$ rpki-client -vvf repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34352e302f32342d3234203d3e20313532333931.roa File: 3135372e31352e34352e302f32342d3234203d3e20313532333931.roa (raw, json) Hash identifier: x6ZV1Wl+WBaRGXPvArCfDSB+gNTaB80RBBLsR8syzeM= Subject key identifier: C1:17:40:27:84:D4:30:7A:6E:CF:FF:D2:F8:A5:16:26:88:B3:61:3B Certificate issuer: /CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Certificate serial: 4CE5843925DD8CA3C7D74B9FBAE4B6464EED7747 Authority key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34352e302f32342d3234203d3e20313532333931.roa Signing time: Thu 11 Sep 2025 06:00:01 +0000 ROA not before: Thu 11 Sep 2025 05:55:01 +0000 ROA not after: Thu 10 Sep 2026 06:00:01 +0000 asID: 152391 IP address blocks: 157.15.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e5:84:39:25:dd:8c:a3:c7:d7:4b:9f:ba:e4:b6:46:4e:ed:77:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Validity Not Before: Sep 11 05:55:01 2025 GMT Not After : Sep 10 06:00:01 2026 GMT Subject: CN=C117402784D4307A6ECFFFD2F8A5162688B3613B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d2:5a:13:a1:99:3c:71:6b:17:d0:76:91:a6: 58:2f:4a:4c:46:d6:d1:36:69:8b:c5:ad:8e:0d:28: c1:1a:17:8a:50:f3:54:37:58:6b:9e:40:22:de:5e: 04:f9:27:fa:8d:28:60:aa:3d:5f:09:ad:95:ee:ef: fb:b7:bd:6a:a3:40:83:34:fc:11:3c:80:a7:ca:64: f4:2d:bf:79:36:26:94:2d:af:5c:0b:31:96:7f:5f: 7f:fb:42:38:b4:92:4e:39:1c:b1:57:bb:e8:f0:a8: d9:9a:00:34:df:e0:06:68:8e:04:03:05:fb:68:4e: 19:ff:5c:60:25:b1:c1:23:74:8c:8f:4a:5e:d8:5d: 2c:5c:e3:8a:33:cc:9d:81:35:a8:71:f9:1a:f5:00: 12:c2:6a:15:36:3b:8b:84:99:8b:1c:f5:af:5e:3c: ae:3e:ff:0b:a4:d3:d9:85:04:2a:af:eb:5a:4a:47: 9c:c7:fb:3a:97:4d:55:6a:85:ef:ae:43:95:8c:1e: 8d:c7:d3:84:4a:46:28:1b:75:57:aa:99:11:ec:17: 35:d1:f4:40:74:45:f5:ae:e1:1b:d7:b1:84:4d:a3: e2:62:13:b6:a0:24:aa:54:15:04:0a:d5:64:f1:48: 58:68:88:e3:77:08:8b:7b:9b:d4:63:c0:0a:fc:ad: 3a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:17:40:27:84:D4:30:7A:6E:CF:FF:D2:F8:A5:16:26:88:B3:61:3B X509v3 Authority Key Identifier: keyid:46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34352e302f32342d3234203d3e20313532333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.45.0/24 Signature Algorithm: sha256WithRSAEncryption 04:da:97:6e:69:89:d2:d8:44:52:9b:14:0a:75:d7:c9:39:a4: 1e:a2:b1:94:fd:b8:70:c5:26:1f:2f:09:5e:d9:0d:db:73:a8: b1:f4:fc:74:9c:e3:a2:85:09:4d:c1:a2:6c:60:7a:04:4f:94: a5:ff:3c:8a:21:94:1a:0c:14:cb:4d:26:f7:4c:38:b3:a8:4b: f3:51:5a:0f:8c:27:ec:ec:cf:19:3a:78:44:29:6a:56:30:5e: 79:9b:f4:ec:ed:a3:77:1f:e1:3d:28:0c:43:c9:ac:fc:52:28: 27:5c:59:6e:26:62:77:50:86:3f:8d:41:1e:6d:9d:7e:82:b1: ad:4b:9f:23:5e:40:a8:05:da:de:38:d1:61:c5:ab:e8:2d:82: 77:23:7b:bf:cd:5e:e7:d8:bf:75:e2:95:c1:93:64:44:8a:05: fe:2f:a0:18:46:b6:0b:a7:7e:31:ad:26:22:98:18:0a:57:3d: c5:7c:1b:5d:70:a3:2b:8f:7b:5f:d0:45:c1:74:6a:41:86:79: 06:de:ca:70:98:cc:6e:ea:7d:96:ad:40:d3:b6:89:40:35:7e: c1:19:af:a5:14:c2:d9:db:25:30:2e:a9:59:b4:82:e3:7f:31: 12:78:a1:ed:b9:51:81:91:46:09:28:e6:bc:40:42:6d:c4:ad: 3a:bf:f6:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTOWEOSXdjKPH10ufuuS2Rk7td0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQx MEEzRUIxQjAeFw0yNTA5MTEwNTU1MDFaFw0yNjA5MTAwNjAwMDFaMDMxMTAvBgNV BAMTKEMxMTc0MDI3ODRENDMwN0E2RUNGRkZEMkY4QTUxNjI2ODhCMzYxM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz0loToZk8cWsX0HaRplgvSkxG 1tE2aYvFrY4NKMEaF4pQ81Q3WGueQCLeXgT5J/qNKGCqPV8JrZXu7/u3vWqjQIM0 /BE8gKfKZPQtv3k2JpQtr1wLMZZ/X3/7Qji0kk45HLFXu+jwqNmaADTf4AZojgQD BftoThn/XGAlscEjdIyPSl7YXSxc44ozzJ2BNahx+Rr1ABLCahU2O4uEmYsc9a9e PK4+/wuk09mFBCqv61pKR5zH+zqXTVVqhe+uQ5WMHo3H04RKRigbdVeqmRHsFzXR 9EB0RfWu4RvXsYRNo+JiE7agJKpUFQQK1WTxSFhoiON3CIt7m9RjwAr8rTotAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwRdAJ4TUMHpuz//S+KUWJoizYTswHwYDVR0j BBgwFoAURhcnLuh1tVzV8qiDMKlfZBCj6xswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZmRhZjA2YS1mNjI0LTQyY2YtYmIxOS1iNmJiZjkzMWFhYzgvMC80NjE3MjcyRUU4 NzVCNTVDRDVGMkE4ODMzMEE5NUY2NDEwQTNFQjFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDYxNzI3MkVFODc1QjU1Q0Q1RjJBODgzMzBBOTVGNjQxMEEz RUIxQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGFmMDZhLWY2MjQtNDJjZi1i YjE5LWI2YmJmOTMxYWFjOC8wLzMxMzUzNzJlMzEzNTJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PLTANBgkqhkiG 9w0BAQsFAAOCAQEABNqXbmmJ0thEUpsUCnXXyTmkHqKxlP24cMUmHy8JXtkN23Oo sfT8dJzjooUJTcGibGB6BE+Upf88iiGUGgwUy00m90w4s6hL81FaD4wn7OzPGTp4 RClqVjBeeZv07O2jdx/hPSgMQ8ms/FIoJ1xZbiZid1CGP41BHm2dfoKxrUufI15A qAXa3jjRYcWr6C2CdyN7v81e59i/deKVwZNkRIoF/i+gGEa2C6d+Ma0mIpgYClc9 xXwbXXCjK497X9BFwXRqQYZ5Bt7KcJjMbup9lq1A07aJQDV+wRmvpRTC2dslMC6p WbSC438xEnih7blRgZFGCSjmvEBCbcStOr/2jg== -----END CERTIFICATE-----Generated at Tue Oct 21 09:19:13 2025 by rpki-client