$ rpki-client -vvf repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/3135372e31352e3131322e302f32342d3234203d3e20313532333639.roa File: 3135372e31352e3131322e302f32342d3234203d3e20313532333639.roa (raw, json) Hash identifier: 44UIGhT2CR88gEAMCeA+qiaxDEitDJdZzTyS4PAwJto= Subject key identifier: 54:53:F2:29:8E:1D:0C:C0:66:C4:8C:51:4C:34:3C:60:9C:B9:2A:09 Certificate issuer: /CN=5F4C49641E1677408C44A096E9E7E709A4580B39 Certificate serial: 6692F3EC1A308783D00A4C77DA31ED5C3CF2DAAA Authority key identifier: 5F:4C:49:64:1E:16:77:40:8C:44:A0:96:E9:E7:E7:09:A4:58:0B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5F4C49641E1677408C44A096E9E7E709A4580B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/3135372e31352e3131322e302f32342d3234203d3e20313532333639.roa Signing time: Tue 29 Jul 2025 05:00:01 +0000 ROA not before: Tue 29 Jul 2025 04:55:01 +0000 ROA not after: Tue 28 Jul 2026 05:00:01 +0000 asID: 152369 IP address blocks: 157.15.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/5F4C49641E1677408C44A096E9E7E709A4580B39.crl rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/5F4C49641E1677408C44A096E9E7E709A4580B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5F4C49641E1677408C44A096E9E7E709A4580B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 00:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:92:f3:ec:1a:30:87:83:d0:0a:4c:77:da:31:ed:5c:3c:f2:da:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F4C49641E1677408C44A096E9E7E709A4580B39 Validity Not Before: Jul 29 04:55:01 2025 GMT Not After : Jul 28 05:00:01 2026 GMT Subject: CN=5453F2298E1D0CC066C48C514C343C609CB92A09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e5:21:51:b8:fd:48:a4:38:9b:fc:7f:07:9c: 62:68:4b:ca:49:ae:50:71:49:fa:c8:d6:5b:cb:5f: 0b:34:8f:57:f8:ec:df:c7:7a:31:f1:28:62:5a:d1: 99:4b:10:e9:13:56:f2:fb:ac:ae:cb:1c:59:40:0c: 1d:86:cf:5c:6f:a8:b1:90:5b:73:43:b5:5e:b1:12: 23:aa:bd:6a:42:ed:70:32:57:2f:e7:78:7d:7e:5a: 70:f8:74:1f:3d:65:5a:59:f0:ee:a3:c6:e2:52:52: 88:52:db:a8:c0:50:2d:49:1f:db:39:77:a7:a1:14: 86:6b:fa:e4:7a:b1:8c:42:82:0a:d3:c0:8b:8f:17: 76:f6:00:42:28:e0:e4:8e:0f:f8:41:a0:a3:5a:90: 5b:67:f3:3b:7d:c6:69:3d:cf:d8:e9:56:41:a1:17: 56:69:26:d6:26:63:52:19:51:b2:31:76:3e:11:7c: 8c:6e:11:7a:26:40:47:39:38:f6:3c:7f:d5:a8:3f: 13:d1:9b:66:fd:86:57:a7:05:ac:ae:f5:3f:29:b6: af:87:55:45:59:78:ba:75:9e:95:7b:17:72:b6:4c: bc:0b:d6:de:a0:da:6a:8b:ad:25:f5:03:d3:62:99: 24:0c:a9:f2:a2:56:e6:60:52:ad:32:16:a1:46:27: 69:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:53:F2:29:8E:1D:0C:C0:66:C4:8C:51:4C:34:3C:60:9C:B9:2A:09 X509v3 Authority Key Identifier: keyid:5F:4C:49:64:1E:16:77:40:8C:44:A0:96:E9:E7:E7:09:A4:58:0B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/5F4C49641E1677408C44A096E9E7E709A4580B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5F4C49641E1677408C44A096E9E7E709A4580B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f191f55d-e382-4583-99cf-71a4717e7f09/0/3135372e31352e3131322e302f32342d3234203d3e20313532333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.112.0/24 Signature Algorithm: sha256WithRSAEncryption 72:0f:ba:bc:2d:0e:10:8e:6a:79:5d:f0:d2:a8:c7:7a:67:a7: 53:95:29:1c:f6:7f:d2:aa:5a:a9:c2:4c:c4:ec:4a:64:b6:2c: 7c:71:6c:a6:b8:34:74:10:25:e3:5f:96:1f:0a:d6:af:5e:d8: aa:a2:46:1d:2d:cd:be:41:98:1d:80:7e:c9:6e:2c:e9:7a:46: b0:3a:16:a5:de:ed:d1:d3:4c:21:36:06:09:81:42:20:7d:b7: 49:5c:3b:f6:4e:94:1d:40:48:b2:d3:4e:9b:2e:aa:b3:ef:39: d7:ea:70:c7:d8:fb:ad:83:d2:d6:a6:35:d2:05:2c:8b:5f:37: 47:53:69:d9:a9:29:21:5b:73:20:7d:a1:a0:e6:5c:60:03:f4: e3:30:4b:1a:d0:32:c9:50:5b:36:56:cd:c8:95:b1:91:0d:cc: bc:c4:8b:ec:82:1c:40:27:92:62:d7:e8:7d:66:ae:99:fa:bd: 45:69:4f:70:68:07:7d:76:4f:cc:8a:34:fe:d2:62:58:5d:c2: e1:91:78:91:ec:4d:2c:c0:a3:c7:f2:40:bb:31:b1:49:16:d1: 39:b4:e9:3d:1d:22:75:a5:06:e2:f2:08:ef:12:46:50:d8:3c: 23:d4:32:0b:9d:44:db:9c:38:bc:9e:ab:a1:c8:a3:a6:44:d0: 5a:27:0f:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZpLz7Bowh4PQCkx32jHtXDzy2qowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUY0QzQ5NjQxRTE2Nzc0MDhDNDRBMDk2RTlFN0U3MDlB NDU4MEIzOTAeFw0yNTA3MjkwNDU1MDFaFw0yNjA3MjgwNTAwMDFaMDMxMTAvBgNV BAMTKDU0NTNGMjI5OEUxRDBDQzA2NkM0OEM1MTRDMzQzQzYwOUNCOTJBMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq5SFRuP1IpDib/H8HnGJoS8pJ rlBxSfrI1lvLXws0j1f47N/HejHxKGJa0ZlLEOkTVvL7rK7LHFlADB2Gz1xvqLGQ W3NDtV6xEiOqvWpC7XAyVy/neH1+WnD4dB89ZVpZ8O6jxuJSUohS26jAUC1JH9s5 d6ehFIZr+uR6sYxCggrTwIuPF3b2AEIo4OSOD/hBoKNakFtn8zt9xmk9z9jpVkGh F1ZpJtYmY1IZUbIxdj4RfIxuEXomQEc5OPY8f9WoPxPRm2b9hlenBayu9T8ptq+H VUVZeLp1npV7F3K2TLwL1t6g2mqLrSX1A9NimSQMqfKiVuZgUq0yFqFGJ2k5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVFPyKY4dDMBmxIxRTDQ8YJy5KgkwHwYDVR0j BBgwFoAUX0xJZB4Wd0CMRKCW6efnCaRYCzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTkxZjU1ZC1lMzgyLTQ1ODMtOTljZi03MWE0NzE3ZTdmMDkvMC81RjRDNDk2NDFF MTY3NzQwOEM0NEEwOTZFOUU3RTcwOUE0NTgwQjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUY0QzQ5NjQxRTE2Nzc0MDhDNDRBMDk2RTlFN0U3MDlBNDU4 MEIzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTFmNTVkLWUzODItNDU4My05 OWNmLTcxYTQ3MTdlN2YwOS8wLzMxMzUzNzJlMzEzNTJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ9wMA0GCSqG SIb3DQEBCwUAA4IBAQByD7q8LQ4Qjmp5XfDSqMd6Z6dTlSkc9n/SqlqpwkzE7Epk tix8cWymuDR0ECXjX5YfCtavXtiqokYdLc2+QZgdgH7JbizpekawOhal3u3R00wh NgYJgUIgfbdJXDv2TpQdQEiy006bLqqz7znX6nDH2Putg9LWpjXSBSyLXzdHU2nZ qSkhW3MgfaGg5lxgA/TjMEsa0DLJUFs2Vs3IlbGRDcy8xIvsghxAJ5Ji1+h9Zq6Z +r1FaU9waAd9dk/MijT+0mJYXcLhkXiR7E0swKPH8kC7MbFJFtE5tOk9HSJ1pQbi 8gjvEkZQ2Dwj1DILnUTbnDi8nquhyKOmRNBaJw/y -----END CERTIFICATE-----Generated at Wed Aug 13 14:51:19 2025 by rpki-client