:e4:bf: 58:98:59:f7:58:6f:20:ab:26:d4:21:c7:e2:9e:db:2a:40:d4: 7d:4e:6f:9a:fe:84:77:76:dd:30:c5:1d:c9:9f:1c:97:8d:cf: 03:a1:15:a0:40:38:15:b8:68:9e:bc:59:cb:a1:92:17:f7:ad: 11:e4:07:f7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHHa+dXpaoGiOta1KPA6fJrOLIncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFEMTczNjI5RTRGOTU1RjQ0RUM3ODFBMzczOTc3NUU3 MzhBQ0NGRDAeFw0yNTA0MTUwNzU3MjJaFw0yNjA0MTQwODAyMjJaMDMxMTAvBgNV BAMTKDg5NzQxQzc0NTJGOEFDRDcxNUNGN0ZFRTFFQzUyMTM3RDkzMDc0QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuGN7IqWpypJb8LazZd4Q1p/01 Yvg77yaO5XzQQX2EIGfRxAFAwJ4jXg0cSVm2FQRZQCu6hSbsg9jJcpm1lZn7JrK/ L6iXW/H70F1qQk3Ht1CcvbghimfUianHJ4sGpcBarYAXXsCuwrgpx5WiLMdLtYbV +CfCd0W6KuoHbd6vCorSp9r2m3efK3HZweUkt0cBbE2mfU97l4H6r0tuxb9WcKrd tewDL6BiZLX15OwY5uEB6SM1P+ShrtzH/CWD2e7hBYnpmKOowJXmrfPUEBreimqD ZV9T7Q4NdI/fKTk2nklXuBrYkJFiRGkxB8z741X8wwUeZnhbzzsOzPKDnJ/JAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiXQcdFL4rNcVz3/uHsUhN9kwdLkwHwYDVR0j BBgwFoAU6tFzYp5PlV9E7HgaNzl3XnOKzP0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWI0MzNhNS03MmIxLTQ2NTMtOTlkMy05NDY5YzhiOGI3NjIvMC9FQUQxNzM2MjlF NEY5NTVGNDRFQzc4MUEzNzM5Nzc1RTczOEFDQ0ZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUFEMTczNjI5RTRGOTU1RjQ0RUM3ODFBMzczOTc3NUU3MzhB Q0NGRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxYjQzM2E1LTcyYjEtNDY1My05 OWQzLTk0NjljOGI4Yjc2Mi8wLzMxMzUzNzJlMzYzNjJlMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzkzMjM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQh0wDQYJKoZIhvcN AQELBQADggEBACuIDDP2KSK+C/NwG+moxdQDNmigBZkL9kH1elN9XaTO9CZi/8n5 r34mbKa+CH1bAKgSvtAqHacPfn9jzQWZlxNEiYYKWRjzuYsFarKrBG6TRx7gdDT/ d42lmAoXzOXoaJNrpH+LuRM+CqB3F7lnUpTtXi/+i3vInsnaWzU2I03VSjX3mv73 jSSnkXVRX+tE2dqUXwntgkX0ZUNyPqj/z1+4JE3iaGdDTFS2V7Vv+sLADOOvqgwd P1XjJbCLE4+xJnS3XK/kv1iYWfdYbyCrJtQhx+Ke2ypA1H1Ob5r+hHd23TDFHcmf HJeNzwOhFaBAOBW4aJ68Wcuhkhf3rRHkB/c= -----END CERTIFICATE-----Generated at Tue Oct 28 22:42:00 2025 by rpki-client