$ rpki-client -vvf repo-rpki.idnic.net/repo/1346c0e2-8194-4024-bcb3-d02956ce3a99/0/3135372e32302e39382e302f32332d3234203d3e20313532343335.roa File: 3135372e32302e39382e302f32332d3234203d3e20313532343335.roa (raw, json) Hash identifier: ksjiqtTAWCgIRtUjPZtNzrKoQay+iOF9ttjO6dpoPs4= Subject key identifier: AA:15:7F:1E:C2:02:A4:4A:EB:D2:8D:77:7B:B7:C8:F4:5F:A8:78:7E Certificate issuer: /CN=0C1FBE80F21EB26686978B3E769485C083FB7DCD Certificate serial: 5C4B6C355087AFA1E830A65688A58B444F4DB91A Authority key identifier: 0C:1F:BE:80:F2:1E:B2:66:86:97:8B:3E:76:94:85:C0:83:FB:7D:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0C1FBE80F21EB26686978B3E769485C083FB7DCD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1346c0e2-8194-4024-bcb3-d02956ce3a99/0/3135372e32302e39382e302f32332d3234203d3e20313532343335.roa Signing time: Wed 13 Aug 2025 09:02:01 +0000 ROA not before: Wed 13 Aug 2025 08:57:01 +0000 ROA not after: Wed 12 Aug 2026 09:02:01 +0000 asID: 152435 IP address blocks: 157.20.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1346c0e2-8194-4024-bcb3-d02956ce3a99/0/0C1FBE80F21EB26686978B3E769485C083FB7DCD.crl rsync://repo-rpki.idnic.net/repo/1346c0e2-8194-4024-bcb3-d02956ce3a99/0/0C1FBE80F21EB26686978B3E769485C083FB7DCD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0C1FBE80F21EB26686978B3E769485C083FB7DCD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 13:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4b:6c:35:50:87:af:a1:e8:30:a6:56:88:a5:8b:44:4f:4d:b9:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C1FBE80F21EB26686978B3E769485C083FB7DCD Validity Not Before: Aug 13 08:57:01 2025 GMT Not After : Aug 12 09:02:01 2026 GMT Subject: CN=AA157F1EC202A44AEBD28D777BB7C8F45FA8787E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:85:2f:63:1d:51:75:8c:44:17:56:af:9a:a2: e5:5e:7a:46:4a:66:af:fc:37:97:e5:b5:08:54:6a: 6a:31:63:aa:8c:b8:5c:dd:68:2a:27:3c:2b:a9:0e: b3:eb:73:98:e1:82:0e:f5:a5:e7:33:07:24:1c:1c: b9:4d:81:2e:4b:2a:61:25:2a:01:6c:f5:d0:17:39: 89:dd:70:df:74:96:36:b7:a8:27:2a:6d:be:28:c9: 1a:08:23:b4:2e:ce:94:14:08:cb:49:07:3b:ae:0a: eb:f3:77:b4:61:aa:b5:04:dd:1d:5f:d0:d5:9c:e3: d3:a5:36:ae:10:9c:59:03:6d:6a:a3:1a:00:c5:81: 01:db:a9:ca:63:8f:19:ab:ef:e8:76:b6:dd:d8:a3: b6:b5:9b:af:50:c4:ca:75:73:52:bf:64:f9:1b:e6: 7d:9c:d6:03:99:b3:33:c0:68:fe:ca:78:95:9d:e2: 64:df:7e:68:5f:cc:df:03:cf:d6:76:18:dc:35:3f: 9d:2d:3b:74:a4:8e:62:e2:ff:60:0b:dd:d3:82:30: 5d:a8:3f:66:f0:46:2a:99:1b:50:43:cf:41:95:b3: 81:97:63:a5:6b:fb:91:d8:9c:08:35:f9:97:70:17: d2:6f:89:ed:59:5e:e5:a6:a4:77:85:01:d6:c5:bf: 96:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:15:7F:1E:C2:02:A4:4A:EB:D2:8D:77:7B:B7:C8:F4:5F:A8:78:7E X509v3 Authority Key Identifier: keyid:0C:1F:BE:80:F2:1E:B2:66:86:97:8B:3E:76:94:85:C0:83:FB:7D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1346c0e2-8194-4024-bcb3-d02956ce3a99/0/0C1FBE80F21EB26686978B3E769485C083FB7DCD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0C1FBE80F21EB26686978B3E769485C083FB7DCD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1346c0e2-8194-4024-bcb3-d02956ce3a99/0/3135372e32302e39382e302f32332d3234203d3e20313532343335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.98.0/23 Signature Algorithm: sha256WithRSAEncryption 51:0d:47:2b:19:e8:69:17:c6:7e:a9:a8:73:2e:ce:1a:d9:0d: 9e:15:c7:b8:42:13:85:1e:54:ca:81:fc:1f:c1:2b:1f:34:37: 8b:33:0f:08:ce:07:bc:ae:e4:17:d2:7a:64:57:53:9b:f6:d6: 4f:24:55:fe:8c:db:18:03:08:cb:d6:44:f6:e8:a4:c2:68:cb: f2:88:46:fd:f5:64:3b:25:54:13:2f:9e:02:e0:bc:60:c3:6d: 98:6b:17:fb:c0:2d:a6:f0:41:01:19:cc:9d:87:94:a8:2b:d8: 8a:a2:4c:5e:33:7a:17:67:0a:c8:70:24:d1:b8:fa:46:72:43: a3:44:40:63:b8:78:6a:4e:22:88:79:12:d7:a3:d8:8e:6c:15: 3a:fd:9e:29:79:63:60:fa:b2:56:f8:b4:ab:d2:b1:07:cb:1f: e9:45:cf:dc:9c:84:23:64:a6:86:66:71:38:89:01:7d:1a:20: 89:55:d4:08:fc:5f:07:05:a2:ef:bd:51:c7:3b:dc:3b:a8:cb: b9:44:f2:25:17:dd:ee:e2:27:ea:ff:9a:50:af:9c:90:39:74: f9:4d:23:f7:b1:6f:da:8c:df:03:06:1e:61:25:94:02:48:88: 6a:83:63:7c:1d:b4:b7:73:c1:95:ac:ed:2f:91:33:ff:23:6d: 30:a9:5e:ce -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXEtsNVCHr6HoMKZWiKWLRE9NuRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEMxRkJFODBGMjFFQjI2Njg2OTc4QjNFNzY5NDg1QzA4 M0ZCN0RDRDAeFw0yNTA4MTMwODU3MDFaFw0yNjA4MTIwOTAyMDFaMDMxMTAvBgNV BAMTKEFBMTU3RjFFQzIwMkE0NEFFQkQyOEQ3NzdCQjdDOEY0NUZBODc4N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClhS9jHVF1jEQXVq+aouVeekZK Zq/8N5fltQhUamoxY6qMuFzdaConPCupDrPrc5jhgg71peczByQcHLlNgS5LKmEl KgFs9dAXOYndcN90lja3qCcqbb4oyRoII7QuzpQUCMtJBzuuCuvzd7RhqrUE3R1f 0NWc49OlNq4QnFkDbWqjGgDFgQHbqcpjjxmr7+h2tt3Yo7a1m69QxMp1c1K/ZPkb 5n2c1gOZszPAaP7KeJWd4mTffmhfzN8Dz9Z2GNw1P50tO3SkjmLi/2AL3dOCMF2o P2bwRiqZG1BDz0GVs4GXY6Vr+5HYnAg1+ZdwF9Jvie1ZXuWmpHeFAdbFv5bFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqhV/HsICpErr0o13e7fI9F+oeH4wHwYDVR0j BBgwFoAUDB++gPIesmaGl4s+dpSFwIP7fc0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzQ2YzBlMi04MTk0LTQwMjQtYmNiMy1kMDI5NTZjZTNhOTkvMC8wQzFGQkU4MEYy MUVCMjY2ODY5NzhCM0U3Njk0ODVDMDgzRkI3RENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEMxRkJFODBGMjFFQjI2Njg2OTc4QjNFNzY5NDg1QzA4M0ZC N0RDRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzNDZjMGUyLTgxOTQtNDAyNC1i Y2IzLWQwMjk1NmNlM2E5OS8wLzMxMzUzNzJlMzIzMDJlMzkzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzMzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UYjANBgkqhkiG 9w0BAQsFAAOCAQEAUQ1HKxnoaRfGfqmocy7OGtkNnhXHuEIThR5UyoH8H8ErHzQ3 izMPCM4HvK7kF9J6ZFdTm/bWTyRV/ozbGAMIy9ZE9uikwmjL8ohG/fVkOyVUEy+e AuC8YMNtmGsX+8AtpvBBARnMnYeUqCvYiqJMXjN6F2cKyHAk0bj6RnJDo0RAY7h4 ak4iiHkS16PYjmwVOv2eKXljYPqyVvi0q9KxB8sf6UXP3JyEI2SmhmZxOIkBfRog iVXUCPxfBwWi771RxzvcO6jLuUTyJRfd7uIn6v+aUK+ckDl0+U0j97Fv2ozfAwYe YSWUAkiIaoNjfB20t3PBlaztL5Ez/yNtMKlezg== -----END CERTIFICATE-----Generated at Sat Aug 23 23:47:39 2025 by rpki-client