$ rpki-client -vvf repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/3135372e36362e34302e302f32342d3234203d3e20313532373934.roa File: 3135372e36362e34302e302f32342d3234203d3e20313532373934.roa (raw, json) Hash identifier: llbK8JVFmbrLSSzLv9Ovv2C1Mqs66Yxl6xm9VnsVOAw= Subject key identifier: 31:C6:1F:9D:B9:BC:43:21:D0:D2:6B:60:F1:21:34:58:B8:B7:F3:40 Certificate issuer: /CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Certificate serial: 2801D68015375A11E048B67B486A389000131328 Authority key identifier: AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/3135372e36362e34302e302f32342d3234203d3e20313532373934.roa Signing time: Sat 04 Oct 2025 12:00:00 +0000 ROA not before: Sat 04 Oct 2025 11:55:00 +0000 ROA not after: Sat 03 Oct 2026 12:00:00 +0000 asID: 152794 IP address blocks: 157.66.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 15:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:01:d6:80:15:37:5a:11:e0:48:b6:7b:48:6a:38:90:00:13:13:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Validity Not Before: Oct 4 11:55:00 2025 GMT Not After : Oct 3 12:00:00 2026 GMT Subject: CN=31C61F9DB9BC4321D0D26B60F1213458B8B7F340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:96:ca:b2:35:37:58:18:e4:cb:b3:db:72: 3b:a0:ac:5b:3f:05:c5:30:72:61:7d:6b:7e:0b:68: d8:20:2f:57:6b:7d:95:2f:6e:40:11:7d:8f:6a:61: fa:cc:05:0f:85:04:db:76:02:d2:e0:36:0b:35:a6: c1:d4:55:15:27:54:c6:32:03:49:46:2e:35:60:fd: fb:21:b3:b6:45:a9:1e:4a:c4:99:ad:0b:47:af:b0: 47:81:8b:14:ac:0f:5c:4f:f5:47:2c:3e:ec:b0:87: 8f:9f:ff:dd:e3:00:d0:78:84:ec:3e:a1:d1:8a:90: 14:22:d5:c7:be:38:02:aa:21:06:f9:09:4e:df:39: ef:2a:39:c8:3c:bf:e1:fc:c6:06:c8:d1:de:e2:46: 65:b9:4b:34:6a:40:df:5e:54:ef:43:8f:9f:e5:d4: eb:67:a4:76:34:f4:35:3b:9a:cb:cd:5b:f7:3e:63: 0c:c8:49:82:ab:43:f4:b7:71:b2:bb:51:88:89:dc: 26:5b:7b:b1:07:31:3c:41:2b:b9:c1:89:8c:7e:a8: f1:2b:c3:86:d1:fa:bf:2c:26:97:e5:e0:7f:25:bf: b5:44:ce:77:56:e1:ee:36:21:f4:d6:fa:75:d5:d6: 67:37:5b:ec:c3:8d:82:70:c4:93:00:34:68:c4:9f: f1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C6:1F:9D:B9:BC:43:21:D0:D2:6B:60:F1:21:34:58:B8:B7:F3:40 X509v3 Authority Key Identifier: keyid:AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/3135372e36362e34302e302f32342d3234203d3e20313532373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.40.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:a6:03:15:59:9d:ce:e0:2e:26:99:ae:9a:77:c1:25:aa:e3: c1:fa:93:b3:25:86:36:75:6b:9a:0c:a0:14:39:1d:09:8e:10: 12:01:8b:d5:87:f1:7e:bb:11:47:3b:b3:e4:32:6f:3b:ee:d8: e3:87:d6:a2:f7:cd:ad:f7:3b:c1:97:b8:b2:22:73:ea:59:aa: 6d:00:28:6a:bb:f3:a3:52:df:7e:e9:b3:a6:97:57:86:6f:18: 73:b9:89:be:cc:aa:7f:1f:35:68:fe:b7:a9:85:85:40:97:18: de:8f:3b:16:db:29:86:04:54:1c:25:39:01:91:73:23:27:a1: f6:64:f7:8c:72:05:67:87:82:69:0f:ba:ac:40:36:8c:3f:62: e2:05:5d:9c:a5:02:38:d6:1f:04:33:07:06:81:4b:d5:51:4b: 14:4f:fb:26:06:65:99:24:c2:ec:1c:b3:13:89:17:8e:60:2d: 30:0f:d8:70:f3:3b:da:83:7a:3d:6f:3d:60:dd:ae:20:46:bf: 56:13:81:b4:32:c3:e6:72:30:c1:c6:47:5c:fe:1a:9e:fb:9b: 73:02:27:9d:72:2d:21:cd:b8:a5:0b:29:56:fd:6d:ce:2f:34: 5e:90:1c:39:74:3f:26:65:75:3d:15:42:cc:3d:74:a7:c4:f6: d7:58:f3:d3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKAHWgBU3WhHgSLZ7SGo4kAATEygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZD RURFQzNENTAeFw0yNTEwMDQxMTU1MDBaFw0yNjEwMDMxMjAwMDBaMDMxMTAvBgNV BAMTKDMxQzYxRjlEQjlCQzQzMjFEMEQyNkI2MEYxMjEzNDU4QjhCN0YzNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV9ZbKsjU3WBjky7PbcjugrFs/ BcUwcmF9a34LaNggL1drfZUvbkARfY9qYfrMBQ+FBNt2AtLgNgs1psHUVRUnVMYy A0lGLjVg/fshs7ZFqR5KxJmtC0evsEeBixSsD1xP9UcsPuywh4+f/93jANB4hOw+ odGKkBQi1ce+OAKqIQb5CU7fOe8qOcg8v+H8xgbI0d7iRmW5SzRqQN9eVO9Dj5/l 1OtnpHY09DU7msvNW/c+YwzISYKrQ/S3cbK7UYiJ3CZbe7EHMTxBK7nBiYx+qPEr w4bR+r8sJpfl4H8lv7VEzndW4e42IfTW+nXV1mc3W+zDjYJwxJMANGjEn/GJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMcYfnbm8QyHQ0mtg8SE0WLi380AwHwYDVR0j BBgwFoAUr2hxyv0FxvYlnNybP+hlb87ew9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2YyYzE5MC0zMGY1LTRmMTktYmZjYS0wYjk4N2E1MmZkNTUvMC9BRjY4NzFDQUZE MDVDNkY2MjU5Q0RDOUIzRkU4NjU2RkNFREVDM0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZDRURF QzNENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3ZjJjMTkwLTMwZjUtNGYxOS1i ZmNhLTBiOTg3YTUyZmQ1NS8wLzMxMzUzNzJlMzYzNjJlMzQzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CKDANBgkqhkiG 9w0BAQsFAAOCAQEAm6YDFVmdzuAuJpmumnfBJarjwfqTsyWGNnVrmgygFDkdCY4Q EgGL1YfxfrsRRzuz5DJvO+7Y44fWovfNrfc7wZe4siJz6lmqbQAoarvzo1Lffumz ppdXhm8Yc7mJvsyqfx81aP63qYWFQJcY3o87FtsphgRUHCU5AZFzIyeh9mT3jHIF Z4eCaQ+6rEA2jD9i4gVdnKUCONYfBDMHBoFL1VFLFE/7JgZlmSTC7ByzE4kXjmAt MA/YcPM72oN6PW89YN2uIEa/VhOBtDLD5nIwwcZHXP4anvubcwInnXItIc24pQsp Vv1tzi80XpAcOXQ/JmV1PRVCzD10p8T211jz0w== -----END CERTIFICATE-----Generated at Tue Oct 21 07:20:57 2025 by rpki-client