$ rpki-client -vvf repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31392e302f32342d3234203d3e20313532343431.roa File: 3135372e36362e31392e302f32342d3234203d3e20313532343431.roa (raw, json) Hash identifier: S3VXhgYtvhONpM//oPKshJPEJR4sGwHoBTyv1ewhA6c= Subject key identifier: AB:C5:F2:93:48:42:73:72:8D:86:67:A5:C0:AF:FA:06:3D:6D:D3:5A Certificate issuer: /CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Certificate serial: 347292C6E809ED151C88054B50E2E3FBBFA99090 Authority key identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31392e302f32342d3234203d3e20313532343431.roa Signing time: Thu 19 Jun 2025 19:00:02 +0000 ROA not before: Thu 19 Jun 2025 18:55:02 +0000 ROA not after: Thu 18 Jun 2026 19:00:02 +0000 asID: 152441 IP address blocks: 157.66.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 05:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:72:92:c6:e8:09:ed:15:1c:88:05:4b:50:e2:e3:fb:bf:a9:90:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Validity Not Before: Jun 19 18:55:02 2025 GMT Not After : Jun 18 19:00:02 2026 GMT Subject: CN=ABC5F293484273728D8667A5C0AFFA063D6DD35A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:22:56:23:7b:51:86:c8:a5:02:3c:1a:c7:b0: 19:79:5e:a8:b6:a9:22:8d:6c:69:12:25:f9:53:6c: 87:ca:2e:f4:65:e7:0b:89:db:a3:4e:9b:a6:a3:18: 1d:dc:61:74:2a:87:fe:42:25:0d:7e:aa:94:ca:0d: 22:87:9c:1f:70:d7:89:8d:48:64:3b:df:bb:81:de: 3b:4d:13:53:6d:d1:4c:62:dc:34:e5:58:3b:c9:c3: f7:f9:98:62:88:cc:96:21:22:19:b3:9e:93:22:f8: 2b:dc:14:ee:cc:31:7b:32:7b:b1:43:ae:ff:9d:b8: 67:c5:b9:4d:87:dc:0a:d7:08:37:e0:61:7a:1c:db: 27:09:3d:cf:88:3f:a4:00:c2:13:ff:e4:db:81:12: 58:13:88:89:c0:de:e2:c4:82:9e:3c:14:e6:8c:07: 37:6d:30:40:62:e2:86:e0:f2:26:03:eb:6b:95:3a: 8e:b9:f8:ae:de:96:c4:80:71:25:87:1e:42:4d:7d: 33:b1:f5:d6:c3:60:d2:06:15:0f:17:40:30:75:ab: 60:6d:72:7a:83:ac:ae:79:71:b5:98:f3:c9:36:44: f1:6a:93:93:a2:2f:86:27:cc:e3:94:33:e4:82:bc: c5:4e:6f:13:a9:87:a3:ab:3c:95:46:d7:7c:08:3e: be:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C5:F2:93:48:42:73:72:8D:86:67:A5:C0:AF:FA:06:3D:6D:D3:5A X509v3 Authority Key Identifier: keyid:64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/3135372e36362e31392e302f32342d3234203d3e20313532343431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.19.0/24 Signature Algorithm: sha256WithRSAEncryption 74:ab:df:ac:54:c3:0a:33:12:d2:10:1d:78:aa:97:4a:6d:5a: 2e:ed:2c:76:4d:fd:a6:7d:e9:5b:76:95:a1:bf:55:52:92:be: 68:8b:a5:ec:6f:ac:c9:19:f0:60:80:63:50:a5:df:7d:85:bc: 72:ac:bb:af:14:05:f2:03:10:f1:3f:1a:d3:f4:42:29:46:45: 71:aa:f5:6e:38:ab:3a:fb:61:d3:28:dc:c0:c7:c4:fc:da:96: 50:f7:2d:b7:41:a1:48:46:07:44:60:71:79:aa:09:5b:3e:4f: db:25:ec:53:55:1b:21:41:80:ca:34:a9:3c:a4:d7:d7:8e:f2: be:3e:cd:9e:14:38:22:25:ff:bb:e1:bc:91:14:c8:37:3b:cb: 59:76:46:ec:c1:12:9a:78:2d:de:da:fe:0b:91:a6:58:b4:30: 1d:63:a3:2b:a0:31:e9:c4:bb:66:dd:ee:0b:04:56:c6:1a:f9: 59:bf:a6:42:56:57:ea:cb:f2:a8:eb:18:71:46:78:fc:6c:2b: 2e:b5:1f:d0:5e:9f:62:47:69:f8:77:1c:cb:7f:41:f0:81:4e: 9e:b7:0d:99:80:b7:1c:a3:ac:83:37:bd:d4:85:dd:e0:72:bc: cf:9a:26:bd:ac:bd:d1:30:d6:89:8d:87:47:51:90:f1:d9:98: 5e:7a:5a:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNHKSxugJ7RUciAVLUOLj+7+pkJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3 OEM5QkMyODAeFw0yNTA2MTkxODU1MDJaFw0yNjA2MTgxOTAwMDJaMDMxMTAvBgNV BAMTKEFCQzVGMjkzNDg0MjczNzI4RDg2NjdBNUMwQUZGQTA2M0Q2REQzNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfIlYje1GGyKUCPBrHsBl5Xqi2 qSKNbGkSJflTbIfKLvRl5wuJ26NOm6ajGB3cYXQqh/5CJQ1+qpTKDSKHnB9w14mN SGQ737uB3jtNE1Nt0Uxi3DTlWDvJw/f5mGKIzJYhIhmznpMi+CvcFO7MMXsye7FD rv+duGfFuU2H3ArXCDfgYXoc2ycJPc+IP6QAwhP/5NuBElgTiInA3uLEgp48FOaM BzdtMEBi4obg8iYD62uVOo65+K7elsSAcSWHHkJNfTOx9dbDYNIGFQ8XQDB1q2Bt cnqDrK55cbWY88k2RPFqk5OiL4YnzOOUM+SCvMVObxOph6OrPJVG13wIPr61AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUq8Xyk0hCc3KNhmelwK/6Bj1t01owHwYDVR0j BBgwFoAUZCg2FSKXfsdPo9TstgCcz3jJvCgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzQ0NjU2My0wOWJjLTQ5MWItOGZiOS1mZDM5ZjA5MTY2OWQvMC82NDI4MzYxNTIy OTc3RUM3NEZBM0Q0RUNCNjAwOUNDRjc4QzlCQzI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjQyODM2MTUyMjk3N0VDNzRGQTNENEVDQjYwMDlDQ0Y3OEM5 QkMyOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NDQ2NTYzLTA5YmMtNDkxYi04 ZmI5LWZkMzlmMDkxNjY5ZC8wLzMxMzUzNzJlMzYzNjJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CEzANBgkqhkiG 9w0BAQsFAAOCAQEAdKvfrFTDCjMS0hAdeKqXSm1aLu0sdk39pn3pW3aVob9VUpK+ aIul7G+syRnwYIBjUKXffYW8cqy7rxQF8gMQ8T8a0/RCKUZFcar1bjirOvth0yjc wMfE/NqWUPctt0GhSEYHRGBxeaoJWz5P2yXsU1UbIUGAyjSpPKTX147yvj7NnhQ4 IiX/u+G8kRTINzvLWXZG7MESmngt3tr+C5GmWLQwHWOjK6Ax6cS7Zt3uCwRWxhr5 Wb+mQlZX6svyqOsYcUZ4/GwrLrUf0F6fYkdp+Hccy39B8IFOnrcNmYC3HKOsgze9 1IXd4HK8z5omvay90TDWiY2HR1GQ8dmYXnpawA== -----END CERTIFICATE-----Generated at Mon Jun 30 15:52:00 2025 by rpki-client