$ rpki-client -vvf repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32332d3233203d3e20313532343431.roa File: 3135372e36362e31382e302f32332d3233203d3e20313532343431.roa (raw, json) Hash identifier: RZavabWdjUisE5dZEMsjEGsR8uhGqkdjSJ50UHfdWw8= Subject key identifier: BA:C8:7A:E1:23:C2:A3:E4:90:B6:99:11:0F:0F:89:B7:EB:9E:C0:A0 Certificate issuer: /CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Certificate serial: 68708D30DDF05D4BD7186D5301671ACBD79BCE3B Authority key identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32332d3233203d3e20313532343431.roa Signing time: Thu 19 Jun 2025 19:00:02 +0000 ROA not before: Thu 19 Jun 2025 18:55:02 +0000 ROA not after: Thu 18 Jun 2026 19:00:02 +0000 asID: 152441 IP address blocks: 157.66.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 05:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:70:8d:30:dd:f0:5d:4b:d7:18:6d:53:01:67:1a:cb:d7:9b:ce:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Validity Not Before: Jun 19 18:55:02 2025 GMT Not After : Jun 18 19:00:02 2026 GMT Subject: CN=BAC87AE123C2A3E490B699110F0F89B7EB9EC0A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:02:a5:45:15:df:bf:04:76:d7:6c:7e:88:68: ab:e3:82:b0:72:80:a5:7e:7c:1b:28:7c:81:c8:cb: 18:1b:ae:b0:3a:9e:c8:70:33:c2:28:5f:c1:b7:8b: ce:df:84:b2:bc:ae:d9:ce:05:cc:a2:ce:2c:56:34: d0:33:4d:b7:9f:b3:bf:3a:01:14:85:de:93:cc:23: 82:10:87:ee:cb:7c:04:d4:ea:5d:f1:8f:92:59:c9: eb:76:b7:31:61:20:55:a4:a2:d3:82:ca:85:1b:c3: f3:ef:5d:ed:ba:eb:03:3f:61:13:2b:91:df:4c:65: c4:d9:91:30:0e:d3:ec:c6:15:5c:09:b6:69:55:9f: fb:53:e2:83:7f:bb:24:54:0d:67:09:0d:f6:07:32: d4:d2:11:a7:cd:a3:ec:c3:01:0e:fa:34:4e:0b:1b: d4:d4:0a:bc:d2:0b:38:08:bb:87:67:02:e4:46:f3: 10:0b:22:24:19:13:39:2f:60:c1:81:e5:4d:47:db: cc:ad:ed:d5:ea:d6:84:1c:ec:a8:53:19:5c:f2:61: f6:e9:7e:a5:d3:94:8c:ce:7c:a7:06:8d:85:85:89: 26:af:d2:31:7f:b3:cf:5c:bd:08:d1:6e:9c:0f:d2: bb:ed:6a:97:c2:ff:07:97:45:4f:03:6c:e3:ff:24: 61:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C8:7A:E1:23:C2:A3:E4:90:B6:99:11:0F:0F:89:B7:EB:9E:C0:A0 X509v3 Authority Key Identifier: keyid:64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32332d3233203d3e20313532343431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.18.0/23 Signature Algorithm: sha256WithRSAEncryption 90:98:c6:90:9b:db:0a:e6:ca:4b:36:9b:3a:9c:40:09:49:10: c6:a4:24:7d:c7:8a:4a:38:5b:f1:a1:a5:1e:db:70:65:8f:79: e3:dc:bf:5e:84:22:1b:65:25:d0:d2:a4:2d:fa:77:c9:7d:fe: 90:94:1a:57:98:e4:69:af:a5:44:59:fe:43:64:5b:28:a8:73: 51:9c:e7:ef:95:e9:9d:49:82:29:08:78:2b:06:3a:4a:8f:31: 76:c8:ae:f6:a7:19:ad:45:44:9e:d4:4c:cf:ef:48:ec:b9:fe: e1:f4:9c:b8:2d:cc:12:6e:da:c4:49:7f:ae:41:35:29:fc:17: ce:85:be:60:11:65:53:67:3b:38:22:3b:50:c5:c9:4e:8a:26: a2:57:9a:65:04:fd:8c:c0:44:d9:26:bf:08:7d:c8:0b:c4:8d: 95:c3:61:6e:18:0c:9b:b3:a0:cc:f6:37:24:8d:e0:53:15:74: 8f:94:65:23:75:88:11:54:14:c5:f7:58:e9:75:42:8a:a8:4e: 21:67:d9:1f:f8:6b:ed:ba:eb:e3:fd:cc:35:83:85:b0:e0:bf: 9d:8f:ea:f3:90:42:0a:ff:53:ba:ff:41:cc:bb:20:e7:d8:39: 11:60:ba:04:b9:c9:fc:65:35:79:5f:7d:4e:9e:3d:a4:39:63: d0:62:22:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaHCNMN3wXUvXGG1TAWcay9ebzjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3 OEM5QkMyODAeFw0yNTA2MTkxODU1MDJaFw0yNjA2MTgxOTAwMDJaMDMxMTAvBgNV BAMTKEJBQzg3QUUxMjNDMkEzRTQ5MEI2OTkxMTBGMEY4OUI3RUI5RUMwQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeAqVFFd+/BHbXbH6IaKvjgrBy gKV+fBsofIHIyxgbrrA6nshwM8IoX8G3i87fhLK8rtnOBcyizixWNNAzTbefs786 ARSF3pPMI4IQh+7LfATU6l3xj5JZyet2tzFhIFWkotOCyoUbw/PvXe266wM/YRMr kd9MZcTZkTAO0+zGFVwJtmlVn/tT4oN/uyRUDWcJDfYHMtTSEafNo+zDAQ76NE4L G9TUCrzSCzgIu4dnAuRG8xALIiQZEzkvYMGB5U1H28yt7dXq1oQc7KhTGVzyYfbp fqXTlIzOfKcGjYWFiSav0jF/s89cvQjRbpwP0rvtapfC/weXRU8DbOP/JGEbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUush64SPCo+SQtpkRDw+Jt+uewKAwHwYDVR0j BBgwFoAUZCg2FSKXfsdPo9TstgCcz3jJvCgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzQ0NjU2My0wOWJjLTQ5MWItOGZiOS1mZDM5ZjA5MTY2OWQvMC82NDI4MzYxNTIy OTc3RUM3NEZBM0Q0RUNCNjAwOUNDRjc4QzlCQzI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3OEM5 QkMyOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NDQ2NTYzLTA5YmMtNDkxYi04 ZmI5LWZkMzlmMDkxNjY5ZC8wLzMxMzUzNzJlMzYzNjJlMzEzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM0MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CEjANBgkqhkiG 9w0BAQsFAAOCAQEAkJjGkJvbCubKSzabOpxACUkQxqQkfceKSjhb8aGlHttwZY95 49y/XoQiG2Ul0NKkLfp3yX3+kJQaV5jkaa+lRFn+Q2RbKKhzUZzn75XpnUmCKQh4 KwY6So8xdsiu9qcZrUVEntRMz+9I7Ln+4fScuC3MEm7axEl/rkE1KfwXzoW+YBFl U2c7OCI7UMXJToomoleaZQT9jMBE2Sa/CH3IC8SNlcNhbhgMm7OgzPY3JI3gUxV0 j5RlI3WIEVQUxfdY6XVCiqhOIWfZH/hr7brr4/3MNYOFsOC/nY/q85BCCv9Tuv9B zLsg59g5EWC6BLnJ/GU1eV99Tp49pDlj0GIirw== -----END CERTIFICATE-----Generated at Mon Jun 30 14:26:43 2025 by rpki-client