$ rpki-client -vvf repo-rpki.idnic.net/repo/7670ae76-9594-4980-b410-491a6319ff3a/0/3135372e36362e36362e302f32342d3234203d3e20313532373831.roa File: 3135372e36362e36362e302f32342d3234203d3e20313532373831.roa (raw, json) Hash identifier: x/vtNdgftiP2gNHQRXmqF+bNIt+0K74KbEvvSueFvXY= Subject key identifier: 82:01:A6:58:31:F5:8E:EE:EF:ED:31:C1:38:3D:A0:A7:91:73:69:58 Certificate issuer: /CN=30C896473FC5DE403F4651059F6BE1586BFAC473 Certificate serial: 2C72314709ECBAE335A953B061F594FD045AF2B8 Authority key identifier: 30:C8:96:47:3F:C5:DE:40:3F:46:51:05:9F:6B:E1:58:6B:FA:C4:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/30C896473FC5DE403F4651059F6BE1586BFAC473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7670ae76-9594-4980-b410-491a6319ff3a/0/3135372e36362e36362e302f32342d3234203d3e20313532373831.roa Signing time: Thu 05 Jun 2025 10:03:18 +0000 ROA not before: Thu 05 Jun 2025 09:58:18 +0000 ROA not after: Thu 04 Jun 2026 10:03:18 +0000 asID: 152781 IP address blocks: 157.66.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7670ae76-9594-4980-b410-491a6319ff3a/0/30C896473FC5DE403F4651059F6BE1586BFAC473.crl rsync://repo-rpki.idnic.net/repo/7670ae76-9594-4980-b410-491a6319ff3a/0/30C896473FC5DE403F4651059F6BE1586BFAC473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/30C896473FC5DE403F4651059F6BE1586BFAC473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 08:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:72:31:47:09:ec:ba:e3:35:a9:53:b0:61:f5:94:fd:04:5a:f2:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30C896473FC5DE403F4651059F6BE1586BFAC473 Validity Not Before: Jun 5 09:58:18 2025 GMT Not After : Jun 4 10:03:18 2026 GMT Subject: CN=8201A65831F58EEEEFED31C1383DA0A791736958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e9:31:36:73:81:f7:0b:b5:43:dd:9b:2b:cb: 8e:62:d7:ef:03:72:e5:da:8a:c2:fc:a0:76:f3:90: 1c:43:7b:9d:c6:6d:69:ea:cc:50:d2:07:96:ab:6f: 48:be:5f:31:0e:b6:39:0d:16:11:bd:1f:5f:e0:9d: 96:f0:5a:60:6e:47:c4:fb:53:66:36:5d:2d:61:5f: 79:d6:e8:50:d1:88:27:9e:d3:06:dc:56:27:33:63: 4a:44:2c:16:91:d6:8a:fa:a5:e6:41:da:5b:76:5a: ae:36:be:88:25:0d:5c:d8:20:d6:5e:de:b2:c5:74: 88:b6:7b:53:31:01:44:07:2a:7a:04:dc:a4:a5:89: 03:11:8a:7f:69:4b:c2:c9:47:1c:4f:d1:bb:a7:66: f6:b2:49:2c:5a:ad:e3:bd:61:85:78:c5:47:8c:cf: 2a:1d:34:d8:6d:da:a1:39:f9:d5:2e:d0:8e:ad:0c: 40:71:b9:9c:a9:41:a0:7d:e7:ea:39:0e:47:b6:b0: ca:49:30:bb:78:59:c1:a1:00:10:65:08:94:ce:12: 53:03:af:fe:0a:b6:23:c0:d2:42:26:d5:cc:a6:bf: c1:af:41:f0:e5:ca:88:34:0c:ae:dc:f2:5a:bb:5a: 9b:7a:0e:f0:36:21:dd:9c:c9:2f:b5:4a:8d:5d:9c: 29:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:01:A6:58:31:F5:8E:EE:EF:ED:31:C1:38:3D:A0:A7:91:73:69:58 X509v3 Authority Key Identifier: keyid:30:C8:96:47:3F:C5:DE:40:3F:46:51:05:9F:6B:E1:58:6B:FA:C4:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7670ae76-9594-4980-b410-491a6319ff3a/0/30C896473FC5DE403F4651059F6BE1586BFAC473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/30C896473FC5DE403F4651059F6BE1586BFAC473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7670ae76-9594-4980-b410-491a6319ff3a/0/3135372e36362e36362e302f32342d3234203d3e20313532373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.66.0/24 Signature Algorithm: sha256WithRSAEncryption 57:d2:5d:da:6c:c1:91:ab:b5:dc:7d:d4:f3:f3:85:d6:f3:5b: 2b:43:da:33:e3:1d:80:ed:f1:84:55:72:53:9b:c4:7d:a1:ba: a8:e4:3d:b1:0d:6c:bc:8d:36:02:3b:17:2a:48:a8:20:7e:df: c9:71:28:97:26:d4:3f:14:3f:cb:cf:80:24:df:37:b0:78:33: a1:13:b4:da:50:05:a4:b4:8f:d3:69:c1:41:d7:ea:b7:a8:17: ea:03:15:6e:1a:eb:50:25:82:fd:0f:6c:6d:d9:0c:e9:f4:b4: 23:89:bd:c0:ee:44:b2:ac:e4:10:ac:2b:99:53:37:40:59:93: 03:62:99:31:fa:e6:0c:89:1a:e1:7b:26:da:f5:62:00:cf:f6: d1:cb:bd:1e:b2:b4:7d:5a:ea:f2:7a:15:a0:ab:ca:87:ac:8d: 12:9b:94:5b:92:9d:07:34:ed:6e:f8:b2:30:b3:21:cc:9a:56: cd:f7:c7:73:d3:2e:49:71:1a:0b:17:d5:cf:8c:e1:78:a1:74: 3d:db:51:7b:6e:70:05:72:a4:4b:d8:68:9e:47:8a:56:8c:76: 80:cc:35:73:c4:63:6d:80:cc:f4:23:f2:b5:da:83:40:c3:62: 62:a1:b1:6a:e9:51:63:91:8c:97:02:3c:40:a7:60:8f:64:f8: 17:9f:65:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULHIxRwnsuuM1qVOwYfWU/QRa8rgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBDODk2NDczRkM1REU0MDNGNDY1MTA1OUY2QkUxNTg2 QkZBQzQ3MzAeFw0yNTA2MDUwOTU4MThaFw0yNjA2MDQxMDAzMThaMDMxMTAvBgNV BAMTKDgyMDFBNjU4MzFGNThFRUVFRkVEMzFDMTM4M0RBMEE3OTE3MzY5NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY6TE2c4H3C7VD3Zsry45i1+8D cuXaisL8oHbzkBxDe53GbWnqzFDSB5arb0i+XzEOtjkNFhG9H1/gnZbwWmBuR8T7 U2Y2XS1hX3nW6FDRiCee0wbcViczY0pELBaR1or6peZB2lt2Wq42voglDVzYINZe 3rLFdIi2e1MxAUQHKnoE3KSliQMRin9pS8LJRxxP0bunZvaySSxareO9YYV4xUeM zyodNNht2qE5+dUu0I6tDEBxuZypQaB95+o5Dke2sMpJMLt4WcGhABBlCJTOElMD r/4KtiPA0kIm1cymv8GvQfDlyog0DK7c8lq7Wpt6DvA2Id2cyS+1So1dnClNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUggGmWDH1ju7v7THBOD2gp5FzaVgwHwYDVR0j BBgwFoAUMMiWRz/F3kA/RlEFn2vhWGv6xHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NjcwYWU3Ni05NTk0LTQ5ODAtYjQxMC00OTFhNjMxOWZmM2EvMC8zMEM4OTY0NzNG QzVERTQwM0Y0NjUxMDU5RjZCRTE1ODZCRkFDNDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzBDODk2NDczRkM1REU0MDNGNDY1MTA1OUY2QkUxNTg2QkZB QzQ3My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2NzBhZTc2LTk1OTQtNDk4MC1i NDEwLTQ5MWE2MzE5ZmYzYS8wLzMxMzUzNzJlMzYzNjJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CQjANBgkqhkiG 9w0BAQsFAAOCAQEAV9Jd2mzBkau13H3U8/OF1vNbK0PaM+MdgO3xhFVyU5vEfaG6 qOQ9sQ1svI02AjsXKkioIH7fyXEolybUPxQ/y8+AJN83sHgzoRO02lAFpLSP02nB Qdfqt6gX6gMVbhrrUCWC/Q9sbdkM6fS0I4m9wO5EsqzkEKwrmVM3QFmTA2KZMfrm DIka4Xsm2vViAM/20cu9HrK0fVrq8noVoKvKh6yNEpuUW5KdBzTtbviyMLMhzJpW zffHc9MuSXEaCxfVz4zheKF0PdtRe25wBXKkS9honkeKVox2gMw1c8RjbYDM9CPy tdqDQMNiYqGxaulRY5GMlwI8QKdgj2T4F59lVw== -----END CERTIFICATE-----Generated at Wed Jun 18 06:25:16 2025 by rpki-client