$ rpki-client -vvf repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137302e302f32342d3234203d3e20313532373737.roa File: 3135372e36362e3137302e302f32342d3234203d3e20313532373737.roa (raw, json) Hash identifier: mWn5DPCiekSxGNB8RumBKf5syIxB4d7+KUn6ZNJHctk= Subject key identifier: ED:8D:98:DA:C2:C0:57:18:51:60:2E:87:15:08:C8:48:B3:5E:6D:5D Certificate issuer: /CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Certificate serial: 08943C0BAD175375836D6361CFE0272AB08AE57A Authority key identifier: 73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137302e302f32342d3234203d3e20313532373737.roa Signing time: Fri 20 Jun 2025 10:01:14 +0000 ROA not before: Fri 20 Jun 2025 09:56:14 +0000 ROA not after: Fri 19 Jun 2026 10:01:14 +0000 asID: 152777 IP address blocks: 157.66.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 06:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:94:3c:0b:ad:17:53:75:83:6d:63:61:cf:e0:27:2a:b0:8a:e5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Validity Not Before: Jun 20 09:56:14 2025 GMT Not After : Jun 19 10:01:14 2026 GMT Subject: CN=ED8D98DAC2C0571851602E871508C848B35E6D5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e4:96:be:e5:4e:1a:95:70:6a:64:d6:f9:cb: 04:0d:32:38:4b:0b:e4:7c:72:30:58:64:3a:65:11: d8:5c:a5:0a:55:34:1c:88:61:31:e8:2b:2c:c6:93: 87:e9:db:22:64:18:85:cb:91:04:b3:aa:51:87:46: 30:07:f9:fb:2a:89:c3:bf:98:61:36:3d:ba:7f:d1: f9:bc:e2:eb:3f:d8:e1:13:e3:54:c4:31:a4:41:4d: 3b:dd:4e:48:e0:51:e9:0c:67:bb:3f:6a:92:9e:86: 26:32:5c:d2:6c:a5:73:41:7d:66:3d:e5:21:66:4e: 8e:df:3f:30:00:c5:ce:93:68:4b:57:b9:fa:6f:b0: 97:e2:60:ef:bd:b9:01:6b:ba:cd:e9:c0:c0:8b:c7: 8c:29:45:f4:c0:bf:f3:bd:6e:44:6c:f5:79:f0:1f: 1b:e7:63:ff:83:bc:ab:fc:8b:95:10:00:7d:2c:4b: 9b:4e:b1:90:96:82:ca:e0:c6:f1:c9:f0:f8:ab:c9: f9:87:f3:5a:a6:b4:00:3e:c1:fd:0d:e7:f9:ff:c3: 34:06:82:da:61:4a:e2:7a:43:97:06:ce:13:ea:af: 8d:3a:5c:9b:9e:6c:2d:75:af:a1:aa:00:26:2f:57: f5:d7:97:59:ed:62:49:6d:86:66:34:d9:5c:54:e3: 0b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8D:98:DA:C2:C0:57:18:51:60:2E:87:15:08:C8:48:B3:5E:6D:5D X509v3 Authority Key Identifier: keyid:73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137302e302f32342d3234203d3e20313532373737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.170.0/24 Signature Algorithm: sha256WithRSAEncryption 38:9d:8d:1e:47:25:1d:56:1e:3e:18:d1:1d:fd:67:14:02:01: 9f:80:e6:03:a7:59:4a:a5:5d:f9:cb:84:09:00:f3:6b:84:f4: 58:38:fb:ef:a7:5f:c5:7a:61:c8:fa:34:0a:08:36:30:79:bf: 46:a3:88:a8:c7:93:73:c1:e0:8e:89:37:90:de:39:ff:c5:27: 0d:1d:ac:55:39:b2:c2:a4:7f:72:8d:2b:6d:a1:b4:66:77:04: fa:00:65:d1:5d:69:fb:6b:39:1c:47:87:38:ee:5c:7b:29:2c: 81:d4:4c:91:01:41:33:90:eb:75:27:a3:19:13:f0:a4:63:94: b1:8f:3a:b9:50:8e:71:22:da:4b:f6:e5:64:61:0c:a9:ff:c7: 69:36:0f:9e:fa:32:1b:45:11:f3:ee:d0:c4:4f:09:6f:56:fd: f5:9b:f0:44:59:6d:b1:63:cf:c7:45:d5:bc:0f:c2:db:bd:c2: 22:51:f2:eb:44:0e:31:07:0b:df:77:5a:2a:40:09:b4:30:60: 83:45:72:36:44:60:94:4f:b2:07:f5:d9:93:07:7b:6a:36:c4: e3:96:9d:e8:ff:cc:7c:45:71:85:e6:3d:42:0a:13:5b:d6:78: df:33:c3:ff:24:3f:53:4f:e2:9d:61:91:43:91:2a:37:10:8e: 54:e3:81:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCJQ8C60XU3WDbWNhz+AnKrCK5XowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4 N0UxOUFCNjAeFw0yNTA2MjAwOTU2MTRaFw0yNjA2MTkxMDAxMTRaMDMxMTAvBgNV BAMTKEVEOEQ5OERBQzJDMDU3MTg1MTYwMkU4NzE1MDhDODQ4QjM1RTZENUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS5Ja+5U4alXBqZNb5ywQNMjhL C+R8cjBYZDplEdhcpQpVNByIYTHoKyzGk4fp2yJkGIXLkQSzqlGHRjAH+fsqicO/ mGE2Pbp/0fm84us/2OET41TEMaRBTTvdTkjgUekMZ7s/apKehiYyXNJspXNBfWY9 5SFmTo7fPzAAxc6TaEtXufpvsJfiYO+9uQFrus3pwMCLx4wpRfTAv/O9bkRs9Xnw HxvnY/+DvKv8i5UQAH0sS5tOsZCWgsrgxvHJ8PiryfmH81qmtAA+wf0N5/n/wzQG gtphSuJ6Q5cGzhPqr406XJuebC11r6GqACYvV/XXl1ntYklthmY02VxU4wtHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7Y2Y2sLAVxhRYC6HFQjISLNebV0wHwYDVR0j BBgwFoAUc6+UXv9eqdHv3CYX+kNDDofhmrYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTQ4MTYwNi1kNWZkLTQxOTYtYWJjZC01OGU2Yzc2MjQzYzUvMC83M0FGOTQ1RUZG NUVBOUQxRUZEQzI2MTdGQTQzNDMwRTg3RTE5QUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4N0Ux OUFCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NDgxNjA2LWQ1ZmQtNDE5Ni1h YmNkLTU4ZTZjNzYyNDNjNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKqMA0GCSqG SIb3DQEBCwUAA4IBAQA4nY0eRyUdVh4+GNEd/WcUAgGfgOYDp1lKpV35y4QJAPNr hPRYOPvvp1/FemHI+jQKCDYweb9Go4iox5NzweCOiTeQ3jn/xScNHaxVObLCpH9y jSttobRmdwT6AGXRXWn7azkcR4c47lx7KSyB1EyRAUEzkOt1J6MZE/CkY5Sxjzq5 UI5xItpL9uVkYQyp/8dpNg+e+jIbRRHz7tDETwlvVv31m/BEWW2xY8/HRdW8D8Lb vcIiUfLrRA4xBwvfd1oqQAm0MGCDRXI2RGCUT7IH9dmTB3tqNsTjlp3o/8x8RXGF 5j1CChNb1njfM8P/JD9TT+KdYZFDkSo3EI5U44Hc -----END CERTIFICATE-----Generated at Tue Jul 1 02:48:53 2025 by rpki-client