$ rpki-client -vvf repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137302e302f32332d3233203d3e20313532373737.roa File: 3135372e36362e3137302e302f32332d3233203d3e20313532373737.roa (raw, json) Hash identifier: bCp+hfr7ROEtQWyvQHaGucdWFI7N+d4ip6n9SavuoOk= Subject key identifier: 7B:4C:A1:16:CF:8C:E1:2A:ED:E4:1B:00:5E:62:BC:85:A9:5C:C5:CB Certificate issuer: /CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Certificate serial: 37246CC1C1323FAFB096DDE5204AFA78BDAC5630 Authority key identifier: 73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137302e302f32332d3233203d3e20313532373737.roa Signing time: Fri 20 Jun 2025 10:01:13 +0000 ROA not before: Fri 20 Jun 2025 09:56:13 +0000 ROA not after: Fri 19 Jun 2026 10:01:13 +0000 asID: 152777 IP address blocks: 157.66.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:24:6c:c1:c1:32:3f:af:b0:96:dd:e5:20:4a:fa:78:bd:ac:56:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Validity Not Before: Jun 20 09:56:13 2025 GMT Not After : Jun 19 10:01:13 2026 GMT Subject: CN=7B4CA116CF8CE12AEDE41B005E62BC85A95CC5CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:40:bd:d8:05:09:9f:be:eb:2e:45:34:0c: d2:15:68:dc:c3:8c:6d:90:3b:66:1f:a4:09:8f:5d: 98:5c:14:d5:dc:44:9d:b8:1f:1a:0f:e7:af:26:0e: c2:8d:4d:12:a2:b8:b4:b9:d2:e9:c7:66:d4:d8:18: 89:bb:1c:18:a9:95:3b:1b:16:86:79:b9:94:e5:e8: ce:87:df:7a:c2:27:c7:07:e2:b1:f8:59:e4:17:24: bf:12:00:fc:05:c9:96:b2:d0:4d:1b:be:d3:dd:f2: b1:a8:a9:89:d3:54:63:1a:c5:d4:04:fb:b9:c4:69: 9b:c6:fc:5f:cb:e1:4b:b7:84:ad:29:57:2c:94:97: 62:49:88:b5:9a:d8:e1:15:b6:9d:f2:7a:a7:0e:d2: 0b:91:f1:c1:0c:7e:a2:7d:0c:25:31:fb:cf:0c:f7: 6d:ab:cd:1d:76:fc:a8:ad:3c:38:71:be:3f:70:d8: 0c:61:04:e3:59:c6:5d:08:a0:09:fc:54:84:6b:40: 9c:a9:b9:5d:71:3f:d4:da:a2:d3:22:4c:5d:7f:33: 08:76:33:84:e7:84:89:2f:eb:28:16:76:d1:1d:80: 91:11:e3:37:33:af:4d:6b:15:6b:d2:fe:f9:ad:d8: 21:78:7b:b9:af:07:08:df:49:c7:14:17:1a:a2:86: a2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4C:A1:16:CF:8C:E1:2A:ED:E4:1B:00:5E:62:BC:85:A9:5C:C5:CB X509v3 Authority Key Identifier: keyid:73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137302e302f32332d3233203d3e20313532373737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.170.0/23 Signature Algorithm: sha256WithRSAEncryption b4:1a:0c:59:0b:ca:83:de:20:18:77:dd:9e:05:18:2f:d3:27: f6:e2:4f:66:cf:a7:98:09:42:ad:a0:a5:60:29:4b:91:73:ff: ad:de:47:be:9e:bf:59:9f:0d:3f:94:a3:c9:f2:3f:b4:4d:b7: d5:c5:7e:35:b7:d3:f9:44:c4:23:a7:94:c9:cd:a5:5a:0c:64: 93:ef:73:35:f9:45:49:4e:63:eb:9d:b3:fa:7a:d6:d8:9b:f9: 8b:51:e7:d2:ab:e7:d3:51:17:91:7d:44:47:c1:ea:29:0b:ba: 59:90:a9:d6:76:ba:2c:2e:59:d8:b3:cc:6a:a1:86:87:be:32: 70:20:17:4b:48:c7:fc:c1:0d:43:45:cd:96:d0:cd:64:16:f9: d9:b5:c4:82:2c:d8:3f:8a:fe:1b:2e:b9:ae:5f:bf:ef:65:03: 76:20:23:0b:90:8b:0f:2a:a6:7b:31:e3:c7:39:52:7c:c1:30: a5:ab:87:e5:41:dd:2e:49:16:09:fe:ef:2e:31:cd:88:7a:ba: 81:84:e5:87:15:c4:f5:cd:83:69:66:d8:84:ac:7d:b1:49:06: 3a:66:3f:43:c7:73:d0:8b:37:7d:37:b1:cd:fa:59:88:50:66: 7a:98:a7:18:51:60:7b:66:13:92:7f:08:f7:f2:a8:df:b9:6d: 51:6f:5c:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNyRswcEyP6+wlt3lIEr6eL2sVjAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4 N0UxOUFCNjAeFw0yNTA2MjAwOTU2MTNaFw0yNjA2MTkxMDAxMTNaMDMxMTAvBgNV BAMTKDdCNENBMTE2Q0Y4Q0UxMkFFREU0MUIwMDVFNjJCQzg1QTk1Q0M1Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLSEC92AUJn77rLkU0DNIVaNzD jG2QO2YfpAmPXZhcFNXcRJ24HxoP568mDsKNTRKiuLS50unHZtTYGIm7HBiplTsb FoZ5uZTl6M6H33rCJ8cH4rH4WeQXJL8SAPwFyZay0E0bvtPd8rGoqYnTVGMaxdQE +7nEaZvG/F/L4Uu3hK0pVyyUl2JJiLWa2OEVtp3yeqcO0guR8cEMfqJ9DCUx+88M 922rzR12/KitPDhxvj9w2AxhBONZxl0IoAn8VIRrQJypuV1xP9TaotMiTF1/Mwh2 M4TnhIkv6ygWdtEdgJER4zczr01rFWvS/vmt2CF4e7mvBwjfSccUFxqihqJDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe0yhFs+M4Srt5BsAXmK8halcxcswHwYDVR0j BBgwFoAUc6+UXv9eqdHv3CYX+kNDDofhmrYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTQ4MTYwNi1kNWZkLTQxOTYtYWJjZC01OGU2Yzc2MjQzYzUvMC83M0FGOTQ1RUZG NUVBOUQxRUZEQzI2MTdGQTQzNDMwRTg3RTE5QUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4N0Ux OUFCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NDgxNjA2LWQ1ZmQtNDE5Ni1h YmNkLTU4ZTZjNzYyNDNjNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKqMA0GCSqG SIb3DQEBCwUAA4IBAQC0GgxZC8qD3iAYd92eBRgv0yf24k9mz6eYCUKtoKVgKUuR c/+t3ke+nr9Znw0/lKPJ8j+0TbfVxX41t9P5RMQjp5TJzaVaDGST73M1+UVJTmPr nbP6etbYm/mLUefSq+fTUReRfURHweopC7pZkKnWdrosLlnYs8xqoYaHvjJwIBdL SMf8wQ1DRc2W0M1kFvnZtcSCLNg/iv4bLrmuX7/vZQN2ICMLkIsPKqZ7MePHOVJ8 wTClq4flQd0uSRYJ/u8uMc2IerqBhOWHFcT1zYNpZtiErH2xSQY6Zj9Dx3PQizd9 N7HN+lmIUGZ6mKcYUWB7ZhOSfwj38qjfuW1Rb1wR -----END CERTIFICATE-----Generated at Fri Jul 4 02:02:26 2025 by rpki-client