$ rpki-client -vvf repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/3135372e36362e35372e302f32342d3234203d3e20313530393835.roa File: 3135372e36362e35372e302f32342d3234203d3e20313530393835.roa (raw, json) Hash identifier: g0W4yfpco5rqCeJ3sGtEPJSj+o2p48FtppiRKtinTxM= Subject key identifier: 2E:E4:55:05:BD:5B:94:9D:94:7C:55:7B:24:69:7B:A2:FC:0D:C0:C9 Certificate issuer: /CN=8999E6DA986A355F868ABD73E4E2AADC08244F29 Certificate serial: 71DB105466ABC14D9DE929CF98503A9DE739D900 Authority key identifier: 89:99:E6:DA:98:6A:35:5F:86:8A:BD:73:E4:E2:AA:DC:08:24:4F:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8999E6DA986A355F868ABD73E4E2AADC08244F29.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/3135372e36362e35372e302f32342d3234203d3e20313530393835.roa Signing time: Wed 21 May 2025 11:00:01 +0000 ROA not before: Wed 21 May 2025 10:55:01 +0000 ROA not after: Wed 20 May 2026 11:00:01 +0000 asID: 150985 IP address blocks: 157.66.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/8999E6DA986A355F868ABD73E4E2AADC08244F29.crl rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/8999E6DA986A355F868ABD73E4E2AADC08244F29.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8999E6DA986A355F868ABD73E4E2AADC08244F29.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:db:10:54:66:ab:c1:4d:9d:e9:29:cf:98:50:3a:9d:e7:39:d9:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8999E6DA986A355F868ABD73E4E2AADC08244F29 Validity Not Before: May 21 10:55:01 2025 GMT Not After : May 20 11:00:01 2026 GMT Subject: CN=2EE45505BD5B949D947C557B24697BA2FC0DC0C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:77:2e:bb:50:67:a5:9d:26:10:b8:54:b8:5c: f0:06:a3:f1:a1:fc:0b:04:f3:56:c9:0a:14:5f:76: c3:7b:98:9a:87:5c:4c:60:b2:cf:31:dd:3b:8f:7e: af:0f:06:18:9b:cd:21:9b:12:cf:be:a1:d2:31:bf: 42:66:02:4d:8a:1d:cd:84:e4:84:df:d8:e7:ca:9f: 84:09:d6:f7:c2:18:c8:b8:5f:a6:cf:d5:ce:c0:c3: 4a:4a:6c:bc:fb:3a:0e:94:f2:78:f8:b3:a1:49:83: a2:09:b5:5e:71:f6:bc:55:a7:34:d2:a6:1f:be:ad: 3a:cd:6f:6b:23:0a:c9:e6:58:30:67:7d:1a:e3:d7: bc:e8:fc:5c:9e:0d:c9:81:e1:aa:4d:5d:b2:ec:7b: 5a:29:1c:f4:f1:7b:cc:e2:2b:5e:98:07:a1:ef:f8: 33:a0:80:2c:bd:54:49:44:28:17:15:76:24:95:27: f2:2e:24:78:6a:5f:57:14:e4:71:46:b7:85:e0:22: fb:18:8a:9c:fc:76:78:53:59:0c:a3:3c:77:02:b3: 81:5f:ff:c9:76:a0:81:5a:f4:de:00:f9:e1:6f:6d: 89:79:3a:d4:c3:ad:2a:00:d4:c0:4a:21:77:01:54: c5:5f:f8:08:6a:ac:dd:e1:a6:e8:cc:5b:3f:23:45: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E4:55:05:BD:5B:94:9D:94:7C:55:7B:24:69:7B:A2:FC:0D:C0:C9 X509v3 Authority Key Identifier: keyid:89:99:E6:DA:98:6A:35:5F:86:8A:BD:73:E4:E2:AA:DC:08:24:4F:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/8999E6DA986A355F868ABD73E4E2AADC08244F29.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8999E6DA986A355F868ABD73E4E2AADC08244F29.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/3135372e36362e35372e302f32342d3234203d3e20313530393835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.57.0/24 Signature Algorithm: sha256WithRSAEncryption 74:7b:7c:ae:07:6b:7b:f4:18:b7:4b:98:d9:ba:52:f1:09:32: 6d:3b:88:cb:45:ab:8e:0e:25:61:36:45:3a:91:b9:bd:52:c0: 66:3c:cb:15:9b:7d:ac:d7:a8:9e:ee:06:b4:11:2a:72:fd:33: 1d:1a:4c:f8:8b:1f:af:16:8d:ab:8d:4f:f7:a5:97:f4:b7:ed: 90:86:d9:6e:47:e9:b1:ad:54:25:32:dd:52:21:ac:f2:fd:6c: dd:6d:af:f0:dd:72:e0:7a:b5:6d:ae:10:68:18:89:d2:43:15: cd:24:77:c6:8b:b0:7b:79:b6:eb:86:db:1a:6f:c3:7a:97:c5: 79:a1:10:ce:b1:6d:45:f6:2e:40:b1:7f:98:76:6b:9b:1b:fe: ee:aa:c6:f0:69:8b:ca:ec:8f:09:a8:31:77:9d:7f:0a:d3:50: 9d:b2:32:a7:28:d7:18:58:69:f0:ec:f8:3f:74:19:9d:39:e3: 0c:bf:b3:73:f8:5d:67:7f:52:ea:66:69:d4:45:57:97:3a:c5: 34:8d:5b:18:f6:8c:13:d2:25:37:7f:05:96:95:31:0c:ce:66: 6c:a0:ea:34:f7:04:cf:64:47:28:ab:5b:2b:0e:7f:0a:39:d1: d5:a5:6c:74:0b:e1:ba:6a:7c:47:65:1a:4b:87:b3:0a:df:ef: dc:75:03:e7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcdsQVGarwU2d6SnPmFA6nec52QAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk5OUU2REE5ODZBMzU1Rjg2OEFCRDczRTRFMkFBREMw ODI0NEYyOTAeFw0yNTA1MjExMDU1MDFaFw0yNjA1MjAxMTAwMDFaMDMxMTAvBgNV BAMTKDJFRTQ1NTA1QkQ1Qjk0OUQ5NDdDNTU3QjI0Njk3QkEyRkMwREMwQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD+dy67UGelnSYQuFS4XPAGo/Gh /AsE81bJChRfdsN7mJqHXExgss8x3TuPfq8PBhibzSGbEs++odIxv0JmAk2KHc2E 5ITf2OfKn4QJ1vfCGMi4X6bP1c7Aw0pKbLz7Og6U8nj4s6FJg6IJtV5x9rxVpzTS ph++rTrNb2sjCsnmWDBnfRrj17zo/FyeDcmB4apNXbLse1opHPTxe8ziK16YB6Hv +DOggCy9VElEKBcVdiSVJ/IuJHhqX1cU5HFGt4XgIvsYipz8dnhTWQyjPHcCs4Ff /8l2oIFa9N4A+eFvbYl5OtTDrSoA1MBKIXcBVMVf+AhqrN3hpujMWz8jRRy9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULuRVBb1blJ2UfFV7JGl7ovwNwMkwHwYDVR0j BBgwFoAUiZnm2phqNV+Gir1z5OKq3AgkTykwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MzI5NzkzZS04ZjE4LTQxMTYtOTI2OC1hMTMzZGFmMTFjZWYvMC84OTk5RTZEQTk4 NkEzNTVGODY4QUJENzNFNEUyQUFEQzA4MjQ0RjI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODk5OUU2REE5ODZBMzU1Rjg2OEFCRDczRTRFMkFBREMwODI0 NEYyOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzMjk3OTNlLThmMTgtNDExNi05 MjY4LWExMzNkYWYxMWNlZi8wLzMxMzUzNzJlMzYzNjJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1COTANBgkqhkiG 9w0BAQsFAAOCAQEAdHt8rgdre/QYt0uY2bpS8QkybTuIy0Wrjg4lYTZFOpG5vVLA ZjzLFZt9rNeonu4GtBEqcv0zHRpM+IsfrxaNq41P96WX9LftkIbZbkfpsa1UJTLd UiGs8v1s3W2v8N1y4Hq1ba4QaBiJ0kMVzSR3xouwe3m264bbGm/DepfFeaEQzrFt RfYuQLF/mHZrmxv+7qrG8GmLyuyPCagxd51/CtNQnbIypyjXGFhp8Oz4P3QZnTnj DL+zc/hdZ39S6mZp1EVXlzrFNI1bGPaME9IlN38FlpUxDM5mbKDqNPcEz2RHKKtb Kw5/CjnR1aVsdAvhump8R2UaS4ezCt/v3HUD5w== -----END CERTIFICATE-----Generated at Sat Jun 7 06:06:52 2025 by rpki-client