$ rpki-client -vvf repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa File: 3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa (raw, json) Hash identifier: 1q7NOrpSqOPfD7Cashe/RHzQJ9w+1Pv/PeYY6p7iaT0= Subject key identifier: 29:74:5B:B1:D2:BD:28:90:BD:C4:64:D1:2F:1A:16:D7:8D:F9:AE:8A Certificate issuer: /CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Certificate serial: 4A62E1F77926D0EE38DBDC83B78B73CF5908E367 Authority key identifier: AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa Signing time: Sat 31 May 2025 13:00:00 +0000 ROA not before: Sat 31 May 2025 12:55:00 +0000 ROA not after: Sat 30 May 2026 13:00:00 +0000 asID: 141581 IP address blocks: 157.66.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:62:e1:f7:79:26:d0:ee:38:db:dc:83:b7:8b:73:cf:59:08:e3:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Validity Not Before: May 31 12:55:00 2025 GMT Not After : May 30 13:00:00 2026 GMT Subject: CN=29745BB1D2BD2890BDC464D12F1A16D78DF9AE8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ac:0a:a3:00:15:51:44:2e:c5:f5:3e:9e:24: fd:6c:c6:8a:a5:a2:87:b9:ff:88:5d:c2:35:16:47: 84:22:a1:da:4a:7a:fa:7f:03:45:ad:ba:4f:d4:22: 59:52:93:79:b0:13:49:aa:2c:74:10:10:84:92:81: 0f:36:08:e7:02:ae:d6:84:9a:d5:ff:7f:79:15:76: 5b:e9:24:4e:8b:fb:de:c7:dc:8b:9a:e9:aa:da:8b: 77:eb:7b:44:01:75:bf:db:64:69:1d:36:d6:ca:f4: 3f:5b:a8:df:96:1c:6c:5a:98:18:59:b2:10:0d:cd: b3:d2:2c:41:00:2a:4d:d0:2c:83:87:ac:dc:2e:f6: d3:e8:e2:f9:84:e6:31:a1:33:12:a3:58:4f:ed:e0: 28:4e:bb:15:d8:69:0d:82:19:44:4a:a2:7c:10:85: 85:cd:79:ab:42:01:bc:b2:d7:42:1d:f3:7a:a4:b5: d8:60:1d:6a:e4:84:c2:ed:3a:8a:c8:05:0a:dd:fa: 5c:a2:60:30:b9:c7:f6:bd:1d:8d:7c:a2:cb:a8:ba: f6:2e:9f:b1:5b:1e:b4:8e:9f:8b:9b:b8:1e:d7:40: fa:34:4b:d0:3e:e5:e1:76:8f:c4:55:0d:24:b5:07: 36:6a:bf:22:80:1e:9b:cf:54:d9:a7:4a:4c:0d:42: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:74:5B:B1:D2:BD:28:90:BD:C4:64:D1:2F:1A:16:D7:8D:F9:AE:8A X509v3 Authority Key Identifier: keyid:AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133322e302f32342d3234203d3e20313431353831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.132.0/24 Signature Algorithm: sha256WithRSAEncryption 26:d4:53:27:6c:2c:95:78:f7:80:85:28:04:51:78:ef:68:ef: 80:12:e1:9c:21:8f:c2:12:49:64:63:6f:ec:5d:82:dd:ea:1c: d3:1d:8f:53:76:e2:47:d1:83:72:f8:01:69:6c:8c:87:10:09: 1c:6f:75:4f:da:14:f5:75:d6:a4:f8:39:ae:f2:89:08:27:c6: 37:0f:85:58:a8:35:b2:0c:6f:6b:88:ad:26:61:d7:27:e5:76: 8c:d8:f1:11:02:55:c8:fb:fd:4b:d1:27:60:81:89:e1:db:4b: 95:0d:1e:f6:4d:7b:87:d9:2b:7e:3a:1e:b3:d5:d8:38:da:c8: 25:48:eb:1d:4b:33:ef:50:d6:7c:28:fd:9f:f9:dc:a7:78:f3: 4c:83:2c:5a:16:56:5c:26:6f:a8:a5:c6:cd:4f:02:56:0a:12: 90:f5:20:f3:e9:65:77:7e:6a:c0:4d:0a:de:72:8a:59:cf:0f: d2:7b:69:fd:0b:69:b4:29:9f:4d:f7:d9:db:59:12:ef:c3:f7: 35:cc:d3:f8:55:af:4e:d6:eb:ed:60:dd:18:66:f7:2e:9d:45: 80:c1:6d:32:ab:20:10:f3:a7:b5:74:92:2d:c3:d7:a0:eb:48: 57:09:53:83:49:b0:a7:b7:96:a7:b3:16:2c:3f:0e:fb:f6:91: 10:a9:6a:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSmLh93km0O4429yDt4tzz1kI42cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVG MDg4QkU0MTAeFw0yNTA1MzExMjU1MDBaFw0yNjA1MzAxMzAwMDBaMDMxMTAvBgNV BAMTKDI5NzQ1QkIxRDJCRDI4OTBCREM0NjREMTJGMUExNkQ3OERGOUFFOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9rAqjABVRRC7F9T6eJP1sxoql ooe5/4hdwjUWR4QiodpKevp/A0Wtuk/UIllSk3mwE0mqLHQQEISSgQ82COcCrtaE mtX/f3kVdlvpJE6L+97H3Iua6arai3fre0QBdb/bZGkdNtbK9D9bqN+WHGxamBhZ shANzbPSLEEAKk3QLIOHrNwu9tPo4vmE5jGhMxKjWE/t4ChOuxXYaQ2CGURKonwQ hYXNeatCAbyy10Id83qktdhgHWrkhMLtOorIBQrd+lyiYDC5x/a9HY18osuouvYu n7FbHrSOn4ubuB7XQPo0S9A+5eF2j8RVDSS1BzZqvyKAHpvPVNmnSkwNQvg7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKXRbsdK9KJC9xGTRLxoW1435roowHwYDVR0j BBgwFoAUq/eTtTRobsLVggzxU+Q6rvCIvkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWE0Yjc4Mi1jMzdmLTQzNzktYThhNi00ZGE1ZDgyYjIzOWYvMC9BQkY3OTNCNTM0 Njg2RUMyRDU4MjBDRjE1M0U0M0FBRUYwODhCRTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVGMDg4 QkU0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYTRiNzgyLWMzN2YtNDM3OS1h OGE2LTRkYTVkODJiMjM5Zi8wLzMxMzUzNzJlMzYzNjJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKEMA0GCSqG SIb3DQEBCwUAA4IBAQAm1FMnbCyVePeAhSgEUXjvaO+AEuGcIY/CEklkY2/sXYLd 6hzTHY9TduJH0YNy+AFpbIyHEAkcb3VP2hT1ddak+Dmu8okIJ8Y3D4VYqDWyDG9r iK0mYdcn5XaM2PERAlXI+/1L0SdggYnh20uVDR72TXuH2St+Oh6z1dg42sglSOsd SzPvUNZ8KP2f+dynePNMgyxaFlZcJm+opcbNTwJWChKQ9SDz6WV3fmrATQrecopZ zw/Se2n9C2m0KZ9N99nbWRLvw/c1zNP4Va9O1uvtYN0YZvcunUWAwW0yqyAQ86e1 dJItw9eg60hXCVODSbCnt5ansxYsPw779pEQqWpt -----END CERTIFICATE-----Generated at Sun Jun 8 00:34:19 2025 by rpki-client