$ rpki-client -vvf repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/3135372e36362e31362e302f32332d3234203d3e20313336303839.roa File: 3135372e36362e31362e302f32332d3234203d3e20313336303839.roa (raw, json) Hash identifier: fMCHbxG1b40Dh8toSsRbGtu8leYZ/YXgsXlH0lO7T1o= Subject key identifier: 06:AA:26:50:FD:1A:3D:A5:86:1E:84:4B:37:57:3B:C7:5A:9E:91:F7 Certificate issuer: /CN=308A510040FDF9BC28B7B63D3203E40E2106F1B4 Certificate serial: 330293F4D2FF7ACE11AD860AC22DEDB0FF079A02 Authority key identifier: 30:8A:51:00:40:FD:F9:BC:28:B7:B6:3D:32:03:E4:0E:21:06:F1:B4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/308A510040FDF9BC28B7B63D3203E40E2106F1B4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/3135372e36362e31362e302f32332d3234203d3e20313336303839.roa Signing time: Thu 24 Apr 2025 13:00:33 +0000 ROA not before: Thu 24 Apr 2025 12:55:33 +0000 ROA not after: Thu 23 Apr 2026 13:00:33 +0000 asID: 136089 IP address blocks: 157.66.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/308A510040FDF9BC28B7B63D3203E40E2106F1B4.crl rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/308A510040FDF9BC28B7B63D3203E40E2106F1B4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/308A510040FDF9BC28B7B63D3203E40E2106F1B4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 21:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:02:93:f4:d2:ff:7a:ce:11:ad:86:0a:c2:2d:ed:b0:ff:07:9a:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=308A510040FDF9BC28B7B63D3203E40E2106F1B4 Validity Not Before: Apr 24 12:55:33 2025 GMT Not After : Apr 23 13:00:33 2026 GMT Subject: CN=06AA2650FD1A3DA5861E844B37573BC75A9E91F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:62:ff:6e:16:8d:db:31:ce:18:e9:3f:b5: 1f:79:7f:a0:dc:14:9f:36:e7:17:5c:6d:60:09:53: 5c:c2:9b:49:10:5d:19:af:df:d8:eb:12:8b:58:f5: a5:db:1a:61:2f:0a:4f:3f:ba:5c:86:52:3f:a9:be: c9:8a:54:d1:f7:e1:22:59:d2:e5:b0:aa:04:a8:49: 6b:b6:18:c2:ed:86:0c:cf:85:b7:d8:ff:7a:a6:d6: 15:7c:13:cd:14:41:d1:14:13:a6:1b:16:09:ce:07: 53:fa:a4:7d:a2:ff:01:8d:6b:ba:95:d9:47:eb:8d: 23:a2:b2:60:0b:15:a0:73:94:28:96:8e:27:d2:8e: 9b:34:92:d3:7f:fd:28:ff:f3:e4:e1:fd:2e:3d:89: 27:b0:10:a3:04:2e:bc:3e:50:cf:14:ae:b3:a0:19: 40:36:04:df:1d:88:92:a5:93:b5:22:b6:ca:7d:18: b8:f9:4a:0d:3f:92:be:e2:6d:11:84:21:2f:2c:2d: fb:aa:5b:72:92:67:27:51:38:cc:31:c4:03:c8:0e: 55:5d:4f:b6:0f:50:90:cb:c5:ad:2e:99:47:e1:fc: 6f:c0:86:a7:41:6b:45:b9:7e:01:b7:24:d7:12:12: d2:3a:79:23:af:f8:c6:72:52:f0:a1:cf:e4:90:eb: 6a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AA:26:50:FD:1A:3D:A5:86:1E:84:4B:37:57:3B:C7:5A:9E:91:F7 X509v3 Authority Key Identifier: keyid:30:8A:51:00:40:FD:F9:BC:28:B7:B6:3D:32:03:E4:0E:21:06:F1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/308A510040FDF9BC28B7B63D3203E40E2106F1B4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/308A510040FDF9BC28B7B63D3203E40E2106F1B4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/3135372e36362e31362e302f32332d3234203d3e20313336303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.16.0/23 Signature Algorithm: sha256WithRSAEncryption 97:e6:f1:99:37:ac:58:19:f4:a8:69:05:e4:3c:86:93:87:c3: db:8f:14:9c:50:42:a3:8f:d3:b8:0b:9e:93:05:36:8b:05:3e: 36:4d:8b:1c:1a:b7:e7:95:5c:4f:69:88:e9:ca:a2:ed:ba:b6: 4c:68:c9:c6:3d:8b:1e:a4:2a:63:99:9b:bf:a9:6c:b7:17:00: c5:b8:27:8d:84:ba:63:f5:82:e8:f9:54:b4:1e:4d:00:32:12: 67:7d:c7:45:51:2f:9d:3e:3d:a6:c8:4f:c9:4c:ef:db:84:0c: 6c:a7:ff:23:67:84:3d:84:e4:47:cf:be:9e:76:90:2d:45:e2: a8:b8:a0:ab:0a:1a:69:9b:b9:c3:a3:33:16:aa:3b:a9:59:b6: 88:29:75:69:4d:01:17:6a:bc:07:e6:86:fc:f5:21:67:86:42: 89:f5:53:5b:4e:34:8b:39:e8:49:3b:ae:b0:a2:12:4a:a2:86: ec:3a:1c:3e:ec:5b:65:9d:95:16:e9:ef:c4:71:30:b2:40:7b: 78:69:6b:a0:f4:58:08:2c:49:fa:27:95:02:0d:79:e6:a3:41: a4:e7:11:bb:a7:67:9a:94:1e:38:5d:fc:d3:9c:ac:d7:e9:fe: 88:45:25:72:47:16:39:dd:4a:27:00:89:3c:91:4a:6a:2f:66: 7f:23:43:07 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMwKT9NL/es4RrYYKwi3tsP8HmgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA4QTUxMDA0MEZERjlCQzI4QjdCNjNEMzIwM0U0MEUy MTA2RjFCNDAeFw0yNTA0MjQxMjU1MzNaFw0yNjA0MjMxMzAwMzNaMDMxMTAvBgNV BAMTKDA2QUEyNjUwRkQxQTNEQTU4NjFFODQ0QjM3NTczQkM3NUE5RTkxRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Y2L/bhaN2zHOGOk/tR95f6Dc FJ825xdcbWAJU1zCm0kQXRmv39jrEotY9aXbGmEvCk8/ulyGUj+pvsmKVNH34SJZ 0uWwqgSoSWu2GMLthgzPhbfY/3qm1hV8E80UQdEUE6YbFgnOB1P6pH2i/wGNa7qV 2UfrjSOismALFaBzlCiWjifSjps0ktN//Sj/8+Th/S49iSewEKMELrw+UM8UrrOg GUA2BN8diJKlk7Uitsp9GLj5Sg0/kr7ibRGEIS8sLfuqW3KSZydROMwxxAPIDlVd T7YPUJDLxa0umUfh/G/AhqdBa0W5fgG3JNcSEtI6eSOv+MZyUvChz+SQ62qrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBqomUP0aPaWGHoRLN1c7x1qekfcwHwYDVR0j BBgwFoAUMIpRAED9+bwot7Y9MgPkDiEG8bQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGVkOGQ2Yy1mMGZhLTQ3Y2MtYWVhYS1iNGUzZWUxMTY4ODIvMC8zMDhBNTEwMDQw RkRGOUJDMjhCN0I2M0QzMjAzRTQwRTIxMDZGMUI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzA4QTUxMDA0MEZERjlCQzI4QjdCNjNEMzIwM0U0MEUyMTA2 RjFCNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0ZWQ4ZDZjLWYwZmEtNDdjYy1h ZWFhLWI0ZTNlZTExNjg4Mi8wLzMxMzUzNzJlMzYzNjJlMzEzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CEDANBgkqhkiG 9w0BAQsFAAOCAQEAl+bxmTesWBn0qGkF5DyGk4fD248UnFBCo4/TuAuekwU2iwU+ Nk2LHBq355VcT2mI6cqi7bq2TGjJxj2LHqQqY5mbv6lstxcAxbgnjYS6Y/WC6PlU tB5NADISZ33HRVEvnT49pshPyUzv24QMbKf/I2eEPYTkR8++nnaQLUXiqLigqwoa aZu5w6MzFqo7qVm2iCl1aU0BF2q8B+aG/PUhZ4ZCifVTW040iznoSTuusKISSqKG 7DocPuxbZZ2VFunvxHEwskB7eGlroPRYCCxJ+ieVAg155qNBpOcRu6dnmpQeOF38 05ys1+n+iEUlckcWOd1KJwCJPJFKai9mfyNDBw== -----END CERTIFICATE-----Generated at Tue May 6 05:23:13 2025 by rpki-client