$ rpki-client -vvf repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa File: 3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa (raw, json) Hash identifier: VHpWx/ELEtp63dh9v37pcf0dfq0fnpuWymrPIJ3Qc9I= Subject key identifier: 0A:3B:C5:3C:9D:04:F5:35:D5:70:70:9B:31:B4:0E:35:2C:CE:45:E8 Certificate issuer: /CN=DA680D591E9E6B4622614F94CF255933B6749212 Certificate serial: 5C65467EF5443CD3E1234AAC438B7E83E7669FB0 Authority key identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa Signing time: Tue 30 Sep 2025 21:00:01 +0000 ROA not before: Tue 30 Sep 2025 20:55:01 +0000 ROA not after: Tue 29 Sep 2026 21:00:01 +0000 asID: 152344 IP address blocks: 157.10.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 14:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:65:46:7e:f5:44:3c:d3:e1:23:4a:ac:43:8b:7e:83:e7:66:9f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA680D591E9E6B4622614F94CF255933B6749212 Validity Not Before: Sep 30 20:55:01 2025 GMT Not After : Sep 29 21:00:01 2026 GMT Subject: CN=0A3BC53C9D04F535D570709B31B40E352CCE45E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:91:fa:7b:5a:cf:27:de:b4:38:46:ba:ad:10: 45:d4:44:1b:06:76:e2:8e:70:28:e1:5a:e2:3d:2f: cc:e8:44:a6:c2:cf:f6:a2:c5:bf:f5:d5:f3:cc:b7: 2e:51:40:cf:c6:86:c4:24:48:bf:bd:a7:6a:e4:6e: 42:2a:ca:63:7b:46:0d:f7:1c:48:bb:26:6d:1e:77: 5a:2b:c5:ba:31:21:a8:7c:fa:b9:9c:f6:75:b6:77: ee:b9:05:11:5e:75:39:4c:4c:76:d5:e2:d2:76:3f: ea:1f:52:ea:55:32:d4:58:80:99:ba:8e:12:5d:c2: a8:bd:cc:57:3e:0a:56:28:28:b8:4b:3f:e1:32:a7: 61:eb:30:b8:46:a9:31:62:20:be:90:65:40:63:60: 4f:42:9b:98:86:eb:b5:f7:37:05:3c:47:57:1a:6a: c2:26:c4:95:7e:0a:79:e2:5c:b4:40:23:ac:bd:f0: f0:6b:74:ad:70:d2:93:6e:a8:a3:18:b5:0a:25:22: f9:16:10:94:aa:c6:79:ff:c6:07:3d:c4:0f:1e:2d: 83:b0:b2:92:1f:ee:29:54:f3:40:5c:af:f5:16:a8: 70:b1:59:82:a5:2d:fb:3b:b7:fd:d5:78:43:45:c5: 4b:7b:63:e6:d4:28:8e:b2:16:82:f1:30:02:c6:48: 41:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3B:C5:3C:9D:04:F5:35:D5:70:70:9B:31:B4:0E:35:2C:CE:45:E8 X509v3 Authority Key Identifier: keyid:DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.182.0/24 Signature Algorithm: sha256WithRSAEncryption 02:75:7d:38:4f:34:4e:9f:72:fa:57:89:dd:cb:96:f8:03:e7: a6:b0:d0:da:7b:73:49:52:70:48:d4:01:80:ce:c2:26:ce:35: 91:3c:21:87:27:5c:bc:ed:9a:27:72:f9:7c:ef:ec:e2:06:b1: 9a:6e:c2:4b:28:91:01:8d:d6:64:b3:b8:94:28:3c:6d:06:89: f9:7f:d6:5b:8b:35:79:22:4e:b7:44:ef:6f:c9:90:d1:34:db: 75:64:9a:f6:d0:bf:88:6e:29:39:70:73:9b:b2:c8:c3:a8:ec: cc:13:0c:b7:4f:73:33:a1:ec:a4:7f:62:f3:e9:14:08:d0:96: 21:e8:fa:24:58:f9:d3:cb:ae:29:a0:d6:de:cc:c2:24:85:7a: a8:96:65:86:d3:45:38:47:d5:58:60:e9:52:5e:f8:f2:80:86: e3:b1:d2:60:1d:d7:41:f9:1b:9e:a1:3a:80:a3:bc:00:35:b0: f8:6d:ee:8a:9c:aa:fc:f4:49:bd:2b:25:5c:18:d8:cf:9a:fc: 6c:fd:50:05:0c:33:b8:70:89:5b:80:e7:72:01:8b:9e:5f:32: 2a:4a:6c:c7:8f:05:7e:6c:b3:91:df:f0:f6:65:fd:33:bd:2e: 46:32:35:95:0b:64:3e:ee:b3:13:f2:0b:da:9a:e7:e1:fd:76: a1:0b:b4:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXGVGfvVEPNPhI0qsQ4t+g+dmn7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNC Njc0OTIxMjAeFw0yNTA5MzAyMDU1MDFaFw0yNjA5MjkyMTAwMDFaMDMxMTAvBgNV BAMTKDBBM0JDNTNDOUQwNEY1MzVENTcwNzA5QjMxQjQwRTM1MkNDRTQ1RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDckfp7Ws8n3rQ4RrqtEEXURBsG duKOcCjhWuI9L8zoRKbCz/aixb/11fPMty5RQM/GhsQkSL+9p2rkbkIqymN7Rg33 HEi7Jm0ed1orxboxIah8+rmc9nW2d+65BRFedTlMTHbV4tJ2P+ofUupVMtRYgJm6 jhJdwqi9zFc+ClYoKLhLP+Eyp2HrMLhGqTFiIL6QZUBjYE9Cm5iG67X3NwU8R1ca asImxJV+CnniXLRAI6y98PBrdK1w0pNuqKMYtQolIvkWEJSqxnn/xgc9xA8eLYOw spIf7ilU80Bcr/UWqHCxWYKlLfs7t/3VeENFxUt7Y+bUKI6yFoLxMALGSEGjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCjvFPJ0E9TXVcHCbMbQONSzORegwHwYDVR0j BBgwFoAU2mgNWR6ea0YiYU+UzyVZM7Z0khIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWRhMjNlOS04NGJlLTRhNTQtYmNhMC1lOWEwY2FmZDE2ZmUvMC9EQTY4MEQ1OTFF OUU2QjQ2MjI2MTRGOTRDRjI1NTkzM0I2NzQ5MjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNCNjc0 OTIxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq2MA0GCSqG SIb3DQEBCwUAA4IBAQACdX04TzROn3L6V4ndy5b4A+emsNDae3NJUnBI1AGAzsIm zjWRPCGHJ1y87Zoncvl87+ziBrGabsJLKJEBjdZks7iUKDxtBon5f9ZbizV5Ik63 RO9vyZDRNNt1ZJr20L+Ibik5cHObssjDqOzMEwy3T3Mzoeykf2Lz6RQI0JYh6Pok WPnTy64poNbezMIkhXqolmWG00U4R9VYYOlSXvjygIbjsdJgHddB+RueoTqAo7wA NbD4be6KnKr89Em9KyVcGNjPmvxs/VAFDDO4cIlbgOdyAYueXzIqSmzHjwV+bLOR 3/D2Zf0zvS5GMjWVC2Q+7rMT8gvamufh/XahC7Rq -----END CERTIFICATE-----Generated at Tue Oct 21 03:05:46 2025 by rpki-client