$ rpki-client -vvf repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa File: 3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa (raw, json) Hash identifier: pR6eogbZvQzPFnI0kZLcItGmRoYFBBreikW5pxdST7Q= Subject key identifier: D5:A9:26:91:17:8B:C5:B2:77:94:63:53:73:48:CC:70:21:AF:B5:41 Certificate issuer: /CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Certificate serial: 4AF6D8B097D436795C384BCFDEF95C96731FD282 Authority key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa Signing time: Wed 17 Sep 2025 08:02:17 +0000 ROA not before: Wed 17 Sep 2025 07:57:17 +0000 ROA not after: Wed 16 Sep 2026 08:02:17 +0000 asID: 152348 IP address blocks: 157.10.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f6:d8:b0:97:d4:36:79:5c:38:4b:cf:de:f9:5c:96:73:1f:d2:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Validity Not Before: Sep 17 07:57:17 2025 GMT Not After : Sep 16 08:02:17 2026 GMT Subject: CN=D5A92691178BC5B2779463537348CC7021AFB541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3d:2a:64:13:0c:7c:0c:a0:f1:99:49:a0:4f: 75:9e:66:ed:42:7a:6e:aa:38:c8:6b:9b:e3:24:f7: 96:b6:80:99:8b:fa:1d:0a:45:d7:b6:8d:a2:5f:a8: ba:4b:e6:a1:a7:4a:02:a4:ad:97:03:8c:e9:d0:71: 4a:7e:86:20:0e:7b:c8:c6:e3:98:99:e2:3e:ca:7c: 5d:c9:d0:48:59:4e:03:75:fd:0e:21:7a:7f:8b:e8: f9:88:21:2e:5b:a0:29:61:1f:e7:e6:c5:c4:56:be: a6:c1:39:78:c0:9e:59:8f:29:37:a6:68:b6:37:97: 5d:b7:77:04:e8:9a:be:6d:b1:5f:30:41:0b:3a:ea: af:26:67:b8:09:67:13:45:e7:6f:ab:5b:a3:df:0a: 8d:cc:73:41:1d:55:f3:c4:58:a2:32:ff:f1:5b:8d: b6:dc:6f:9e:0c:bd:4d:00:7f:ea:bf:37:3b:23:d7: d0:c8:a5:fa:c5:9b:db:7d:04:b3:ab:91:5a:ef:82: 65:13:a8:26:e7:fd:c4:89:87:b5:53:6d:e9:52:9f: 0e:e0:34:f3:d3:89:b0:f7:76:75:e8:a9:85:4a:9b: 5e:ac:89:8b:fb:fe:52:20:68:28:b1:53:53:37:97: de:e1:b2:41:88:3b:4c:02:f2:41:c0:e9:69:d3:c4: c4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A9:26:91:17:8B:C5:B2:77:94:63:53:73:48:CC:70:21:AF:B5:41 X509v3 Authority Key Identifier: keyid:52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.184.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:bc:df:c7:fe:11:44:3b:4c:86:54:fd:25:d4:c6:41:59:62: 79:27:6a:9f:51:64:5d:97:7b:e3:99:c6:3f:b3:62:37:78:a8: c4:38:5d:cd:ae:d6:7b:22:9c:4d:0a:4f:7b:f8:90:de:9a:45: ca:c4:88:ad:4e:d7:c8:a4:bd:64:83:d4:b9:6b:58:7e:84:a8: d3:54:d8:7c:8b:90:fc:c9:61:da:ae:02:35:58:df:f0:46:3c: a2:33:f2:17:98:e2:71:ec:a6:a5:20:b1:45:a8:00:a1:6f:c8: 85:77:d6:18:85:c7:e1:ba:3c:f5:20:36:2e:1c:e5:ee:e5:61: 70:09:76:35:bd:86:87:48:c0:d9:da:c7:d1:5a:9f:ac:9e:f7: 9f:53:b2:3a:b9:a6:b5:47:0b:b8:4a:63:db:29:fd:d1:6c:7f: 24:34:ad:6a:93:ce:d6:1e:74:a9:ad:58:4d:b9:17:37:36:9a: 33:57:d0:15:5d:1e:fb:fc:0e:af:17:2d:89:19:12:91:71:1d: 76:10:70:1d:79:8d:3b:3d:b8:1c:9b:be:74:ca:3f:44:dd:b9: 58:4a:57:47:2c:5c:e2:f2:7a:aa:0b:fc:c0:17:57:7b:b8:08: f5:5e:a4:83:4c:08:6c:79:a2:c5:21:e1:98:a5:5e:f4:88:81: 23:b9:c6:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSvbYsJfUNnlcOEvP3vlclnMf0oIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0Iz OUU1Q0YzQTAeFw0yNTA5MTcwNzU3MTdaFw0yNjA5MTYwODAyMTdaMDMxMTAvBgNV BAMTKEQ1QTkyNjkxMTc4QkM1QjI3Nzk0NjM1MzczNDhDQzcwMjFBRkI1NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxPSpkEwx8DKDxmUmgT3WeZu1C em6qOMhrm+Mk95a2gJmL+h0KRde2jaJfqLpL5qGnSgKkrZcDjOnQcUp+hiAOe8jG 45iZ4j7KfF3J0EhZTgN1/Q4hen+L6PmIIS5boClhH+fmxcRWvqbBOXjAnlmPKTem aLY3l123dwTomr5tsV8wQQs66q8mZ7gJZxNF52+rW6PfCo3Mc0EdVfPEWKIy//Fb jbbcb54MvU0Af+q/Nzsj19DIpfrFm9t9BLOrkVrvgmUTqCbn/cSJh7VTbelSnw7g NPPTibD3dnXoqYVKm16siYv7/lIgaCixU1M3l97hskGIO0wC8kHA6WnTxMTPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1akmkReLxbJ3lGNTc0jMcCGvtUEwHwYDVR0j BBgwFoAUUrnB5fC680XEDy55ZpxjyznlzzowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMC81MkI5QzFFNUYw QkFGMzQ1QzQwRjJFNzk2NjlDNjNDQjM5RTVDRjNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0IzOUU1 Q0YzQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwYTg1OTBlLWU0ZGMtNDQxNi1h NmZhLWZiNzhkNmRkMTJkNy8wLzMxMzUzNzJlMzEzMDJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq4MA0GCSqG SIb3DQEBCwUAA4IBAQBevN/H/hFEO0yGVP0l1MZBWWJ5J2qfUWRdl3vjmcY/s2I3 eKjEOF3NrtZ7IpxNCk97+JDemkXKxIitTtfIpL1kg9S5a1h+hKjTVNh8i5D8yWHa rgI1WN/wRjyiM/IXmOJx7KalILFFqAChb8iFd9YYhcfhujz1IDYuHOXu5WFwCXY1 vYaHSMDZ2sfRWp+snvefU7I6uaa1Rwu4SmPbKf3RbH8kNK1qk87WHnSprVhNuRc3 NpozV9AVXR77/A6vFy2JGRKRcR12EHAdeY07Pbgcm750yj9E3blYSldHLFzi8nqq C/zAF1d7uAj1XqSDTAhseaLFIeGYpV70iIEjucZ5 -----END CERTIFICATE-----Generated at Tue Oct 21 00:48:04 2025 by rpki-client