$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa File: 3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa (raw, json) Hash identifier: ihqP0wUIsQgvCUAc6MPq5r3ZCl+93CJYEtJ3kKzkDF0= Subject key identifier: 0D:AD:95:D7:57:A4:28:C8:96:5A:74:50:3E:9F:A9:53:DC:87:A7:A2 Certificate issuer: /CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Certificate serial: 0A19A69A8452130C38A1BE27A17EDB876B751F99 Authority key identifier: D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa Signing time: Fri 25 Apr 2025 17:02:19 +0000 ROA not before: Fri 25 Apr 2025 16:57:19 +0000 ROA not after: Fri 24 Apr 2026 17:02:19 +0000 asID: 152756 IP address blocks: 157.66.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:19:a6:9a:84:52:13:0c:38:a1:be:27:a1:7e:db:87:6b:75:1f:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Validity Not Before: Apr 25 16:57:19 2025 GMT Not After : Apr 24 17:02:19 2026 GMT Subject: CN=0DAD95D757A428C8965A74503E9FA953DC87A7A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:24:9a:58:2a:07:b1:9b:a7:d9:b8:71:92:64: cf:07:fe:e6:f5:56:1b:45:a4:03:86:a6:ce:6b:f6: 87:5b:61:3a:fc:c4:01:0b:40:02:2d:f5:f1:c5:46: fe:63:86:ae:70:b2:e9:92:1b:1c:2c:ec:26:5b:e4: d3:7c:b5:3f:38:d0:53:0a:7d:15:67:d5:d3:b2:e5: ff:47:b2:b9:56:ff:57:ef:31:11:c1:f9:6b:15:94: 63:bc:15:c9:31:92:91:f8:05:0a:00:fa:23:be:aa: 6f:b5:d6:b4:5b:28:b9:6e:7a:b1:42:a5:50:f0:98: 40:32:18:b1:72:48:1f:6a:29:ff:b3:c7:80:cc:fc: 08:ba:a7:e3:95:6e:7a:c3:c1:44:96:4b:cc:97:69: bd:93:7c:34:a9:ab:55:c2:49:76:6a:8b:c3:4b:c9: c7:05:36:b8:43:f6:07:a0:b2:42:bc:e1:06:ca:f5: ff:a6:c1:86:69:6b:14:73:ff:1e:fb:26:51:56:8d: d5:25:14:f0:43:e3:38:73:08:1c:b5:cd:b1:95:47: 0b:f0:e3:57:79:86:ca:68:46:64:53:18:79:c3:b6: c9:73:a6:fe:bb:2e:76:ac:04:a8:b9:ff:b4:32:ee: 48:c4:9b:cb:ac:a8:5b:25:73:8c:51:19:12:80:94: d3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:AD:95:D7:57:A4:28:C8:96:5A:74:50:3E:9F:A9:53:DC:87:A7:A2 X509v3 Authority Key Identifier: keyid:D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.177.0/24 Signature Algorithm: sha256WithRSAEncryption 49:6c:44:26:eb:be:e8:c4:d9:f6:16:0c:9e:e6:02:c1:5e:c1: 16:da:8f:cf:0b:d4:88:7c:5b:1b:36:dd:b4:6e:ff:75:37:39: ae:fd:cb:76:2f:03:ca:66:12:92:d9:ad:7a:bc:30:af:fd:ba: 6c:22:69:d4:a1:2a:85:d7:4b:14:2a:31:83:2a:0b:80:8b:73: 64:df:bb:bb:76:b9:78:9b:f2:95:a4:a8:0a:3d:9e:8d:11:1b: 94:f0:b9:2a:da:35:04:ee:09:a7:95:0c:64:89:ae:59:49:8a: 20:86:77:fc:a4:2b:16:34:69:98:c3:7b:67:7f:14:2f:ec:d6: 75:bc:84:53:36:b1:d4:82:d5:df:a0:5f:a6:a2:aa:86:17:c8: bf:b6:42:dd:18:5d:ed:e5:6b:f0:85:0b:35:7b:0f:29:15:b4: 40:1e:d9:70:75:58:2a:3b:1a:e1:7b:b4:3f:00:9d:f4:ce:52: 9f:fb:36:01:15:ad:c3:be:c8:b1:32:39:32:bb:6c:69:de:bb: 98:70:30:01:57:12:f9:a4:1c:2e:88:85:65:cb:e1:8e:fb:c4: 83:08:1d:f3:71:93:e9:7b:83:9f:76:4e:c0:eb:45:85:9f:55: 71:53:76:06:09:72:2d:63:5e:f5:c2:8f:e3:cf:64:57:2f:12: 52:12:5a:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUChmmmoRSEww4ob4noX7bh2t1H5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2 NzY5QzkwQjAeFw0yNTA0MjUxNjU3MTlaFw0yNjA0MjQxNzAyMTlaMDMxMTAvBgNV BAMTKDBEQUQ5NUQ3NTdBNDI4Qzg5NjVBNzQ1MDNFOUZBOTUzREM4N0E3QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuJJpYKgexm6fZuHGSZM8H/ub1 VhtFpAOGps5r9odbYTr8xAELQAIt9fHFRv5jhq5wsumSGxws7CZb5NN8tT840FMK fRVn1dOy5f9HsrlW/1fvMRHB+WsVlGO8FckxkpH4BQoA+iO+qm+11rRbKLluerFC pVDwmEAyGLFySB9qKf+zx4DM/Ai6p+OVbnrDwUSWS8yXab2TfDSpq1XCSXZqi8NL yccFNrhD9gegskK84QbK9f+mwYZpaxRz/x77JlFWjdUlFPBD4zhzCBy1zbGVRwvw 41d5hspoRmRTGHnDtslzpv67LnasBKi5/7Qy7kjEm8usqFslc4xRGRKAlNMbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDa2V11ekKMiWWnRQPp+pU9yHp6IwHwYDVR0j BBgwFoAU0A9IvId5EP3Qt/8in9faUWdpyQswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMC9EMDBGNDhCQzg3 NzkxMEZERDBCN0ZGMjI5RkQ3REE1MTY3NjlDOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2NzY5 QzkwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKxMA0GCSqG SIb3DQEBCwUAA4IBAQBJbEQm677oxNn2Fgye5gLBXsEW2o/PC9SIfFsbNt20bv91 Nzmu/ct2LwPKZhKS2a16vDCv/bpsImnUoSqF10sUKjGDKguAi3Nk37u7drl4m/KV pKgKPZ6NERuU8Lkq2jUE7gmnlQxkia5ZSYoghnf8pCsWNGmYw3tnfxQv7NZ1vIRT NrHUgtXfoF+moqqGF8i/tkLdGF3t5WvwhQs1ew8pFbRAHtlwdVgqOxrhe7Q/AJ30 zlKf+zYBFa3DvsixMjkyu2xp3ruYcDABVxL5pBwuiIVly+GO+8SDCB3zcZPpe4Of dk7A60WFn1VxU3YGCXItY171wo/jz2RXLxJSEloC -----END CERTIFICATE-----Generated at Sat Jun 7 13:51:26 2025 by rpki-client