$ rpki-client -vvf repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa File: 3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa (raw, json) Hash identifier: kqVD+n1IKw72OvnfLlVYQv+xCjn3zAPXv/doYj+5xns= Subject key identifier: C4:7E:F1:84:A4:70:D0:87:43:1F:41:BA:E3:13:0D:3B:08:1B:06:2E Certificate issuer: /CN=1A43B9C67646D3B8444E277C64D1FD489A45E536 Certificate serial: 7C0C782FFE6FB6D917CCB6876AA4F6328E0AE0 Authority key identifier: 1A:43:B9:C6:76:46:D3:B8:44:4E:27:7C:64:D1:FD:48:9A:45:E5:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa Signing time: Sun 18 May 2025 18:00:02 +0000 ROA not before: Sun 18 May 2025 17:55:02 +0000 ROA not after: Sun 17 May 2026 18:00:02 +0000 asID: 152772 IP address blocks: 157.66.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.crl rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:0c:78:2f:fe:6f:b6:d9:17:cc:b6:87:6a:a4:f6:32:8e:0a:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A43B9C67646D3B8444E277C64D1FD489A45E536 Validity Not Before: May 18 17:55:02 2025 GMT Not After : May 17 18:00:02 2026 GMT Subject: CN=C47EF184A470D087431F41BAE3130D3B081B062E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:75:51:44:b6:ba:ff:33:d7:40:64:3d:f6:80: cb:e6:ca:20:b4:98:0d:5d:e7:ba:04:81:44:37:54: 15:b8:f9:ee:00:a2:75:ca:c8:dd:da:03:37:52:48: 86:9e:ae:ba:23:02:b6:ca:f7:8e:41:9d:da:8c:b9: 59:c9:92:3c:9e:01:b3:48:67:ad:7f:15:a3:48:04: dc:93:1e:8e:80:f9:71:02:d5:89:47:6a:72:5c:a1: e7:8d:a4:be:0a:cf:5c:40:25:ae:ad:cc:8e:63:f8: b7:6a:ac:ed:05:42:19:71:c5:25:8b:71:62:0a:f5: 11:55:03:09:ec:29:b8:cc:2a:a3:38:34:9f:df:a0: 40:34:5a:ba:f8:4f:e8:4b:b1:0c:27:84:eb:8d:d9: 51:84:d0:7d:31:8b:6b:f4:da:5d:7a:15:a3:00:e4: c7:75:a9:86:28:80:a3:07:be:4c:63:ae:05:2d:a0: 1e:dc:a1:f9:79:68:ea:6b:49:6c:6c:dd:d5:93:0d: 44:7f:a9:69:74:a7:d4:91:9b:4c:df:be:f3:00:b6: 30:60:2a:6b:3c:b0:94:83:c3:a5:ff:aa:a1:f2:e7: 52:fb:b1:40:55:9f:9c:c2:89:53:95:62:f6:37:75: 03:34:54:d7:37:ca:bd:39:46:63:0f:93:05:ed:35: e8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7E:F1:84:A4:70:D0:87:43:1F:41:BA:E3:13:0D:3B:08:1B:06:2E X509v3 Authority Key Identifier: keyid:1A:43:B9:C6:76:46:D3:B8:44:4E:27:7C:64:D1:FD:48:9A:45:E5:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.125.0/24 Signature Algorithm: sha256WithRSAEncryption 00:4c:7f:05:00:55:9f:7e:85:a8:4e:07:1c:14:24:58:a3:0b: f5:e2:91:2a:1d:df:d2:62:87:1c:9a:7a:d4:51:e7:ea:22:2c: db:cc:28:81:14:54:a1:0d:bd:8a:51:44:ec:da:ce:14:2d:e0: f5:66:9a:92:07:e0:d1:d4:df:24:74:79:fb:4b:af:0f:b9:d5: b6:4b:40:d6:7f:ec:6c:57:99:03:65:10:65:b0:d0:7b:3a:6a: 39:c8:9d:76:e8:48:dd:16:42:55:82:95:78:0a:bc:b4:9b:34: ec:96:7e:86:85:f6:c4:3d:4c:98:1a:00:c8:07:1a:89:54:0e: 3b:65:4e:48:01:e9:36:52:51:b9:6f:a0:52:07:4b:d1:c7:9b: 2a:39:59:db:e0:38:c0:02:9a:65:27:df:5f:4e:ee:c1:7c:eb: a2:55:54:0d:b0:fa:a3:90:bf:08:dd:0a:28:61:04:ef:b0:82: 9a:47:de:d4:dd:8a:bc:20:ef:e7:a1:bf:70:63:eb:7e:a4:fb: 6a:03:6e:a5:c0:74:bb:88:45:7e:4e:53:e4:c2:81:0d:fc:7d: 9b:b3:2c:43:bd:64:80:aa:93:b7:8c:fe:73:50:c7:90:f4:c5: 17:9f:20:29:0b:0c:c7:a5:e0:f2:f3:88:e5:f6:a7:ec:4e:11: 03:ef:3e:17 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgITfAx4L/5vttkXzLaHaqT2Mo4K4DANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygxQTQzQjlDNjc2NDZEM0I4NDQ0RTI3N0M2NEQxRkQ0ODlB NDVFNTM2MB4XDTI1MDUxODE3NTUwMloXDTI2MDUxNzE4MDAwMlowMzExMC8GA1UE AxMoQzQ3RUYxODRBNDcwRDA4NzQzMUY0MUJBRTMxMzBEM0IwODFCMDYyRTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL91UUS2uv8z10BkPfaAy+bKILSY DV3nugSBRDdUFbj57gCidcrI3doDN1JIhp6uuiMCtsr3jkGd2oy5WcmSPJ4Bs0hn rX8Vo0gE3JMejoD5cQLViUdqclyh542kvgrPXEAlrq3MjmP4t2qs7QVCGXHFJYtx Ygr1EVUDCewpuMwqozg0n9+gQDRauvhP6EuxDCeE643ZUYTQfTGLa/TaXXoVowDk x3WphiiAowe+TGOuBS2gHtyh+Xlo6mtJbGzd1ZMNRH+paXSn1JGbTN++8wC2MGAq azywlIPDpf+qofLnUvuxQFWfnMKJU5Vi9jd1AzRU1zfKvTlGYw+TBe016PsCAwEA AaOCAjQwggIwMB0GA1UdDgQWBBTEfvGEpHDQh0MfQbrjEw07CBsGLjAfBgNVHSME GDAWgBQaQ7nGdkbTuEROJ3xk0f1ImkXlNjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdj ZjAxZWM2LThlODktNDAyYS05MGM3LTUwYzZmMTRjZDI0Mi8wLzFBNDNCOUM2NzY0 NkQzQjg0NDRFMjc3QzY0RDFGRDQ4OUE0NUU1MzYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMS8xQTQzQjlDNjc2NDZEM0I4NDQ0RTI3N0M2NEQxRkQ0ODlBNDVF NTM2LmNlcjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2NmMDFlYzYtOGU4OS00MDJhLTkw YzctNTBjNmYxNGNkMjQyLzAvMzEzNTM3MmUzNjM2MmUzMTMyMzUyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzMTM1MzIzNzM3MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQn0wDQYJKoZI hvcNAQELBQADggEBAABMfwUAVZ9+hahOBxwUJFijC/XikSod39JihxyaetRR5+oi LNvMKIEUVKENvYpRROzazhQt4PVmmpIH4NHU3yR0eftLrw+51bZLQNZ/7GxXmQNl EGWw0Hs6ajnInXboSN0WQlWClXgKvLSbNOyWfoaF9sQ9TJgaAMgHGolUDjtlTkgB 6TZSUblvoFIHS9HHmyo5WdvgOMACmmUn319O7sF866JVVA2w+qOQvwjdCihhBO+w gppH3tTdirwg7+ehv3Bj636k+2oDbqXAdLuIRX5OU+TCgQ38fZuzLEO9ZICqk7eM /nNQx5D0xRefICkLDMel4PLziOX2p+xOEQPvPhc= -----END CERTIFICATE-----Generated at Fri Jun 6 20:38:13 2025 by rpki-client