$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3233203d3e20313532343037.roa File: 3135372e32302e39322e302f32332d3233203d3e20313532343037.roa (raw, json) Hash identifier: P7Y8t8QlzVHnPDCRyEAdHrWqFac2Md1CGzVdP33gimk= Subject key identifier: 30:B9:88:80:FC:AB:5F:6F:F9:AE:4F:45:DE:18:2E:D6:48:CA:0A:D0 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 7261A6FFDEDBD37912D454A7BD120A30F93C4720 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3233203d3e20313532343037.roa Signing time: Tue 15 Jul 2025 03:26:47 +0000 ROA not before: Tue 15 Jul 2025 03:21:47 +0000 ROA not after: Tue 14 Jul 2026 03:26:47 +0000 asID: 152407 IP address blocks: 157.20.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:61:a6:ff:de:db:d3:79:12:d4:54:a7:bd:12:0a:30:f9:3c:47:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Jul 15 03:21:47 2025 GMT Not After : Jul 14 03:26:47 2026 GMT Subject: CN=30B98880FCAB5F6FF9AE4F45DE182ED648CA0AD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:41:15:04:3b:5b:e8:b8:98:0e:75:e4:4c:39: 22:3e:90:fe:c1:a6:1b:3e:0a:b3:b3:e6:cf:2d:29: 68:fb:3f:d3:12:66:c9:36:c6:2c:25:d5:a8:af:11: f7:5a:a4:fc:26:51:4e:50:16:7f:5e:25:37:ef:61: 4b:5f:6b:c2:21:05:47:89:5b:5d:6a:13:68:92:ad: a9:d1:c8:25:d7:f8:10:4a:67:76:51:c2:95:27:19: 13:12:b9:e1:d8:69:b8:4e:7d:e0:e6:d8:5b:f9:1f: ff:0e:2b:8f:90:0a:a8:5c:e6:07:ee:1e:d1:da:a5: c1:8e:91:fb:b2:ac:03:fa:a5:cc:6c:25:42:50:58: e9:c8:ff:c2:9d:83:7a:70:0d:94:6a:93:09:d1:27: 83:7e:6f:bf:12:91:7f:88:83:dc:65:a6:a6:5a:92: 76:b3:85:50:0a:96:9b:e9:08:cc:d3:4d:31:c3:26: c7:ee:ea:22:8f:36:8e:0b:ce:e3:7a:e5:7d:ec:e2: bc:8b:52:cf:1c:de:03:d5:b9:71:6c:07:9b:04:40: ad:ca:01:8a:d2:8b:0b:ff:91:af:b1:43:96:b6:54: 99:b0:85:5b:ee:35:af:7d:d4:0e:a9:2a:89:a7:1c: 85:84:56:ac:90:03:c7:f5:e8:eb:53:2b:43:11:ad: 0f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B9:88:80:FC:AB:5F:6F:F9:AE:4F:45:DE:18:2E:D6:48:CA:0A:D0 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3233203d3e20313532343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:e7:5c:63:01:40:4b:6c:1f:b6:f6:f7:51:a2:7b:60:17:26: d0:96:9b:ce:3b:57:1f:7f:18:95:e2:06:18:fc:ca:9c:0d:ff: 36:0f:ff:e3:3f:f5:e3:e0:bf:90:43:fc:81:16:c8:4d:5d:70: 4c:7f:d2:78:43:7a:eb:a6:fe:8a:c9:fb:ba:2b:eb:34:13:06: 11:25:05:ac:67:b5:12:84:38:e7:6d:81:f1:98:11:29:22:52: 07:8a:f0:e6:e9:6f:ea:a6:f4:09:49:b9:ae:f6:11:e2:ac:85: cd:bd:40:5f:92:4d:00:4b:72:d8:ee:17:f9:d9:48:52:c4:5b: c3:45:7e:d9:82:dd:69:36:a7:67:3c:8c:17:31:57:db:09:ba: eb:80:07:09:41:6e:95:b8:11:67:1f:27:1c:8e:77:b1:3b:6a: 56:81:35:52:22:02:f1:49:28:4a:b3:e1:4a:e1:c3:1d:7b:b8: e9:2e:52:e1:ed:41:99:59:63:cd:35:be:0f:83:0f:42:45:f7: d4:7e:22:84:d8:59:26:ed:2e:78:bc:84:75:e0:86:5d:d6:39: 61:9b:0b:e0:54:d4:3b:25:8f:3b:0b:a8:45:d2:07:99:73:30: 53:82:e6:e2:5b:d7:41:2a:3e:f5:90:c5:dd:10:48:ba:36:35: 9b:2e:27:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcmGm/97b03kS1FSnvRIKMPk8RyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNTA3MTUwMzIxNDdaFw0yNjA3MTQwMzI2NDdaMDMxMTAvBgNV BAMTKDMwQjk4ODgwRkNBQjVGNkZGOUFFNEY0NURFMTgyRUQ2NDhDQTBBRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwQRUEO1vouJgOdeRMOSI+kP7B phs+CrOz5s8tKWj7P9MSZsk2xiwl1aivEfdapPwmUU5QFn9eJTfvYUtfa8IhBUeJ W11qE2iSranRyCXX+BBKZ3ZRwpUnGRMSueHYabhOfeDm2Fv5H/8OK4+QCqhc5gfu HtHapcGOkfuyrAP6pcxsJUJQWOnI/8Kdg3pwDZRqkwnRJ4N+b78SkX+Ig9xlpqZa knazhVAKlpvpCMzTTTHDJsfu6iKPNo4LzuN65X3s4ryLUs8c3gPVuXFsB5sEQK3K AYrSiwv/ka+xQ5a2VJmwhVvuNa991A6pKomnHIWEVqyQA8f16OtTK0MRrQ9rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMLmIgPyrX2/5rk9F3hgu1kjKCtAwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhODk2ZmRjLTU2MzgtNDFkMi04 YTk5LTY4Y2U4MTZiZDNjZi8wLzMxMzUzNzJlMzIzMDJlMzkzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UXDANBgkqhkiG 9w0BAQsFAAOCAQEAXedcYwFAS2wftvb3UaJ7YBcm0JabzjtXH38YleIGGPzKnA3/ Ng//4z/14+C/kEP8gRbITV1wTH/SeEN666b+isn7uivrNBMGESUFrGe1EoQ4522B 8ZgRKSJSB4rw5ulv6qb0CUm5rvYR4qyFzb1AX5JNAEty2O4X+dlIUsRbw0V+2YLd aTanZzyMFzFX2wm664AHCUFulbgRZx8nHI53sTtqVoE1UiIC8UkoSrPhSuHDHXu4 6S5S4e1BmVljzTW+D4MPQkX31H4ihNhZJu0ueLyEdeCGXdY5YZsL4FTUOyWPOwuo RdIHmXMwU4Lm4lvXQSo+9ZDF3RBIujY1my4neA== -----END CERTIFICATE-----Generated at Wed Jul 23 12:10:10 2025 by rpki-client