$ rpki-client -vvf repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313533333237.roa File: 3135372e36362e3132382e302f32332d3234203d3e20313533333237.roa (raw, json) Hash identifier: 5kV5IEGJemDrX4dTRJGFiitWDS9Xn5xZMjop2LDovbk= Subject key identifier: 4F:C7:85:C4:64:2D:BC:37:15:0E:14:67:F2:78:B8:7C:02:53:65:46 Certificate issuer: /CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Certificate serial: 6FEF889922DF02B47BECBF3E9E90170E15B5E4A4 Authority key identifier: 63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313533333237.roa Signing time: Mon 30 Jun 2025 02:56:01 +0000 ROA not before: Mon 30 Jun 2025 02:51:01 +0000 ROA not after: Mon 29 Jun 2026 02:56:01 +0000 asID: 153327 IP address blocks: 157.66.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ef:88:99:22:df:02:b4:7b:ec:bf:3e:9e:90:17:0e:15:b5:e4:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Validity Not Before: Jun 30 02:51:01 2025 GMT Not After : Jun 29 02:56:01 2026 GMT Subject: CN=4FC785C4642DBC37150E1467F278B87C02536546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9f:85:8f:b3:b1:de:93:8e:a5:f2:ec:54:7e: 1e:37:ea:57:2a:a5:db:68:82:3e:3f:5a:9a:ed:71: 88:5a:ec:8f:b6:b6:cb:30:ea:ca:53:c6:aa:38:61: 64:fa:b4:37:db:2a:7e:5e:93:28:8f:0e:dc:8b:a1: 02:ea:3f:80:2c:b4:c2:79:b5:60:7c:80:1b:85:e0: 1e:26:f7:dd:8e:a9:4f:de:d4:75:ab:60:59:d6:92: 00:26:de:49:79:40:58:70:66:5b:ef:3d:bd:80:60: c9:82:75:f2:ae:f2:24:4c:89:53:2d:f5:7a:6e:42: 16:b6:18:7c:c0:92:8d:40:87:3d:1f:49:fe:ae:34: 8d:ad:15:24:7b:3c:1e:01:7d:e8:8d:1a:be:9e:b2: d7:5e:42:e0:75:ef:dd:3a:3a:54:d3:2e:3b:e2:c8: 5d:a5:96:95:24:bb:b4:dd:73:50:ef:84:d9:81:46: 32:6c:71:47:94:b3:8c:ed:d5:bf:65:c2:ec:7d:50: 4d:52:81:9c:73:ef:fc:f0:0e:01:32:23:34:2a:3b: ab:af:58:72:22:3d:77:d7:4e:9d:26:c5:4f:9c:93: 72:a5:03:ef:12:a3:f9:9d:3e:2f:36:7d:be:a1:d4: 61:38:73:05:dd:e9:11:97:4e:61:54:a3:01:67:5e: 3e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C7:85:C4:64:2D:BC:37:15:0E:14:67:F2:78:B8:7C:02:53:65:46 X509v3 Authority Key Identifier: keyid:63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313533333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.128.0/23 Signature Algorithm: sha256WithRSAEncryption 83:96:23:f8:92:b4:37:8c:22:45:19:1a:8c:6e:b2:46:2c:29: d0:9b:13:7b:84:54:d4:61:d7:db:9b:0f:5b:65:61:eb:83:1d: 8b:ae:cd:d2:b3:31:81:8a:43:6b:d9:79:fe:2a:30:cb:1a:28: 98:47:2c:bd:35:77:23:6b:04:22:37:37:a5:51:73:a9:05:52: 80:74:c8:ef:c1:97:64:4f:d9:72:b8:4f:c0:f9:97:a0:04:5b: c9:2a:48:ba:2f:52:22:33:71:96:35:68:43:d9:5d:fa:85:57: 69:a9:1d:7c:c4:25:d8:20:38:87:46:96:01:ac:04:a3:71:ea: 69:5c:0c:e2:f9:4b:c7:2c:08:f0:e1:35:46:b6:7d:28:e8:f8: 2c:fb:44:75:a2:8f:a4:dd:2a:30:db:99:5b:2d:db:64:6c:f9: d7:17:c0:8d:bd:40:df:18:53:b8:10:c7:3b:dd:9c:84:ee:b5: b3:ab:6b:2e:2a:96:ff:02:bb:74:00:0e:c2:5f:6f:37:19:0d: f9:24:e1:d5:72:e5:86:f9:0a:62:e5:3c:ca:85:99:44:f8:98: b0:93:3e:0b:e5:99:ed:92:de:a1:db:f2:4a:51:8b:99:82:35: 1c:f0:3b:8f:3b:83:e1:50:69:da:9d:7e:ae:bd:18:a6:d3:b2: 5f:84:07:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb++ImSLfArR77L8+npAXDhW15KQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNC RUYxMkY3RDAeFw0yNTA2MzAwMjUxMDFaFw0yNjA2MjkwMjU2MDFaMDMxMTAvBgNV BAMTKDRGQzc4NUM0NjQyREJDMzcxNTBFMTQ2N0YyNzhCODdDMDI1MzY1NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCin4WPs7Hek46l8uxUfh436lcq pdtogj4/WprtcYha7I+2tssw6spTxqo4YWT6tDfbKn5ekyiPDtyLoQLqP4AstMJ5 tWB8gBuF4B4m992OqU/e1HWrYFnWkgAm3kl5QFhwZlvvPb2AYMmCdfKu8iRMiVMt 9XpuQha2GHzAko1Ahz0fSf6uNI2tFSR7PB4BfeiNGr6estdeQuB17906OlTTLjvi yF2llpUku7Tdc1DvhNmBRjJscUeUs4zt1b9lwux9UE1SgZxz7/zwDgEyIzQqO6uv WHIiPXfXTp0mxU+ck3KlA+8So/mdPi82fb6h1GE4cwXd6RGXTmFUowFnXj6tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT8eFxGQtvDcVDhRn8ni4fAJTZUYwHwYDVR0j BBgwFoAUY8S/Sxwnw0Be58odVDwfA77xL30wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjRkMWViYi1hZWViLTQ5NDUtOWVmMi0zMmFkOWJmZGViMTkvMC82M0M0QkY0QjFD MjdDMzQwNUVFN0NBMUQ1NDNDMUYwM0JFRjEyRjdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNCRUYx MkY3RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNGQxZWJiLWFlZWItNDk0NS05 ZWYyLTMyYWQ5YmZkZWIxOS8wLzMxMzUzNzJlMzYzNjJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKAMA0GCSqG SIb3DQEBCwUAA4IBAQCDliP4krQ3jCJFGRqMbrJGLCnQmxN7hFTUYdfbmw9bZWHr gx2Lrs3SszGBikNr2Xn+KjDLGiiYRyy9NXcjawQiNzelUXOpBVKAdMjvwZdkT9ly uE/A+ZegBFvJKki6L1IiM3GWNWhD2V36hVdpqR18xCXYIDiHRpYBrASjceppXAzi +UvHLAjw4TVGtn0o6Pgs+0R1oo+k3Sow25lbLdtkbPnXF8CNvUDfGFO4EMc73ZyE 7rWzq2suKpb/Art0AA7CX283GQ35JOHVcuWG+Qpi5TzKhZlE+Jiwkz4L5Zntkt6h 2/JKUYuZgjUc8DuPO4PhUGnanX6uvRim07JfhAdd -----END CERTIFICATE-----Generated at Thu Jul 3 06:49:50 2025 by rpki-client