$ rpki-client -vvf repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa File: 3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa (raw, json) Hash identifier: /xnKIJqaqDL7/JOHF7yvMHhH3AHbZnnJNdDEJWnCAWk= Subject key identifier: 17:3E:F7:48:54:9D:8E:30:B9:A8:FF:3E:89:04:9D:85:09:6F:D2:E2 Certificate issuer: /CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Certificate serial: 71DA9B2F5DEF6342483C308D610BF1A8E14A84FD Authority key identifier: AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa Signing time: Mon 11 Aug 2025 06:45:02 +0000 ROA not before: Mon 11 Aug 2025 06:40:02 +0000 ROA not after: Mon 10 Aug 2026 06:45:02 +0000 asID: 141581 IP address blocks: 157.66.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 03:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:da:9b:2f:5d:ef:63:42:48:3c:30:8d:61:0b:f1:a8:e1:4a:84:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABF793B534686EC2D5820CF153E43AAEF088BE41 Validity Not Before: Aug 11 06:40:02 2025 GMT Not After : Aug 10 06:45:02 2026 GMT Subject: CN=173EF748549D8E30B9A8FF3E89049D85096FD2E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ff:02:ec:b2:a8:97:7c:e8:67:b5:3f:04:9d: 99:68:09:aa:d5:45:c7:38:95:96:80:f6:19:8f:aa: cc:e6:47:ac:53:bf:73:b6:63:b4:29:18:19:f8:71: 9b:79:7b:5a:0f:eb:0f:17:f6:bf:66:53:b7:94:cd: a7:7a:a1:f2:56:8a:52:cd:d1:be:1f:de:26:42:84: 0f:24:7a:89:8e:46:e3:70:f6:0c:98:41:87:31:3e: 6c:16:3b:03:dd:ec:b3:3a:38:24:04:d9:f4:b5:ab: 61:c4:e1:64:a4:9f:ab:7f:2f:6d:2a:e1:6b:b6:a3: 68:fa:96:ad:bb:b1:19:de:6a:4a:9a:bb:df:4f:47: f3:36:18:9e:b8:69:d6:43:06:b3:cc:ad:c7:de:45: 3b:49:2f:48:c4:47:2c:a9:a9:6b:dd:b2:32:3c:b1: e4:11:0f:da:53:f2:01:cb:fe:3e:55:58:ef:96:a3: 84:8b:50:1d:f2:54:e9:d2:39:cc:69:d8:9d:3d:31: 04:e7:10:0e:1f:e8:52:58:6d:dd:f9:2e:fb:31:4b: 34:51:2c:45:7c:da:d0:20:96:33:97:57:fc:7a:48: fd:85:94:8a:6f:1a:3f:d2:01:06:d9:30:f6:45:01: 10:9b:1a:e3:eb:cc:13:88:10:64:3a:c0:fb:ed:28: ab:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3E:F7:48:54:9D:8E:30:B9:A8:FF:3E:89:04:9D:85:09:6F:D2:E2 X509v3 Authority Key Identifier: keyid:AB:F7:93:B5:34:68:6E:C2:D5:82:0C:F1:53:E4:3A:AE:F0:88:BE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/ABF793B534686EC2D5820CF153E43AAEF088BE41.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ABF793B534686EC2D5820CF153E43AAEF088BE41.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81a4b782-c37f-4379-a8a6-4da5d82b239f/0/3135372e36362e3133332e302f32342d3234203d3e20313431353831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.133.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:34:8f:fc:45:ed:89:fd:a5:18:2b:15:38:86:18:ee:4b:60: 5d:1d:3e:c7:5f:89:f7:17:71:07:52:5c:6f:9b:70:a2:2c:9d: c5:24:74:54:e0:42:e6:1e:bc:2d:d5:33:3b:53:9c:30:48:c3: 65:03:bc:02:1f:f0:4a:ef:a2:a7:6f:0c:34:f5:fd:a0:b3:ff: bd:a5:43:97:e2:01:87:d7:fc:2c:ec:10:40:4f:2c:c5:db:64: 42:8d:e3:05:f4:62:a6:90:87:4f:78:70:55:88:34:a4:64:6e: fd:a6:17:aa:32:88:c2:47:bb:ca:bd:ba:ac:32:a6:b6:8f:6d: b7:46:ae:a4:4c:22:de:05:28:98:2b:62:70:bc:be:f0:5d:b9: a2:57:50:9f:08:43:3f:20:c3:ee:bb:23:1e:27:d6:2f:9f:e5: 6b:17:36:34:02:6b:bf:65:dc:3c:c7:33:76:37:f8:24:b2:ff: f2:f3:89:55:d5:17:e6:83:b3:66:9a:a5:0c:2f:38:47:ee:a8: f4:1c:b3:eb:65:9c:c6:d4:2e:3f:0c:bf:32:65:6c:fc:22:1d: 5b:55:a8:40:00:c3:2d:03:23:af:b2:00:37:9c:cb:a6:cb:0f: ca:c0:f3:73:c6:e5:7c:b1:9b:c8:58:76:c0:29:9e:6a:68:c3: 21:89:b3:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcdqbL13vY0JIPDCNYQvxqOFKhP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVG MDg4QkU0MTAeFw0yNTA4MTEwNjQwMDJaFw0yNjA4MTAwNjQ1MDJaMDMxMTAvBgNV BAMTKDE3M0VGNzQ4NTQ5RDhFMzBCOUE4RkYzRTg5MDQ5RDg1MDk2RkQyRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS/wLssqiXfOhntT8EnZloCarV Rcc4lZaA9hmPqszmR6xTv3O2Y7QpGBn4cZt5e1oP6w8X9r9mU7eUzad6ofJWilLN 0b4f3iZChA8keomORuNw9gyYQYcxPmwWOwPd7LM6OCQE2fS1q2HE4WSkn6t/L20q 4Wu2o2j6lq27sRneakqau99PR/M2GJ64adZDBrPMrcfeRTtJL0jERyypqWvdsjI8 seQRD9pT8gHL/j5VWO+Wo4SLUB3yVOnSOcxp2J09MQTnEA4f6FJYbd35LvsxSzRR LEV82tAgljOXV/x6SP2FlIpvGj/SAQbZMPZFARCbGuPrzBOIEGQ6wPvtKKvtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFz73SFSdjjC5qP8+iQSdhQlv0uIwHwYDVR0j BBgwFoAUq/eTtTRobsLVggzxU+Q6rvCIvkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWE0Yjc4Mi1jMzdmLTQzNzktYThhNi00ZGE1ZDgyYjIzOWYvMC9BQkY3OTNCNTM0 Njg2RUMyRDU4MjBDRjE1M0U0M0FBRUYwODhCRTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUJGNzkzQjUzNDY4NkVDMkQ1ODIwQ0YxNTNFNDNBQUVGMDg4 QkU0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYTRiNzgyLWMzN2YtNDM3OS1h OGE2LTRkYTVkODJiMjM5Zi8wLzMxMzUzNzJlMzYzNjJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKFMA0GCSqG SIb3DQEBCwUAA4IBAQA9NI/8Re2J/aUYKxU4hhjuS2BdHT7HX4n3F3EHUlxvm3Ci LJ3FJHRU4ELmHrwt1TM7U5wwSMNlA7wCH/BK76Knbww09f2gs/+9pUOX4gGH1/ws 7BBATyzF22RCjeMF9GKmkIdPeHBViDSkZG79pheqMojCR7vKvbqsMqa2j223Rq6k TCLeBSiYK2JwvL7wXbmiV1CfCEM/IMPuuyMeJ9Yvn+VrFzY0Amu/Zdw8xzN2N/gk sv/y84lV1Rfmg7NmmqUMLzhH7qj0HLPrZZzG1C4/DL8yZWz8Ih1bVahAAMMtAyOv sgA3nMumyw/KwPNzxuV8sZvIWHbAKZ5qaMMhibNw -----END CERTIFICATE-----Generated at Sun Aug 24 05:35:31 2025 by rpki-client