$ rpki-client -vvf repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa File: 3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa (raw, json) Hash identifier: qS0Y7OvIPpcM2gAdCGVHw4DZGPjirzEO0sHYxu8EXaU= Subject key identifier: C5:B3:6F:75:75:8F:95:38:4A:1B:EA:F8:E8:B6:F7:14:E4:E8:AD:DE Certificate issuer: /CN=72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16 Certificate serial: 66F72A36382BEE843D87766CF41C0071F258AE04 Authority key identifier: 72:D8:DA:FD:48:1B:3F:8F:AC:2B:25:99:C9:E3:EC:ED:FA:3F:4E:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa Signing time: Mon 29 Sep 2025 06:00:01 +0000 ROA not before: Mon 29 Sep 2025 05:55:01 +0000 ROA not after: Mon 28 Sep 2026 06:00:01 +0000 asID: 152372 IP address blocks: 157.15.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.crl rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 04:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:f7:2a:36:38:2b:ee:84:3d:87:76:6c:f4:1c:00:71:f2:58:ae:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16 Validity Not Before: Sep 29 05:55:01 2025 GMT Not After : Sep 28 06:00:01 2026 GMT Subject: CN=C5B36F75758F95384A1BEAF8E8B6F714E4E8ADDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3a:b9:08:75:01:df:f5:ff:24:9e:90:03:93: 1b:f1:a6:c7:b7:bb:1b:a3:75:a1:89:40:2a:ba:27: 6b:bf:84:05:65:cb:06:18:62:6b:94:2a:38:d6:87: bf:20:74:e5:33:95:d7:54:3e:71:1c:4b:0a:88:6c: 52:36:79:28:92:19:25:0e:00:0d:1f:e5:cb:cd:c7: 63:29:5a:20:aa:c2:55:8c:15:07:e5:4a:22:7e:1c: 28:c8:fb:11:a5:ac:6a:6a:3f:b8:ef:1f:c4:38:f1: af:ba:2c:17:83:7f:df:85:07:45:9d:73:38:0c:64: 54:56:cd:16:35:a9:43:63:57:9d:71:49:9e:db:6a: 9e:1c:6a:63:de:f8:73:08:18:ed:21:e2:26:9e:89: ab:9c:bd:6b:ad:2c:1e:2c:99:ee:5e:a4:6a:2d:06: 08:e5:f3:37:37:46:ea:ae:fa:48:79:9e:ad:85:a1: af:89:fc:fc:de:c9:b5:b5:8d:a4:e2:e3:d7:c8:ed: 70:fa:8a:fb:99:2a:83:e3:d9:b6:9a:ee:07:3d:3c: 82:65:c3:5f:74:e6:8b:64:f9:01:ca:63:c6:b5:df: da:7e:49:d2:93:41:9f:57:7b:96:0e:68:4a:35:37: 55:aa:f7:f6:70:dc:45:48:37:9e:23:95:64:b2:8c: 58:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B3:6F:75:75:8F:95:38:4A:1B:EA:F8:E8:B6:F7:14:E4:E8:AD:DE X509v3 Authority Key Identifier: keyid:72:D8:DA:FD:48:1B:3F:8F:AC:2B:25:99:C9:E3:EC:ED:FA:3F:4E:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/72D8DAFD481B3F8FAC2B2599C9E3ECEDFA3F4E16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.116.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:0e:57:a8:80:97:4e:67:05:63:3b:bd:cc:cb:06:8d:f4:07: 8f:bd:4b:ae:f1:5c:0c:68:d6:49:93:9f:6a:1c:f4:20:4a:89: f1:8c:d4:a8:7d:cc:eb:89:f1:1c:20:4a:4a:98:24:0c:a0:47: 84:68:37:a0:e7:52:7c:ed:5a:1d:9e:1a:94:75:89:2f:86:28: b5:8a:18:14:98:06:da:71:2d:aa:d4:5f:70:fa:15:cc:92:b7: 0e:a4:9c:b7:0b:72:3d:0f:ef:36:b7:f7:32:89:3a:75:20:7e: 46:e5:b5:eb:5e:0e:60:99:a8:68:cd:af:d0:db:ec:ca:a3:86: 9c:9b:1e:03:cd:49:11:cc:f8:b2:80:0a:62:94:c7:b0:21:f8: 7f:f0:fc:11:9a:51:19:d0:8f:5a:b0:38:05:30:1c:41:3b:ed: 00:fa:52:4a:57:9b:d3:b6:11:1a:96:a5:08:f8:66:45:f0:2a: 8b:14:44:0e:4a:b8:a9:fa:c1:94:7f:a6:e2:4a:b2:a1:4b:57: 18:78:39:69:b1:68:cb:65:1a:fa:0e:f7:e5:d8:e7:04:9e:13: f9:ca:67:13:ac:ac:27:bd:8f:c4:54:0b:88:75:42:9e:e9:6a: e8:98:2b:f3:61:b0:e9:97:7e:20:ee:f8:88:db:7a:e4:5d:a6: b5:86:ae:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZvcqNjgr7oQ9h3Zs9BwAcfJYrgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEOERBRkQ0ODFCM0Y4RkFDMkIyNTk5QzlFM0VDRURG QTNGNEUxNjAeFw0yNTA5MjkwNTU1MDFaFw0yNjA5MjgwNjAwMDFaMDMxMTAvBgNV BAMTKEM1QjM2Rjc1NzU4Rjk1Mzg0QTFCRUFGOEU4QjZGNzE0RTRFOEFEREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXOrkIdQHf9f8knpADkxvxpse3 uxujdaGJQCq6J2u/hAVlywYYYmuUKjjWh78gdOUzlddUPnEcSwqIbFI2eSiSGSUO AA0f5cvNx2MpWiCqwlWMFQflSiJ+HCjI+xGlrGpqP7jvH8Q48a+6LBeDf9+FB0Wd czgMZFRWzRY1qUNjV51xSZ7bap4camPe+HMIGO0h4iaeiaucvWutLB4sme5epGot Bgjl8zc3Ruqu+kh5nq2Foa+J/PzeybW1jaTi49fI7XD6ivuZKoPj2baa7gc9PIJl w1905otk+QHKY8a139p+SdKTQZ9Xe5YOaEo1N1Wq9/Zw3EVIN54jlWSyjFjlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxbNvdXWPlThKG+r46Lb3FOTord4wHwYDVR0j BBgwFoAUctja/UgbP4+sKyWZyePs7fo/ThYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDdmNmNmNi1kZDJiLTQ4MjMtYjI2NC1lMmJmNGYzMGFiZmUvMC83MkQ4REFGRDQ4 MUIzRjhGQUMyQjI1OTlDOUUzRUNFREZBM0Y0RTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzJEOERBRkQ0ODFCM0Y4RkFDMkIyNTk5QzlFM0VDRURGQTNG NEUxNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0N2Y2Y2Y2LWRkMmItNDgyMy1i MjY0LWUyYmY0ZjMwYWJmZS8wLzMxMzUzNzJlMzEzNTJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQ90MA0GCSqG SIb3DQEBCwUAA4IBAQCPDleogJdOZwVjO73MywaN9AePvUuu8VwMaNZJk59qHPQg SonxjNSofczrifEcIEpKmCQMoEeEaDeg51J87VodnhqUdYkvhii1ihgUmAbacS2q 1F9w+hXMkrcOpJy3C3I9D+82t/cyiTp1IH5G5bXrXg5gmahoza/Q2+zKo4acmx4D zUkRzPiygApilMewIfh/8PwRmlEZ0I9asDgFMBxBO+0A+lJKV5vTthEalqUI+GZF 8CqLFEQOSrip+sGUf6biSrKhS1cYeDlpsWjLZRr6Dvfl2OcEnhP5ymcTrKwnvY/E VAuIdUKe6WromCvzYbDpl34g7viI23rkXaa1hq6P -----END CERTIFICATE-----Generated at Wed Nov 5 02:46:37 2025 by rpki-client