$ rpki-client -vvf repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32332d3233203d3e20313431363039.roa File: 3135372e36362e36322e302f32332d3233203d3e20313431363039.roa (raw, json) Hash identifier: xg9KiTNoeyCjJ74fW/vHqv0QTukciiVKjOEW4/d1ihQ= Subject key identifier: 6A:F7:D4:62:5D:7F:16:4C:28:09:24:4C:1F:41:1B:FE:14:6C:B8:D5 Certificate issuer: /CN=5C7206DCB1B8034A485C92161B2E2C7662780B7F Certificate serial: 3378E13BFE8BB95565F088A232D9F70BCCD13211 Authority key identifier: 5C:72:06:DC:B1:B8:03:4A:48:5C:92:16:1B:2E:2C:76:62:78:0B:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5C7206DCB1B8034A485C92161B2E2C7662780B7F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32332d3233203d3e20313431363039.roa Signing time: Fri 20 Jun 2025 15:00:01 +0000 ROA not before: Fri 20 Jun 2025 14:55:01 +0000 ROA not after: Fri 19 Jun 2026 15:00:01 +0000 asID: 141609 IP address blocks: 157.66.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5C7206DCB1B8034A485C92161B2E2C7662780B7F.crl rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5C7206DCB1B8034A485C92161B2E2C7662780B7F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5C7206DCB1B8034A485C92161B2E2C7662780B7F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:78:e1:3b:fe:8b:b9:55:65:f0:88:a2:32:d9:f7:0b:cc:d1:32:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C7206DCB1B8034A485C92161B2E2C7662780B7F Validity Not Before: Jun 20 14:55:01 2025 GMT Not After : Jun 19 15:00:01 2026 GMT Subject: CN=6AF7D4625D7F164C2809244C1F411BFE146CB8D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:24:99:e1:96:57:62:1d:fd:d8:32:9f:ad: e8:00:2b:cd:8e:48:d9:37:f7:32:a7:04:f9:1f:70: 50:3a:1a:5b:39:65:82:f7:97:a6:b0:b0:41:e8:1b: b6:0b:07:31:21:08:59:88:e5:12:49:13:a7:64:cd: 19:68:6b:2c:f9:6e:9d:b1:00:37:89:e3:a1:9f:33: 04:81:6d:d8:a5:da:23:f5:2a:d8:33:99:d9:00:72: dc:e6:fb:16:cb:e1:af:9c:a6:37:5c:0c:30:c6:79: ff:01:9f:7a:3f:5a:d1:65:35:f7:22:c0:05:d9:63: 5b:bb:b3:04:2b:46:f6:fc:6c:86:83:74:31:c7:14: f1:1c:46:b4:b7:1b:c4:aa:e7:bd:ba:e2:69:07:37: 58:da:4d:8e:79:be:71:7e:fe:b0:7f:c2:4c:ff:56: 4d:00:16:23:8e:94:87:93:d1:c1:2e:26:f2:64:d3: 73:b6:c5:d3:f6:c7:2f:77:7a:ef:d6:66:a4:b4:1b: 33:c9:e4:0c:37:2a:e2:e5:22:7c:71:ed:a1:1b:73: bb:97:fa:08:6d:20:ca:eb:3e:0b:d5:fe:5e:e9:61: 78:15:41:5e:1b:e1:a1:c4:43:f5:46:2f:61:c3:50: c6:71:8f:6b:f5:7f:c8:a7:21:31:eb:7b:76:56:0e: 84:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F7:D4:62:5D:7F:16:4C:28:09:24:4C:1F:41:1B:FE:14:6C:B8:D5 X509v3 Authority Key Identifier: keyid:5C:72:06:DC:B1:B8:03:4A:48:5C:92:16:1B:2E:2C:76:62:78:0B:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5C7206DCB1B8034A485C92161B2E2C7662780B7F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5C7206DCB1B8034A485C92161B2E2C7662780B7F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32332d3233203d3e20313431363039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.62.0/23 Signature Algorithm: sha256WithRSAEncryption b4:74:5b:1b:e1:8f:63:d3:00:2a:46:3d:1f:bc:8e:74:52:9b: d4:f8:66:e6:53:ab:41:9b:4d:c7:ce:36:6f:b2:c7:9c:bd:b0: a5:93:11:78:c6:d5:bd:f3:08:20:b3:3e:0b:8f:8f:49:1d:a5: 22:7b:fb:11:41:9e:db:fe:ec:df:4b:ea:00:db:e6:b4:0f:61: 63:c9:65:76:36:55:6a:8b:97:87:45:45:42:ea:7f:b7:e3:71: 33:91:c8:f6:41:5c:af:8d:55:98:8b:a3:72:e1:c9:55:45:b2: f5:a0:dc:f6:c6:21:b6:be:87:b9:84:29:98:dd:c8:f4:34:ad: 7e:29:57:26:e7:5a:e6:8e:03:d8:b2:f1:7b:0c:3e:2a:84:27: ef:d4:1c:9d:87:d9:cf:59:c9:78:d9:58:ca:df:ca:55:97:6a: 4b:27:80:ad:1a:55:6d:52:9b:4c:66:9e:92:11:08:26:fd:a3: 58:69:e3:b7:92:37:9c:33:be:0d:e7:36:25:2c:d8:dc:31:67: 63:2e:14:b9:0c:ba:9b:a7:3b:95:c5:62:dc:5c:75:c0:35:71: 7d:88:49:48:54:79:2f:09:ca:34:74:03:e0:f8:ab:ad:87:9e: 6c:8f:eb:6e:26:85:dd:40:66:16:73:e9:1a:5c:54:50:1c:4c: a1:4e:a9:5a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM3jhO/6LuVVl8IiiMtn3C8zRMhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM3MjA2RENCMUI4MDM0QTQ4NUM5MjE2MUIyRTJDNzY2 Mjc4MEI3RjAeFw0yNTA2MjAxNDU1MDFaFw0yNjA2MTkxNTAwMDFaMDMxMTAvBgNV BAMTKDZBRjdENDYyNUQ3RjE2NEMyODA5MjQ0QzFGNDExQkZFMTQ2Q0I4RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC76iSZ4ZZXYh392DKfregAK82O SNk39zKnBPkfcFA6Gls5ZYL3l6awsEHoG7YLBzEhCFmI5RJJE6dkzRloayz5bp2x ADeJ46GfMwSBbdil2iP1KtgzmdkActzm+xbL4a+cpjdcDDDGef8Bn3o/WtFlNfci wAXZY1u7swQrRvb8bIaDdDHHFPEcRrS3G8Sq57264mkHN1jaTY55vnF+/rB/wkz/ Vk0AFiOOlIeT0cEuJvJk03O2xdP2xy93eu/WZqS0GzPJ5Aw3KuLlInxx7aEbc7uX +ghtIMrrPgvV/l7pYXgVQV4b4aHEQ/VGL2HDUMZxj2v1f8inITHre3ZWDoRDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUavfUYl1/FkwoCSRMH0Eb/hRsuNUwHwYDVR0j BBgwFoAUXHIG3LG4A0pIXJIWGy4sdmJ4C38wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZGRiYjc5Yy05ZWEyLTQ3ZjAtYjQ1Zi0xODE2NjUwYmEyM2YvMC81QzcyMDZEQ0Ix QjgwMzRBNDg1QzkyMTYxQjJFMkM3NjYyNzgwQjdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUM3MjA2RENCMUI4MDM0QTQ4NUM5MjE2MUIyRTJDNzY2Mjc4 MEI3Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkZGJiNzljLTllYTItNDdmMC1i NDVmLTE4MTY2NTBiYTIzZi8wLzMxMzUzNzJlMzYzNjJlMzYzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMTM2MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CPjANBgkqhkiG 9w0BAQsFAAOCAQEAtHRbG+GPY9MAKkY9H7yOdFKb1Phm5lOrQZtNx842b7LHnL2w pZMReMbVvfMIILM+C4+PSR2lInv7EUGe2/7s30vqANvmtA9hY8lldjZVaouXh0VF Qup/t+NxM5HI9kFcr41VmIujcuHJVUWy9aDc9sYhtr6HuYQpmN3I9DStfilXJuda 5o4D2LLxeww+KoQn79QcnYfZz1nJeNlYyt/KVZdqSyeArRpVbVKbTGaekhEIJv2j WGnjt5I3nDO+Dec2JSzY3DFnYy4UuQy6m6c7lcVi3Fx1wDVxfYhJSFR5LwnKNHQD 4PirrYeebI/rbiaF3UBmFnPpGlxUUBxMoU6pWg== -----END CERTIFICATE-----Generated at Mon Jun 30 10:18:39 2025 by rpki-client