$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20313532333932.roa File: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (raw, json) Hash identifier: ZnwJrprp+EWEvGE1P1jRPfHAxXSS9SoLdcp+7RA0tEE= Subject key identifier: F3:CF:31:A4:C0:94:58:6E:F2:61:47:8A:81:9B:17:C4:03:51:2B:43 Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 038483197CD3A446AA1655C0B9F36355E556A02F Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20313532333932.roa Signing time: Sun 24 Aug 2025 01:48:43 +0000 ROA not before: Sun 24 Aug 2025 01:43:43 +0000 ROA not after: Sun 23 Aug 2026 01:48:43 +0000 asID: 152392 IP address blocks: 157.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:84:83:19:7c:d3:a4:46:aa:16:55:c0:b9:f3:63:55:e5:56:a0:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Aug 24 01:43:43 2025 GMT Not After : Aug 23 01:48:43 2026 GMT Subject: CN=F3CF31A4C094586EF261478A819B17C403512B43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b5:e5:69:b8:72:4c:c3:d7:ad:fb:59:bd:49: e0:22:10:ba:61:d6:d1:39:2b:86:c5:77:0f:87:16: ed:be:e5:88:7d:0d:ed:8a:5f:34:31:9a:26:ca:dd: 9e:da:ab:6c:b8:ba:b5:fa:38:cb:f3:a8:73:c4:ce: b8:d9:1e:1d:8a:10:ec:58:87:53:ca:04:2b:a2:51: 89:6d:80:5e:1b:33:c4:ad:41:1b:d5:3f:27:09:7d: 74:13:85:52:c1:2a:e4:4c:d6:95:36:bd:13:e4:79: ea:99:ad:f3:60:f5:61:66:c1:66:9d:51:93:25:d5: d0:27:99:85:9d:30:d0:85:55:52:c0:59:6a:80:97: c2:52:43:ea:c0:e4:30:ce:64:9b:44:a5:11:23:be: f3:ac:7c:0e:e2:4e:de:72:b8:fa:35:b9:b1:72:4c: ad:e9:f7:62:e2:9d:e2:5b:67:77:1a:34:b0:0b:55: 6b:23:56:0e:54:b6:14:b5:af:0b:f0:63:df:3e:b5: 63:01:58:8d:50:15:ac:13:27:f1:1a:12:31:60:66: 22:17:db:db:1c:bc:19:a4:1e:96:97:90:ff:c8:82: 6e:a2:b7:86:08:d8:ff:8e:ce:80:6c:33:73:b0:70: d8:71:7b:1f:15:6f:5a:b7:23:88:38:c5:38:d3:9c: 9f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CF:31:A4:C0:94:58:6E:F2:61:47:8A:81:9B:17:C4:03:51:2B:43 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/3135372e32302e34352e302f32342d3234203d3e20313532333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption 07:24:78:8e:13:24:0e:b7:b0:e3:ec:87:80:2e:89:f6:c8:f2: 3e:e0:e8:c8:d2:5e:a5:fc:df:00:f0:8f:ed:d4:f9:64:5b:10: 2c:bf:f7:6c:e1:c1:91:c1:38:ba:38:6e:4b:6e:a0:18:52:e4: 53:16:62:b8:9a:06:90:72:25:68:4a:8d:7f:27:ab:48:1c:b3: f7:54:f8:6c:45:ee:49:dd:f8:b5:96:9d:eb:60:42:0f:a2:ad: 12:ae:92:02:b2:00:2c:86:49:af:ca:2c:1e:51:01:d1:d8:ac: 92:8d:7d:4f:c7:26:e4:e8:ff:e6:a3:44:42:ad:f7:22:d1:6f: 72:52:23:af:52:63:6e:44:08:e3:c3:4f:f2:a8:b4:29:66:b1: 07:b6:5d:f1:2a:52:56:d1:6c:61:b5:ae:c9:97:24:3e:9e:3c: 1a:1a:96:b5:bd:11:3f:24:ee:ee:03:46:14:ed:2b:99:88:02: 38:47:fb:37:31:0d:cc:85:b6:68:ad:3d:83:c1:d3:72:86:12: 44:28:3c:bb:b4:48:68:9d:4e:b6:50:91:b2:db:6d:8f:96:d8: 95:f3:d2:23:78:9e:14:a5:6e:5c:5b:95:6a:c5:4e:ba:e4:6a: e0:6f:b9:11:ee:e2:66:26:82:42:1b:a7:33:63:f8:5c:cc:55: ae:da:d7:f9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA4SDGXzTpEaqFlXAufNjVeVWoC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTA4MjQwMTQzNDNaFw0yNjA4MjMwMTQ4NDNaMDMxMTAvBgNV BAMTKEYzQ0YzMUE0QzA5NDU4NkVGMjYxNDc4QTgxOUIxN0M0MDM1MTJCNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjteVpuHJMw9et+1m9SeAiELph 1tE5K4bFdw+HFu2+5Yh9De2KXzQxmibK3Z7aq2y4urX6OMvzqHPEzrjZHh2KEOxY h1PKBCuiUYltgF4bM8StQRvVPycJfXQThVLBKuRM1pU2vRPkeeqZrfNg9WFmwWad UZMl1dAnmYWdMNCFVVLAWWqAl8JSQ+rA5DDOZJtEpREjvvOsfA7iTt5yuPo1ubFy TK3p92LineJbZ3caNLALVWsjVg5UthS1rwvwY98+tWMBWI1QFawTJ/EaEjFgZiIX 29scvBmkHpaXkP/Igm6it4YI2P+OzoBsM3OwcNhxex8Vb1q3I4g4xTjTnJ/dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU888xpMCUWG7yYUeKgZsXxANRK0MwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3LTZhOTItNDI5My04 ODAwLWI1M2UyYTkxOGFjYS8wLzMxMzUzNzJlMzIzMDJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0ULTANBgkqhkiG 9w0BAQsFAAOCAQEAByR4jhMkDrew4+yHgC6J9sjyPuDoyNJepfzfAPCP7dT5ZFsQ LL/3bOHBkcE4ujhuS26gGFLkUxZiuJoGkHIlaEqNfyerSByz91T4bEXuSd34tZad 62BCD6KtEq6SArIALIZJr8osHlEB0disko19T8cm5Oj/5qNEQq33ItFvclIjr1Jj bkQI48NP8qi0KWaxB7Zd8SpSVtFsYbWuyZckPp48GhqWtb0RPyTu7gNGFO0rmYgC OEf7NzENzIW2aK09g8HTcoYSRCg8u7RIaJ1OtlCRstttj5bYlfPSI3ieFKVuXFuV asVOuuRq4G+5Ee7iZiaCQhunM2P4XMxVrtrX+Q== -----END CERTIFICATE-----Generated at Sun Aug 24 11:11:10 2025 by rpki-client