$ rpki-client -vvf repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa File: 3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa (raw, json) Hash identifier: Eu+4u02FPo/RfVFVxOIqvYkg8/wWVoya955tDIny+5E= Subject key identifier: C9:6E:2D:A6:E9:C5:DC:93:9C:A0:19:3D:26:4E:E9:0A:A6:BF:3F:52 Certificate issuer: /CN=62F71C75A752B45AE4B51A4E7010124979820A90 Certificate serial: DC169122C197F236D1AD056E42442E2EBAA674 Authority key identifier: 62:F7:1C:75:A7:52:B4:5A:E4:B5:1A:4E:70:10:12:49:79:82:0A:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/62F71C75A752B45AE4B51A4E7010124979820A90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa Signing time: Mon 12 May 2025 08:01:21 +0000 ROA not before: Mon 12 May 2025 07:56:21 +0000 ROA not after: Mon 11 May 2026 08:01:21 +0000 asID: 152770 IP address blocks: 157.66.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.crl rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/62F71C75A752B45AE4B51A4E7010124979820A90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: dc:16:91:22:c1:97:f2:36:d1:ad:05:6e:42:44:2e:2e:ba:a6:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62F71C75A752B45AE4B51A4E7010124979820A90 Validity Not Before: May 12 07:56:21 2025 GMT Not After : May 11 08:01:21 2026 GMT Subject: CN=C96E2DA6E9C5DC939CA0193D264EE90AA6BF3F52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c3:cb:85:b5:ba:08:1f:69:7a:f0:07:c3:70: 2a:4c:20:bb:ab:bd:41:90:0e:85:86:7d:11:f6:5d: 23:03:de:ee:7d:49:0e:03:28:00:99:fb:0c:56:d9: fb:9c:4b:37:f0:93:22:93:1e:03:db:bc:14:77:64: 52:3c:0d:40:fd:7b:c5:c9:78:4e:0f:c0:c1:5a:0a: 28:b9:a5:30:78:15:bf:4e:23:93:bb:68:e9:56:20: 91:1b:08:d8:60:df:63:56:1b:46:2e:9f:0d:d4:db: 19:f4:3f:65:6c:98:f0:7d:11:0e:0c:5e:64:66:42: 9b:48:06:56:ef:ab:ab:9c:37:01:2b:a5:76:c3:d0: 68:d5:ed:44:33:83:ea:81:c2:95:09:47:41:89:84: 08:d9:a6:98:26:e0:d9:a2:2a:5e:36:bc:89:b7:08: 9c:33:4e:9f:4d:25:8c:0c:ea:17:f6:43:95:e1:f5: ce:54:27:a8:ed:b6:b9:43:bd:f1:84:76:41:30:55: 45:14:32:be:b1:51:36:86:c3:8b:26:df:b2:f6:7a: c1:fd:09:6e:4c:4c:41:ef:ad:5f:3e:81:1d:ab:c4: 68:5d:5d:45:69:8f:71:23:c5:67:34:66:31:3d:10: c8:02:e1:e6:f8:a2:ea:61:8a:b0:4d:b6:2f:07:2b: 03:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6E:2D:A6:E9:C5:DC:93:9C:A0:19:3D:26:4E:E9:0A:A6:BF:3F:52 X509v3 Authority Key Identifier: keyid:62:F7:1C:75:A7:52:B4:5A:E4:B5:1A:4E:70:10:12:49:79:82:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/62F71C75A752B45AE4B51A4E7010124979820A90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.192.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:89:37:7d:cc:24:31:57:ca:a4:37:6e:9a:86:d3:92:22:ab: d6:b8:54:a0:86:58:86:23:25:bc:86:dc:94:8d:ca:8c:04:e1: 32:d0:b6:a5:81:f9:10:cf:bd:b6:a1:10:69:46:4f:cb:86:12: 42:70:8f:13:29:b1:95:f8:27:47:7d:2b:1f:c1:ad:33:f0:5e: 45:d9:aa:29:16:ca:65:72:87:d4:2b:e5:f2:56:f2:43:16:24: 2d:7a:8d:61:b6:af:c8:1a:29:4e:ce:e6:89:10:2d:6e:65:4f: ae:5b:92:f1:d2:68:f6:21:e3:66:a2:88:92:0b:89:22:16:d0: 3d:32:09:d8:d3:bf:a9:b7:fc:84:6f:de:91:1f:43:3d:a1:c7: fc:bb:b9:c2:fe:3e:cb:72:04:20:28:6d:68:c3:ac:26:df:03: 51:ee:fb:5c:ed:83:47:9a:a9:06:96:65:52:c8:7b:c6:3a:a9: 80:04:42:63:30:9a:d2:af:fe:d9:2b:33:8c:98:47:b2:84:51: 71:35:51:b4:b0:84:ef:17:d8:75:b3:81:d5:1c:1b:5b:c0:31: d5:16:fa:5a:ab:d0:4a:6c:bc:20:e8:ff:ba:b5:e0:d0:f3:ed: aa:ca:9f:1e:90:a3:d9:f3:23:29:5f:65:40:d5:ef:14:8b:30: e7:51:1a:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUANwWkSLBl/I20a0FbkJELi66pnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJGNzFDNzVBNzUyQjQ1QUU0QjUxQTRFNzAxMDEyNDk3 OTgyMEE5MDAeFw0yNTA1MTIwNzU2MjFaFw0yNjA1MTEwODAxMjFaMDMxMTAvBgNV BAMTKEM5NkUyREE2RTlDNURDOTM5Q0EwMTkzRDI2NEVFOTBBQTZCRjNGNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDww8uFtboIH2l68AfDcCpMILur vUGQDoWGfRH2XSMD3u59SQ4DKACZ+wxW2fucSzfwkyKTHgPbvBR3ZFI8DUD9e8XJ eE4PwMFaCii5pTB4Fb9OI5O7aOlWIJEbCNhg32NWG0Yunw3U2xn0P2VsmPB9EQ4M XmRmQptIBlbvq6ucNwErpXbD0GjV7UQzg+qBwpUJR0GJhAjZppgm4NmiKl42vIm3 CJwzTp9NJYwM6hf2Q5Xh9c5UJ6jttrlDvfGEdkEwVUUUMr6xUTaGw4sm37L2esH9 CW5MTEHvrV8+gR2rxGhdXUVpj3EjxWc0ZjE9EMgC4eb4ouphirBNti8HKwNfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyW4tpunF3JOcoBk9Jk7pCqa/P1IwHwYDVR0j BBgwFoAUYvccdadStFrktRpOcBASSXmCCpAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZGUyZDA5MC00NzY2LTQ3NWMtOWNlZi03YmViNTg1Y2YyNDEvMC82MkY3MUM3NUE3 NTJCNDVBRTRCNTFBNEU3MDEwMTI0OTc5ODIwQTkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjJGNzFDNzVBNzUyQjQ1QUU0QjUxQTRFNzAxMDEyNDk3OTgy MEE5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkwLTQ3NjYtNDc1Yy05 Y2VmLTdiZWI1ODVjZjI0MS8wLzMxMzUzNzJlMzYzNjJlMzEzOTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnULAMA0GCSqG SIb3DQEBCwUAA4IBAQBbiTd9zCQxV8qkN26ahtOSIqvWuFSghliGIyW8htyUjcqM BOEy0LalgfkQz722oRBpRk/LhhJCcI8TKbGV+CdHfSsfwa0z8F5F2aopFsplcofU K+XyVvJDFiQteo1htq/IGilOzuaJEC1uZU+uW5Lx0mj2IeNmooiSC4kiFtA9MgnY 07+pt/yEb96RH0M9ocf8u7nC/j7LcgQgKG1ow6wm3wNR7vtc7YNHmqkGlmVSyHvG OqmABEJjMJrSr/7ZKzOMmEeyhFFxNVG0sITvF9h1s4HVHBtbwDHVFvpaq9BKbLwg 6P+6teDQ8+2qyp8ekKPZ8yMpX2VA1e8UizDnURq4 -----END CERTIFICATE-----Generated at Thu May 15 10:51:07 2025 by rpki-client