$ rpki-client -vvf repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa File: 3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa (raw, json) Hash identifier: U13ray6Q2sSoKG3Sl/JF9ePon4W14X24dzQnJX7hj3o= Subject key identifier: 50:D3:CF:01:26:31:76:66:B8:B4:30:9C:D2:78:E0:31:6A:26:6D:C1 Certificate issuer: /CN=2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD Certificate serial: 02120F94B6B5499E7447D2CE579D26F68D03BB42 Authority key identifier: 2A:62:B9:64:EC:86:44:7D:C2:2D:DE:70:DC:35:17:F0:CF:7C:9A:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa Signing time: Thu 05 Jun 2025 03:03:22 +0000 ROA not before: Thu 05 Jun 2025 02:58:22 +0000 ROA not after: Thu 04 Jun 2026 03:03:22 +0000 asID: 152771 IP address blocks: 157.66.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.crl rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:12:0f:94:b6:b5:49:9e:74:47:d2:ce:57:9d:26:f6:8d:03:bb:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD Validity Not Before: Jun 5 02:58:22 2025 GMT Not After : Jun 4 03:03:22 2026 GMT Subject: CN=50D3CF0126317666B8B4309CD278E0316A266DC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:88:f5:c9:89:0f:42:4a:d2:e0:69:fb:12:da: b7:94:c7:55:05:77:a4:19:f6:1b:8c:92:95:3d:7a: 52:51:9b:d5:7c:7e:cb:41:6d:a9:c0:61:7f:04:74: 9e:58:c5:ef:c4:be:f0:1a:6a:10:70:93:c2:48:13: 5b:d8:40:55:98:a4:70:7a:da:ad:e7:41:a3:80:20: 1f:38:55:90:a1:b5:64:7d:02:52:fd:95:43:26:b7: d3:1f:e5:d2:b3:f5:4d:d6:94:43:d0:c3:90:1d:98: e9:d4:94:24:79:95:99:8a:f0:b3:3d:64:96:30:d6: 62:83:02:77:16:7c:74:a7:50:c3:8e:71:e1:88:62: be:ed:36:39:4d:91:e2:f1:ab:43:ce:5e:7b:2d:e2: 9e:55:e7:73:1a:43:fc:b1:13:f2:b7:c0:58:c5:eb: e4:f6:86:ca:11:c5:33:2e:27:3e:11:a0:37:87:f5: ae:ee:6d:8c:6b:9c:09:0a:1e:8d:66:ac:ab:87:c0: e3:7e:e2:ed:50:bb:0c:22:3c:c3:3e:25:16:72:89: ca:e8:e7:d2:9a:a0:31:94:28:f9:f1:e1:11:e1:93: 44:18:0c:5e:9c:ee:e3:11:03:69:fa:47:11:6d:f9: 16:2d:b4:99:a3:6f:dd:7a:fb:ce:f7:e9:28:fb:f2: b5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D3:CF:01:26:31:76:66:B8:B4:30:9C:D2:78:E0:31:6A:26:6D:C1 X509v3 Authority Key Identifier: keyid:2A:62:B9:64:EC:86:44:7D:C2:2D:DE:70:DC:35:17:F0:CF:7C:9A:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2A62B964EC86447DC22DDE70DC3517F0CF7C9ACD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1b08845-df82-44c2-976d-6d74b81166f4/0/3135372e36362e3132332e302f32342d3234203d3e20313532373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.123.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:70:69:2f:27:d4:c4:27:27:2b:26:e0:05:08:75:80:21:41: 57:92:0f:9c:6c:d0:15:25:cd:73:9c:a0:02:7a:14:0c:6e:2b: bb:70:42:b3:12:3e:54:96:31:eb:62:6a:3e:ac:78:ad:79:6c: 3f:21:4a:a7:14:df:81:8e:ce:56:db:e7:08:20:78:2e:bb:7b: 01:09:cc:fc:ba:25:0e:70:90:8c:f5:e8:d0:ae:fc:b2:ae:53: a6:a3:02:a4:d3:c0:8b:5f:12:87:27:5f:9e:10:90:91:be:95: ff:08:f7:d3:b3:9c:dd:7c:a7:76:c1:90:16:38:db:03:9c:51: 11:06:e0:ba:16:69:0d:7e:62:d5:08:09:32:15:e4:fc:c8:a0: 95:e1:db:33:a7:91:85:09:34:f3:b3:3e:d7:1d:1f:95:b2:84: 22:91:47:fc:df:02:59:06:55:86:1e:f1:2d:d3:0d:3d:6c:e0: ce:8f:36:8b:bf:2a:4f:ea:bf:19:55:4b:43:6a:8a:aa:b5:5e: 91:83:4a:6b:df:a2:ab:bd:94:95:f8:35:b2:95:a8:26:a4:24: 5c:38:3b:db:d0:dd:7d:61:92:8a:20:25:6b:11:85:ce:83:a4: 1d:fd:82:2d:f0:59:5a:50:9d:ff:49:d0:9c:00:4a:1e:47:20: d4:4f:5b:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAhIPlLa1SZ50R9LOV50m9o0Du0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkE2MkI5NjRFQzg2NDQ3REMyMkRERTcwREMzNTE3RjBD RjdDOUFDRDAeFw0yNTA2MDUwMjU4MjJaFw0yNjA2MDQwMzAzMjJaMDMxMTAvBgNV BAMTKDUwRDNDRjAxMjYzMTc2NjZCOEI0MzA5Q0QyNzhFMDMxNkEyNjZEQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtiPXJiQ9CStLgafsS2reUx1UF d6QZ9huMkpU9elJRm9V8fstBbanAYX8EdJ5Yxe/EvvAaahBwk8JIE1vYQFWYpHB6 2q3nQaOAIB84VZChtWR9AlL9lUMmt9Mf5dKz9U3WlEPQw5AdmOnUlCR5lZmK8LM9 ZJYw1mKDAncWfHSnUMOOceGIYr7tNjlNkeLxq0POXnst4p5V53MaQ/yxE/K3wFjF 6+T2hsoRxTMuJz4RoDeH9a7ubYxrnAkKHo1mrKuHwON+4u1QuwwiPMM+JRZyicro 59KaoDGUKPnx4RHhk0QYDF6c7uMRA2n6RxFt+RYttJmjb916+8736Sj78rW1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUNPPASYxdma4tDCc0njgMWombcEwHwYDVR0j BBgwFoAUKmK5ZOyGRH3CLd5w3DUX8M98ms0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MWIwODg0NS1kZjgyLTQ0YzItOTc2ZC02ZDc0YjgxMTY2ZjQvMC8yQTYyQjk2NEVD ODY0NDdEQzIyRERFNzBEQzM1MTdGMENGN0M5QUNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkE2MkI5NjRFQzg2NDQ3REMyMkRERTcwREMzNTE3RjBDRjdD OUFDRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYjA4ODQ1LWRmODItNDRjMi05 NzZkLTZkNzRiODExNjZmNC8wLzMxMzUzNzJlMzYzNjJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUJ7MA0GCSqG SIb3DQEBCwUAA4IBAQCacGkvJ9TEJycrJuAFCHWAIUFXkg+cbNAVJc1znKACehQM biu7cEKzEj5UljHrYmo+rHiteWw/IUqnFN+Bjs5W2+cIIHguu3sBCcz8uiUOcJCM 9ejQrvyyrlOmowKk08CLXxKHJ1+eEJCRvpX/CPfTs5zdfKd2wZAWONsDnFERBuC6 FmkNfmLVCAkyFeT8yKCV4dszp5GFCTTzsz7XHR+VsoQikUf83wJZBlWGHvEt0w09 bODOjzaLvypP6r8ZVUtDaoqqtV6Rg0pr36KrvZSV+DWylagmpCRcODvb0N19YZKK ICVrEYXOg6Qd/YIt8FlaUJ3/SdCcAEoeRyDUT1sI -----END CERTIFICATE-----Generated at Sun Jun 8 01:56:40 2025 by rpki-client