$ rpki-client -vvf repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32342d3234203d3e20313431363039.roa File: 3135372e36362e36322e302f32342d3234203d3e20313431363039.roa (raw, json) Hash identifier: kxx1JK0LdXNsTF8QfIwwHGfN62dNPCh0hebrTNAvnqQ= Subject key identifier: DF:47:BA:20:0F:0A:EC:FB:25:69:29:EA:26:D7:2E:45:FC:D0:CA:D8 Certificate issuer: /CN=5C7206DCB1B8034A485C92161B2E2C7662780B7F Certificate serial: 32E4B9A0DE2A8C5E559A6D05B3A6F0CB645D3E53 Authority key identifier: 5C:72:06:DC:B1:B8:03:4A:48:5C:92:16:1B:2E:2C:76:62:78:0B:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5C7206DCB1B8034A485C92161B2E2C7662780B7F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32342d3234203d3e20313431363039.roa Signing time: Fri 20 Jun 2025 15:00:01 +0000 ROA not before: Fri 20 Jun 2025 14:55:01 +0000 ROA not after: Fri 19 Jun 2026 15:00:01 +0000 asID: 141609 IP address blocks: 157.66.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5C7206DCB1B8034A485C92161B2E2C7662780B7F.crl rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5C7206DCB1B8034A485C92161B2E2C7662780B7F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5C7206DCB1B8034A485C92161B2E2C7662780B7F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e4:b9:a0:de:2a:8c:5e:55:9a:6d:05:b3:a6:f0:cb:64:5d:3e:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C7206DCB1B8034A485C92161B2E2C7662780B7F Validity Not Before: Jun 20 14:55:01 2025 GMT Not After : Jun 19 15:00:01 2026 GMT Subject: CN=DF47BA200F0AECFB256929EA26D72E45FCD0CAD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a8:58:82:b5:a5:e3:d6:d0:94:a8:ab:5d:bb: 6c:a1:d3:5f:d4:a2:09:de:ae:87:19:f9:4c:b6:52: cd:c3:d1:87:64:9f:b0:5b:fe:63:08:4c:f6:92:93: 83:27:84:fd:80:c3:b3:69:82:30:7f:22:48:a4:a7: c2:fe:c2:60:5c:9d:e7:a1:04:76:89:7c:39:f1:60: 7b:b5:bb:ea:54:cd:ac:68:ab:17:59:27:e6:bb:d3: bf:9d:cc:b0:71:7c:0e:c6:af:34:88:b7:ea:a0:8e: 3d:db:a9:64:25:71:0a:52:5a:6c:cb:b2:f0:3f:01: d4:34:7b:26:7e:36:db:ce:4e:5c:9e:bc:76:3c:39: bc:0e:ab:90:7c:58:8a:04:c6:53:57:82:0e:1d:41: a9:9b:d2:cc:59:05:58:13:2e:7e:7e:0a:18:3f:9c: 59:64:87:64:5b:84:2b:34:22:6e:f4:a3:a3:1c:a9: e9:fe:44:39:5c:f8:b8:79:ae:db:08:5b:43:64:90: 40:fb:7b:0f:0b:c4:54:5a:94:ab:1c:3f:78:3e:aa: 7a:93:66:14:34:5e:f8:e1:b6:da:66:4b:20:b1:80: fa:6c:e8:18:44:10:eb:55:c1:b4:26:46:39:81:49: a3:4b:8b:4f:0d:eb:26:69:a2:7d:93:39:f2:af:e3: b7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:47:BA:20:0F:0A:EC:FB:25:69:29:EA:26:D7:2E:45:FC:D0:CA:D8 X509v3 Authority Key Identifier: keyid:5C:72:06:DC:B1:B8:03:4A:48:5C:92:16:1B:2E:2C:76:62:78:0B:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5C7206DCB1B8034A485C92161B2E2C7662780B7F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5C7206DCB1B8034A485C92161B2E2C7662780B7F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32342d3234203d3e20313431363039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.62.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:88:38:5f:c9:78:ee:c1:73:5c:ee:65:bf:e9:14:99:3a:5d: 99:f7:46:8f:64:72:fe:6b:19:de:3d:e9:8a:a2:57:01:32:4f: 82:40:00:1e:48:2d:80:a0:ef:0b:81:db:9b:e4:91:d5:f7:ec: 26:b2:f0:fa:11:95:c9:e6:ca:56:ff:87:2b:a7:90:6b:d8:da: 7a:e3:99:87:9d:1f:15:81:d8:11:91:5a:e2:98:9b:33:6d:51: 01:78:7a:b8:9b:5d:4b:5a:79:0a:79:89:e5:ad:d7:b6:e4:41: fc:50:a8:03:56:74:74:df:66:10:42:b0:c8:31:3e:19:d6:51: 7a:3b:40:c0:c4:f6:7c:a8:86:63:22:0e:31:1b:d4:c3:eb:0b: 35:89:81:e8:96:cf:6e:cc:66:38:d5:0b:44:43:4b:ea:06:16: 5c:ae:d0:90:c1:4a:dc:65:6c:20:82:8b:70:f2:b9:18:d7:26: 3b:41:dc:df:51:33:dd:9d:ee:1e:c9:97:a6:59:8a:34:e8:08: ad:27:15:3f:9c:a8:ce:ab:0d:c9:ea:c1:ba:e7:b8:84:94:15: eb:d4:7f:a1:58:5b:0c:50:e3:89:92:69:ca:10:74:42:89:4c: 78:0c:a1:26:ac:81:53:a7:e3:f7:ad:d4:0b:68:7b:4e:b5:bc: cf:f3:26:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMuS5oN4qjF5Vmm0Fs6bwy2RdPlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM3MjA2RENCMUI4MDM0QTQ4NUM5MjE2MUIyRTJDNzY2 Mjc4MEI3RjAeFw0yNTA2MjAxNDU1MDFaFw0yNjA2MTkxNTAwMDFaMDMxMTAvBgNV BAMTKERGNDdCQTIwMEYwQUVDRkIyNTY5MjlFQTI2RDcyRTQ1RkNEMENBRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbqFiCtaXj1tCUqKtdu2yh01/U ognerocZ+Uy2Us3D0Ydkn7Bb/mMITPaSk4MnhP2Aw7NpgjB/Ikikp8L+wmBcneeh BHaJfDnxYHu1u+pUzaxoqxdZJ+a707+dzLBxfA7GrzSIt+qgjj3bqWQlcQpSWmzL svA/AdQ0eyZ+NtvOTlyevHY8ObwOq5B8WIoExlNXgg4dQamb0sxZBVgTLn5+Chg/ nFlkh2RbhCs0Im70o6Mcqen+RDlc+Lh5rtsIW0NkkED7ew8LxFRalKscP3g+qnqT ZhQ0XvjhttpmSyCxgPps6BhEEOtVwbQmRjmBSaNLi08N6yZpon2TOfKv47dzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU30e6IA8K7PslaSnqJtcuRfzQytgwHwYDVR0j BBgwFoAUXHIG3LG4A0pIXJIWGy4sdmJ4C38wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZGRiYjc5Yy05ZWEyLTQ3ZjAtYjQ1Zi0xODE2NjUwYmEyM2YvMC81QzcyMDZEQ0Ix QjgwMzRBNDg1QzkyMTYxQjJFMkM3NjYyNzgwQjdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUM3MjA2RENCMUI4MDM0QTQ4NUM5MjE2MUIyRTJDNzY2Mjc4 MEI3Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkZGJiNzljLTllYTItNDdmMC1i NDVmLTE4MTY2NTBiYTIzZi8wLzMxMzUzNzJlMzYzNjJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CPjANBgkqhkiG 9w0BAQsFAAOCAQEAX4g4X8l47sFzXO5lv+kUmTpdmfdGj2Ry/msZ3j3piqJXATJP gkAAHkgtgKDvC4Hbm+SR1ffsJrLw+hGVyebKVv+HK6eQa9jaeuOZh50fFYHYEZFa 4pibM21RAXh6uJtdS1p5CnmJ5a3XtuRB/FCoA1Z0dN9mEEKwyDE+GdZRejtAwMT2 fKiGYyIOMRvUw+sLNYmB6JbPbsxmONULRENL6gYWXK7QkMFK3GVsIIKLcPK5GNcm O0Hc31Ez3Z3uHsmXplmKNOgIrScVP5yozqsNyerBuue4hJQV69R/oVhbDFDjiZJp yhB0QolMeAyhJqyBU6fj963UC2h7TrW8z/MmNA== -----END CERTIFICATE-----Generated at Mon Jun 30 10:22:31 2025 by rpki-client