$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa File: 3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa (raw, json) Hash identifier: /s+DQzvA6xhmuW7v3g8lejSeio++18zSamEuf0+coIs= Subject key identifier: 2C:89:6A:61:82:81:73:54:72:C8:96:D1:4E:E0:F1:C4:61:7B:04:2E Certificate issuer: /CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Certificate serial: 015E5DE2959CFBEE5DBFDA6FF77A6D35AB08765A Authority key identifier: D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa Signing time: Fri 25 Apr 2025 17:02:19 +0000 ROA not before: Fri 25 Apr 2025 16:57:19 +0000 ROA not after: Fri 24 Apr 2026 17:02:19 +0000 asID: 152756 IP address blocks: 157.66.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 17:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:5e:5d:e2:95:9c:fb:ee:5d:bf:da:6f:f7:7a:6d:35:ab:08:76:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Validity Not Before: Apr 25 16:57:19 2025 GMT Not After : Apr 24 17:02:19 2026 GMT Subject: CN=2C896A618281735472C896D14EE0F1C4617B042E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9c:e9:70:d5:38:41:d9:32:60:bb:33:4d:dc: 22:ba:70:03:43:91:3d:c9:f8:c6:d8:b4:ad:96:ac: a0:c7:9a:8a:9b:38:a0:6b:5b:fa:69:48:30:dd:cd: 83:7b:de:5c:41:20:da:d3:9c:7e:33:2d:3d:99:d4: 11:2a:76:20:c0:30:e0:1d:17:e3:61:f0:02:53:58: 9b:50:2e:22:95:ea:a7:61:5b:72:75:0a:d0:46:8c: 9c:2d:72:37:55:f8:19:5c:b1:0e:89:b4:45:62:16: 73:1f:fa:46:31:37:78:0b:e4:cd:3e:c7:0b:01:31: 95:fd:c9:94:25:98:84:73:cf:26:8f:c8:07:59:0e: 32:c3:f3:65:cf:89:b6:8c:55:b3:4f:bd:dd:63:cd: 07:d7:3e:6b:0f:9b:38:ed:8a:1a:97:3d:56:e0:63: 10:04:91:c9:37:fd:26:be:cf:e8:a8:8f:ca:28:be: aa:11:ce:b3:c8:4b:ac:f7:b9:64:a6:ea:79:e5:97: 2a:96:f9:d9:a8:0d:fa:ff:89:f9:17:03:29:c8:53: 03:ec:f4:f2:0e:8a:e4:fe:2b:4d:61:13:d0:64:fe: 51:34:1e:b0:e2:8f:9f:3a:c0:a9:13:67:62:a1:ea: 42:34:f0:c1:2e:99:f3:d9:68:a7:d2:7e:21:16:2b: 26:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:89:6A:61:82:81:73:54:72:C8:96:D1:4E:E0:F1:C4:61:7B:04:2E X509v3 Authority Key Identifier: keyid:D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.176.0/24 Signature Algorithm: sha256WithRSAEncryption 17:ab:47:b0:23:fd:68:16:19:88:6f:4a:e7:3a:d3:32:a2:fa: 6e:cb:f7:b5:97:43:ad:74:a3:1c:1d:48:0f:e5:c2:a2:4e:ee: 94:d8:85:4c:f2:4a:54:41:40:58:33:42:e8:3e:e1:de:02:31: 38:a5:55:25:22:15:52:69:cb:7a:90:c8:52:f9:0b:d6:fc:c8: 96:e9:09:53:42:0e:3f:6a:be:82:4c:e9:dd:2d:8d:c3:f6:23: 30:c9:b5:61:9b:c7:d7:87:b9:5a:0e:5d:c6:05:e7:a1:cd:e4: d9:30:46:de:d6:13:2a:0a:11:ad:f1:b5:31:c5:6c:11:2a:62: 84:be:c2:9e:52:ee:d8:62:bb:89:22:42:cf:93:37:3d:52:c0: a5:bc:fd:2f:b1:9e:8e:5a:a4:0f:0f:e1:f5:ab:de:7a:37:22: 76:4d:d5:7a:69:73:90:ec:9b:8e:c7:b9:97:7d:33:cc:0d:c8: 93:fd:80:53:9c:26:bf:7a:e6:d4:dc:53:65:e8:43:c7:74:46: 45:bb:a3:05:d7:98:3d:32:fc:eb:5b:d3:d6:2f:6a:06:fb:bf: 37:cc:f0:3f:1b:f7:a4:99:f9:b4:1e:46:c5:66:be:36:96:ea: 43:6c:01:e4:e8:f4:95:18:24:b9:26:f5:07:21:af:09:13:0a: c4:ad:05:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAV5d4pWc++5dv9pv93ptNasIdlowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2 NzY5QzkwQjAeFw0yNTA0MjUxNjU3MTlaFw0yNjA0MjQxNzAyMTlaMDMxMTAvBgNV BAMTKDJDODk2QTYxODI4MTczNTQ3MkM4OTZEMTRFRTBGMUM0NjE3QjA0MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGnOlw1ThB2TJguzNN3CK6cAND kT3J+MbYtK2WrKDHmoqbOKBrW/ppSDDdzYN73lxBINrTnH4zLT2Z1BEqdiDAMOAd F+Nh8AJTWJtQLiKV6qdhW3J1CtBGjJwtcjdV+BlcsQ6JtEViFnMf+kYxN3gL5M0+ xwsBMZX9yZQlmIRzzyaPyAdZDjLD82XPibaMVbNPvd1jzQfXPmsPmzjtihqXPVbg YxAEkck3/Sa+z+ioj8oovqoRzrPIS6z3uWSm6nnllyqW+dmoDfr/ifkXAynIUwPs 9PIOiuT+K01hE9Bk/lE0HrDij586wKkTZ2Kh6kI08MEumfPZaKfSfiEWKyY9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULIlqYYKBc1RyyJbRTuDxxGF7BC4wHwYDVR0j BBgwFoAU0A9IvId5EP3Qt/8in9faUWdpyQswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMC9EMDBGNDhCQzg3 NzkxMEZERDBCN0ZGMjI5RkQ3REE1MTY3NjlDOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2NzY5 QzkwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKwMA0GCSqG SIb3DQEBCwUAA4IBAQAXq0ewI/1oFhmIb0rnOtMyovpuy/e1l0OtdKMcHUgP5cKi Tu6U2IVM8kpUQUBYM0LoPuHeAjE4pVUlIhVSact6kMhS+QvW/MiW6QlTQg4/ar6C TOndLY3D9iMwybVhm8fXh7laDl3GBeehzeTZMEbe1hMqChGt8bUxxWwRKmKEvsKe Uu7YYruJIkLPkzc9UsClvP0vsZ6OWqQPD+H1q956NyJ2TdV6aXOQ7JuOx7mXfTPM DciT/YBTnCa/eubU3FNl6EPHdEZFu6MF15g9MvzrW9PWL2oG+783zPA/G/ekmfm0 HkbFZr42lupDbAHk6PSVGCS5JvUHIa8JEwrErQVv -----END CERTIFICATE-----Generated at Tue Apr 29 08:50:01 2025 by rpki-client