$ rpki-client -vvf repo-rpki.idnic.net/repo/a8dc13ff-5b10-44a6-b6f3-8f035e5897d8/0/3135372e31302e3137392e302f32342d3234203d3e20313532333436.roa File: 3135372e31302e3137392e302f32342d3234203d3e20313532333436.roa (raw, json) Hash identifier: I8nLPluTJWLYyGtu9yBeYoUlVfCol4rqRzuAbdB/G2g= Subject key identifier: 74:80:19:CA:8D:37:E3:E7:02:7E:FD:DD:62:54:12:80:57:07:7B:DE Certificate issuer: /CN=B914C61A5DB1C65E66CE5AF64C3E20C201962B5B Certificate serial: 53E6BB5F5F692F028AFD0F66B80147A5E8A1570D Authority key identifier: B9:14:C6:1A:5D:B1:C6:5E:66:CE:5A:F6:4C:3E:20:C2:01:96:2B:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B914C61A5DB1C65E66CE5AF64C3E20C201962B5B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8dc13ff-5b10-44a6-b6f3-8f035e5897d8/0/3135372e31302e3137392e302f32342d3234203d3e20313532333436.roa Signing time: Sun 06 Jul 2025 16:00:00 +0000 ROA not before: Sun 06 Jul 2025 15:55:00 +0000 ROA not after: Sun 05 Jul 2026 16:00:00 +0000 asID: 152346 IP address blocks: 157.10.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8dc13ff-5b10-44a6-b6f3-8f035e5897d8/0/B914C61A5DB1C65E66CE5AF64C3E20C201962B5B.crl rsync://repo-rpki.idnic.net/repo/a8dc13ff-5b10-44a6-b6f3-8f035e5897d8/0/B914C61A5DB1C65E66CE5AF64C3E20C201962B5B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B914C61A5DB1C65E66CE5AF64C3E20C201962B5B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 09:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e6:bb:5f:5f:69:2f:02:8a:fd:0f:66:b8:01:47:a5:e8:a1:57:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B914C61A5DB1C65E66CE5AF64C3E20C201962B5B Validity Not Before: Jul 6 15:55:00 2025 GMT Not After : Jul 5 16:00:00 2026 GMT Subject: CN=748019CA8D37E3E7027EFDDD6254128057077BDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a3:8c:ec:0e:55:70:b7:ff:92:4b:2c:84:91: ed:3b:b4:c8:09:59:e9:48:6b:54:53:b6:69:6b:9a: 3c:59:68:fa:cb:87:c2:14:4d:17:73:6e:c3:d8:8d: 28:d4:3d:78:fd:df:75:fb:08:2d:84:ca:f6:8b:cf: e3:90:38:83:d5:07:bb:3e:9a:da:4c:d0:3f:7b:05: ca:fa:b6:57:b8:4d:cf:4d:31:af:23:d1:b8:dc:90: 70:5e:f5:7a:79:f8:c2:aa:ab:ec:ff:c7:0a:57:5a: b4:ba:f4:b2:cb:e6:0e:8f:0b:55:d8:98:be:22:91: 79:88:ce:d4:1e:ab:27:4e:db:f4:ae:e2:b8:76:b6: f4:5c:c6:eb:10:4a:30:af:90:6a:ba:57:fd:88:ee: db:26:f4:9b:67:f8:67:5d:1b:d6:be:93:8f:cf:c5: dc:e9:e5:dd:05:17:64:c4:00:23:e2:ed:52:03:89: 9b:ca:4d:c9:d6:65:a0:c6:2f:58:43:96:f2:02:c1: d0:db:1e:99:c7:e1:c0:95:21:e6:69:e8:d0:e2:25: 79:a8:0a:3d:48:d0:b7:bd:f1:24:03:7c:97:49:81: 09:c7:e6:d3:c4:d7:3f:ef:b9:d7:f0:4b:0c:ef:4e: d8:97:3e:9e:89:6d:8c:36:7d:88:1b:09:d2:3d:4f: 56:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:80:19:CA:8D:37:E3:E7:02:7E:FD:DD:62:54:12:80:57:07:7B:DE X509v3 Authority Key Identifier: keyid:B9:14:C6:1A:5D:B1:C6:5E:66:CE:5A:F6:4C:3E:20:C2:01:96:2B:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8dc13ff-5b10-44a6-b6f3-8f035e5897d8/0/B914C61A5DB1C65E66CE5AF64C3E20C201962B5B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B914C61A5DB1C65E66CE5AF64C3E20C201962B5B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8dc13ff-5b10-44a6-b6f3-8f035e5897d8/0/3135372e31302e3137392e302f32342d3234203d3e20313532333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.179.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:90:47:51:9e:15:bf:c1:23:9a:fa:38:15:75:e8:20:6c:a7: 96:f4:52:36:08:7c:0e:2a:64:40:86:8c:e8:a1:e4:03:3a:8d: 69:57:cc:57:be:f3:6b:fa:fc:9b:6c:85:45:21:96:f8:fb:4e: 91:9a:21:d2:f2:9f:52:80:2b:25:a3:24:e0:6f:01:de:85:3c: 9b:e8:cf:4f:f0:0d:55:85:5b:2d:8a:0c:50:a0:e9:b2:d1:cd: 70:d3:3f:ba:d1:43:27:df:c7:37:46:fb:f9:34:82:81:fe:ee: 29:00:7c:82:fe:5f:b8:7b:6a:e2:3e:15:fe:3f:f8:61:ae:be: 25:38:34:b9:38:42:12:87:8a:e5:2d:52:40:14:a2:b7:ea:6a: df:b9:bb:5b:2f:c8:4b:18:18:4b:60:f4:6c:e9:a5:81:8a:86: 7d:3a:bb:9a:ba:05:3e:af:4e:17:42:bf:2c:7a:6e:13:22:dc: f2:10:06:37:2c:4b:69:0a:fb:54:5b:d7:a9:df:aa:46:da:69: e9:99:ef:b7:b8:54:43:6d:5c:22:54:a8:3d:fe:f1:f4:18:22: f9:8c:3f:ea:fb:4c:cc:5a:ff:52:9a:c3:ea:9c:cd:47:50:ce: 1f:f2:d8:81:a1:6d:ca:56:9d:7f:23:dc:23:db:fc:43:a4:1a: 79:c9:dd:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU+a7X19pLwKK/Q9muAFHpeihVw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkxNEM2MUE1REIxQzY1RTY2Q0U1QUY2NEMzRTIwQzIw MTk2MkI1QjAeFw0yNTA3MDYxNTU1MDBaFw0yNjA3MDUxNjAwMDBaMDMxMTAvBgNV BAMTKDc0ODAxOUNBOEQzN0UzRTcwMjdFRkRERDYyNTQxMjgwNTcwNzdCREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCto4zsDlVwt/+SSyyEke07tMgJ WelIa1RTtmlrmjxZaPrLh8IUTRdzbsPYjSjUPXj933X7CC2EyvaLz+OQOIPVB7s+ mtpM0D97Bcr6tle4Tc9NMa8j0bjckHBe9Xp5+MKqq+z/xwpXWrS69LLL5g6PC1XY mL4ikXmIztQeqydO2/Su4rh2tvRcxusQSjCvkGq6V/2I7tsm9Jtn+GddG9a+k4/P xdzp5d0FF2TEACPi7VIDiZvKTcnWZaDGL1hDlvICwdDbHpnH4cCVIeZp6NDiJXmo Cj1I0Le98SQDfJdJgQnH5tPE1z/vudfwSwzvTtiXPp6JbYw2fYgbCdI9T1YjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdIAZyo034+cCfv3dYlQSgFcHe94wHwYDVR0j BBgwFoAUuRTGGl2xxl5mzlr2TD4gwgGWK1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OGRjMTNmZi01YjEwLTQ0YTYtYjZmMy04ZjAzNWU1ODk3ZDgvMC9COTE0QzYxQTVE QjFDNjVFNjZDRTVBRjY0QzNFMjBDMjAxOTYyQjVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjkxNEM2MUE1REIxQzY1RTY2Q0U1QUY2NEMzRTIwQzIwMTk2 MkI1Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4ZGMxM2ZmLTViMTAtNDRhNi1i NmYzLThmMDM1ZTU4OTdkOC8wLzMxMzUzNzJlMzEzMDJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQqzMA0GCSqG SIb3DQEBCwUAA4IBAQBskEdRnhW/wSOa+jgVdeggbKeW9FI2CHwOKmRAhozooeQD Oo1pV8xXvvNr+vybbIVFIZb4+06RmiHS8p9SgCsloyTgbwHehTyb6M9P8A1VhVst igxQoOmy0c1w0z+60UMn38c3Rvv5NIKB/u4pAHyC/l+4e2riPhX+P/hhrr4lODS5 OEISh4rlLVJAFKK36mrfubtbL8hLGBhLYPRs6aWBioZ9OruaugU+r04XQr8sem4T ItzyEAY3LEtpCvtUW9ep36pG2mnpme+3uFRDbVwiVKg9/vH0GCL5jD/q+0zMWv9S msPqnM1HUM4f8tiBoW3KVp1/I9wj2/xDpBp5yd2h -----END CERTIFICATE-----Generated at Thu Aug 7 03:19:06 2025 by rpki-client