$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa File: 3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa (raw, json) Hash identifier: ep04UBArCBQWkLiZKMcJT4iBnkYi8gyyZr2lPtSwbI8= Subject key identifier: 5E:DD:D7:DB:8A:B8:77:E3:52:AD:C5:80:EF:47:C4:D2:E1:9B:BA:C9 Certificate issuer: /CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Certificate serial: 7D00266DD5C5B5B7BC937E288996ED02FA3A150A Authority key identifier: D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa Signing time: Fri 25 Apr 2025 17:02:19 +0000 ROA not before: Fri 25 Apr 2025 16:57:19 +0000 ROA not after: Fri 24 Apr 2026 17:02:19 +0000 asID: 152756 IP address blocks: 157.66.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 07:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:00:26:6d:d5:c5:b5:b7:bc:93:7e:28:89:96:ed:02:fa:3a:15:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Validity Not Before: Apr 25 16:57:19 2025 GMT Not After : Apr 24 17:02:19 2026 GMT Subject: CN=5EDDD7DB8AB877E352ADC580EF47C4D2E19BBAC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ed:db:12:81:d9:0a:c5:f3:6c:f2:84:66:75: 31:99:e1:ea:ad:ca:1b:ff:85:0a:2a:0a:67:eb:fc: 09:a0:ca:b0:34:b2:0d:8c:1f:de:ae:7e:a1:67:33: 96:5e:2f:de:4c:72:49:90:df:cc:8a:e7:21:bd:db: f2:60:f8:de:d4:de:81:06:d9:f7:03:6e:24:02:5c: af:9f:69:c3:94:ad:5c:34:52:07:25:f7:8c:c4:dc: f8:b5:a0:56:e4:fb:f8:89:53:66:de:49:17:7f:fe: f9:be:3c:3a:60:44:b0:e2:bd:d8:dc:d6:13:78:08: fb:38:14:9b:bb:35:29:3d:08:e3:67:66:c8:ce:de: 51:9e:b0:f9:f0:0a:3b:bd:f0:6e:86:5b:c9:f0:9f: ea:54:bb:b8:9b:4c:e5:83:f0:71:8d:ed:c2:8a:5e: 61:d0:3b:7c:ab:99:51:29:cc:89:c3:81:b2:c4:21: 22:a7:c4:42:77:f8:c2:40:f5:95:d8:12:42:6f:75: 07:de:d2:3c:a1:b8:1c:68:17:fb:bb:76:0f:ce:b4: b9:cd:2c:66:50:a9:9b:6e:b9:7d:74:f4:3e:d7:fe: d0:69:65:8a:79:5e:49:f9:46:2c:53:28:c0:8c:91: c9:3e:c6:5c:29:c5:38:71:b0:54:f9:d5:56:c4:b3: 86:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:DD:D7:DB:8A:B8:77:E3:52:AD:C5:80:EF:47:C4:D2:E1:9B:BA:C9 X509v3 Authority Key Identifier: keyid:D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.176.0/23 Signature Algorithm: sha256WithRSAEncryption 64:a7:20:3b:90:2e:c1:91:f8:2e:42:f1:dd:65:aa:ac:66:8b: db:b8:be:1e:74:26:7b:ca:6f:dc:d2:af:7d:0c:50:69:7a:ed: 63:f2:0c:34:74:df:27:c2:ad:5f:66:81:7b:2f:38:80:51:fa: 83:96:c3:62:53:44:76:14:3b:0c:c0:4d:0d:30:19:87:74:55: 78:a4:6d:7c:61:8e:de:18:57:c7:38:a3:54:de:91:83:af:50: bb:b6:0e:b8:ec:3e:b8:25:5d:81:b8:ac:e3:f7:b9:11:fc:6c: a9:bb:01:f5:3d:1e:4c:23:93:c8:0f:4e:c2:36:79:72:e6:df: 58:40:e8:61:8a:b2:6c:35:31:dc:a6:ef:78:d0:fb:8b:72:c6: 0d:78:28:07:65:97:24:c0:7f:1c:45:68:b9:1f:d8:93:6a:32: f5:75:75:38:e0:ec:89:5d:f3:6d:fe:78:d0:dc:d8:76:6a:3c: 96:82:f2:0d:45:cd:95:39:7f:46:1d:2b:72:66:4c:2d:fd:61: e4:5a:d1:0c:25:1d:30:05:c9:d1:4c:c9:7d:ed:29:73:20:18: 1c:f2:2f:9c:42:1d:50:e4:a9:bd:34:09:53:0f:ba:97:91:53: 32:ec:55:66:b0:e1:80:11:81:af:5c:86:3b:4e:28:ea:5a:35: 93:bd:58:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfQAmbdXFtbe8k34oiZbtAvo6FQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2 NzY5QzkwQjAeFw0yNTA0MjUxNjU3MTlaFw0yNjA0MjQxNzAyMTlaMDMxMTAvBgNV BAMTKDVFREREN0RCOEFCODc3RTM1MkFEQzU4MEVGNDdDNEQyRTE5QkJBQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP7dsSgdkKxfNs8oRmdTGZ4eqt yhv/hQoqCmfr/AmgyrA0sg2MH96ufqFnM5ZeL95MckmQ38yK5yG92/Jg+N7U3oEG 2fcDbiQCXK+facOUrVw0Ugcl94zE3Pi1oFbk+/iJU2beSRd//vm+PDpgRLDivdjc 1hN4CPs4FJu7NSk9CONnZsjO3lGesPnwCju98G6GW8nwn+pUu7ibTOWD8HGN7cKK XmHQO3yrmVEpzInDgbLEISKnxEJ3+MJA9ZXYEkJvdQfe0jyhuBxoF/u7dg/OtLnN LGZQqZtuuX109D7X/tBpZYp5Xkn5RixTKMCMkck+xlwpxThxsFT51VbEs4YvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXt3X24q4d+NSrcWA70fE0uGbuskwHwYDVR0j BBgwFoAU0A9IvId5EP3Qt/8in9faUWdpyQswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMC9EMDBGNDhCQzg3 NzkxMEZERDBCN0ZGMjI5RkQ3REE1MTY3NjlDOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2NzY5 QzkwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKwMA0GCSqG SIb3DQEBCwUAA4IBAQBkpyA7kC7BkfguQvHdZaqsZovbuL4edCZ7ym/c0q99DFBp eu1j8gw0dN8nwq1fZoF7LziAUfqDlsNiU0R2FDsMwE0NMBmHdFV4pG18YY7eGFfH OKNU3pGDr1C7tg647D64JV2BuKzj97kR/GypuwH1PR5MI5PID07CNnly5t9YQOhh irJsNTHcpu940PuLcsYNeCgHZZckwH8cRWi5H9iTajL1dXU44OyJXfNt/njQ3Nh2 ajyWgvINRc2VOX9GHStyZkwt/WHkWtEMJR0wBcnRTMl97SlzIBgc8i+cQh1Q5Km9 NAlTD7qXkVMy7FVmsOGAEYGvXIY7TijqWjWTvVhX -----END CERTIFICATE-----Generated at Wed Apr 30 00:14:22 2025 by rpki-client