$ rpki-client -vvf repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa File: 3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa (raw, json) Hash identifier: 1Y22heZzLW1uLBI2dj0FhbkrNAtQ677tG4XL0MCWVic= Subject key identifier: 54:7E:A9:AA:51:2D:64:16:F9:C6:F9:E8:84:A6:8A:39:1C:89:18:94 Certificate issuer: /CN=DA680D591E9E6B4622614F94CF255933B6749212 Certificate serial: 08A56506DAC95CD4C318B66BD7570D9A40CADA0A Authority key identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa Signing time: Tue 30 Sep 2025 21:00:01 +0000 ROA not before: Tue 30 Sep 2025 20:55:01 +0000 ROA not after: Tue 29 Sep 2026 21:00:01 +0000 asID: 152344 IP address blocks: 157.10.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 14:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a5:65:06:da:c9:5c:d4:c3:18:b6:6b:d7:57:0d:9a:40:ca:da:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA680D591E9E6B4622614F94CF255933B6749212 Validity Not Before: Sep 30 20:55:01 2025 GMT Not After : Sep 29 21:00:01 2026 GMT Subject: CN=547EA9AA512D6416F9C6F9E884A68A391C891894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ac:d2:d5:9b:2c:2e:0e:a4:6d:f8:40:57:9c: d6:6c:14:25:ef:95:39:f9:46:4e:06:7e:ae:a3:a9: 53:33:82:a4:76:3e:28:22:42:3a:3d:a8:59:1d:78: d7:05:b1:17:17:b8:56:86:9a:78:a8:29:cd:ea:b9: a3:72:3b:93:56:7e:91:d3:da:7e:ae:09:a4:7d:63: 07:f0:a2:c9:37:1b:80:63:90:13:77:29:73:52:9b: 23:34:b3:6c:38:f0:3b:40:ff:b7:8d:88:72:e5:84: 69:63:98:0d:fb:f7:d4:4f:4e:0a:4d:44:4d:b4:12: df:35:a2:bd:74:2f:d6:72:08:d7:b5:c5:c3:f9:8f: b0:47:e7:39:cc:7c:27:60:4f:c0:46:3d:49:c8:d0: 03:b7:ba:5a:93:df:3a:00:98:bf:61:b6:64:e9:bd: 01:f2:78:cd:3b:0a:3f:f8:6e:cf:66:48:54:fd:c8: ca:5a:17:81:4f:c9:db:86:e0:6e:d6:2c:1c:9b:5d: 9c:36:78:cb:02:dc:03:b4:e6:c8:90:0e:f9:51:b1: 9a:c8:cd:1f:af:52:a1:07:4d:28:ba:73:ab:e0:18: 0d:88:61:10:c2:a2:5d:fe:5c:d5:1a:0c:5d:cb:b0: fc:c8:b9:ef:96:01:af:96:be:0f:9a:a9:cf:7b:1f: f7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:7E:A9:AA:51:2D:64:16:F9:C6:F9:E8:84:A6:8A:39:1C:89:18:94 X509v3 Authority Key Identifier: keyid:DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.182.0/23 Signature Algorithm: sha256WithRSAEncryption 04:ed:e9:ea:fd:b0:ad:50:9d:3a:f0:66:0e:25:50:22:d9:4a: 1e:4c:fb:93:11:7a:14:39:fb:74:6d:a5:e5:ea:53:1d:09:fc: cb:96:ae:16:0b:df:94:e6:cc:f0:69:20:23:e5:ab:48:2b:67: 84:1b:6f:92:7e:19:2b:ee:0d:b7:89:41:43:7e:fe:42:72:54: dc:72:16:b3:05:48:7b:99:13:df:20:67:e1:a7:4f:18:77:2b: cf:54:6a:4b:79:3f:2f:2f:96:33:cd:a8:6b:b2:db:71:71:5c: 20:28:bd:4e:a0:ac:64:d5:8b:65:5e:77:ef:48:6f:56:9a:28: 78:c6:be:46:6b:d8:c0:f9:fb:c3:31:76:b2:c8:9f:73:dd:80: c0:17:5c:e1:29:0f:85:45:26:13:91:eb:11:c5:25:d2:38:2c: 4c:e9:3b:1c:28:b3:66:95:eb:1c:95:88:41:fe:3a:15:d3:80: 69:3a:0a:3e:22:a9:df:93:97:43:f4:be:33:c5:9b:6f:6f:6c: 09:a8:d3:58:89:c8:b9:0d:18:c9:dd:35:ec:b0:9a:74:99:6a: df:87:9c:c6:e6:48:da:73:0b:54:79:b5:b5:d4:b1:f1:7b:53: d3:ba:68:96:d1:e1:04:0f:8c:c7:a6:91:7d:3c:ea:b5:8d:46: fe:47:61:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCKVlBtrJXNTDGLZr11cNmkDK2gowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNC Njc0OTIxMjAeFw0yNTA5MzAyMDU1MDFaFw0yNjA5MjkyMTAwMDFaMDMxMTAvBgNV BAMTKDU0N0VBOUFBNTEyRDY0MTZGOUM2RjlFODg0QTY4QTM5MUM4OTE4OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWrNLVmywuDqRt+EBXnNZsFCXv lTn5Rk4Gfq6jqVMzgqR2PigiQjo9qFkdeNcFsRcXuFaGmnioKc3quaNyO5NWfpHT 2n6uCaR9Ywfwosk3G4BjkBN3KXNSmyM0s2w48DtA/7eNiHLlhGljmA3799RPTgpN RE20Et81or10L9ZyCNe1xcP5j7BH5znMfCdgT8BGPUnI0AO3ulqT3zoAmL9htmTp vQHyeM07Cj/4bs9mSFT9yMpaF4FPyduG4G7WLBybXZw2eMsC3AO05siQDvlRsZrI zR+vUqEHTSi6c6vgGA2IYRDCol3+XNUaDF3LsPzIue+WAa+Wvg+aqc97H/fLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVH6pqlEtZBb5xvnohKaKORyJGJQwHwYDVR0j BBgwFoAU2mgNWR6ea0YiYU+UzyVZM7Z0khIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWRhMjNlOS04NGJlLTRhNTQtYmNhMC1lOWEwY2FmZDE2ZmUvMC9EQTY4MEQ1OTFF OUU2QjQ2MjI2MTRGOTRDRjI1NTkzM0I2NzQ5MjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNCNjc0 OTIxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQq2MA0GCSqG SIb3DQEBCwUAA4IBAQAE7enq/bCtUJ068GYOJVAi2UoeTPuTEXoUOft0baXl6lMd CfzLlq4WC9+U5szwaSAj5atIK2eEG2+Sfhkr7g23iUFDfv5CclTcchazBUh7mRPf IGfhp08YdyvPVGpLeT8vL5YzzahrsttxcVwgKL1OoKxk1YtlXnfvSG9Wmih4xr5G a9jA+fvDMXayyJ9z3YDAF1zhKQ+FRSYTkesRxSXSOCxM6TscKLNmlesclYhB/joV 04BpOgo+Iqnfk5dD9L4zxZtvb2wJqNNYici5DRjJ3TXssJp0mWrfh5zG5kjacwtU ebW11LHxe1PTumiW0eEED4zHppF9POq1jUb+R2FQ -----END CERTIFICATE-----Generated at Tue Oct 21 03:05:40 2025 by rpki-client