$ rpki-client -vvf repo-rpki.idnic.net/repo/ee7257bb-2195-4fd7-bcc5-9019ab49dba5/0/3135372e31352e32372e302f32342d3234203d3e20313532333835.roa File: 3135372e31352e32372e302f32342d3234203d3e20313532333835.roa (raw, json) Hash identifier: Olb5UAH0bGOuP1xREu1ehDMuAwFsYaccHtg3tVn/tDU= Subject key identifier: 01:1F:FD:90:E8:B8:BF:7B:03:EC:63:00:86:83:18:70:73:3E:AA:CD Certificate issuer: /CN=F694BC9CF5B570CC62014EB8B877448A76680AEF Certificate serial: 4A8B3B081603EE24D8AD7AF6CDA794A62924A7CA Authority key identifier: F6:94:BC:9C:F5:B5:70:CC:62:01:4E:B8:B8:77:44:8A:76:68:0A:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F694BC9CF5B570CC62014EB8B877448A76680AEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee7257bb-2195-4fd7-bcc5-9019ab49dba5/0/3135372e31352e32372e302f32342d3234203d3e20313532333835.roa Signing time: Fri 18 Jul 2025 03:00:01 +0000 ROA not before: Fri 18 Jul 2025 02:55:01 +0000 ROA not after: Fri 17 Jul 2026 03:00:01 +0000 asID: 152385 IP address blocks: 157.15.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee7257bb-2195-4fd7-bcc5-9019ab49dba5/0/F694BC9CF5B570CC62014EB8B877448A76680AEF.crl rsync://repo-rpki.idnic.net/repo/ee7257bb-2195-4fd7-bcc5-9019ab49dba5/0/F694BC9CF5B570CC62014EB8B877448A76680AEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F694BC9CF5B570CC62014EB8B877448A76680AEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:8b:3b:08:16:03:ee:24:d8:ad:7a:f6:cd:a7:94:a6:29:24:a7:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F694BC9CF5B570CC62014EB8B877448A76680AEF Validity Not Before: Jul 18 02:55:01 2025 GMT Not After : Jul 17 03:00:01 2026 GMT Subject: CN=011FFD90E8B8BF7B03EC630086831870733EAACD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cd:b1:33:c8:5f:d9:e4:6a:05:a4:f8:9d:0b: 1a:1c:ae:2d:24:48:da:04:d2:fc:1d:d2:3b:78:e1: 04:41:1e:7e:4f:7a:b5:5a:f0:90:51:e4:7d:55:2b: 21:b3:1d:c8:27:32:23:b1:7b:aa:a6:e5:aa:e1:6f: b9:da:29:55:d0:40:c7:60:72:89:dd:e8:78:38:b8: 0e:93:1f:bf:af:ce:e6:13:7b:f2:db:3c:b2:40:5a: 4c:ba:d7:d7:2e:92:f6:7f:6e:79:a0:5c:bd:5d:25: ae:00:9f:58:d6:34:fb:24:05:92:13:7b:04:b9:e4: af:f6:91:b5:8d:46:29:3b:57:b7:4e:2b:c9:7e:5f: 74:fb:09:d3:7a:10:e9:88:96:59:94:ed:0f:33:04: 50:76:eb:23:7c:55:0d:e7:ba:4e:6b:fe:b6:23:1e: 9a:37:2d:67:e9:d5:8b:43:a5:c4:2c:91:c5:9a:84: e4:da:a8:d9:d9:9a:3d:a1:a9:7b:b5:26:f4:64:a9: e7:f6:ef:53:0d:6e:00:fd:1e:7d:45:a8:ad:7f:e8: ea:f6:ad:6c:b4:9e:33:e8:02:c4:df:dd:29:8b:96: 61:30:25:92:e6:22:da:7d:6b:e2:e1:57:e1:9e:9c: 5b:5c:7e:70:c4:3b:03:c8:b7:16:45:dc:6a:86:0f: e8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1F:FD:90:E8:B8:BF:7B:03:EC:63:00:86:83:18:70:73:3E:AA:CD X509v3 Authority Key Identifier: keyid:F6:94:BC:9C:F5:B5:70:CC:62:01:4E:B8:B8:77:44:8A:76:68:0A:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee7257bb-2195-4fd7-bcc5-9019ab49dba5/0/F694BC9CF5B570CC62014EB8B877448A76680AEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F694BC9CF5B570CC62014EB8B877448A76680AEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee7257bb-2195-4fd7-bcc5-9019ab49dba5/0/3135372e31352e32372e302f32342d3234203d3e20313532333835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.27.0/24 Signature Algorithm: sha256WithRSAEncryption 49:31:55:dd:0b:cc:8d:81:dc:34:dc:e5:c5:d5:fa:a4:c5:cb: 6a:7a:6b:fc:d8:29:7b:d2:da:77:b1:a1:75:00:6b:4a:d2:e3: 81:b4:f4:d8:07:c1:ab:a1:d3:f8:e8:03:10:ec:6d:e7:9e:be: fe:a2:8c:2c:28:13:de:1b:42:5e:81:53:ca:17:a9:bd:77:a0: f8:b6:1f:8b:c5:11:91:f0:e6:c6:98:93:ed:a3:cf:a8:ee:8c: 9b:0f:d9:cb:d2:c1:4a:75:e8:11:ac:6e:4d:92:2c:1c:62:6a: b2:83:4d:08:27:9d:66:64:12:d1:ed:e8:b8:31:a9:1e:f5:94: 53:eb:69:e0:02:c3:67:3f:82:56:8f:38:20:20:06:90:09:8c: 73:42:5f:78:36:95:75:39:59:4f:7e:89:11:99:98:57:2a:89: c8:3c:12:73:be:9f:90:91:22:d7:40:94:bd:45:2f:ab:5e:d3: e8:bd:01:0e:b9:f0:52:ba:50:53:af:22:9d:8e:f6:fe:17:0a: f8:78:6d:91:10:90:2e:9a:7c:24:ae:6c:28:75:02:a5:4a:4c: 16:cd:9c:aa:af:97:8f:cf:fd:6a:7c:f5:ee:47:fb:9d:11:78: 6d:e5:44:01:53:ba:36:cc:7e:63:4c:6c:54:00:a9:be:66:8d: 80:e0:1f:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSos7CBYD7iTYrXr2zaeUpikkp8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5NEJDOUNGNUI1NzBDQzYyMDE0RUI4Qjg3NzQ0OEE3 NjY4MEFFRjAeFw0yNTA3MTgwMjU1MDFaFw0yNjA3MTcwMzAwMDFaMDMxMTAvBgNV BAMTKDAxMUZGRDkwRThCOEJGN0IwM0VDNjMwMDg2ODMxODcwNzMzRUFBQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCezbEzyF/Z5GoFpPidCxocri0k SNoE0vwd0jt44QRBHn5PerVa8JBR5H1VKyGzHcgnMiOxe6qm5arhb7naKVXQQMdg cond6Hg4uA6TH7+vzuYTe/LbPLJAWky619cukvZ/bnmgXL1dJa4An1jWNPskBZIT ewS55K/2kbWNRik7V7dOK8l+X3T7CdN6EOmIllmU7Q8zBFB26yN8VQ3nuk5r/rYj Hpo3LWfp1YtDpcQskcWahOTaqNnZmj2hqXu1JvRkqef271MNbgD9Hn1FqK1/6Or2 rWy0njPoAsTf3SmLlmEwJZLmItp9a+LhV+GenFtcfnDEOwPItxZF3GqGD+hlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAR/9kOi4v3sD7GMAhoMYcHM+qs0wHwYDVR0j BBgwFoAU9pS8nPW1cMxiAU64uHdEinZoCu8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTcyNTdiYi0yMTk1LTRmZDctYmNjNS05MDE5YWI0OWRiYTUvMC9GNjk0QkM5Q0Y1 QjU3MENDNjIwMTRFQjhCODc3NDQ4QTc2NjgwQUVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjY5NEJDOUNGNUI1NzBDQzYyMDE0RUI4Qjg3NzQ0OEE3NjY4 MEFFRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlNzI1N2JiLTIxOTUtNGZkNy1i Y2M1LTkwMTlhYjQ5ZGJhNS8wLzMxMzUzNzJlMzEzNTJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PGzANBgkqhkiG 9w0BAQsFAAOCAQEASTFV3QvMjYHcNNzlxdX6pMXLanpr/Ngpe9Lad7GhdQBrStLj gbT02AfBq6HT+OgDEOxt556+/qKMLCgT3htCXoFTyhepvXeg+LYfi8URkfDmxpiT 7aPPqO6Mmw/Zy9LBSnXoEaxuTZIsHGJqsoNNCCedZmQS0e3ouDGpHvWUU+tp4ALD Zz+CVo84ICAGkAmMc0JfeDaVdTlZT36JEZmYVyqJyDwSc76fkJEi10CUvUUvq17T 6L0BDrnwUrpQU68inY72/hcK+HhtkRCQLpp8JK5sKHUCpUpMFs2cqq+Xj8/9anz1 7kf7nRF4beVEAVO6Nsx+Y0xsVACpvmaNgOAfIQ== -----END CERTIFICATE-----Generated at Tue Nov 4 23:26:36 2025 by rpki-client