$ rpki-client -vvf repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/3135372e36362e392e302f32342d3234203d3e20313532373436.roa File: 3135372e36362e392e302f32342d3234203d3e20313532373436.roa (raw, json) Hash identifier: yzGdWGx0/LyfGs3EaQckTyBR5cGJiuvQbeLsUkZKPDA= Subject key identifier: 0A:26:F3:BC:72:B0:F0:BE:5A:7E:7E:94:8B:4F:51:1A:6B:36:9C:14 Certificate issuer: /CN=F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD Certificate serial: 5B1ECD9EBB51F1DBB33F9DFF72EFB7E3DAE06B00 Authority key identifier: F9:93:0E:30:8D:30:B3:E1:5C:FF:F7:EB:0D:34:37:A0:B7:EC:E7:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/3135372e36362e392e302f32342d3234203d3e20313532373436.roa Signing time: Thu 01 May 2025 10:00:00 +0000 ROA not before: Thu 01 May 2025 09:55:00 +0000 ROA not after: Thu 30 Apr 2026 10:00:00 +0000 asID: 152746 IP address blocks: 157.66.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.crl rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 00:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1e:cd:9e:bb:51:f1:db:b3:3f:9d:ff:72:ef:b7:e3:da:e0:6b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD Validity Not Before: May 1 09:55:00 2025 GMT Not After : Apr 30 10:00:00 2026 GMT Subject: CN=0A26F3BC72B0F0BE5A7E7E948B4F511A6B369C14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d7:b4:7e:09:79:dd:d2:2c:5e:03:72:ea:67: 16:15:ae:b4:97:20:db:10:b9:9d:46:2b:ea:9d:4e: 28:b3:36:3b:89:b1:70:ea:dc:00:30:82:de:f1:cf: ad:55:b8:9e:17:e0:81:db:90:d4:90:b1:da:49:46: 00:fe:74:60:3d:66:1b:5d:d6:1a:cd:e2:60:fd:99: 6f:ca:25:f3:1e:9d:e7:da:75:ff:0e:b5:a2:0a:aa: 10:8a:2f:ef:83:53:4c:e1:58:bf:77:d7:87:75:e5: 83:9a:7f:44:c7:3d:4c:d7:37:f3:00:77:19:3e:07: 36:4f:05:4c:7e:e4:9a:bd:b6:fb:20:d2:7d:93:68: 31:e9:d2:33:f6:e2:f2:e7:68:a1:79:76:d2:89:f1: 7f:ee:fa:70:83:9b:f3:5b:7a:80:d6:ef:32:49:91: c2:b2:37:cf:63:85:58:ab:7c:62:7b:b8:a2:9f:95: 34:d3:34:c1:f2:d6:51:d3:f7:7a:20:95:2d:1e:51: 0b:c2:d5:82:63:fa:55:9f:c1:9e:17:b2:73:35:e9: db:99:9f:dc:21:21:ca:24:06:e2:d5:df:0b:d6:a7: 76:0e:c7:e4:04:dd:71:4a:d5:cb:22:24:e1:2e:8d: 8e:15:dc:1c:59:49:5b:1c:e7:26:df:a9:70:f9:12: 66:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:26:F3:BC:72:B0:F0:BE:5A:7E:7E:94:8B:4F:51:1A:6B:36:9C:14 X509v3 Authority Key Identifier: keyid:F9:93:0E:30:8D:30:B3:E1:5C:FF:F7:EB:0D:34:37:A0:B7:EC:E7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F9930E308D30B3E15CFFF7EB0D3437A0B7ECE7BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bebf55ca-d783-4a3b-95cc-73cc346db46e/0/3135372e36362e392e302f32342d3234203d3e20313532373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.9.0/24 Signature Algorithm: sha256WithRSAEncryption 55:69:82:a3:d7:33:f3:0e:01:43:23:27:01:01:31:81:4a:e2: 07:0f:ee:9f:cc:89:5d:cd:7d:3b:2e:22:30:fd:71:dd:da:d3: 39:2f:08:fe:f2:6a:ae:48:a5:03:3e:ff:80:a8:66:6f:0f:29: ac:71:c4:3d:fc:ea:e4:12:0b:17:a1:07:dc:37:4d:1e:ee:c6: 22:ad:0a:9c:ed:09:54:be:ed:16:23:d6:92:4b:a2:9b:8e:de: 35:c9:9a:af:a3:ef:28:f5:ab:94:f6:46:f5:64:0c:2d:45:26: 6a:89:2a:f1:f6:91:1f:1d:ef:50:99:01:94:52:d2:ee:0a:2c: ef:ef:c2:04:8c:c4:cb:88:41:e8:d0:5a:f0:57:26:38:87:25: 7d:15:35:36:83:72:2a:66:f0:fe:76:9a:b9:47:45:4a:95:c7: 37:5d:70:29:fa:d4:f5:d3:cb:c9:90:8c:06:b3:24:8a:2a:4a: c6:53:32:42:1f:44:22:61:8d:46:98:5d:3e:7d:fb:98:43:ad: 22:c9:82:a4:ce:4b:13:cd:26:0f:54:0c:9f:e1:a0:0b:6d:1e: 5d:e7:63:47:44:3a:c2:2d:02:eb:b8:d1:48:5a:4f:6a:69:16: 97:bb:ce:ee:ff:d2:54:cf:2e:0b:14:e9:39:2c:64:ad:6c:60: 49:2f:0e:07 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWx7NnrtR8duzP53/cu+349rgawAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk5MzBFMzA4RDMwQjNFMTVDRkZGN0VCMEQzNDM3QTBC N0VDRTdCRDAeFw0yNTA1MDEwOTU1MDBaFw0yNjA0MzAxMDAwMDBaMDMxMTAvBgNV BAMTKDBBMjZGM0JDNzJCMEYwQkU1QTdFN0U5NDhCNEY1MTFBNkIzNjlDMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ17R+CXnd0ixeA3LqZxYVrrSX INsQuZ1GK+qdTiizNjuJsXDq3AAwgt7xz61VuJ4X4IHbkNSQsdpJRgD+dGA9Zhtd 1hrN4mD9mW/KJfMenefadf8OtaIKqhCKL++DU0zhWL9314d15YOaf0THPUzXN/MA dxk+BzZPBUx+5Jq9tvsg0n2TaDHp0jP24vLnaKF5dtKJ8X/u+nCDm/NbeoDW7zJJ kcKyN89jhVirfGJ7uKKflTTTNMHy1lHT93oglS0eUQvC1YJj+lWfwZ4XsnM16duZ n9whIcokBuLV3wvWp3YOx+QE3XFK1csiJOEujY4V3BxZSVsc5ybfqXD5EmYJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCibzvHKw8L5afn6Ui09RGms2nBQwHwYDVR0j BBgwFoAU+ZMOMI0ws+Fc//frDTQ3oLfs570wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZWJmNTVjYS1kNzgzLTRhM2ItOTVjYy03M2NjMzQ2ZGI0NmUvMC9GOTkzMEUzMDhE MzBCM0UxNUNGRkY3RUIwRDM0MzdBMEI3RUNFN0JELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjk5MzBFMzA4RDMwQjNFMTVDRkZGN0VCMEQzNDM3QTBCN0VD RTdCRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlYmY1NWNhLWQ3ODMtNGEzYi05 NWNjLTczY2MzNDZkYjQ2ZS8wLzMxMzUzNzJlMzYzNjJlMzkyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgkwDQYJKoZIhvcN AQELBQADggEBAFVpgqPXM/MOAUMjJwEBMYFK4gcP7p/MiV3NfTsuIjD9cd3a0zkv CP7yaq5IpQM+/4CoZm8PKaxxxD386uQSCxehB9w3TR7uxiKtCpztCVS+7RYj1pJL opuO3jXJmq+j7yj1q5T2RvVkDC1FJmqJKvH2kR8d71CZAZRS0u4KLO/vwgSMxMuI QejQWvBXJjiHJX0VNTaDcipm8P52mrlHRUqVxzddcCn61PXTy8mQjAazJIoqSsZT MkIfRCJhjUaYXT59+5hDrSLJgqTOSxPNJg9UDJ/hoAttHl3nY0dEOsItAuu40Uha T2ppFpe7zu7/0lTPLgsU6TksZK1sYEkvDgc= -----END CERTIFICATE-----Generated at Wed Jun 18 19:43:39 2025 by rpki-client