$ rpki-client -vvf repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/3135372e31302e36362e302f32332d3234203d3e20313532333531.roa File: 3135372e31302e36362e302f32332d3234203d3e20313532333531.roa (raw, json) Hash identifier: 2ReMekYvbev7jjxFECsJnqLr+wMK4uSY0sQzIGWAR3Y= Subject key identifier: BA:79:5F:80:CA:84:D4:D5:2B:93:E9:20:9F:AF:88:F4:0A:20:B0:E8 Certificate issuer: /CN=9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1 Certificate serial: 5B7DD84CB39B550F28577A13F2CCD5068344E448 Authority key identifier: 98:02:D7:CD:84:EC:A3:7A:2E:C2:D6:37:8D:CA:35:B1:11:3F:5D:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/3135372e31302e36362e302f32332d3234203d3e20313532333531.roa Signing time: Wed 30 Apr 2025 08:00:51 +0000 ROA not before: Wed 30 Apr 2025 07:55:51 +0000 ROA not after: Wed 29 Apr 2026 08:00:51 +0000 asID: 152351 IP address blocks: 157.10.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.crl rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:7d:d8:4c:b3:9b:55:0f:28:57:7a:13:f2:cc:d5:06:83:44:e4:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1 Validity Not Before: Apr 30 07:55:51 2025 GMT Not After : Apr 29 08:00:51 2026 GMT Subject: CN=BA795F80CA84D4D52B93E9209FAF88F40A20B0E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1b:2b:2d:f2:2c:a3:09:c9:16:ce:7f:a9:73: fa:2a:de:68:a2:3d:26:e5:ab:2b:cc:d5:3f:91:2a: 24:42:61:e2:09:4b:1c:b1:9a:1d:47:31:c0:89:e7: 67:6e:7e:1a:59:9d:c6:58:76:3c:69:81:13:c5:c2: 02:47:c4:5d:fc:09:29:58:b6:8f:5b:17:1e:ac:e6: 51:06:d7:d2:52:13:7e:10:5b:d1:b6:7d:05:fe:ff: 9e:7e:a0:c6:24:cc:69:53:91:78:5d:6c:22:d7:3d: 06:a6:f7:93:db:49:b7:d4:df:8c:59:b1:59:3f:23: e7:c6:8b:09:7c:84:22:b0:3b:8e:d4:71:dc:7c:eb: a5:14:93:5f:b0:c0:e5:22:60:d9:0a:c3:36:d3:8b: 7f:30:cd:cf:ed:6c:23:dc:46:11:65:ab:e5:95:76: af:f2:c7:b6:18:3c:c3:1b:92:ef:d8:32:78:5b:d3: 74:89:c0:6d:b7:2c:97:86:20:2e:12:4d:29:f8:08: e2:fe:f9:9b:b2:cf:3a:2c:92:50:ed:d9:a4:99:b3: d0:99:ca:08:5b:55:c3:c3:99:59:89:9a:7a:8b:b3: ed:06:48:7e:1f:1f:47:ce:19:d4:64:7f:96:9c:b4: cb:4e:83:74:91:2f:78:1d:2c:08:f4:e8:85:93:5e: ab:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:79:5F:80:CA:84:D4:D5:2B:93:E9:20:9F:AF:88:F4:0A:20:B0:E8 X509v3 Authority Key Identifier: keyid:98:02:D7:CD:84:EC:A3:7A:2E:C2:D6:37:8D:CA:35:B1:11:3F:5D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9802D7CD84ECA37A2EC2D6378DCA35B1113F5DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80c266e6-0b84-431f-9e74-06d3d93e9704/0/3135372e31302e36362e302f32332d3234203d3e20313532333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.66.0/23 Signature Algorithm: sha256WithRSAEncryption bf:ef:9f:a8:13:76:9e:20:23:c5:38:31:dd:eb:83:7a:39:1d: a1:1b:4c:82:6d:57:35:1b:58:b3:e8:7c:7f:bc:ae:ca:59:8f: 73:46:dc:e3:62:c1:30:0a:73:eb:31:4a:bf:15:b1:ee:d3:cd: 93:fe:64:04:4b:c4:9b:97:8c:93:2e:5e:a6:93:ad:83:bf:25: b9:64:a3:5a:b1:6b:f9:af:b3:57:4b:56:97:1d:a9:ca:f1:fa: ca:39:fa:2d:fc:3e:71:6a:f7:11:69:9e:86:0e:eb:da:54:f3: d9:35:61:34:3e:42:8e:62:6b:a3:29:29:87:14:cc:b7:40:b6: 66:af:0b:4f:91:72:1c:92:a0:b6:f9:c0:46:45:2e:46:04:05: c4:bf:ba:ba:b9:55:b7:e7:f9:14:1b:d4:df:b3:e8:1d:4a:81: 54:f6:bb:04:02:34:35:8b:a3:fe:d8:78:66:fd:f3:2d:52:1d: 8d:45:43:43:eb:2c:4b:a6:21:a2:f5:ec:e2:c6:90:01:7b:43: aa:2f:b9:fe:33:66:da:23:76:06:3d:b9:85:92:9a:73:97:7b: 3f:4d:11:8d:ad:1d:e0:4d:dd:d6:6e:86:37:63:98:f9:54:b1: e3:9a:66:50:aa:a5:3e:c3:3e:0c:61:ff:e4:a4:fd:93:3e:60: 5a:8c:81:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW33YTLObVQ8oV3oT8szVBoNE5EgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgwMkQ3Q0Q4NEVDQTM3QTJFQzJENjM3OERDQTM1QjEx MTNGNUREMTAeFw0yNTA0MzAwNzU1NTFaFw0yNjA0MjkwODAwNTFaMDMxMTAvBgNV BAMTKEJBNzk1RjgwQ0E4NEQ0RDUyQjkzRTkyMDlGQUY4OEY0MEEyMEIwRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAGyst8iyjCckWzn+pc/oq3mii PSblqyvM1T+RKiRCYeIJSxyxmh1HMcCJ52dufhpZncZYdjxpgRPFwgJHxF38CSlY to9bFx6s5lEG19JSE34QW9G2fQX+/55+oMYkzGlTkXhdbCLXPQam95PbSbfU34xZ sVk/I+fGiwl8hCKwO47Ucdx866UUk1+wwOUiYNkKwzbTi38wzc/tbCPcRhFlq+WV dq/yx7YYPMMbku/YMnhb03SJwG23LJeGIC4STSn4COL++ZuyzzosklDt2aSZs9CZ yghbVcPDmVmJmnqLs+0GSH4fH0fOGdRkf5actMtOg3SRL3gdLAj06IWTXqvXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUunlfgMqE1NUrk+kgn6+I9AogsOgwHwYDVR0j BBgwFoAUmALXzYTso3ouwtY3jco1sRE/XdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MGMyNjZlNi0wYjg0LTQzMWYtOWU3NC0wNmQzZDkzZTk3MDQvMC85ODAyRDdDRDg0 RUNBMzdBMkVDMkQ2Mzc4RENBMzVCMTExM0Y1REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTgwMkQ3Q0Q4NEVDQTM3QTJFQzJENjM3OERDQTM1QjExMTNG NUREMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwYzI2NmU2LTBiODQtNDMxZi05 ZTc0LTA2ZDNkOTNlOTcwNC8wLzMxMzUzNzJlMzEzMDJlMzYzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KQjANBgkqhkiG 9w0BAQsFAAOCAQEAv++fqBN2niAjxTgx3euDejkdoRtMgm1XNRtYs+h8f7yuylmP c0bc42LBMApz6zFKvxWx7tPNk/5kBEvEm5eMky5eppOtg78luWSjWrFr+a+zV0tW lx2pyvH6yjn6Lfw+cWr3EWmehg7r2lTz2TVhND5CjmJroykphxTMt0C2Zq8LT5Fy HJKgtvnARkUuRgQFxL+6urlVt+f5FBvU37PoHUqBVPa7BAI0NYuj/th4Zv3zLVId jUVDQ+ssS6YhovXs4saQAXtDqi+5/jNm2iN2Bj25hZKac5d7P00Rja0d4E3d1m6G N2OY+VSx45pmUKqlPsM+DGH/5KT9kz5gWoyBeA== -----END CERTIFICATE-----Generated at Sat Jun 7 15:27:06 2025 by rpki-client