$ rpki-client -vvf repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa File: 3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa (raw, json) Hash identifier: keRrjXE2aFv5lood59DLSEKDpD72rCKDg82GWlf1ewQ= Subject key identifier: A5:DA:B3:80:C4:BA:A2:D5:41:63:3A:3A:34:84:00:68:F7:AC:4D:B1 Certificate issuer: /CN=952177DE616DE181FF461A8481C060AD744E2603 Certificate serial: 681F5429E230BB717E6DC775FB9F1DD0E6A90DA3 Authority key identifier: 95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa Signing time: Fri 13 Jun 2025 09:00:01 +0000 ROA not before: Fri 13 Jun 2025 08:55:01 +0000 ROA not after: Fri 12 Jun 2026 09:00:01 +0000 asID: 152379 IP address blocks: 157.15.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 11:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:1f:54:29:e2:30:bb:71:7e:6d:c7:75:fb:9f:1d:d0:e6:a9:0d:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=952177DE616DE181FF461A8481C060AD744E2603 Validity Not Before: Jun 13 08:55:01 2025 GMT Not After : Jun 12 09:00:01 2026 GMT Subject: CN=A5DAB380C4BAA2D541633A3A34840068F7AC4DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b5:75:99:c9:7a:d3:be:cf:ae:15:f4:49:9c: fa:9e:ce:33:88:aa:2f:04:f4:9a:12:92:4c:4e:da: d5:72:68:b4:88:e1:ad:40:3a:24:91:e0:5c:37:fb: fd:d5:2e:85:c3:84:18:de:82:39:78:b1:b2:6a:2e: f9:6d:87:b5:b7:d5:28:66:0d:af:12:c3:78:75:77: d8:c4:cc:5a:64:f3:9c:35:33:f6:5c:16:59:bb:ba: 68:7c:86:3a:4b:52:10:9e:fe:c2:70:16:ea:53:79: 66:86:5a:5d:32:15:58:76:3c:60:54:be:c7:99:71: 27:15:ea:c9:37:43:4a:34:5b:19:08:6a:cf:af:6e: 90:9b:3d:ec:c1:65:89:b9:fb:22:67:e9:fe:af:78: 49:f3:be:54:30:8f:68:8a:a1:ca:9a:a3:bd:dc:d8: 39:1f:92:fa:ab:ac:01:e9:bc:74:d6:d5:ef:ab:6e: c1:b5:ef:ac:0c:76:75:a4:1e:2f:2c:a0:d9:46:3f: 94:2b:c5:34:ac:77:db:c5:b7:69:72:2d:c7:cf:42: e4:70:22:60:75:43:6f:0a:60:b5:3c:a8:a6:70:6d: 4b:dd:4c:d4:3e:3b:30:3e:e1:88:f7:06:69:4d:41: 61:91:78:95:85:85:de:8d:e7:72:d8:0d:e2:2a:a7: af:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:DA:B3:80:C4:BA:A2:D5:41:63:3A:3A:34:84:00:68:F7:AC:4D:B1 X509v3 Authority Key Identifier: keyid:95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.174.0/24 Signature Algorithm: sha256WithRSAEncryption 31:8e:6d:2f:a3:11:31:89:9f:fb:05:44:28:b2:50:ae:10:53: 4a:ed:d2:63:d6:86:fd:81:77:22:51:55:2c:51:fc:03:3f:ea: 09:c2:d8:c1:06:41:c1:20:8e:11:04:d7:1a:8d:36:f3:b7:21: f9:ad:33:57:04:b2:db:21:ba:73:0c:73:a3:1e:74:f9:aa:79: 92:5f:76:13:4e:d7:f3:0a:f5:8c:5c:42:17:c3:02:7b:14:c4: 2e:2f:98:df:43:31:02:6a:48:3c:e5:a3:80:11:c0:bc:2d:b8: f9:e1:38:4f:13:be:14:85:eb:8f:91:8f:96:e3:75:af:06:fc: 1a:c0:75:85:48:f5:23:f3:91:8e:ca:d5:06:61:96:e6:07:eb: 50:b4:70:ff:c8:c2:3d:c4:8e:af:b1:83:3c:f8:e5:c3:cb:74: 59:c9:c7:16:6b:bf:ef:ac:a5:d3:f8:75:c9:17:56:21:66:3e: 12:85:ab:03:28:fb:27:06:c2:c3:21:e9:7a:3d:cf:bf:de:f9: ad:5d:5f:59:09:03:ff:e8:64:22:f7:d0:b1:41:12:ff:b1:28: d5:95:95:33:46:9e:f3:77:48:2c:72:5c:d9:aa:3d:e3:54:ee: 03:6a:e5:02:76:6d:5d:d2:94:a5:e3:90:d2:aa:b0:68:98:b0: 39:ae:18:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaB9UKeIwu3F+bcd1+58d0OapDaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3 NDRFMjYwMzAeFw0yNTA2MTMwODU1MDFaFw0yNjA2MTIwOTAwMDFaMDMxMTAvBgNV BAMTKEE1REFCMzgwQzRCQUEyRDU0MTYzM0EzQTM0ODQwMDY4RjdBQzREQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5tXWZyXrTvs+uFfRJnPqezjOI qi8E9JoSkkxO2tVyaLSI4a1AOiSR4Fw3+/3VLoXDhBjegjl4sbJqLvlth7W31Shm Da8Sw3h1d9jEzFpk85w1M/ZcFlm7umh8hjpLUhCe/sJwFupTeWaGWl0yFVh2PGBU vseZcScV6sk3Q0o0WxkIas+vbpCbPezBZYm5+yJn6f6veEnzvlQwj2iKocqao73c 2DkfkvqrrAHpvHTW1e+rbsG176wMdnWkHi8soNlGP5QrxTSsd9vFt2lyLcfPQuRw ImB1Q28KYLU8qKZwbUvdTNQ+OzA+4Yj3BmlNQWGReJWFhd6N53LYDeIqp69pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpdqzgMS6otVBYzo6NIQAaPesTbEwHwYDVR0j BBgwFoAUlSF33mFt4YH/RhqEgcBgrXROJgMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjAwMjk5Mi1hY2IyLTRmNzctOTk3ZC0zMjE3ZWFkOTliYjUvMC85NTIxNzdERTYx NkRFMTgxRkY0NjFBODQ4MUMwNjBBRDc0NEUyNjAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3NDRF MjYwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiMDAyOTkyLWFjYjItNGY3Ny05 OTdkLTMyMTdlYWQ5OWJiNS8wLzMxMzUzNzJlMzEzNTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+uMA0GCSqG SIb3DQEBCwUAA4IBAQAxjm0voxExiZ/7BUQoslCuEFNK7dJj1ob9gXciUVUsUfwD P+oJwtjBBkHBII4RBNcajTbztyH5rTNXBLLbIbpzDHOjHnT5qnmSX3YTTtfzCvWM XEIXwwJ7FMQuL5jfQzECakg85aOAEcC8Lbj54ThPE74UheuPkY+W43WvBvwawHWF SPUj85GOytUGYZbmB+tQtHD/yMI9xI6vsYM8+OXDy3RZyccWa7/vrKXT+HXJF1Yh Zj4ShasDKPsnBsLDIel6Pc+/3vmtXV9ZCQP/6GQi99CxQRL/sSjVlZUzRp7zd0gs clzZqj3jVO4DauUCdm1d0pSl45DSqrBomLA5rhhF -----END CERTIFICATE-----Generated at Wed Jul 2 14:37:12 2025 by rpki-client