$ rpki-client -vvf repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/3135372e36362e38362e302f32332d3234203d3e20313532343432.roa File: 3135372e36362e38362e302f32332d3234203d3e20313532343432.roa (raw, json) Hash identifier: yvjq0+mX9UVVGH4hrgAy0kHkjD5STbq2ZndxXPg4Qok= Subject key identifier: F2:FC:91:EA:59:87:62:1C:43:16:6F:F1:A9:B5:17:5A:DA:96:85:75 Certificate issuer: /CN=EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17 Certificate serial: 05053C1E4C62D2D149CD7D506CE051B081C44531 Authority key identifier: EF:7C:A8:2C:5B:45:FD:41:2D:E8:92:CB:6D:A7:A8:CA:15:C8:5B:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/3135372e36362e38362e302f32332d3234203d3e20313532343432.roa Signing time: Fri 16 May 2025 05:02:05 +0000 ROA not before: Fri 16 May 2025 04:57:05 +0000 ROA not after: Fri 15 May 2026 05:02:05 +0000 asID: 152442 IP address blocks: 157.66.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.crl rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 05:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:05:3c:1e:4c:62:d2:d1:49:cd:7d:50:6c:e0:51:b0:81:c4:45:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17 Validity Not Before: May 16 04:57:05 2025 GMT Not After : May 15 05:02:05 2026 GMT Subject: CN=F2FC91EA5987621C43166FF1A9B5175ADA968575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:50:64:7e:04:7f:a5:c8:32:b7:0d:13:87: f8:33:4d:af:b3:4d:37:41:b1:6e:28:f2:35:1a:7d: 71:6d:29:4b:61:33:ec:6c:cb:81:2f:b2:8b:f5:ce: c8:62:5e:e0:9a:bd:2e:ce:db:fe:73:82:62:f3:23: 31:14:23:d1:c5:fd:19:d3:58:38:04:d0:38:3e:90: f0:40:f2:96:01:4d:d2:38:6d:aa:87:44:e7:15:69: 9e:2f:5b:8d:b9:5a:00:48:cd:3f:78:65:ba:38:34: 2e:90:df:ea:09:e3:73:74:8c:ae:91:87:07:94:fa: 37:bc:08:d5:1e:4d:d5:f0:a2:00:86:47:c8:c9:83: c8:ef:61:2d:b5:c6:ad:c0:7a:10:cc:db:ab:d1:f2: f5:81:05:2f:41:e0:14:2d:c0:2f:45:2e:a1:3a:14: f9:90:a1:cc:22:31:18:01:31:ef:db:21:08:f2:2e: 0e:56:e5:5f:24:e4:2e:11:66:f7:d3:6a:4e:34:04: be:16:5c:8d:17:2d:59:e9:b4:26:1f:a3:a8:b2:6e: 21:9a:69:3f:e4:a0:2a:cf:76:b0:cb:3a:0e:ee:97: 1d:9a:91:cb:f2:68:78:8f:0c:97:86:44:33:8d:0e: 0e:de:15:5e:5d:19:e6:5a:7b:4b:bc:b4:9d:c3:dc: 05:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FC:91:EA:59:87:62:1C:43:16:6F:F1:A9:B5:17:5A:DA:96:85:75 X509v3 Authority Key Identifier: keyid:EF:7C:A8:2C:5B:45:FD:41:2D:E8:92:CB:6D:A7:A8:CA:15:C8:5B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/3135372e36362e38362e302f32332d3234203d3e20313532343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.86.0/23 Signature Algorithm: sha256WithRSAEncryption 38:ed:5a:ed:aa:f8:3f:03:68:56:e1:d3:15:03:da:3f:d2:c1: 3b:17:8c:52:eb:3a:b3:11:9e:72:a5:93:1d:ce:5e:42:ff:6d: d2:33:80:a7:10:2d:0c:fa:a6:52:4c:e1:fd:bb:6f:71:e3:f9: 71:d1:97:54:de:ce:b0:64:17:5b:88:6b:21:6e:80:63:77:e7: 38:2d:c3:4f:2a:49:eb:80:97:4c:fb:fa:37:43:ea:b5:49:59: 53:41:61:f5:72:75:2f:a7:02:e7:d3:9e:ca:7c:a5:fa:01:eb: 0c:bb:e2:e6:37:09:43:f8:22:ad:6c:85:92:d9:f9:2e:b3:69: 0c:6e:98:e4:d4:7f:a2:5a:0c:25:b2:40:65:50:c4:52:22:db: 04:48:39:74:22:bd:70:47:25:ad:7b:ec:4a:ac:cb:5b:33:f3: 70:8c:fd:e2:d6:ac:3b:79:04:8e:00:7f:01:4c:d2:a1:65:6c: 66:b4:5f:0c:12:87:c3:7d:91:2f:21:56:9f:b8:ff:01:83:d1: 45:c2:42:3b:c4:c5:14:5e:3e:15:25:40:5e:7e:0b:fa:6c:1e: 3e:6c:d5:31:6d:3c:fb:b0:78:9f:d3:cb:d2:65:d1:41:eb:5e: 26:e5:1a:d5:cb:59:0b:2e:62:c1:71:4c:46:1e:7f:9a:ae:78: dd:4a:dc:64 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBQU8Hkxi0tFJzX1QbOBRsIHERTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUY3Q0E4MkM1QjQ1RkQ0MTJERTg5MkNCNkRBN0E4Q0Ex NUM4NUIxNzAeFw0yNTA1MTYwNDU3MDVaFw0yNjA1MTUwNTAyMDVaMDMxMTAvBgNV BAMTKEYyRkM5MUVBNTk4NzYyMUM0MzE2NkZGMUE5QjUxNzVBREE5Njg1NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC601BkfgR/pcgytw0Th/gzTa+z TTdBsW4o8jUafXFtKUthM+xsy4Evsov1zshiXuCavS7O2/5zgmLzIzEUI9HF/RnT WDgE0Dg+kPBA8pYBTdI4baqHROcVaZ4vW425WgBIzT94Zbo4NC6Q3+oJ43N0jK6R hweU+je8CNUeTdXwogCGR8jJg8jvYS21xq3AehDM26vR8vWBBS9B4BQtwC9FLqE6 FPmQocwiMRgBMe/bIQjyLg5W5V8k5C4RZvfTak40BL4WXI0XLVnptCYfo6iybiGa aT/koCrPdrDLOg7ulx2akcvyaHiPDJeGRDONDg7eFV5dGeZae0u8tJ3D3AWFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8vyR6lmHYhxDFm/xqbUXWtqWhXUwHwYDVR0j BBgwFoAU73yoLFtF/UEt6JLLbaeoyhXIWxcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODdkZDU5Ny00MGNkLTQwOWItYjNjNS0yODUyY2UwMTQ4ODkvMC9FRjdDQTgyQzVC NDVGRDQxMkRFODkyQ0I2REE3QThDQTE1Qzg1QjE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUY3Q0E4MkM1QjQ1RkQ0MTJERTg5MkNCNkRBN0E4Q0ExNUM4 NUIxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4N2RkNTk3LTQwY2QtNDA5Yi1i M2M1LTI4NTJjZTAxNDg4OS8wLzMxMzUzNzJlMzYzNjJlMzgzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CVjANBgkqhkiG 9w0BAQsFAAOCAQEAOO1a7ar4PwNoVuHTFQPaP9LBOxeMUus6sxGecqWTHc5eQv9t 0jOApxAtDPqmUkzh/btvceP5cdGXVN7OsGQXW4hrIW6AY3fnOC3DTypJ64CXTPv6 N0PqtUlZU0Fh9XJ1L6cC59Oeynyl+gHrDLvi5jcJQ/girWyFktn5LrNpDG6Y5NR/ oloMJbJAZVDEUiLbBEg5dCK9cEclrXvsSqzLWzPzcIz94tasO3kEjgB/AUzSoWVs ZrRfDBKHw32RLyFWn7j/AYPRRcJCO8TFFF4+FSVAXn4L+mwePmzVMW08+7B4n9PL 0mXRQeteJuUa1ctZCy5iwXFMRh5/mq543UrcZA== -----END CERTIFICATE-----Generated at Wed Nov 5 01:38:23 2025 by rpki-client