$ rpki-client -vvf repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32342d3234203d3e20313532343431.roa File: 3135372e36362e31382e302f32342d3234203d3e20313532343431.roa (raw, json) Hash identifier: HY612DFm89Ly6o4e92rrpvg8mrv7ex72DLbVFNfFY0s= Subject key identifier: F6:C1:AF:B2:43:EB:67:21:BB:99:FD:6B:85:80:45:AA:1B:78:9A:84 Certificate issuer: /CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Certificate serial: 2F92C9712864066EAA600C74572F04767EA92EB2 Authority key identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32342d3234203d3e20313532343431.roa Signing time: Thu 19 Jun 2025 19:00:02 +0000 ROA not before: Thu 19 Jun 2025 18:55:02 +0000 ROA not after: Thu 18 Jun 2026 19:00:02 +0000 asID: 152441 IP address blocks: 157.66.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 05:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:92:c9:71:28:64:06:6e:aa:60:0c:74:57:2f:04:76:7e:a9:2e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Validity Not Before: Jun 19 18:55:02 2025 GMT Not After : Jun 18 19:00:02 2026 GMT Subject: CN=F6C1AFB243EB6721BB99FD6B858045AA1B789A84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3b:b7:51:1d:53:6b:51:ef:3d:e2:d8:ab:03: 72:45:37:53:9d:40:20:5a:fb:89:25:45:95:7f:64: 94:e1:27:c7:0b:1b:55:ed:a5:e8:9e:00:b3:12:c5: 60:bb:43:ff:5d:75:87:b8:f9:54:ad:b5:85:50:20: 34:e1:96:8c:f4:a8:df:9e:11:a0:10:4e:47:d0:62: d2:88:f7:3f:14:35:6c:75:e9:48:73:5d:6a:c5:28: 77:f0:5d:83:2f:36:75:45:34:9e:eb:b7:d3:2f:bd: 85:0a:34:1e:8c:b2:d9:67:dd:86:73:d8:de:7a:73: c4:0f:13:67:dd:da:ba:84:84:69:4a:0c:0d:3e:00: 95:70:02:3c:ac:11:ac:92:f4:20:5e:f1:1e:42:73: ec:96:f0:d6:77:3d:80:24:ed:4a:21:cd:8a:a9:b1: 89:bb:56:0d:62:ee:c9:ae:8a:72:da:15:74:6e:87: f1:4e:ea:26:de:f4:75:0a:cf:08:63:dd:c1:cb:d0: 68:7b:79:ba:81:80:f4:c7:98:3b:fc:d2:6f:0a:dd: f2:bf:c3:97:65:6e:55:3c:da:ac:f8:c8:94:63:82: 20:b8:50:f8:83:5e:8c:64:bf:1a:24:67:b2:25:2e: cf:f2:8c:2b:9d:a3:49:ba:ab:78:c5:65:40:ae:27: f5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C1:AF:B2:43:EB:67:21:BB:99:FD:6B:85:80:45:AA:1B:78:9A:84 X509v3 Authority Key Identifier: keyid:64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31382e302f32342d3234203d3e20313532343431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.18.0/24 Signature Algorithm: sha256WithRSAEncryption be:19:10:6c:23:56:a6:78:ea:97:dd:8c:7c:40:31:ed:74:b9: d5:c4:15:9c:f3:0b:01:76:7c:da:03:18:ac:07:ac:2f:7d:6e: b4:9d:ca:e0:b8:41:e3:3e:08:d1:af:7f:c1:30:ae:d7:a2:7e: c0:40:b1:69:cc:2b:5c:9b:dd:da:0d:0d:5a:37:7b:ea:1d:63: 5a:db:32:c2:1d:af:62:cb:cc:bf:52:8d:03:99:da:92:ff:89: f0:e6:36:ce:3d:dc:2a:62:ba:de:fb:02:fd:ad:a8:75:c0:16: 6c:f5:24:1e:f2:98:70:31:53:d4:33:23:1d:48:25:66:0d:23: 66:bb:3c:7b:fc:c0:dc:9b:de:0d:cf:66:97:e7:37:d1:2a:48: 80:2f:8f:00:34:39:55:b1:3b:1e:ed:32:98:59:18:4b:d1:32: f2:88:fe:7a:6e:16:40:da:e1:00:7d:c0:e9:04:5c:12:d0:94: 36:ce:ed:ba:68:39:73:d5:a4:e8:5e:b5:45:1b:42:6c:30:ca: 02:ae:b4:67:56:84:95:b6:a4:18:43:e5:db:ce:82:96:a0:96: 9d:a3:90:a2:6e:d2:df:90:cf:5b:03:06:4e:b9:3c:b6:be:ac: 3d:22:50:9a:65:8d:28:44:0c:df:62:0b:fa:ab:50:2d:26:27: 13:d9:9b:f9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL5LJcShkBm6qYAx0Vy8Edn6pLrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3 OEM5QkMyODAeFw0yNTA2MTkxODU1MDJaFw0yNjA2MTgxOTAwMDJaMDMxMTAvBgNV BAMTKEY2QzFBRkIyNDNFQjY3MjFCQjk5RkQ2Qjg1ODA0NUFBMUI3ODlBODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAO7dRHVNrUe894tirA3JFN1Od QCBa+4klRZV/ZJThJ8cLG1XtpeieALMSxWC7Q/9ddYe4+VSttYVQIDThloz0qN+e EaAQTkfQYtKI9z8UNWx16UhzXWrFKHfwXYMvNnVFNJ7rt9MvvYUKNB6Mstln3YZz 2N56c8QPE2fd2rqEhGlKDA0+AJVwAjysEayS9CBe8R5Cc+yW8NZ3PYAk7UohzYqp sYm7Vg1i7smuinLaFXRuh/FO6ibe9HUKzwhj3cHL0Gh7ebqBgPTHmDv80m8K3fK/ w5dlblU82qz4yJRjgiC4UPiDXoxkvxokZ7IlLs/yjCudo0m6q3jFZUCuJ/X5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9sGvskPrZyG7mf1rhYBFqht4moQwHwYDVR0j BBgwFoAUZCg2FSKXfsdPo9TstgCcz3jJvCgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzQ0NjU2My0wOWJjLTQ5MWItOGZiOS1mZDM5ZjA5MTY2OWQvMC82NDI4MzYxNTIy OTc3RUM3NEZBM0Q0RUNCNjAwOUNDRjc4QzlCQzI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3OEM5 QkMyOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NDQ2NTYzLTA5YmMtNDkxYi04 ZmI5LWZkMzlmMDkxNjY5ZC8wLzMxMzUzNzJlMzYzNjJlMzEzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CEjANBgkqhkiG 9w0BAQsFAAOCAQEAvhkQbCNWpnjql92MfEAx7XS51cQVnPMLAXZ82gMYrAesL31u tJ3K4LhB4z4I0a9/wTCu16J+wECxacwrXJvd2g0NWjd76h1jWtsywh2vYsvMv1KN A5nakv+J8OY2zj3cKmK63vsC/a2odcAWbPUkHvKYcDFT1DMjHUglZg0jZrs8e/zA 3JveDc9ml+c30SpIgC+PADQ5VbE7Hu0ymFkYS9Ey8oj+em4WQNrhAH3A6QRcEtCU Ns7tumg5c9Wk6F61RRtCbDDKAq60Z1aElbakGEPl286ClqCWnaOQom7S35DPWwMG Trk8tr6sPSJQmmWNKEQM32IL+qtQLSYnE9mb+Q== -----END CERTIFICATE-----Generated at Mon Jun 30 15:49:45 2025 by rpki-client