$ rpki-client -vvf repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa File: 3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa (raw, json) Hash identifier: JJoDtolcZE+KR7sFSmDxYz3v23eUKolYl+DqisOigZw= Subject key identifier: F9:54:A0:4A:C8:C9:58:43:EF:93:6D:B0:0C:EF:5E:E1:11:F2:9E:7A Certificate issuer: /CN=DA680D591E9E6B4622614F94CF255933B6749212 Certificate serial: 62D7E7DEBEE22B7E04B111C1B006BB3A1B6853E4 Authority key identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa Signing time: Tue 30 Sep 2025 21:00:01 +0000 ROA not before: Tue 30 Sep 2025 20:55:01 +0000 ROA not after: Tue 29 Sep 2026 21:00:01 +0000 asID: 152344 IP address blocks: 157.10.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 14:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d7:e7:de:be:e2:2b:7e:04:b1:11:c1:b0:06:bb:3a:1b:68:53:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA680D591E9E6B4622614F94CF255933B6749212 Validity Not Before: Sep 30 20:55:01 2025 GMT Not After : Sep 29 21:00:01 2026 GMT Subject: CN=F954A04AC8C95843EF936DB00CEF5EE111F29E7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e9:b5:f0:82:64:25:35:ed:11:f4:31:9a:43: 35:9c:54:53:ae:b9:2f:e5:06:0e:9c:4a:0f:27:b1: 90:ca:e5:ae:85:c1:2f:11:ee:48:c5:8d:b6:f1:79: 04:83:92:c8:3d:9d:ed:cc:c9:04:d2:64:53:58:42: 45:b3:7c:8f:26:a7:89:bf:88:b7:d0:f9:f1:c5:99: 88:56:d4:3c:79:79:b2:fa:cb:ec:6a:e7:be:8a:0e: 8a:50:69:01:3c:95:e4:e6:cd:db:13:91:2a:0f:a2: d4:15:9c:f3:6d:9d:6c:96:e9:3c:b3:96:38:7f:3e: 1d:05:80:0d:8e:e2:a2:4c:ec:b3:42:1e:4b:f2:c6: cd:d9:90:68:c1:0c:1f:39:56:da:2a:a4:26:a4:0e: 90:0d:df:36:01:7f:bb:4a:6d:23:bf:61:d6:8f:90: de:fe:1b:90:c1:59:b2:25:ac:91:be:20:40:69:ae: cc:a8:08:0d:1b:f1:25:98:63:0a:30:dd:0e:17:d6: 8e:0a:ac:63:9d:3b:8a:65:a7:0f:f7:b6:c2:03:d7: a4:21:f8:26:9b:0a:9b:16:a4:07:70:5d:3d:08:d8: b1:6f:70:c4:51:58:e4:fa:62:83:76:84:74:97:f1: 80:5e:cd:62:bc:6d:aa:4b:d6:8c:6a:b8:48:de:2f: c0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:54:A0:4A:C8:C9:58:43:EF:93:6D:B0:0C:EF:5E:E1:11:F2:9E:7A X509v3 Authority Key Identifier: keyid:DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.183.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ef:0f:0f:65:a4:8a:4a:7d:af:25:88:bf:7f:e4:7c:ce:38: 9d:a7:35:83:24:46:d4:9a:1c:dc:ab:e8:5e:b6:c2:07:27:7e: f4:96:5a:c5:e1:43:47:6a:4c:ee:f7:e2:cc:04:36:ac:fe:1d: 48:d0:7a:32:3c:83:61:45:f5:93:a3:44:fe:78:02:bf:3a:e5: 43:c1:25:34:09:91:6e:2a:5b:a6:0e:e3:ad:da:43:65:18:34: 4b:a2:6b:6b:d5:d4:a4:33:c2:bd:15:c3:b7:67:db:db:d7:ab: d0:57:73:37:a7:a8:a9:2b:51:b2:21:a1:c8:75:3b:6d:bf:ed: 8d:7d:c3:1f:d8:87:4e:a5:92:61:7d:8a:2b:36:1f:fc:65:73: dc:73:29:f2:3e:fa:a7:1d:cb:35:0b:94:e6:5b:94:9e:54:48: d5:14:ac:d1:86:37:d6:1d:03:2f:06:90:4f:2a:57:4e:98:31: 8d:5d:68:ea:49:c5:0b:68:57:3e:d1:c9:46:fa:13:2a:34:3e: a5:38:eb:6b:d4:62:28:2f:4a:96:5b:08:05:b4:40:5b:a1:18: 0e:3d:15:af:79:e5:34:ea:00:3a:45:22:d6:2e:3a:ac:04:64: 03:cf:73:a8:a8:dd:b7:e9:d3:96:8b:ae:15:b7:e9:b2:b0:f1: 2b:7c:03:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYtfn3r7iK34EsRHBsAa7OhtoU+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNC Njc0OTIxMjAeFw0yNTA5MzAyMDU1MDFaFw0yNjA5MjkyMTAwMDFaMDMxMTAvBgNV BAMTKEY5NTRBMDRBQzhDOTU4NDNFRjkzNkRCMDBDRUY1RUUxMTFGMjlFN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP6bXwgmQlNe0R9DGaQzWcVFOu uS/lBg6cSg8nsZDK5a6FwS8R7kjFjbbxeQSDksg9ne3MyQTSZFNYQkWzfI8mp4m/ iLfQ+fHFmYhW1Dx5ebL6y+xq576KDopQaQE8leTmzdsTkSoPotQVnPNtnWyW6Tyz ljh/Ph0FgA2O4qJM7LNCHkvyxs3ZkGjBDB85VtoqpCakDpAN3zYBf7tKbSO/YdaP kN7+G5DBWbIlrJG+IEBprsyoCA0b8SWYYwow3Q4X1o4KrGOdO4plpw/3tsID16Qh +CabCpsWpAdwXT0I2LFvcMRRWOT6YoN2hHSX8YBezWK8bapL1oxquEjeL8CxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+VSgSsjJWEPvk22wDO9e4RHynnowHwYDVR0j BBgwFoAU2mgNWR6ea0YiYU+UzyVZM7Z0khIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWRhMjNlOS04NGJlLTRhNTQtYmNhMC1lOWEwY2FmZDE2ZmUvMC9EQTY4MEQ1OTFF OUU2QjQ2MjI2MTRGOTRDRjI1NTkzM0I2NzQ5MjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREE2ODBENTkxRTlFNkI0NjIyNjE0Rjk0Q0YyNTU5MzNCNjc0 OTIxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq3MA0GCSqG SIb3DQEBCwUAA4IBAQAe7w8PZaSKSn2vJYi/f+R8zjidpzWDJEbUmhzcq+hetsIH J370llrF4UNHakzu9+LMBDas/h1I0HoyPINhRfWTo0T+eAK/OuVDwSU0CZFuKlum DuOt2kNlGDRLomtr1dSkM8K9FcO3Z9vb16vQV3M3p6ipK1GyIaHIdTttv+2NfcMf 2IdOpZJhfYorNh/8ZXPccynyPvqnHcs1C5TmW5SeVEjVFKzRhjfWHQMvBpBPKldO mDGNXWjqScULaFc+0clG+hMqND6lOOtr1GIoL0qWWwgFtEBboRgOPRWveeU06gA6 RSLWLjqsBGQDz3OoqN236dOWi64Vt+mysPErfAM1 -----END CERTIFICATE-----Generated at Tue Oct 21 03:05:42 2025 by rpki-client