$ rpki-client -vvf repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e203136353039.roa File: 3135372e36362e3134322e302f32342d3234203d3e203136353039.roa (raw, json) Hash identifier: kO2lkytAhip8J2wV/lcl3MQL2fe/CMcFAIbGTAh6CZ0= Subject key identifier: C0:51:33:33:36:38:3A:D0:82:BB:01:09:5C:FD:99:B8:97:C6:F3:F1 Certificate issuer: /CN=9C0CD04CE56225A0085EF8AB28640C3808768B42 Certificate serial: 5522878339B0093EBA2AF7F70D68F884DB08DC6E Authority key identifier: 9C:0C:D0:4C:E5:62:25:A0:08:5E:F8:AB:28:64:0C:38:08:76:8B:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e203136353039.roa Signing time: Mon 05 May 2025 17:00:00 +0000 ROA not before: Mon 05 May 2025 16:55:00 +0000 ROA not after: Mon 04 May 2026 17:00:00 +0000 asID: 16509 IP address blocks: 157.66.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.crl rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:22:87:83:39:b0:09:3e:ba:2a:f7:f7:0d:68:f8:84:db:08:dc:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C0CD04CE56225A0085EF8AB28640C3808768B42 Validity Not Before: May 5 16:55:00 2025 GMT Not After : May 4 17:00:00 2026 GMT Subject: CN=C051333336383AD082BB01095CFD99B897C6F3F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:6f:f6:2d:7a:94:80:79:6b:42:34:9e:00: 46:7d:67:62:d2:3b:96:be:bf:96:2a:45:bb:7e:46: 38:33:ca:00:8c:82:2a:0d:ca:33:1e:1c:17:96:93: 23:b7:d4:4d:99:d9:f6:11:66:48:bb:31:4b:29:e5: 36:6a:60:b5:18:d2:17:cf:6b:6e:7e:de:42:22:b8: 8a:87:ed:87:73:9a:17:9a:90:16:0e:41:2e:68:ae: 27:1d:a6:5b:ab:81:a4:c7:6f:af:9e:13:63:45:5a: 3d:e3:ba:b2:b0:60:64:e4:99:57:5e:85:ab:c4:1b: 86:27:03:cc:f8:3a:29:60:62:af:93:fd:be:87:65: fe:59:5f:6b:d5:35:78:c8:68:a2:5e:aa:3e:b0:57: 89:68:3e:46:71:7e:13:e6:82:59:6a:a8:a0:6b:54: 4d:ff:eb:09:fd:fc:9d:a3:e7:61:c8:08:dd:15:f1: 98:4b:20:c1:b2:0a:59:ab:76:b4:aa:02:c1:5e:fc: ca:c8:84:4f:d7:f3:eb:22:25:79:c2:da:ac:a5:69: c3:41:75:01:13:95:ca:3f:dd:f8:0d:90:0f:a5:c5: b1:f6:c6:21:c8:13:84:f8:c1:8b:9e:b0:9b:fe:d8: c8:e9:10:e2:63:19:13:9f:c3:a6:31:4a:50:02:d8: ff:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:51:33:33:36:38:3A:D0:82:BB:01:09:5C:FD:99:B8:97:C6:F3:F1 X509v3 Authority Key Identifier: keyid:9C:0C:D0:4C:E5:62:25:A0:08:5E:F8:AB:28:64:0C:38:08:76:8B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.142.0/24 Signature Algorithm: sha256WithRSAEncryption 76:d8:c2:a8:94:cd:e5:32:8e:2d:27:f9:c4:a0:43:0b:26:81: e2:93:78:18:10:6e:7b:2b:f2:ff:c5:85:f1:56:0b:a6:9f:59: 42:42:ce:23:ec:64:79:43:ca:eb:70:1c:0e:fa:de:0d:cc:73: bc:e9:8e:16:9e:17:68:2e:d4:ed:21:90:9f:48:c2:b3:d3:42: b8:28:f7:61:cd:31:3c:09:4b:54:1a:db:9f:a3:d4:ae:00:e6: ee:bc:fb:08:38:5d:74:46:f4:eb:75:ed:ac:0b:16:f9:26:dd: 48:af:34:ad:09:a6:19:d9:53:ec:82:38:88:e8:1a:2b:35:ef: 7a:34:0e:27:fd:40:75:36:3e:7d:e8:0f:e1:f4:00:85:30:12: 7a:43:1d:50:9a:0b:17:50:b0:13:e7:23:cb:92:7d:b5:2a:84: e4:05:7a:8e:2c:7c:0a:9a:6e:cd:ba:a3:c1:e4:fb:33:4a:e3: ae:db:53:6a:2c:2b:59:05:47:23:0e:5e:ec:59:91:03:6c:46: 4a:26:8d:eb:01:45:81:0b:c5:cf:d0:27:57:b2:33:b2:42:1a: 9f:c9:0b:ea:3f:cb:44:57:4f:3a:b8:65:93:2d:c3:4c:5a:34: f7:88:83:4e:72:9e:4c:1e:11:db:6e:5e:1b:fe:c4:75:8d:0c: 80:39:10:d0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVSKHgzmwCT66Kvf3DWj4hNsI3G4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUMwQ0QwNENFNTYyMjVBMDA4NUVGOEFCMjg2NDBDMzgw ODc2OEI0MjAeFw0yNTA1MDUxNjU1MDBaFw0yNjA1MDQxNzAwMDBaMDMxMTAvBgNV BAMTKEMwNTEzMzMzMzYzODNBRDA4MkJCMDEwOTVDRkQ5OUI4OTdDNkYzRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDehW/2LXqUgHlrQjSeAEZ9Z2LS O5a+v5YqRbt+RjgzygCMgioNyjMeHBeWkyO31E2Z2fYRZki7MUsp5TZqYLUY0hfP a25+3kIiuIqH7YdzmheakBYOQS5oricdplurgaTHb6+eE2NFWj3jurKwYGTkmVde havEG4YnA8z4OilgYq+T/b6HZf5ZX2vVNXjIaKJeqj6wV4loPkZxfhPmgllqqKBr VE3/6wn9/J2j52HICN0V8ZhLIMGyClmrdrSqAsFe/MrIhE/X8+siJXnC2qylacNB dQETlco/3fgNkA+lxbH2xiHIE4T4wYuesJv+2MjpEOJjGROfw6YxSlAC2P/5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwFEzMzY4OtCCuwEJXP2ZuJfG8/EwHwYDVR0j BBgwFoAUnAzQTOViJaAIXvirKGQMOAh2i0IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjMxMWY4OS0zOGZkLTQ0MjQtOGE5Ni1mYTIxNzJkODdkNmYvMC85QzBDRDA0Q0U1 NjIyNUEwMDg1RUY4QUIyODY0MEMzODA4NzY4QjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUMwQ0QwNENFNTYyMjVBMDA4NUVGOEFCMjg2NDBDMzgwODc2 OEI0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2MzExZjg5LTM4ZmQtNDQyNC04 YTk2LWZhMjE3MmQ4N2Q2Zi8wLzMxMzUzNzJlMzYzNjJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNjM1MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CjjANBgkqhkiG 9w0BAQsFAAOCAQEAdtjCqJTN5TKOLSf5xKBDCyaB4pN4GBBueyvy/8WF8VYLpp9Z QkLOI+xkeUPK63AcDvreDcxzvOmOFp4XaC7U7SGQn0jCs9NCuCj3Yc0xPAlLVBrb n6PUrgDm7rz7CDhddEb063XtrAsW+SbdSK80rQmmGdlT7II4iOgaKzXvejQOJ/1A dTY+fegP4fQAhTASekMdUJoLF1CwE+cjy5J9tSqE5AV6jix8CppuzbqjweT7M0rj rttTaiwrWQVHIw5e7FmRA2xGSiaN6wFFgQvFz9AnV7IzskIan8kL6j/LRFdPOrhl ky3DTFo094iDTnKeTB4R225eG/7EdY0MgDkQ0A== -----END CERTIFICATE-----Generated at Sun Jun 8 04:20:41 2025 by rpki-client