$ rpki-client -vvf repo-rpki.idnic.net/repo/26fa9584-6f97-4041-9c8d-8b3959e4f9b3/0/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa File: 3135372e36362e35302e302f32332d3234203d3e20313532343338.roa (raw, json) Hash identifier: 0z+OlDe1hua3zv7OtVHMMPyi/MvPOJjdEV9nI71654g= Subject key identifier: 44:37:7D:AF:B0:3F:7B:0A:C1:58:27:BA:3D:44:0B:AF:BE:7A:3C:00 Certificate issuer: /CN=B72535E4EB8B31C6794C4DF31FF53E4E64914C56 Certificate serial: 618D60DA4B71FDD3226BF56377F472444AF509ED Authority key identifier: B7:25:35:E4:EB:8B:31:C6:79:4C:4D:F3:1F:F5:3E:4E:64:91:4C:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B72535E4EB8B31C6794C4DF31FF53E4E64914C56.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26fa9584-6f97-4041-9c8d-8b3959e4f9b3/0/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa Signing time: Tue 06 May 2025 09:00:02 +0000 ROA not before: Tue 06 May 2025 08:55:02 +0000 ROA not after: Tue 05 May 2026 09:00:02 +0000 asID: 152438 IP address blocks: 157.66.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26fa9584-6f97-4041-9c8d-8b3959e4f9b3/0/B72535E4EB8B31C6794C4DF31FF53E4E64914C56.crl rsync://repo-rpki.idnic.net/repo/26fa9584-6f97-4041-9c8d-8b3959e4f9b3/0/B72535E4EB8B31C6794C4DF31FF53E4E64914C56.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B72535E4EB8B31C6794C4DF31FF53E4E64914C56.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 01:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8d:60:da:4b:71:fd:d3:22:6b:f5:63:77:f4:72:44:4a:f5:09:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B72535E4EB8B31C6794C4DF31FF53E4E64914C56 Validity Not Before: May 6 08:55:02 2025 GMT Not After : May 5 09:00:02 2026 GMT Subject: CN=44377DAFB03F7B0AC15827BA3D440BAFBE7A3C00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a3:0a:22:8d:72:a3:1c:f1:4f:f3:1e:26:91: 9d:ac:d1:26:4a:aa:e9:97:9b:8b:35:cf:38:d1:cf: 71:51:c1:01:25:04:79:4f:73:63:7d:97:32:1e:f5: 48:b8:09:58:23:7d:2a:5f:98:15:c8:dd:e5:b3:47: b2:2e:e3:61:52:f8:30:c2:19:ba:d3:72:6b:1f:55: b1:50:77:42:02:b7:d4:ff:35:86:c1:f2:19:66:34: 1f:ef:c4:a4:5b:37:7b:2d:f0:5e:13:cf:7a:19:8a: e1:14:f5:6a:54:ce:45:3d:40:18:ad:74:30:ee:58: 25:d5:a0:41:50:6f:6c:f3:6d:27:b2:e9:ff:7e:c1: 01:2f:a9:a4:5d:e0:56:f2:c3:cb:29:56:ef:fa:65: b5:c4:f9:01:1c:84:a0:b1:db:a7:5d:39:79:e5:79: c8:68:86:21:b7:97:35:46:7e:f5:4e:a8:db:d6:f8: a5:9f:dd:d6:8c:7f:3f:4f:64:3e:42:f0:76:ee:1c: 18:7d:ac:da:fc:44:c2:de:e9:4b:a1:17:26:ab:3d: e8:82:ea:bc:25:be:5f:84:70:02:f9:ae:fc:45:d8: 11:ea:65:f2:01:f1:bf:86:2a:c1:e9:00:3d:53:74: c6:68:e4:91:8e:d2:6e:47:14:e7:60:52:8c:49:79: 37:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:37:7D:AF:B0:3F:7B:0A:C1:58:27:BA:3D:44:0B:AF:BE:7A:3C:00 X509v3 Authority Key Identifier: keyid:B7:25:35:E4:EB:8B:31:C6:79:4C:4D:F3:1F:F5:3E:4E:64:91:4C:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26fa9584-6f97-4041-9c8d-8b3959e4f9b3/0/B72535E4EB8B31C6794C4DF31FF53E4E64914C56.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B72535E4EB8B31C6794C4DF31FF53E4E64914C56.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26fa9584-6f97-4041-9c8d-8b3959e4f9b3/0/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.50.0/23 Signature Algorithm: sha256WithRSAEncryption 76:53:db:75:1f:cf:02:75:33:76:a7:fb:9c:34:6c:17:c5:6f: 7e:4d:dd:3f:fb:d7:66:6b:94:ac:c1:25:7c:1b:31:35:e2:e0: 10:fa:a3:bb:e7:46:ea:70:5a:86:b6:40:21:45:90:1b:56:98: f6:0b:5d:97:13:bc:ab:9b:cc:ac:b0:bf:43:96:14:9f:be:73: 37:53:96:76:00:89:6e:eb:2c:6d:c2:af:8e:e6:8b:1e:fe:9c: 20:7c:3a:e9:c2:13:81:a3:e2:0c:a1:e9:64:2b:9f:ef:2a:48: ed:0f:bf:c0:c0:97:21:87:4f:22:68:b3:ba:e9:bb:c5:c2:16: b1:9d:e2:6d:f4:7d:0f:17:17:36:77:9b:d2:6c:ef:6d:51:65: 72:1a:12:7e:d5:6b:ad:9a:0d:58:fa:9e:8d:57:5e:bb:51:27: 36:f7:e5:ec:5a:10:f7:98:92:eb:f3:87:28:a7:b4:21:51:57: 67:c8:78:e9:9e:1f:a9:4b:f9:d5:6a:bd:48:15:9f:58:39:99: a0:87:48:d5:fb:d0:5a:08:7b:43:da:9e:9b:9f:d0:99:83:78: 32:34:83:b2:56:6c:a5:29:0d:68:4d:ac:2a:29:0b:55:fd:15: 03:11:9d:43:7a:87:54:70:85:38:55:84:c8:2c:82:24:85:21: 08:fb:cc:74 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYY1g2ktx/dMia/Vjd/RyREr1Ce0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcyNTM1RTRFQjhCMzFDNjc5NEM0REYzMUZGNTNFNEU2 NDkxNEM1NjAeFw0yNTA1MDYwODU1MDJaFw0yNjA1MDUwOTAwMDJaMDMxMTAvBgNV BAMTKDQ0Mzc3REFGQjAzRjdCMEFDMTU4MjdCQTNENDQwQkFGQkU3QTNDMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaowoijXKjHPFP8x4mkZ2s0SZK qumXm4s1zzjRz3FRwQElBHlPc2N9lzIe9Ui4CVgjfSpfmBXI3eWzR7Iu42FS+DDC GbrTcmsfVbFQd0ICt9T/NYbB8hlmNB/vxKRbN3st8F4Tz3oZiuEU9WpUzkU9QBit dDDuWCXVoEFQb2zzbSey6f9+wQEvqaRd4Fbyw8spVu/6ZbXE+QEchKCx26ddOXnl echohiG3lzVGfvVOqNvW+KWf3daMfz9PZD5C8HbuHBh9rNr8RMLe6UuhFyarPeiC 6rwlvl+EcAL5rvxF2BHqZfIB8b+GKsHpAD1TdMZo5JGO0m5HFOdgUoxJeTcRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURDd9r7A/ewrBWCe6PUQLr756PAAwHwYDVR0j BBgwFoAUtyU15OuLMcZ5TE3zH/U+TmSRTFYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmZhOTU4NC02Zjk3LTQwNDEtOWM4ZC04YjM5NTllNGY5YjMvMC9CNzI1MzVFNEVC OEIzMUM2Nzk0QzRERjMxRkY1M0U0RTY0OTE0QzU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjcyNTM1RTRFQjhCMzFDNjc5NEM0REYzMUZGNTNFNEU2NDkx NEM1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZmE5NTg0LTZmOTctNDA0MS05 YzhkLThiMzk1OWU0ZjliMy8wLzMxMzUzNzJlMzYzNjJlMzUzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CMjANBgkqhkiG 9w0BAQsFAAOCAQEAdlPbdR/PAnUzdqf7nDRsF8Vvfk3dP/vXZmuUrMElfBsxNeLg EPqju+dG6nBahrZAIUWQG1aY9gtdlxO8q5vMrLC/Q5YUn75zN1OWdgCJbussbcKv juaLHv6cIHw66cITgaPiDKHpZCuf7ypI7Q+/wMCXIYdPImizuum7xcIWsZ3ibfR9 DxcXNneb0mzvbVFlchoSftVrrZoNWPqejVdeu1EnNvfl7FoQ95iS6/OHKKe0IVFX Z8h46Z4fqUv51Wq9SBWfWDmZoIdI1fvQWgh7Q9qem5/QmYN4MjSDslZspSkNaE2s KikLVf0VAxGdQ3qHVHCFOFWEyCyCJIUhCPvMdA== -----END CERTIFICATE-----Generated at Sat May 10 22:23:32 2025 by rpki-client