$ rpki-client -vvf repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa File: 3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa (raw, json) Hash identifier: p3DpYgemTsXSVOH+PUaAJGeFQs3bjVbh/jL7f1e5HC4= Subject key identifier: 8E:AA:89:0D:4F:8D:DC:DA:D0:9C:20:96:01:BE:03:ED:2C:E4:49:52 Certificate issuer: /CN=9B2DB6A80E8A5860943D5E249BCF6F2C47D48549 Certificate serial: 05CB8164F0AB8C0DD2F0326C9594C45FDF4F150D Authority key identifier: 9B:2D:B6:A8:0E:8A:58:60:94:3D:5E:24:9B:CF:6F:2C:47:D4:85:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa Signing time: Tue 21 Oct 2025 13:00:02 +0000 ROA not before: Tue 21 Oct 2025 12:55:02 +0000 ROA not after: Tue 20 Oct 2026 13:00:02 +0000 asID: 152758 IP address blocks: 157.66.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.crl rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 05:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:cb:81:64:f0:ab:8c:0d:d2:f0:32:6c:95:94:c4:5f:df:4f:15:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2DB6A80E8A5860943D5E249BCF6F2C47D48549 Validity Not Before: Oct 21 12:55:02 2025 GMT Not After : Oct 20 13:00:02 2026 GMT Subject: CN=8EAA890D4F8DDCDAD09C209601BE03ED2CE44952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ed:8b:18:60:4a:73:46:5b:4e:25:e8:11:a8: d3:d8:c0:56:35:0e:cd:40:91:eb:53:d0:47:d7:bc: 4e:76:db:a3:11:4a:f6:55:3e:f9:0a:7b:ed:2d:fc: 4c:37:cb:a7:83:e4:a3:b5:ce:2b:96:13:67:9d:b5: 28:43:ff:c6:bf:b6:8b:35:f7:21:17:5d:91:1a:dc: eb:29:5e:7b:ea:15:d1:18:9e:92:52:ee:89:fd:d7: f4:f4:7d:c6:b0:a3:2c:7e:2b:f3:46:1c:42:45:b8: 69:ca:07:bf:ef:3c:18:40:34:72:a7:68:22:4f:9b: 8b:db:b8:75:88:18:7d:2d:a6:88:5f:21:ca:58:83: b9:02:fd:42:85:5e:94:9f:05:38:24:46:cb:14:f0: 1b:1d:00:83:67:fd:6c:0a:c5:5d:e0:75:b8:60:63: 47:d4:dd:b7:49:78:c3:01:b9:f1:b4:db:d1:8b:a2: f0:62:32:cb:36:f1:e9:c5:74:bd:15:1c:1e:d5:e6: da:1c:f3:c7:44:e4:ab:6f:10:ca:d9:ef:43:a0:bb: 33:7a:e9:72:fe:75:4e:42:15:7c:73:51:ce:cd:9c: 79:9f:a2:47:e1:fa:3b:56:b7:87:95:69:7f:42:93: bc:aa:d7:7e:62:7d:57:3c:d2:a9:a0:cb:84:2a:ca: 3f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AA:89:0D:4F:8D:DC:DA:D0:9C:20:96:01:BE:03:ED:2C:E4:49:52 X509v3 Authority Key Identifier: keyid:9B:2D:B6:A8:0E:8A:58:60:94:3D:5E:24:9B:CF:6F:2C:47:D4:85:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.238.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:74:06:52:8e:0f:87:7e:13:2c:56:3a:d8:42:97:e4:64:f6: 8c:48:57:1b:4c:59:69:60:53:94:6f:e7:58:88:17:a5:76:2e: a3:e4:1b:07:cb:0d:4c:ec:f3:91:dd:2c:34:3f:20:eb:e3:23: 63:28:41:c2:0a:dd:88:db:15:34:6c:2e:96:7a:c5:26:10:a4: 61:6e:1b:5d:f0:93:76:e8:3c:1d:c3:b8:d0:fc:d2:44:cd:34: d7:5e:da:2c:50:66:5a:fc:32:9d:65:21:11:b0:5e:5b:0d:e0: a0:db:c4:91:ef:48:7b:c8:d0:95:75:7c:d9:fd:c0:da:28:d8: b4:66:20:3b:c3:19:93:12:fb:6b:eb:92:c1:a2:8e:d7:42:02: d3:0b:f0:54:de:cc:b9:88:a1:b8:47:99:81:d8:cb:da:5c:79: 04:5c:71:20:7c:9e:bc:54:0b:91:1b:d0:fc:2d:ce:e6:6b:2e: b9:0e:05:32:45:95:19:2d:bc:b7:14:a0:34:7d:e5:3d:e9:ce: 81:15:28:0d:1e:d0:0d:b5:16:7c:cc:ee:7b:47:d6:72:10:43: 8e:1d:c8:e7:c1:33:21:d1:0c:cc:c3:da:b6:37:04:cd:4e:17: 5c:8e:52:ee:13:b2:b6:36:06:3a:36:13:c8:4d:04:ec:fe:6b: a0:07:3c:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBcuBZPCrjA3S8DJslZTEX99PFQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyREI2QTgwRThBNTg2MDk0M0Q1RTI0OUJDRjZGMkM0 N0Q0ODU0OTAeFw0yNTEwMjExMjU1MDJaFw0yNjEwMjAxMzAwMDJaMDMxMTAvBgNV BAMTKDhFQUE4OTBENEY4RERDREFEMDlDMjA5NjAxQkUwM0VEMkNFNDQ5NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17YsYYEpzRltOJegRqNPYwFY1 Ds1AketT0EfXvE5226MRSvZVPvkKe+0t/Ew3y6eD5KO1ziuWE2edtShD/8a/tos1 9yEXXZEa3OspXnvqFdEYnpJS7on91/T0fcawoyx+K/NGHEJFuGnKB7/vPBhANHKn aCJPm4vbuHWIGH0tpohfIcpYg7kC/UKFXpSfBTgkRssU8BsdAINn/WwKxV3gdbhg Y0fU3bdJeMMBufG029GLovBiMss28enFdL0VHB7V5toc88dE5KtvEMrZ70OguzN6 6XL+dU5CFXxzUc7NnHmfokfh+jtWt4eVaX9Ck7yq135ifVc80qmgy4Qqyj+7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjqqJDU+N3NrQnCCWAb4D7SzkSVIwHwYDVR0j BBgwFoAUmy22qA6KWGCUPV4km89vLEfUhUkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2RkMjUxOS0zMDc4LTQ3ZDMtOWU4Ni00OGZkM2JkZTc2YzgvMC85QjJEQjZBODBF OEE1ODYwOTQzRDVFMjQ5QkNGNkYyQzQ3RDQ4NTQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUIyREI2QTgwRThBNTg2MDk0M0Q1RTI0OUJDRjZGMkM0N0Q0 ODU0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZGQyNTE5LTMwNzgtNDdkMy05 ZTg2LTQ4ZmQzYmRlNzZjOC8wLzMxMzUzNzJlMzYzNjJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnULuMA0GCSqG SIb3DQEBCwUAA4IBAQAudAZSjg+HfhMsVjrYQpfkZPaMSFcbTFlpYFOUb+dYiBel di6j5BsHyw1M7POR3Sw0PyDr4yNjKEHCCt2I2xU0bC6WesUmEKRhbhtd8JN26Dwd w7jQ/NJEzTTXXtosUGZa/DKdZSERsF5bDeCg28SR70h7yNCVdXzZ/cDaKNi0ZiA7 wxmTEvtr65LBoo7XQgLTC/BU3sy5iKG4R5mB2MvaXHkEXHEgfJ68VAuRG9D8Lc7m ay65DgUyRZUZLby3FKA0feU96c6BFSgNHtANtRZ8zO57R9ZyEEOOHcjnwTMh0QzM w9q2NwTNThdcjlLuE7K2NgY6NhPITQTs/mugBzw/ -----END CERTIFICATE-----Generated at Wed Nov 5 10:35:47 2025 by rpki-client