$ rpki-client -vvf repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa File: 3135372e36362e372e302f32342d3234203d3e20313338383239.roa (raw, json) Hash identifier: zM59QgzH/K8O4i/tzNe37zwwVnS65qf7DZJku3UKUIg= Subject key identifier: 7D:6E:9A:9D:E7:F6:42:57:2D:F7:F6:B6:63:8F:A3:E7:FA:D8:04:D4 Certificate issuer: /CN=D90C7042B5DC18341DCC77CA5CF8F4CA210D886B Certificate serial: 06121A0A18E5C9C476B9B2952C6E684171BEEA5B Authority key identifier: D9:0C:70:42:B5:DC:18:34:1D:CC:77:CA:5C:F8:F4:CA:21:0D:88:6B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa Signing time: Sun 02 Mar 2025 05:00:00 +0000 ROA not before: Sun 02 Mar 2025 04:55:00 +0000 ROA not after: Sun 01 Mar 2026 05:00:00 +0000 asID: 138829 IP address blocks: 157.66.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.crl rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 08:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:12:1a:0a:18:e5:c9:c4:76:b9:b2:95:2c:6e:68:41:71:be:ea:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D90C7042B5DC18341DCC77CA5CF8F4CA210D886B Validity Not Before: Mar 2 04:55:00 2025 GMT Not After : Mar 1 05:00:00 2026 GMT Subject: CN=7D6E9A9DE7F642572DF7F6B6638FA3E7FAD804D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0e:af:5a:b5:40:73:1e:80:f1:55:53:0a:62: 22:94:7e:34:cd:24:8e:33:53:0f:be:2c:38:05:05: 06:8a:2b:9b:49:dd:1e:7c:5e:a4:92:e3:e1:95:48: 0c:d7:66:2c:87:9a:51:56:75:b0:69:b2:50:86:83: 9f:20:c5:69:47:f4:8d:3f:45:98:9b:e3:1f:96:f0: 08:82:31:ec:37:ac:39:d8:37:8b:39:fd:07:af:d6: 80:98:d2:b8:37:fa:38:72:43:8c:a7:16:92:83:9e: 4b:be:6d:6f:47:8f:27:51:06:e2:d4:be:c2:c4:ef: 83:4b:d1:99:01:25:01:f8:6b:e7:23:fe:51:c7:65: f7:97:6c:1a:a4:19:71:df:a7:13:32:14:4c:52:a9: 00:36:dc:a0:ed:19:c7:dd:bd:b0:df:f1:b6:d7:b3: 10:30:e3:09:16:1e:df:25:77:0b:f9:99:57:43:30: 86:cd:68:db:c5:c4:97:81:81:e9:b1:8e:2d:c5:32: c3:0e:f7:66:d2:93:8c:e9:55:6f:5e:71:ce:df:c8: 3e:df:bc:3b:c8:20:f6:09:ea:7d:00:29:0d:96:08: 35:d6:a9:11:74:58:ba:1d:bf:53:60:4a:58:f1:72: 1d:e1:fc:cd:5c:bd:a1:61:77:cb:09:07:ba:72:6f: de:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:6E:9A:9D:E7:F6:42:57:2D:F7:F6:B6:63:8F:A3:E7:FA:D8:04:D4 X509v3 Authority Key Identifier: keyid:D9:0C:70:42:B5:DC:18:34:1D:CC:77:CA:5C:F8:F4:CA:21:0D:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.7.0/24 Signature Algorithm: sha256WithRSAEncryption d9:03:ce:0d:78:94:57:7f:0d:e4:72:ae:dd:c3:37:34:94:60: c2:31:34:d7:9b:77:c3:2a:0e:74:d3:e1:8b:60:d2:19:de:03: cb:b9:fa:c5:94:f5:15:f4:1e:41:2b:b7:9d:07:0f:6b:9b:81: 8f:ab:d0:60:4b:02:d9:c8:45:e8:e4:05:26:d1:9c:47:12:52: 7e:dc:d8:54:83:df:bd:4b:9e:e0:dc:29:76:85:2f:08:bb:d0: f2:5f:ee:a4:b5:76:0b:0d:d5:bd:4f:70:4b:05:ce:43:59:2c: 4c:01:0b:ce:b6:c4:2b:f8:b4:65:ec:81:12:8c:15:35:ed:c7: 90:a2:a7:98:76:23:0c:4b:7c:68:46:b5:ad:78:13:96:c1:ea: 4c:7a:c8:1c:f0:01:64:73:89:5a:05:50:c3:74:6b:3f:7e:0b: d7:36:f1:15:3e:df:f4:4f:8d:9d:9f:25:1f:49:7e:1d:82:38: ad:44:77:9b:ff:59:2f:7e:0c:f1:73:6c:85:cf:cf:5a:2c:c7: f4:fa:1f:a2:39:f6:6f:d4:0d:de:66:1a:c1:7c:49:a4:aa:02: 08:be:a0:3f:59:31:11:20:08:4c:68:65:a3:46:77:6e:0f:68: 65:f5:97:6d:c1:94:a1:38:11:31:25:fa:d1:51:80:0f:e8:f8: 2c:f3:ef:ef -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBhIaChjlycR2ubKVLG5oQXG+6lswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDkwQzcwNDJCNURDMTgzNDFEQ0M3N0NBNUNGOEY0Q0Ey MTBEODg2QjAeFw0yNTAzMDIwNDU1MDBaFw0yNjAzMDEwNTAwMDBaMDMxMTAvBgNV BAMTKDdENkU5QTlERTdGNjQyNTcyREY3RjZCNjYzOEZBM0U3RkFEODA0RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCDq9atUBzHoDxVVMKYiKUfjTN JI4zUw++LDgFBQaKK5tJ3R58XqSS4+GVSAzXZiyHmlFWdbBpslCGg58gxWlH9I0/ RZib4x+W8AiCMew3rDnYN4s5/Qev1oCY0rg3+jhyQ4ynFpKDnku+bW9HjydRBuLU vsLE74NL0ZkBJQH4a+cj/lHHZfeXbBqkGXHfpxMyFExSqQA23KDtGcfdvbDf8bbX sxAw4wkWHt8ldwv5mVdDMIbNaNvFxJeBgemxji3FMsMO92bSk4zpVW9ecc7fyD7f vDvIIPYJ6n0AKQ2WCDXWqRF0WLodv1NgSljxch3h/M1cvaFhd8sJB7pyb95DAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfW6anef2Qlct9/a2Y4+j5/rYBNQwHwYDVR0j BBgwFoAU2QxwQrXcGDQdzHfKXPj0yiENiGswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE2ZmVhYS02YjRmLTQ3Y2YtOWUzYy0wMGFlYWM2N2EzMmEvMC9EOTBDNzA0MkI1 REMxODM0MURDQzc3Q0E1Q0Y4RjRDQTIxMEQ4ODZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDkwQzcwNDJCNURDMTgzNDFEQ0M3N0NBNUNGOEY0Q0EyMTBE ODg2Qi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTZmZWFhLTZiNGYtNDdjZi05 ZTNjLTAwYWVhYzY3YTMyYS8wLzMxMzUzNzJlMzYzNjJlMzcyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzgzODMyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgcwDQYJKoZIhvcN AQELBQADggEBANkDzg14lFd/DeRyrt3DNzSUYMIxNNebd8MqDnTT4Ytg0hneA8u5 +sWU9RX0HkErt50HD2ubgY+r0GBLAtnIRejkBSbRnEcSUn7c2FSD371LnuDcKXaF Lwi70PJf7qS1dgsN1b1PcEsFzkNZLEwBC862xCv4tGXsgRKMFTXtx5Cip5h2IwxL fGhGta14E5bB6kx6yBzwAWRziVoFUMN0az9+C9c28RU+3/RPjZ2fJR9Jfh2COK1E d5v/WS9+DPFzbIXPz1osx/T6H6I59m/UDd5mGsF8SaSqAgi+oD9ZMREgCExoZaNG d24PaGX1l23BlKE4ETEl+tFRgA/o+Czz7+8= -----END CERTIFICATE-----Generated at Wed Nov 5 04:34:56 2025 by rpki-client