$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20323035343232.roa File: 3135372e32302e34352e302f32342d3234203d3e20323035343232.roa (raw, json) Hash identifier: 0BKZVYiTiHtgjZEUGoDI40NlGQFEUeOEKE+t8AaJ1+k= Subject key identifier: F4:CE:FB:E0:03:35:75:AC:2B:BF:11:BE:EA:4B:EF:D4:E7:48:B8:6B Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 55458A194A24B5A4ECBE77A7A253E421362DBA91 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20323035343232.roa Signing time: Tue 04 Nov 2025 19:07:45 +0000 ROA not before: Tue 04 Nov 2025 19:02:45 +0000 ROA not after: Tue 03 Nov 2026 19:07:45 +0000 asID: 205422 IP address blocks: 157.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:45:8a:19:4a:24:b5:a4:ec:be:77:a7:a2:53:e4:21:36:2d:ba:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Nov 4 19:02:45 2025 GMT Not After : Nov 3 19:07:45 2026 GMT Subject: CN=F4CEFBE0033575AC2BBF11BEEA4BEFD4E748B86B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:ae:5a:b8:36:18:88:cb:06:75:20:6f:ef: 6c:2b:06:90:3d:a3:e9:95:5f:fa:ad:23:89:47:3f: ce:2f:25:a4:da:52:15:12:7b:40:3f:06:40:34:ae: 8c:ba:97:75:cc:3b:06:e2:d8:28:1d:a1:dd:6b:f1: 22:70:0f:19:34:d7:49:18:62:ba:37:fd:da:3d:68: bf:b5:4f:ea:e4:f7:45:c5:44:f7:cb:27:bc:bd:d8: e4:a2:78:15:c5:c0:c3:ab:ed:40:6e:7c:a0:c9:22: e2:35:e6:14:6f:33:e5:87:07:16:03:00:b1:d7:5e: a8:08:eb:2f:e5:00:86:84:3b:71:37:3c:af:dd:61: 48:75:86:06:7d:ba:1f:9d:d1:ca:b2:6c:ed:7b:30: a6:89:88:40:f0:0a:30:07:56:7c:63:1d:27:56:ca: aa:38:b6:b9:eb:39:37:80:dc:50:46:b7:e3:89:af: d2:47:ed:f5:c2:4d:d4:65:e8:5d:ec:25:5f:a9:31: cb:4a:9f:26:86:31:6b:32:e3:04:1f:0b:ef:be:76: 22:14:c3:01:e3:68:70:58:43:a7:61:6e:ec:03:e2: bf:ba:57:ec:f1:b5:38:11:ef:38:aa:e4:5c:e0:5c: cd:da:ff:27:59:24:18:33:44:d5:df:56:fd:c6:b5: 6c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:CE:FB:E0:03:35:75:AC:2B:BF:11:BE:EA:4B:EF:D4:E7:48:B8:6B X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20323035343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:be:f5:af:ae:19:36:33:01:d7:47:b9:65:22:6d:c0:08:b2: 94:38:a7:d6:a1:2e:38:5e:8f:03:7b:6d:ee:e0:7c:fa:66:29: 0a:5b:82:15:35:82:52:cd:6f:44:e9:67:fe:79:5e:57:78:b3: 45:85:46:d0:9c:18:3c:5d:4b:f7:5c:93:3b:41:92:00:f5:65: 6a:79:81:97:fa:ab:db:f0:c4:99:1c:69:1a:d9:ec:29:1d:dd: 13:95:31:e6:a8:38:dc:67:83:92:92:97:b1:dd:12:cc:53:7e: 3f:3b:96:85:40:aa:77:24:7b:1e:8c:c8:8a:1b:82:6c:49:eb: a4:23:85:b6:c3:89:0c:f4:da:95:77:92:dc:be:7f:bd:0b:69: c0:eb:ca:88:f1:6c:b5:74:23:df:04:99:33:4b:e6:1e:07:12: 06:7b:5e:32:64:f2:96:0f:30:2a:19:53:1c:5e:37:3a:8c:89: dd:99:a6:ef:cc:17:00:76:7f:5a:fa:d6:ca:73:ce:a4:8d:e4: f2:66:69:a7:67:da:88:a4:8d:d8:5a:22:89:8a:14:e1:df:3c: d2:63:d5:11:7c:20:e5:81:f3:07:44:ea:2c:25:da:b4:fb:eb: 51:5d:1b:2e:d5:1f:8c:fb:b3:a5:93:e4:99:8c:a4:bd:58:2e: a0:9d:77:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVUWKGUoktaTsvnenolPkITYtupEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTExMDQxOTAyNDVaFw0yNjExMDMxOTA3NDVaMDMxMTAvBgNV BAMTKEY0Q0VGQkUwMDMzNTc1QUMyQkJGMTFCRUVBNEJFRkQ0RTc0OEI4NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBm65auDYYiMsGdSBv72wrBpA9 o+mVX/qtI4lHP84vJaTaUhUSe0A/BkA0roy6l3XMOwbi2Cgdod1r8SJwDxk010kY Yro3/do9aL+1T+rk90XFRPfLJ7y92OSieBXFwMOr7UBufKDJIuI15hRvM+WHBxYD ALHXXqgI6y/lAIaEO3E3PK/dYUh1hgZ9uh+d0cqybO17MKaJiEDwCjAHVnxjHSdW yqo4trnrOTeA3FBGt+OJr9JH7fXCTdRl6F3sJV+pMctKnyaGMWsy4wQfC+++diIU wwHjaHBYQ6dhbuwD4r+6V+zxtTgR7ziq5FzgXM3a/ydZJBgzRNXfVv3GtWyfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9M774AM1dawrvxG+6kvv1OdIuGswHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3LTZhOTItNDI5My04 ODAwLWI1M2UyYTkxOGFjYS8wLzMxMzUzNzJlMzIzMDJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzNTM0MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0ULTANBgkqhkiG 9w0BAQsFAAOCAQEAnb71r64ZNjMB10e5ZSJtwAiylDin1qEuOF6PA3tt7uB8+mYp CluCFTWCUs1vROln/nleV3izRYVG0JwYPF1L91yTO0GSAPVlanmBl/qr2/DEmRxp GtnsKR3dE5Ux5qg43GeDkpKXsd0SzFN+PzuWhUCqdyR7HozIihuCbEnrpCOFtsOJ DPTalXeS3L5/vQtpwOvKiPFstXQj3wSZM0vmHgcSBnteMmTylg8wKhlTHF43OoyJ 3Zmm78wXAHZ/WvrWynPOpI3k8mZpp2faiKSN2FoiiYoU4d880mPVEXwg5YHzB0Tq LCXatPvrUV0bLtUfjPuzpZPkmYykvVguoJ13Sg== -----END CERTIFICATE-----Generated at Wed Nov 5 02:57:37 2025 by rpki-client