$ rpki-client -vvf repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa File: 3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa (raw, json) Hash identifier: movLiT++PBKuPBzz5dXs+l8kqn3e27i1U3F37q5BVns= Subject key identifier: CD:C4:C5:72:56:8F:EC:58:7F:48:8E:D6:77:9B:8D:35:67:55:F5:60 Certificate issuer: /CN=78702A768CA1E1867D543013BB6186EDA3C06C16 Certificate serial: 588E3B3EB45B9543461D9D8B6E44DB787EBE09C6 Authority key identifier: 78:70:2A:76:8C:A1:E1:86:7D:54:30:13:BB:61:86:ED:A3:C0:6C:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/78702A768CA1E1867D543013BB6186EDA3C06C16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa Signing time: Thu 18 Sep 2025 09:02:57 +0000 ROA not before: Thu 18 Sep 2025 08:57:57 +0000 ROA not after: Thu 17 Sep 2026 09:02:57 +0000 asID: 152759 IP address blocks: 157.66.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.crl rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/78702A768CA1E1867D543013BB6186EDA3C06C16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:8e:3b:3e:b4:5b:95:43:46:1d:9d:8b:6e:44:db:78:7e:be:09:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78702A768CA1E1867D543013BB6186EDA3C06C16 Validity Not Before: Sep 18 08:57:57 2025 GMT Not After : Sep 17 09:02:57 2026 GMT Subject: CN=CDC4C572568FEC587F488ED6779B8D356755F560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:af:73:38:69:8a:89:f7:c0:9c:c2:72:cb:03: 26:30:a1:34:48:47:8a:7d:ed:1d:bf:98:50:c9:dc: 98:b8:54:28:6f:41:04:d3:64:cf:bf:9b:01:69:86: d1:92:40:c4:f7:01:89:4d:ca:5f:c1:89:45:b1:e2: 46:dc:5d:dd:da:51:83:70:38:ab:0d:cf:3f:fb:c3: 50:b3:51:fc:bb:39:af:7e:c3:eb:51:a3:0e:b1:fa: f5:6b:cc:ab:bb:e7:e6:4e:b7:f3:62:81:13:1a:f5: 29:ff:ee:d5:11:58:62:a4:37:b5:88:b5:7f:ef:de: ff:10:14:82:02:85:ee:ec:51:e6:3b:8f:1c:19:2f: 90:73:e0:9b:74:33:fb:b7:b0:70:ba:2c:fe:af:62: 81:39:1c:81:0d:32:e8:47:0c:fb:ff:07:cc:16:95: c5:49:31:b6:f9:45:95:f5:eb:92:8f:3b:6f:4b:af: 01:47:04:79:62:54:45:ca:7b:88:50:41:15:f5:0f: e0:92:2a:88:f3:1e:4e:02:81:f1:64:27:fe:f1:56: 60:07:34:62:4c:ba:c0:84:65:e4:22:a9:51:15:39: 2c:a5:7e:69:c4:6f:a9:d1:b1:4b:31:08:b3:d1:a6: 82:c3:3c:c3:3e:a0:0c:9e:60:66:52:bd:f9:2c:dd: ad:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C4:C5:72:56:8F:EC:58:7F:48:8E:D6:77:9B:8D:35:67:55:F5:60 X509v3 Authority Key Identifier: keyid:78:70:2A:76:8C:A1:E1:86:7D:54:30:13:BB:61:86:ED:A3:C0:6C:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/78702A768CA1E1867D543013BB6186EDA3C06C16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134312e302f32342d3234203d3e20313532373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.141.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:01:cc:03:a0:18:b7:13:56:85:6a:90:50:ea:44:dc:d2:4a: 23:2c:3c:c7:f1:16:8b:1d:3f:48:80:99:ba:49:25:c0:28:0f: 66:27:42:60:f0:28:6b:e7:a9:bb:1d:63:9c:f3:71:3e:a6:fb: ba:2f:97:c4:e0:3e:75:79:83:5b:f9:f3:fa:2e:15:f9:88:94: 0d:0b:77:60:03:da:1e:b1:6b:c0:46:3b:df:70:1d:e6:41:96: 93:7d:ea:68:dc:23:6d:3e:d0:40:6a:84:be:d2:3f:6c:d8:21: 59:5c:ff:45:bf:cd:eb:6c:a6:a3:be:e9:11:a3:9a:4a:e7:ce: cb:b8:7e:2d:43:87:74:24:80:ca:97:fa:28:e8:cb:d6:a7:0b: bb:fc:66:f6:b9:7a:f4:a4:54:27:5f:73:35:ce:f7:1e:c4:68: b8:25:0e:8d:52:85:e8:e9:f6:2d:ca:ae:9e:18:3a:b4:54:d5: 5b:90:3f:59:b9:92:ac:7f:4a:38:0d:b3:57:7c:ed:1e:83:a3: 57:f5:e9:c2:cd:7c:8d:9c:da:2e:a4:01:5c:7c:44:8f:86:de: e0:04:1f:89:89:f2:4b:8e:b0:ad:cb:ae:c0:a6:b4:bd:64:85: 84:d6:10:2e:d9:53:9a:04:2c:92:c4:b7:d2:1b:55:33:7e:d0: 3a:99:6f:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWI47PrRblUNGHZ2LbkTbeH6+CcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg3MDJBNzY4Q0ExRTE4NjdENTQzMDEzQkI2MTg2RURB M0MwNkMxNjAeFw0yNTA5MTgwODU3NTdaFw0yNjA5MTcwOTAyNTdaMDMxMTAvBgNV BAMTKENEQzRDNTcyNTY4RkVDNTg3RjQ4OEVENjc3OUI4RDM1Njc1NUY1NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXr3M4aYqJ98CcwnLLAyYwoTRI R4p97R2/mFDJ3Ji4VChvQQTTZM+/mwFphtGSQMT3AYlNyl/BiUWx4kbcXd3aUYNw OKsNzz/7w1CzUfy7Oa9+w+tRow6x+vVrzKu75+ZOt/NigRMa9Sn/7tURWGKkN7WI tX/v3v8QFIIChe7sUeY7jxwZL5Bz4Jt0M/u3sHC6LP6vYoE5HIENMuhHDPv/B8wW lcVJMbb5RZX165KPO29LrwFHBHliVEXKe4hQQRX1D+CSKojzHk4CgfFkJ/7xVmAH NGJMusCEZeQiqVEVOSylfmnEb6nRsUsxCLPRpoLDPMM+oAyeYGZSvfks3a0XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzcTFclaP7Fh/SI7Wd5uNNWdV9WAwHwYDVR0j BBgwFoAUeHAqdoyh4YZ9VDATu2GG7aPAbBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmE5ZjRlMi1jNzNiLTQ0MjctOTgyOS0xZGExYmFhYjg3MGIvMC83ODcwMkE3NjhD QTFFMTg2N0Q1NDMwMTNCQjYxODZFREEzQzA2QzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNzg3MDJBNzY4Q0ExRTE4NjdENTQzMDEzQkI2MTg2RURBM0Mw NkMxNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiYTlmNGUyLWM3M2ItNDQyNy05 ODI5LTFkYTFiYWFiODcwYi8wLzMxMzUzNzJlMzYzNjJlMzEzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKNMA0GCSqG SIb3DQEBCwUAA4IBAQALAcwDoBi3E1aFapBQ6kTc0kojLDzH8RaLHT9IgJm6SSXA KA9mJ0Jg8Chr56m7HWOc83E+pvu6L5fE4D51eYNb+fP6LhX5iJQNC3dgA9oesWvA RjvfcB3mQZaTfepo3CNtPtBAaoS+0j9s2CFZXP9Fv83rbKajvukRo5pK587LuH4t Q4d0JIDKl/oo6MvWpwu7/Gb2uXr0pFQnX3M1zvcexGi4JQ6NUoXo6fYtyq6eGDq0 VNVbkD9ZuZKsf0o4DbNXfO0eg6NX9enCzXyNnNoupAFcfESPht7gBB+JifJLjrCt y67AprS9ZIWE1hAu2VOaBCySxLfSG1UzftA6mW/U -----END CERTIFICATE-----Generated at Mon Oct 20 16:55:09 2025 by rpki-client