$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32342d3234203d3e20313532343037.roa File: 3135372e32302e39322e302f32342d3234203d3e20313532343037.roa (raw, json) Hash identifier: QrSBRaxGaWU8ZoD0zYmeD1ZaWtynoFSmr/bVUUg5r5E= Subject key identifier: A7:E7:FB:55:39:9E:47:FD:FF:C2:71:0E:1A:27:17:35:18:21:75:2F Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 42B7D2D99825234FF9EE8A44D1ED992DD3593419 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32342d3234203d3e20313532343037.roa Signing time: Tue 15 Jul 2025 03:25:52 +0000 ROA not before: Tue 15 Jul 2025 03:20:52 +0000 ROA not after: Tue 14 Jul 2026 03:25:52 +0000 asID: 152407 IP address blocks: 157.20.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b7:d2:d9:98:25:23:4f:f9:ee:8a:44:d1:ed:99:2d:d3:59:34:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Jul 15 03:20:52 2025 GMT Not After : Jul 14 03:25:52 2026 GMT Subject: CN=A7E7FB55399E47FDFFC2710E1A2717351821752F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2f:bc:86:1a:d4:8a:f8:37:6d:55:99:ef:36: 05:92:a9:a2:d7:c9:93:86:02:1c:e7:98:b6:f5:39: 34:7f:c0:64:1b:d3:03:6a:8d:99:fa:75:83:d0:0a: 6b:80:df:7c:05:e8:29:25:38:ad:a2:b4:6f:77:36: 99:b0:24:6b:9d:aa:24:4f:bf:19:5a:35:62:53:38: 24:70:8c:5e:50:d5:8f:19:ac:6b:25:14:9c:f9:05: 8a:71:28:cf:43:c9:40:34:95:a9:13:fe:3e:94:c3: cb:eb:a0:3c:52:26:72:5f:35:24:ff:bb:1b:84:3f: 31:a9:39:45:d5:cd:78:91:b0:f4:df:b4:c8:0b:16: 3f:c8:af:97:f3:b2:2b:87:c4:b0:89:81:f5:d0:21: cd:ee:e9:86:93:b7:1b:1c:9f:8d:8b:13:a6:51:a9: b5:13:02:01:cf:ff:20:d6:02:7e:38:f7:1a:3d:2b: 06:c0:d3:7b:48:1d:32:17:dd:35:b6:3e:54:86:81: 5f:f7:a7:e3:84:40:1b:96:a0:1c:db:e5:cb:4c:fa: 96:6c:19:8b:09:85:20:63:ee:9d:ae:4f:5a:cd:6f: 10:03:61:31:ce:9e:3d:02:c2:e4:00:d9:60:6b:ec: 76:66:c4:94:c0:6f:2e:5b:cc:93:59:3b:b5:ed:d0: 61:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E7:FB:55:39:9E:47:FD:FF:C2:71:0E:1A:27:17:35:18:21:75:2F X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32342d3234203d3e20313532343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/24 Signature Algorithm: sha256WithRSAEncryption e3:c6:30:1a:b6:fb:79:ed:2d:e3:8f:25:3b:a8:a1:d0:9a:44: 93:a6:66:ed:0b:d4:b4:78:9c:ac:38:29:47:42:a1:48:bb:83: 95:c0:d4:2b:43:9e:4c:bc:94:cc:ee:17:4f:e6:e4:5b:1f:57: 05:3a:f7:dd:98:b3:c9:4c:0c:e8:f7:26:9a:e1:5a:52:df:c6: b1:5c:a0:c7:99:5a:83:8a:5c:9a:27:a0:01:72:d3:54:da:0d: f5:a1:85:95:2c:f9:b5:c3:39:f1:02:f1:4a:4c:4d:fe:ba:c6: 11:65:38:29:8e:a3:fa:60:c0:27:2a:1d:53:28:6b:c9:9d:8d: 48:6c:12:da:07:5e:22:09:12:88:c0:ea:48:7c:3e:00:27:23: 2a:86:94:a8:98:e0:38:ed:31:cc:5d:99:ff:99:bf:27:25:a7: 5c:a9:9a:bd:df:62:7e:c4:8b:2e:5f:3a:4b:e1:d8:08:38:c1: da:41:3d:9d:fe:d9:a7:79:f1:b8:82:ce:53:4c:1b:3c:99:bc: 5b:16:c8:92:2f:da:93:fb:3c:ed:db:db:b5:3b:45:b1:dd:4a: d1:9c:d5:ef:21:da:65:82:0b:0b:0e:6e:28:0a:c4:55:07:5b: d0:e9:92:10:99:f2:49:c9:02:57:90:fa:00:30:e2:f2:61:f8: 5a:61:fd:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQrfS2ZglI0/57opE0e2ZLdNZNBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNTA3MTUwMzIwNTJaFw0yNjA3MTQwMzI1NTJaMDMxMTAvBgNV BAMTKEE3RTdGQjU1Mzk5RTQ3RkRGRkMyNzEwRTFBMjcxNzM1MTgyMTc1MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZL7yGGtSK+DdtVZnvNgWSqaLX yZOGAhznmLb1OTR/wGQb0wNqjZn6dYPQCmuA33wF6CklOK2itG93NpmwJGudqiRP vxlaNWJTOCRwjF5Q1Y8ZrGslFJz5BYpxKM9DyUA0lakT/j6Uw8vroDxSJnJfNST/ uxuEPzGpOUXVzXiRsPTftMgLFj/Ir5fzsiuHxLCJgfXQIc3u6YaTtxscn42LE6ZR qbUTAgHP/yDWAn449xo9KwbA03tIHTIX3TW2PlSGgV/3p+OEQBuWoBzb5ctM+pZs GYsJhSBj7p2uT1rNbxADYTHOnj0CwuQA2WBr7HZmxJTAby5bzJNZO7Xt0GF/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUp+f7VTmeR/3/wnEOGicXNRghdS8wHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhODk2ZmRjLTU2MzgtNDFkMi04 YTk5LTY4Y2U4MTZiZDNjZi8wLzMxMzUzNzJlMzIzMDJlMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UXDANBgkqhkiG 9w0BAQsFAAOCAQEA48YwGrb7ee0t448lO6ih0JpEk6Zm7QvUtHicrDgpR0KhSLuD lcDUK0OeTLyUzO4XT+bkWx9XBTr33ZizyUwM6PcmmuFaUt/GsVygx5lag4pcmieg AXLTVNoN9aGFlSz5tcM58QLxSkxN/rrGEWU4KY6j+mDAJyodUyhryZ2NSGwS2gde IgkSiMDqSHw+ACcjKoaUqJjgOO0xzF2Z/5m/JyWnXKmavd9ifsSLLl86S+HYCDjB 2kE9nf7Zp3nxuILOU0wbPJm8WxbIki/ak/s87dvbtTtFsd1K0ZzV7yHaZYILCw5u KArEVQdb0OmSEJnySckCV5D6ADDi8mH4WmH9Yg== -----END CERTIFICATE-----Generated at Wed Jul 23 12:11:35 2025 by rpki-client