$ rpki-client -vvf repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa File: 3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa (raw, json) Hash identifier: 5Tt3RRAons/MpLAKdI+nVYdG1EV4O6aC9q3gMfZTySg= Subject key identifier: F0:2B:0A:CE:ED:E4:1D:43:A6:FA:45:45:BC:5D:11:00:63:8A:8A:E6 Certificate issuer: /CN=394BCC5C0310DB0117DDC1DC1A176026DB421D88 Certificate serial: 6329B8D4D31B9A9519B0309995D56AE9F8D39A10 Authority key identifier: 39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer Subject info access: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa Signing time: Sat 10 May 2025 15:00:00 +0000 ROA not before: Sat 10 May 2025 14:55:00 +0000 ROA not after: Sat 09 May 2026 15:00:00 +0000 asID: 152753 IP address blocks: 157.66.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.crl rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 14:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:29:b8:d4:d3:1b:9a:95:19:b0:30:99:95:d5:6a:e9:f8:d3:9a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=394BCC5C0310DB0117DDC1DC1A176026DB421D88 Validity Not Before: May 10 14:55:00 2025 GMT Not After : May 9 15:00:00 2026 GMT Subject: CN=F02B0ACEEDE41D43A6FA4545BC5D1100638A8AE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:da:76:bb:09:90:1b:d8:1f:0c:15:99:90:96: b3:74:13:c0:f4:8e:0a:bd:17:d4:40:ff:2d:c4:54: 5c:92:89:71:6b:25:bc:00:1f:5a:72:1e:4d:7b:e5: ce:36:70:1c:5d:6b:60:18:5d:6c:46:4e:fa:3e:d3: b7:fb:3b:12:52:47:63:ea:28:76:1f:7c:36:de:55: f6:0a:5b:e2:0f:0f:13:38:66:ed:41:31:ac:5f:48: 26:31:17:fb:8f:5f:be:53:3e:5f:ab:85:65:de:2a: 28:09:fd:0e:69:eb:b5:37:4d:3c:79:a4:d9:99:dc: 87:57:6a:61:f4:ca:68:b0:9b:25:cb:bc:96:ab:9c: 3d:53:5b:d7:49:dd:8f:cc:80:a0:42:65:c2:c5:4f: b4:a5:78:28:73:21:be:03:5c:c8:c7:0d:4d:eb:eb: 60:36:97:61:26:20:18:6f:aa:c6:20:f9:83:08:05: cb:29:5e:24:8a:44:f8:45:59:d2:b7:02:b9:0a:3a: 30:53:54:2d:14:0b:38:48:49:37:82:f7:03:01:1e: f9:bd:25:47:29:63:0f:10:2d:74:1f:f4:b2:44:8a: 63:bb:d1:71:d5:f9:0f:72:b4:0b:4c:11:5e:eb:7a: 83:bf:c4:45:d3:06:1e:cc:a8:63:da:42:0b:53:0d: cb:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:2B:0A:CE:ED:E4:1D:43:A6:FA:45:45:BC:5D:11:00:63:8A:8A:E6 X509v3 Authority Key Identifier: keyid:39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.190.0/24 Signature Algorithm: sha256WithRSAEncryption 95:03:ff:fa:0f:f8:d9:ea:49:82:e0:9c:12:aa:a9:20:52:2f: 09:8d:91:db:3e:af:be:d5:78:68:c3:f2:3b:b0:20:66:56:61: b9:2d:62:fc:b4:7e:0f:61:ee:5f:6f:59:bc:e6:5e:e0:37:e1: 13:aa:ca:46:5a:e5:ec:fa:b6:45:91:b9:17:8c:90:14:d7:2b: dc:11:43:f0:c5:a6:4c:7c:9a:62:5c:df:bc:e0:af:46:12:45: ec:8f:24:bf:91:97:dd:4a:72:01:8e:97:91:fc:bd:4b:c3:33: 31:3b:fb:be:de:1c:33:b9:7a:83:ae:d8:b4:91:4d:9d:61:3f: c8:5d:75:f3:3f:b5:d7:dd:de:fe:d9:f9:e2:03:f4:62:47:c8: 8c:e0:be:a5:a6:9a:aa:36:1d:57:e6:c5:a4:03:08:70:58:ee: 3b:82:0a:d1:93:03:ad:23:c8:8c:8a:e3:a5:5f:0e:d3:2c:86: d4:4f:62:36:2c:52:d6:bd:d7:da:7b:5f:71:c9:22:ee:1c:7b: 0c:5f:a6:0f:27:96:83:10:44:01:84:cf:49:5d:72:46:43:4d: 02:c4:e6:94:0b:62:df:fd:6b:cb:56:6c:e4:f2:f7:44:e4:ed: 82:ec:8f:aa:1a:e6:66:16:6c:aa:a3:b0:9f:83:84:c8:82:e2: 61:fe:d2:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYym41NMbmpUZsDCZldVq6fjTmhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk0QkNDNUMwMzEwREIwMTE3RERDMURDMUExNzYwMjZE QjQyMUQ4ODAeFw0yNTA1MTAxNDU1MDBaFw0yNjA1MDkxNTAwMDBaMDMxMTAvBgNV BAMTKEYwMkIwQUNFRURFNDFENDNBNkZBNDU0NUJDNUQxMTAwNjM4QThBRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl2na7CZAb2B8MFZmQlrN0E8D0 jgq9F9RA/y3EVFySiXFrJbwAH1pyHk175c42cBxda2AYXWxGTvo+07f7OxJSR2Pq KHYffDbeVfYKW+IPDxM4Zu1BMaxfSCYxF/uPX75TPl+rhWXeKigJ/Q5p67U3TTx5 pNmZ3IdXamH0ymiwmyXLvJarnD1TW9dJ3Y/MgKBCZcLFT7SleChzIb4DXMjHDU3r 62A2l2EmIBhvqsYg+YMIBcspXiSKRPhFWdK3ArkKOjBTVC0UCzhISTeC9wMBHvm9 JUcpYw8QLXQf9LJEimO70XHV+Q9ytAtMEV7reoO/xEXTBh7MqGPaQgtTDcszAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8CsKzu3kHUOm+kVFvF0RAGOKiuYwHwYDVR0j BBgwFoAUOUvMXAMQ2wEX3cHcGhdgJttCHYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NzEzNGYxOC0xMWUxLTQxYWUtYmIwNS05ZmJmNDgyMTJiN2QvMC8zOTRCQ0M1QzAz MTBEQjAxMTdEREMxREMxQTE3NjAyNkRCNDIxRDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzk0QkNDNUMwMzEwREIwMTE3RERDMURDMUExNzYwMjZEQjQy MUQ4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3MTM0ZjE4LTExZTEtNDFhZS1i YjA1LTlmYmY0ODIxMmI3ZC8wLzMxMzUzNzJlMzYzNjJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUK+MA0GCSqG SIb3DQEBCwUAA4IBAQCVA//6D/jZ6kmC4JwSqqkgUi8JjZHbPq++1Xhow/I7sCBm VmG5LWL8tH4PYe5fb1m85l7gN+ETqspGWuXs+rZFkbkXjJAU1yvcEUPwxaZMfJpi XN+84K9GEkXsjyS/kZfdSnIBjpeR/L1LwzMxO/u+3hwzuXqDrti0kU2dYT/IXXXz P7XX3d7+2fniA/RiR8iM4L6lppqqNh1X5sWkAwhwWO47ggrRkwOtI8iMiuOlXw7T LIbUT2I2LFLWvdfae19xySLuHHsMX6YPJ5aDEEQBhM9JXXJGQ00CxOaUC2Lf/WvL Vmzk8vdE5O2C7I+qGuZmFmyqo7Cfg4TIguJh/tJ7 -----END CERTIFICATE-----Generated at Wed Nov 5 04:54:01 2025 by rpki-client