$ rpki-client -vvf repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132392e302f32342d3234203d3e20313533333237.roa File: 3135372e36362e3132392e302f32342d3234203d3e20313533333237.roa (raw, json) Hash identifier: p8eJ4FMHWvRfEme3JAT+m3Y/gwkNkodHiOYxvIrDdWQ= Subject key identifier: FE:D9:EC:A6:2B:F1:6E:6B:A0:8E:8D:18:50:26:F6:4B:D2:A1:DF:46 Certificate issuer: /CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Certificate serial: 423565805B9C8A601A48AA57776542DB514F632D Authority key identifier: 63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132392e302f32342d3234203d3e20313533333237.roa Signing time: Mon 30 Jun 2025 03:01:11 +0000 ROA not before: Mon 30 Jun 2025 02:56:11 +0000 ROA not after: Mon 29 Jun 2026 03:01:11 +0000 asID: 153327 IP address blocks: 157.66.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:35:65:80:5b:9c:8a:60:1a:48:aa:57:77:65:42:db:51:4f:63:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Validity Not Before: Jun 30 02:56:11 2025 GMT Not After : Jun 29 03:01:11 2026 GMT Subject: CN=FED9ECA62BF16E6BA08E8D185026F64BD2A1DF46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:66:9d:3d:28:27:24:52:8c:c5:4c:88:9b:ff: f9:30:91:18:b4:81:5a:e8:05:6d:f2:93:f1:a3:ff: c2:9f:63:6f:25:7b:ae:a7:a2:e7:ef:d2:c8:1e:20: 69:60:38:e4:d1:00:d0:52:c4:93:8e:27:5d:c5:a5: 44:89:26:c5:32:fc:e1:af:f9:e9:38:af:ff:35:33: d3:58:4e:dd:fd:9a:42:a7:25:88:09:55:3c:b3:f5: f2:d9:09:bf:51:72:10:81:d1:3e:b4:3f:e8:e8:bc: d1:0f:cd:a6:a3:28:63:53:c0:c3:ae:bf:4f:dd:43: ba:72:d9:90:48:eb:9a:2e:53:5c:59:ef:9b:f1:b6: c3:95:e6:40:04:a4:35:ff:7b:ea:6a:72:68:28:70: 38:77:c7:c3:56:f3:88:31:f1:50:55:75:4e:c3:af: da:5d:92:d0:b5:e3:c6:99:01:5a:30:8e:77:63:70: c4:ff:03:99:4b:11:48:45:93:bf:b1:fd:8f:5a:29: 4b:db:01:40:05:93:3a:29:f9:8e:5e:b8:d8:57:28: 51:80:02:30:59:55:50:32:3e:b3:78:ba:46:df:51: 70:7f:2f:e2:9f:a9:ce:fe:15:21:87:6a:46:6f:75: 30:b3:80:f8:7a:c6:ea:e5:d0:61:ac:e8:4c:0a:28: 5f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D9:EC:A6:2B:F1:6E:6B:A0:8E:8D:18:50:26:F6:4B:D2:A1:DF:46 X509v3 Authority Key Identifier: keyid:63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132392e302f32342d3234203d3e20313533333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.129.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:ac:d5:57:44:b4:c8:3c:1e:f4:35:42:70:4c:50:c6:b7:92: 78:d7:23:31:47:9e:23:2c:30:ed:fd:42:d0:40:06:01:da:e2: d1:ab:d5:26:6f:77:99:5c:b8:db:91:7b:89:fd:d6:78:9d:f7: 79:47:86:a0:40:93:30:d8:b7:45:04:8b:72:73:dd:59:1d:11: 8c:59:ad:46:89:da:48:7f:fc:cb:9e:11:5b:c8:cd:c6:ed:fe: 09:b1:14:b3:13:31:72:31:84:84:87:39:40:9d:4c:df:d3:d6: ce:56:b2:a2:2a:ef:91:3b:c2:86:2c:02:45:8e:75:be:d7:c9: dd:79:8b:f1:66:12:ff:bf:26:ea:2a:cd:2a:b8:49:45:c1:72: 0e:ba:4e:ee:4e:6f:04:81:fd:10:8d:18:9e:d2:47:12:56:cd: 1e:23:31:0a:7e:1b:c1:4d:43:7d:57:f2:29:3c:d2:26:ce:9a: 98:55:31:81:9e:87:4f:ca:66:f4:18:56:ef:53:c1:f5:15:05: 65:92:e2:80:ed:5d:db:22:e5:6c:a9:1e:26:aa:a9:7a:5c:49: 13:f7:94:f9:ac:00:f1:30:f9:ee:d2:9d:7a:ba:fa:98:7d:d1: 34:c0:a5:62:1a:22:39:3b:43:fa:d4:4d:2d:8e:b7:0b:ee:34: 47:82:19:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQjVlgFucimAaSKpXd2VC21FPYy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNC RUYxMkY3RDAeFw0yNTA2MzAwMjU2MTFaFw0yNjA2MjkwMzAxMTFaMDMxMTAvBgNV BAMTKEZFRDlFQ0E2MkJGMTZFNkJBMDhFOEQxODUwMjZGNjRCRDJBMURGNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChZp09KCckUozFTIib//kwkRi0 gVroBW3yk/Gj/8KfY28le66noufv0sgeIGlgOOTRANBSxJOOJ13FpUSJJsUy/OGv +ek4r/81M9NYTt39mkKnJYgJVTyz9fLZCb9RchCB0T60P+jovNEPzaajKGNTwMOu v0/dQ7py2ZBI65ouU1xZ75vxtsOV5kAEpDX/e+pqcmgocDh3x8NW84gx8VBVdU7D r9pdktC148aZAVowjndjcMT/A5lLEUhFk7+x/Y9aKUvbAUAFkzop+Y5euNhXKFGA AjBZVVAyPrN4ukbfUXB/L+Kfqc7+FSGHakZvdTCzgPh6xurl0GGs6EwKKF8hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/tnspivxbmugjo0YUCb2S9Kh30YwHwYDVR0j BBgwFoAUY8S/Sxwnw0Be58odVDwfA77xL30wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjRkMWViYi1hZWViLTQ5NDUtOWVmMi0zMmFkOWJmZGViMTkvMC82M0M0QkY0QjFD MjdDMzQwNUVFN0NBMUQ1NDNDMUYwM0JFRjEyRjdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNCRUYx MkY3RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNGQxZWJiLWFlZWItNDk0NS05 ZWYyLTMyYWQ5YmZkZWIxOS8wLzMxMzUzNzJlMzYzNjJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKBMA0GCSqG SIb3DQEBCwUAA4IBAQCNrNVXRLTIPB70NUJwTFDGt5J41yMxR54jLDDt/ULQQAYB 2uLRq9Umb3eZXLjbkXuJ/dZ4nfd5R4agQJMw2LdFBItyc91ZHRGMWa1GidpIf/zL nhFbyM3G7f4JsRSzEzFyMYSEhzlAnUzf09bOVrKiKu+RO8KGLAJFjnW+18ndeYvx ZhL/vybqKs0quElFwXIOuk7uTm8Egf0QjRie0kcSVs0eIzEKfhvBTUN9V/IpPNIm zpqYVTGBnodPymb0GFbvU8H1FQVlkuKA7V3bIuVsqR4mqql6XEkT95T5rADxMPnu 0p16uvqYfdE0wKViGiI5O0P61E0tjrcL7jRHghlt -----END CERTIFICATE-----Generated at Thu Jul 3 06:49:59 2025 by rpki-client