$ rpki-client -vvf repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa File: 3135372e36362e342e302f32332d3233203d3e20313336383633.roa (raw, json) Hash identifier: 1UK1zxP1h56AVvKuHuDtaKwGRBaj3UFi5/u+i0iGx0g= Subject key identifier: BB:C4:F5:89:48:11:83:CE:7E:16:01:63:70:E0:EF:66:63:05:9B:F4 Certificate issuer: /CN=676E12EDA912B67493E88316A428CFDBCAB51941 Certificate serial: 14E37A906E341DB0DB618360A6FE3A23AB523DBA Authority key identifier: 67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa Signing time: Sat 03 May 2025 04:00:02 +0000 ROA not before: Sat 03 May 2025 03:55:02 +0000 ROA not after: Sat 02 May 2026 04:00:02 +0000 asID: 136863 IP address blocks: 157.66.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e3:7a:90:6e:34:1d:b0:db:61:83:60:a6:fe:3a:23:ab:52:3d:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=676E12EDA912B67493E88316A428CFDBCAB51941 Validity Not Before: May 3 03:55:02 2025 GMT Not After : May 2 04:00:02 2026 GMT Subject: CN=BBC4F589481183CE7E16016370E0EF6663059BF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:43:6c:f2:17:7c:10:ee:4f:49:89:72:04:5e: e3:ed:eb:38:64:14:b9:b8:f6:2b:c2:45:70:f7:dd: 75:b4:90:97:c1:92:d8:49:1c:e2:eb:7b:50:40:8d: e8:f9:03:7e:07:ab:62:ac:03:c1:b8:9e:4a:3e:bc: 75:3c:1b:1f:61:21:98:26:2c:d1:2d:d7:b1:17:70: ee:01:86:98:42:44:68:93:0b:21:72:53:e3:ee:0b: 2d:be:39:4f:e4:91:de:ad:85:fb:5c:f1:99:46:a7: af:36:57:84:ca:3a:8f:5b:c3:1a:01:38:82:37:d2: bf:33:e6:6c:f2:b5:ab:03:1c:b2:86:78:11:9d:9b: 81:b7:db:d0:8e:57:f6:26:c9:86:74:58:bd:60:4c: 69:ae:bc:e6:8c:74:9c:3d:83:a6:c6:a8:c2:40:82: b0:2a:dc:6e:df:32:a9:ea:03:60:c6:94:46:37:97: f4:66:ee:6d:27:51:38:13:f4:65:03:64:16:61:95: 16:53:06:27:c4:9d:66:0a:c2:aa:c4:44:d3:cb:ee: 05:ca:74:62:51:1f:fc:b3:78:fe:c8:88:43:55:a8: 75:f3:18:17:bc:d7:e7:f5:a4:7b:fe:59:82:11:54: 3d:a2:cc:f3:ba:a5:00:85:e7:cf:90:ae:4b:52:08: dd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C4:F5:89:48:11:83:CE:7E:16:01:63:70:E0:EF:66:63:05:9B:F4 X509v3 Authority Key Identifier: keyid:67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.4.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:08:0b:8e:bb:54:b6:7f:c4:d6:01:1e:4f:b8:75:7b:8c:84: 61:68:0a:61:e3:b5:0a:42:57:b5:9e:b8:5f:25:c0:38:8e:e6: a2:be:02:66:4a:96:75:75:59:e6:80:f2:2e:97:71:3d:f2:81: f2:7d:b9:e1:99:24:dd:da:87:c3:8e:ab:94:77:89:99:0a:37: 33:9e:91:cd:73:fd:db:5e:1f:06:ac:c3:c0:f7:72:6c:48:44: 35:0f:5a:5c:f3:39:c0:65:bb:3b:75:d1:08:d9:32:c9:85:45: f5:d3:1b:f6:fb:af:08:7f:51:33:66:b8:2f:b0:03:00:c6:07: ba:c7:b7:d1:4b:48:70:c3:de:e0:ef:03:ee:cf:b8:52:8f:28: 04:9e:15:62:ff:c2:f9:0e:c6:fb:ab:6c:06:d0:c9:6a:7f:aa: 70:3e:f2:7a:94:67:3e:ba:34:7f:5b:5a:5b:49:2f:34:52:d6: ef:a4:5a:c9:d8:49:89:e1:0b:ce:f7:34:a1:88:58:fb:58:89: fa:37:53:9e:36:a4:69:e9:fe:46:01:c3:f4:5b:59:14:a4:b5: 7c:cd:bd:8b:0c:98:57:35:82:4f:7c:26:13:65:51:2d:9b:32: be:96:12:1f:5c:05:1f:22:ea:f5:7f:53:f6:22:18:eb:da:15: b8:d5:4d:cb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFON6kG40HbDbYYNgpv46I6tSPbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJD QUI1MTk0MTAeFw0yNTA1MDMwMzU1MDJaFw0yNjA1MDIwNDAwMDJaMDMxMTAvBgNV BAMTKEJCQzRGNTg5NDgxMTgzQ0U3RTE2MDE2MzcwRTBFRjY2NjMwNTlCRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnQ2zyF3wQ7k9JiXIEXuPt6zhk FLm49ivCRXD33XW0kJfBkthJHOLre1BAjej5A34Hq2KsA8G4nko+vHU8Gx9hIZgm LNEt17EXcO4BhphCRGiTCyFyU+PuCy2+OU/kkd6thftc8ZlGp682V4TKOo9bwxoB OII30r8z5mzytasDHLKGeBGdm4G329COV/YmyYZ0WL1gTGmuvOaMdJw9g6bGqMJA grAq3G7fMqnqA2DGlEY3l/Rm7m0nUTgT9GUDZBZhlRZTBifEnWYKwqrERNPL7gXK dGJRH/yzeP7IiENVqHXzGBe81+f1pHv+WYIRVD2izPO6pQCF58+QrktSCN2JAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUu8T1iUgRg85+FgFjcODvZmMFm/QwHwYDVR0j BBgwFoAUZ24S7akStnST6IMWpCjP28q1GUEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjY0YmZiMi1kNDFkLTQzMTctYjkyZC1iYjk0NDFmZDBkY2YvMC82NzZFMTJFREE5 MTJCNjc0OTNFODgzMTZBNDI4Q0ZEQkNBQjUxOTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJDQUI1 MTk0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzQyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgQwDQYJKoZIhvcN AQELBQADggEBAI4IC467VLZ/xNYBHk+4dXuMhGFoCmHjtQpCV7WeuF8lwDiO5qK+ AmZKlnV1WeaA8i6XcT3ygfJ9ueGZJN3ah8OOq5R3iZkKNzOekc1z/dteHwasw8D3 cmxIRDUPWlzzOcBluzt10QjZMsmFRfXTG/b7rwh/UTNmuC+wAwDGB7rHt9FLSHDD 3uDvA+7PuFKPKASeFWL/wvkOxvurbAbQyWp/qnA+8nqUZz66NH9bWltJLzRS1u+k WsnYSYnhC873NKGIWPtYifo3U542pGnp/kYBw/RbWRSktXzNvYsMmFc1gk98JhNl US2bMr6WEh9cBR8i6vV/U/YiGOvaFbjVTcs= -----END CERTIFICATE-----Generated at Tue Nov 4 23:33:56 2025 by rpki-client