$ rpki-client -vvf repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa File: 3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa (raw, json) Hash identifier: uOA4jTwlkcqlsjP32WwaK900NFV6wePG9q2fIgGqlJw= Subject key identifier: 5F:7D:1E:9C:AD:8E:CD:D9:C1:6D:0F:A9:E5:C6:FA:4A:33:3B:2E:F7 Certificate issuer: /CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Certificate serial: 1B1A51443D66209073CD2DBB2C916D5A590BB2E5 Authority key identifier: 73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa Signing time: Fri 20 Jun 2025 10:01:14 +0000 ROA not before: Fri 20 Jun 2025 09:56:14 +0000 ROA not after: Fri 19 Jun 2026 10:01:14 +0000 asID: 152777 IP address blocks: 157.66.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 06:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1a:51:44:3d:66:20:90:73:cd:2d:bb:2c:91:6d:5a:59:0b:b2:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6 Validity Not Before: Jun 20 09:56:14 2025 GMT Not After : Jun 19 10:01:14 2026 GMT Subject: CN=5F7D1E9CAD8ECDD9C16D0FA9E5C6FA4A333B2EF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e7:b4:1d:8c:0c:e3:6f:23:c4:cc:ff:c7:70: b3:69:87:71:f7:3c:1e:15:77:c0:99:eb:93:86:ba: bd:39:4f:29:c4:58:80:df:80:20:c6:74:2f:22:61: ff:cf:e5:9a:34:a5:e2:97:1c:06:80:88:a6:9a:6d: c1:eb:53:77:02:e1:88:2a:b4:71:a6:9c:21:ff:c5: bc:fc:f4:d8:cf:6b:f8:d2:0e:20:5a:ec:c8:20:a7: 6f:f3:b5:15:de:94:2e:bf:05:ef:2c:d6:01:5f:66: d5:94:91:5f:a0:fa:35:ec:03:da:d8:c5:7e:21:f2: d2:d3:5c:48:e3:24:4d:9e:65:48:51:c5:ef:7f:56: 40:30:38:4f:26:de:12:fd:3b:d6:b6:19:7a:f1:5c: b5:7e:2b:6a:46:f5:ad:f0:42:5b:f4:da:43:29:61: 0c:65:04:c3:3a:77:d7:ad:b5:1c:dc:76:7d:6d:27: 32:e5:e5:6b:8a:07:ff:8e:dd:89:2a:85:2d:ed:24: 11:0a:e9:4a:60:b4:f4:c7:3e:5e:7d:bf:bf:49:05: 50:75:c2:8c:12:c9:a0:48:79:37:02:27:8c:49:f4: 68:c3:61:e8:6f:84:e1:5d:35:df:6f:a3:b1:ae:06: 8f:f7:c7:f9:b5:46:ca:d0:d1:34:36:82:91:b6:8b: 7b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7D:1E:9C:AD:8E:CD:D9:C1:6D:0F:A9:E5:C6:FA:4A:33:3B:2E:F7 X509v3 Authority Key Identifier: keyid:73:AF:94:5E:FF:5E:A9:D1:EF:DC:26:17:FA:43:43:0E:87:E1:9A:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/73AF945EFF5EA9D1EFDC2617FA43430E87E19AB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.171.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:6b:e9:2b:b7:b1:db:18:d1:03:62:85:85:bb:8b:b3:e4:72: 61:cf:1f:6e:2a:5f:73:58:36:9e:3a:01:ba:3c:17:44:b5:ab: c4:dc:b2:46:42:c3:f2:71:2f:09:eb:4e:c3:56:39:31:a4:53: 17:1e:5a:9b:61:2f:79:27:16:62:8f:f1:0d:fe:6a:01:1d:a4: 8a:43:b4:a7:49:9a:89:33:b1:a1:45:8d:24:2b:93:61:da:b2: 3e:dd:8c:33:3b:08:fe:cc:36:f0:75:19:58:1d:0c:4d:f3:27: fd:61:88:37:cb:e0:3d:84:f6:f7:57:af:10:ac:69:d4:dd:f5: a4:6a:c6:94:19:9c:f4:eb:1e:7f:8d:f1:3f:39:72:84:d8:dc: 6b:28:7f:31:32:32:df:f8:f0:32:90:9a:39:58:24:cb:c2:f0: 6e:8b:2f:4d:88:b7:03:fc:01:58:d6:58:a9:0b:a2:7a:6d:56: c3:e1:51:ba:89:b3:37:82:bd:3d:31:69:11:62:fa:86:f3:24: ff:eb:8f:58:b2:ba:34:6d:27:34:4d:94:c0:7f:2f:1e:c4:c7: 5f:8e:de:c9:33:b7:0c:34:d0:2d:cd:31:4b:54:f4:35:9e:38: d7:e3:35:cb:07:29:e0:1e:9d:44:7e:eb:10:99:2d:fd:c1:1b: 59:e8:c6:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGxpRRD1mIJBzzS27LJFtWlkLsuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4 N0UxOUFCNjAeFw0yNTA2MjAwOTU2MTRaFw0yNjA2MTkxMDAxMTRaMDMxMTAvBgNV BAMTKDVGN0QxRTlDQUQ4RUNERDlDMTZEMEZBOUU1QzZGQTRBMzMzQjJFRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk57QdjAzjbyPEzP/HcLNph3H3 PB4Vd8CZ65OGur05TynEWIDfgCDGdC8iYf/P5Zo0peKXHAaAiKaabcHrU3cC4Ygq tHGmnCH/xbz89NjPa/jSDiBa7Mggp2/ztRXelC6/Be8s1gFfZtWUkV+g+jXsA9rY xX4h8tLTXEjjJE2eZUhRxe9/VkAwOE8m3hL9O9a2GXrxXLV+K2pG9a3wQlv02kMp YQxlBMM6d9ettRzcdn1tJzLl5WuKB/+O3YkqhS3tJBEK6UpgtPTHPl59v79JBVB1 wowSyaBIeTcCJ4xJ9GjDYehvhOFdNd9vo7GuBo/3x/m1RsrQ0TQ2gpG2i3t9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX30enK2OzdnBbQ+p5cb6SjM7LvcwHwYDVR0j BBgwFoAUc6+UXv9eqdHv3CYX+kNDDofhmrYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTQ4MTYwNi1kNWZkLTQxOTYtYWJjZC01OGU2Yzc2MjQzYzUvMC83M0FGOTQ1RUZG NUVBOUQxRUZEQzI2MTdGQTQzNDMwRTg3RTE5QUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzNBRjk0NUVGRjVFQTlEMUVGREMyNjE3RkE0MzQzMEU4N0Ux OUFCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NDgxNjA2LWQ1ZmQtNDE5Ni1h YmNkLTU4ZTZjNzYyNDNjNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKrMA0GCSqG SIb3DQEBCwUAA4IBAQAda+krt7HbGNEDYoWFu4uz5HJhzx9uKl9zWDaeOgG6PBdE tavE3LJGQsPycS8J607DVjkxpFMXHlqbYS95JxZij/EN/moBHaSKQ7SnSZqJM7Gh RY0kK5Nh2rI+3YwzOwj+zDbwdRlYHQxN8yf9YYg3y+A9hPb3V68QrGnU3fWkasaU GZz06x5/jfE/OXKE2NxrKH8xMjLf+PAykJo5WCTLwvBuiy9NiLcD/AFY1lipC6J6 bVbD4VG6ibM3gr09MWkRYvqG8yT/649Ysro0bSc0TZTAfy8exMdfjt7JM7cMNNAt zTFLVPQ1njjX4zXLByngHp1EfusQmS39wRtZ6Mb2 -----END CERTIFICATE-----Generated at Tue Jul 1 02:31:44 2025 by rpki-client