$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/3135372e36362e302e302f32332d3234203d3e20313430343737.roa File: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (raw, json) Hash identifier: VPuK+1+6ePV1CKusC5qXhYaOQr6/W2sAl7gu8K+R3ug= Subject key identifier: 9E:9A:7E:3A:C9:D3:E6:73:A6:96:03:4E:30:0E:81:7D:4D:4B:F4:03 Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Certificate serial: 2A874F589D25C94ED5574DBA2A4D7FF4A53A2759 Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/3135372e36362e302e302f32332d3234203d3e20313430343737.roa Signing time: Tue 06 May 2025 10:00:02 +0000 ROA not before: Tue 06 May 2025 09:55:02 +0000 ROA not after: Tue 05 May 2026 10:00:02 +0000 asID: 140477 IP address blocks: 157.66.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:04:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:87:4f:58:9d:25:c9:4e:d5:57:4d:ba:2a:4d:7f:f4:a5:3a:27:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Validity Not Before: May 6 09:55:02 2025 GMT Not After : May 5 10:00:02 2026 GMT Subject: CN=9E9A7E3AC9D3E673A696034E300E817D4D4BF403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e3:4b:b8:b8:de:5d:97:34:fc:94:3b:bd:24: f7:ea:46:27:1a:fd:44:d9:bf:5b:80:82:71:a4:c0: 4f:3f:a9:a2:d5:7e:15:3d:12:ad:e8:cd:a3:df:70: ad:3a:7d:76:8b:65:0c:fa:82:67:3e:8f:fd:dd:b3: 72:8b:f0:f5:f3:76:07:38:0f:64:dc:a1:42:32:81: 36:8e:76:6c:1e:e2:21:c6:ff:56:52:c5:fb:a4:82: 5b:91:44:cf:61:74:e2:ce:73:7c:2d:db:1d:02:97: b1:49:1e:34:04:3e:90:66:5e:00:43:84:fb:a2:2a: 0e:93:1c:a8:24:9f:c9:55:b5:83:f9:e5:51:e9:2c: f7:2b:02:a7:8b:bd:00:37:30:98:54:26:dd:32:12: a1:73:78:6c:9d:1a:df:3c:ea:01:7a:7d:8d:2a:bc: 12:b8:61:be:06:35:50:fd:90:4e:72:52:e9:1f:00: e6:ed:ba:c5:c4:b3:0d:03:76:a4:76:5f:ee:7e:e3: 2f:8d:00:30:d6:72:3e:b0:71:8c:6e:79:40:1b:d2: 49:72:d5:07:48:4b:a7:f7:ef:9b:5d:2c:58:c5:6b: b7:de:47:9f:c5:1a:bf:0c:a4:a7:52:99:9f:3f:b6: 35:17:16:54:ac:f6:15:74:d7:0e:92:45:3a:4c:3e: 27:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9A:7E:3A:C9:D3:E6:73:A6:96:03:4E:30:0E:81:7D:4D:4B:F4:03 X509v3 Authority Key Identifier: keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/3135372e36362e302e302f32332d3234203d3e20313430343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.0.0/23 Signature Algorithm: sha256WithRSAEncryption aa:92:31:51:51:92:67:5c:18:6a:40:6d:c5:97:28:77:02:be: b2:43:33:85:83:8c:3c:d0:eb:d8:f1:74:c2:82:ad:b8:fa:22: a3:3d:ae:10:43:65:48:b7:ea:f4:21:d8:7f:5e:2f:b9:a1:42: 2a:9d:a9:d5:e5:95:c0:78:10:3d:29:fb:47:e0:00:aa:de:44: 52:17:f7:dc:a8:05:cd:79:6c:e5:5f:dc:56:e5:29:9a:24:7e: e3:a5:18:f5:68:88:ef:30:7c:ab:01:5e:56:9c:6e:98:52:27: 33:b9:91:0c:27:73:d3:d3:36:e0:cb:3d:17:97:27:90:4f:37: cc:d3:68:f2:f4:c4:c8:b0:68:6a:45:62:31:93:de:21:0e:5c: 14:e5:6c:d8:9e:77:7e:75:b8:c4:f5:d3:5a:14:c5:82:75:f1: af:fc:6d:ed:ae:bb:dd:fc:27:fc:20:11:7e:d0:4a:7e:39:6e: 7a:60:53:9a:0d:91:ab:e5:5f:bc:0d:1d:44:fb:e2:50:19:c8: 51:2c:69:15:f4:e3:e3:a2:db:87:32:6c:ba:fb:ee:8f:f9:c0: 3f:d8:bf:9f:5d:e1:2e:75:86:f7:f0:9e:a7:76:40:a5:35:b1: 3c:c1:15:fa:fc:a4:f2:e4:31:3d:63:89:22:ec:46:cf:47:78: b4:37:64:1d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKodPWJ0lyU7VV026Kk1/9KU6J1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4 Rjg1MkJBQTAeFw0yNTA1MDYwOTU1MDJaFw0yNjA1MDUxMDAwMDJaMDMxMTAvBgNV BAMTKDlFOUE3RTNBQzlEM0U2NzNBNjk2MDM0RTMwMEU4MTdENEQ0QkY0MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn40u4uN5dlzT8lDu9JPfqRica /UTZv1uAgnGkwE8/qaLVfhU9Eq3ozaPfcK06fXaLZQz6gmc+j/3ds3KL8PXzdgc4 D2TcoUIygTaOdmwe4iHG/1ZSxfukgluRRM9hdOLOc3wt2x0Cl7FJHjQEPpBmXgBD hPuiKg6THKgkn8lVtYP55VHpLPcrAqeLvQA3MJhUJt0yEqFzeGydGt886gF6fY0q vBK4Yb4GNVD9kE5yUukfAObtusXEsw0DdqR2X+5+4y+NADDWcj6wcYxueUAb0kly 1QdIS6f375tdLFjFa7feR5/FGr8MpKdSmZ8/tjUXFlSs9hV01w6SRTpMPidlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnpp+OsnT5nOmlgNOMA6BfU1L9AMwHwYDVR0j BBgwFoAUQJScfJ3Q0/iZaB/y61PknI+FK6owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWRhZTk3Zi0xYWQxLTRiMzQtOGZlOS0xYmM2NWIwOTA4ZjMvMC80MDk0OUM3QzlE RDBEM0Y4OTk2ODFGRjJFQjUzRTQ5QzhGODUyQkFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4Rjg1 MkJBQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5ZGFlOTdmLTFhZDEtNGIzNC04 ZmU5LTFiYzY1YjA5MDhmMy8wLzMxMzUzNzJlMzYzNjJlMzAyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM0MzAzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgAwDQYJKoZIhvcN AQELBQADggEBAKqSMVFRkmdcGGpAbcWXKHcCvrJDM4WDjDzQ69jxdMKCrbj6IqM9 rhBDZUi36vQh2H9eL7mhQiqdqdXllcB4ED0p+0fgAKreRFIX99yoBc15bOVf3Fbl KZokfuOlGPVoiO8wfKsBXlacbphSJzO5kQwnc9PTNuDLPReXJ5BPN8zTaPL0xMiw aGpFYjGT3iEOXBTlbNied351uMT101oUxYJ18a/8be2uu938J/wgEX7QSn45bnpg U5oNkavlX7wNHUT74lAZyFEsaRX04+Oi24cybLr77o/5wD/Yv59d4S51hvfwnqd2 QKU1sTzBFfr8pPLkMT1jiSLsRs9HeLQ3ZB0= -----END CERTIFICATE-----Generated at Sat May 10 08:28:17 2025 by rpki-client