$ rpki-client -vvf repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e352e302f32342d3234203d3e20313336383633.roa File: 3135372e36362e352e302f32342d3234203d3e20313336383633.roa (raw, json) Hash identifier: DhApzFWM2Yz0xUZPdFDWyaJVrtCTZnr7Udi3dtMinS8= Subject key identifier: 63:BF:BE:AE:00:07:D7:56:19:19:E1:E2:54:84:17:78:6A:05:48:3D Certificate issuer: /CN=676E12EDA912B67493E88316A428CFDBCAB51941 Certificate serial: 2FFF9346963E942CBE73938CFC0034A5EE08CF2F Authority key identifier: 67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e352e302f32342d3234203d3e20313336383633.roa Signing time: Sat 03 May 2025 04:00:02 +0000 ROA not before: Sat 03 May 2025 03:55:02 +0000 ROA not after: Sat 02 May 2026 04:00:02 +0000 asID: 136863 IP address blocks: 157.66.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 11:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ff:93:46:96:3e:94:2c:be:73:93:8c:fc:00:34:a5:ee:08:cf:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=676E12EDA912B67493E88316A428CFDBCAB51941 Validity Not Before: May 3 03:55:02 2025 GMT Not After : May 2 04:00:02 2026 GMT Subject: CN=63BFBEAE0007D7561919E1E2548417786A05483D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:69:ea:96:56:5e:5d:4c:6f:d7:be:95:f1:e5: c7:3f:6d:34:a1:a7:0e:39:47:a5:83:81:ec:f6:5a: 04:68:23:80:25:6c:6c:83:f8:3a:16:3a:4e:80:4b: 73:5f:b8:d4:9f:fa:30:fb:cc:5f:00:8d:4c:de:2a: 74:ee:4c:d7:2a:b4:b5:fd:b9:a9:99:e4:3a:91:6e: 15:26:68:3b:a2:69:25:0e:cd:7e:3d:14:d1:3e:db: 7c:17:3d:f5:13:44:48:62:7b:65:bc:f0:01:c1:df: e9:e5:37:53:2f:1d:db:2a:9f:d0:88:e8:45:d0:17: d7:b9:7d:64:44:10:08:ec:32:60:c2:29:fe:8d:f4: 74:2d:01:52:9b:d4:15:44:b6:7a:19:62:16:69:a3: c1:b7:64:d2:25:76:b1:5d:10:b3:d3:f7:cf:bd:32: 17:8a:2b:de:88:c0:e3:15:66:08:86:e3:5e:10:0b: 55:bd:47:f6:14:70:d9:e2:15:8d:82:63:42:49:9d: 86:d9:5c:50:8e:33:7c:55:a4:40:8c:da:d2:b1:b2: 03:a1:71:0c:39:52:c0:9f:a7:60:9c:58:6d:01:b0: 1a:9c:6d:87:3b:36:e3:24:84:e4:2b:eb:1e:1a:b0: f2:cf:32:68:cf:63:73:ae:32:af:1b:ca:d8:74:b4: 71:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:BF:BE:AE:00:07:D7:56:19:19:E1:E2:54:84:17:78:6A:05:48:3D X509v3 Authority Key Identifier: keyid:67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e352e302f32342d3234203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.5.0/24 Signature Algorithm: sha256WithRSAEncryption 60:32:46:a8:28:d8:f7:7d:3b:6b:00:08:21:f7:bf:e1:aa:d1: 8c:a1:13:61:9b:1c:2f:6f:8d:16:6f:c8:e3:ef:b4:1d:dd:c3: 55:22:81:fb:da:33:8a:c1:b4:0a:91:29:8b:43:20:d5:2f:ae: 48:ee:3f:f7:c9:88:fd:88:bb:51:d6:21:61:fc:2e:3f:92:e4: 3b:3f:15:cd:45:1d:4d:0a:98:ba:97:e9:6e:18:c6:18:0d:4f: c0:ae:d3:2b:21:81:c6:d3:c8:89:29:47:ce:e8:3e:17:2d:f2: eb:fc:7d:83:1d:7f:7f:a0:6a:70:83:e1:3a:5c:e9:20:f2:ab: 85:04:02:15:64:9a:3b:70:ac:d4:be:c2:b4:82:46:c3:4b:16: 6f:97:dc:21:a5:99:6e:17:23:b4:84:b0:5e:23:c9:4b:bd:63: 8f:c3:e6:ac:39:46:d7:db:be:62:29:0f:ef:f7:b2:a1:a6:0f: 4a:81:a4:e0:04:4d:97:59:7d:84:10:06:f1:a6:3e:5b:20:14: 9a:7a:c9:d2:d0:3b:8b:5e:3b:dc:db:ce:cd:a9:0f:27:a8:a1: 09:0d:7c:91:ce:a8:55:b7:c5:73:a1:c4:9e:16:20:78:52:a9: 8a:41:cb:5c:34:54:45:54:22:be:c0:9f:2f:61:ba:40:f9:0b: f2:11:06:e0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUL/+TRpY+lCy+c5OM/AA0pe4Izy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJD QUI1MTk0MTAeFw0yNTA1MDMwMzU1MDJaFw0yNjA1MDIwNDAwMDJaMDMxMTAvBgNV BAMTKDYzQkZCRUFFMDAwN0Q3NTYxOTE5RTFFMjU0ODQxNzc4NkEwNTQ4M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAaeqWVl5dTG/XvpXx5cc/bTSh pw45R6WDgez2WgRoI4AlbGyD+DoWOk6AS3NfuNSf+jD7zF8AjUzeKnTuTNcqtLX9 uamZ5DqRbhUmaDuiaSUOzX49FNE+23wXPfUTREhie2W88AHB3+nlN1MvHdsqn9CI 6EXQF9e5fWREEAjsMmDCKf6N9HQtAVKb1BVEtnoZYhZpo8G3ZNIldrFdELPT98+9 MheKK96IwOMVZgiG414QC1W9R/YUcNniFY2CY0JJnYbZXFCOM3xVpECM2tKxsgOh cQw5UsCfp2CcWG0BsBqcbYc7NuMkhOQr6x4asPLPMmjPY3OuMq8byth0tHHhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUY7++rgAH11YZGeHiVIQXeGoFSD0wHwYDVR0j BBgwFoAUZ24S7akStnST6IMWpCjP28q1GUEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjY0YmZiMi1kNDFkLTQzMTctYjkyZC1iYjk0NDFmZDBkY2YvMC82NzZFMTJFREE5 MTJCNjc0OTNFODgzMTZBNDI4Q0ZEQkNBQjUxOTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJDQUI1 MTk0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzUyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgUwDQYJKoZIhvcN AQELBQADggEBAGAyRqgo2Pd9O2sACCH3v+Gq0YyhE2GbHC9vjRZvyOPvtB3dw1Ui gfvaM4rBtAqRKYtDINUvrkjuP/fJiP2Iu1HWIWH8Lj+S5Ds/Fc1FHU0KmLqX6W4Y xhgNT8Cu0yshgcbTyIkpR87oPhct8uv8fYMdf3+ganCD4Tpc6SDyq4UEAhVkmjtw rNS+wrSCRsNLFm+X3CGlmW4XI7SEsF4jyUu9Y4/D5qw5RtfbvmIpD+/3sqGmD0qB pOAETZdZfYQQBvGmPlsgFJp6ydLQO4teO9zbzs2pDyeooQkNfJHOqFW3xXOhxJ4W IHhSqYpBy1w0VEVUIr7Any9hukD5C/IRBuA= -----END CERTIFICATE-----Generated at Sat May 10 21:43:49 2025 by rpki-client