$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa File: 3135372e36362e322e302f32332d3234203d3e20313532343430.roa (raw, json) Hash identifier: 3ZS5/0NJnXKv4Pk0J4oSOH1r1VKtA3mh1qb3WAlsXUw= Subject key identifier: 88:F5:FC:15:46:2B:50:4E:1A:BE:84:F5:4A:87:0A:95:C2:65:42:4A Certificate issuer: /CN=FC2DAAA409BA60DE33EC91F3A861D1A00719D426 Certificate serial: 7235794E9883FFE82665ABF44F23536F45D061EC Authority key identifier: FC:2D:AA:A4:09:BA:60:DE:33:EC:91:F3:A8:61:D1:A0:07:19:D4:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa Signing time: Sun 04 May 2025 06:00:02 +0000 ROA not before: Sun 04 May 2025 05:55:02 +0000 ROA not after: Sun 03 May 2026 06:00:02 +0000 asID: 152440 IP address blocks: 157.66.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.crl rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 10:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:35:79:4e:98:83:ff:e8:26:65:ab:f4:4f:23:53:6f:45:d0:61:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC2DAAA409BA60DE33EC91F3A861D1A00719D426 Validity Not Before: May 4 05:55:02 2025 GMT Not After : May 3 06:00:02 2026 GMT Subject: CN=88F5FC15462B504E1ABE84F54A870A95C265424A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:02:a1:49:7b:2f:26:fa:4b:ca:59:d0:ff:8d: ad:78:34:cc:1a:6d:8c:0b:b1:33:64:34:16:76:be: 17:ef:bc:8f:db:0c:c9:fc:f1:ae:c6:62:5b:62:bb: c2:82:f3:f0:a6:a5:f5:7a:81:30:9d:a7:60:c5:25: ed:69:72:10:0c:9b:fc:10:e7:51:51:a5:60:e4:3e: 8b:ce:34:45:97:1a:63:32:ad:03:33:55:90:33:0d: ec:52:c2:96:ff:6b:fc:3c:8a:cb:06:6e:28:89:d0: ec:b0:f2:f2:08:e3:8e:25:23:22:c5:54:e2:46:ee: 30:e2:2a:80:1d:ba:b4:aa:77:81:8a:11:ad:65:04: a0:17:46:ad:5f:c2:23:27:20:04:fa:b4:1c:8b:64: 72:b3:42:7d:cb:78:51:68:c7:eb:4e:cc:11:3e:40: 1d:54:80:13:b1:7d:d2:4c:21:3c:40:b4:4c:01:bc: 09:04:41:fd:5c:e0:37:c2:e9:5e:5e:d1:0e:00:23: 14:43:1b:02:ac:4c:c4:a2:1a:e1:9d:c1:f0:b2:94: a3:05:d6:84:1e:c3:1e:9f:4c:cc:00:06:51:74:72: 38:a7:97:34:de:08:b3:c1:5d:dc:7a:6f:30:62:9b: ce:7b:53:6b:dd:11:98:c2:07:35:18:1c:4e:f0:1d: 46:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F5:FC:15:46:2B:50:4E:1A:BE:84:F5:4A:87:0A:95:C2:65:42:4A X509v3 Authority Key Identifier: keyid:FC:2D:AA:A4:09:BA:60:DE:33:EC:91:F3:A8:61:D1:A0:07:19:D4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC2DAAA409BA60DE33EC91F3A861D1A00719D426.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.2.0/23 Signature Algorithm: sha256WithRSAEncryption 71:b5:8b:9e:01:a1:a7:d0:19:62:c8:d3:52:8d:5d:04:49:aa: 95:a9:5a:f6:ce:ff:75:15:ee:8d:0b:65:79:70:5d:71:b2:db: fa:f5:a2:5c:51:65:77:ac:cf:7d:3a:4c:df:36:73:83:c9:39: c8:26:dd:8e:32:15:a6:2f:52:97:40:55:62:85:73:cc:27:95: a2:f0:21:64:79:9d:1c:30:ca:2b:89:be:6d:84:60:b5:0e:9c: fc:83:6d:96:78:45:80:d3:72:af:13:17:cd:b5:f7:64:01:d7: f6:45:85:78:f3:4c:ef:a3:db:a4:af:e6:17:8d:d7:e1:86:0f: 4e:fb:17:0c:f5:14:e5:aa:b5:b4:91:88:55:a8:37:f8:1b:f2: b1:ed:86:ea:37:7b:77:cb:3f:d9:77:b7:fb:49:ed:0c:91:a0: 07:ce:04:1c:3f:87:ec:a4:b9:1b:7e:6d:a4:5e:ae:61:4f:16: 17:ce:21:d4:17:c6:d6:38:a4:ff:cd:d7:7f:c3:f5:6b:e8:da: 1a:08:aa:00:8c:91:9a:df:95:bd:cc:e0:32:6f:51:66:2a:22: f1:af:9b:98:fe:29:9d:5b:49:79:28:23:13:d1:fd:25:33:43: dc:3b:db:76:3d:a5:90:8f:98:48:d3:56:99:0c:c6:13:47:7d: e9:b0:eb:14 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcjV5TpiD/+gmZav0TyNTb0XQYewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkMyREFBQTQwOUJBNjBERTMzRUM5MUYzQTg2MUQxQTAw NzE5RDQyNjAeFw0yNTA1MDQwNTU1MDJaFw0yNjA1MDMwNjAwMDJaMDMxMTAvBgNV BAMTKDg4RjVGQzE1NDYyQjUwNEUxQUJFODRGNTRBODcwQTk1QzI2NTQyNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCAqFJey8m+kvKWdD/ja14NMwa bYwLsTNkNBZ2vhfvvI/bDMn88a7GYltiu8KC8/CmpfV6gTCdp2DFJe1pchAMm/wQ 51FRpWDkPovONEWXGmMyrQMzVZAzDexSwpb/a/w8issGbiiJ0Oyw8vII444lIyLF VOJG7jDiKoAdurSqd4GKEa1lBKAXRq1fwiMnIAT6tByLZHKzQn3LeFFox+tOzBE+ QB1UgBOxfdJMITxAtEwBvAkEQf1c4DfC6V5e0Q4AIxRDGwKsTMSiGuGdwfCylKMF 1oQewx6fTMwABlF0cjinlzTeCLPBXdx6bzBim857U2vdEZjCBzUYHE7wHUYRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiPX8FUYrUE4avoT1SocKlcJlQkowHwYDVR0j BBgwFoAU/C2qpAm6YN4z7JHzqGHRoAcZ1CYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmI4MDhlYi1jOThlLTQwMzYtYmU5YS0xOTNiYmNjNjQ4OTIvMC9GQzJEQUFBNDA5 QkE2MERFMzNFQzkxRjNBODYxRDFBMDA3MTlENDI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkMyREFBQTQwOUJBNjBERTMzRUM5MUYzQTg2MUQxQTAwNzE5 RDQyNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjgwOGViLWM5OGUtNDAzNi1i ZTlhLTE5M2JiY2M2NDg5Mi8wLzMxMzUzNzJlMzYzNjJlMzIyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM1MzIzNDM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgIwDQYJKoZIhvcN AQELBQADggEBAHG1i54BoafQGWLI01KNXQRJqpWpWvbO/3UV7o0LZXlwXXGy2/r1 olxRZXesz306TN82c4PJOcgm3Y4yFaYvUpdAVWKFc8wnlaLwIWR5nRwwyiuJvm2E YLUOnPyDbZZ4RYDTcq8TF82192QB1/ZFhXjzTO+j26Sv5heN1+GGD077Fwz1FOWq tbSRiFWoN/gb8rHthuo3e3fLP9l3t/tJ7QyRoAfOBBw/h+ykuRt+baRermFPFhfO IdQXxtY4pP/N13/D9Wvo2hoIqgCMkZrflb3M4DJvUWYqIvGvm5j+KZ1bSXkoIxPR /SUzQ9w723Y9pZCPmEjTVpkMxhNHfemw6xQ= -----END CERTIFICATE-----Generated at Sat May 10 20:23:13 2025 by rpki-client