$ rpki-client -vvf repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/3135372e36362e35342e302f32332d3233203d3e20313431383932.roa File: 3135372e36362e35342e302f32332d3233203d3e20313431383932.roa (raw, json) Hash identifier: O7he/ueLgA87HCSPJrqHHNBVHo9ekwFufTVOjMl9MdM= Subject key identifier: 66:70:2A:6C:0D:EA:6E:DC:6B:09:04:42:71:0A:C8:1B:E4:D2:56:D6 Certificate issuer: /CN=528098CFFE1330AD3E557BCFEC2D8B4692F51248 Certificate serial: 6D060EF9082F08482ABD1D1C07C86D578414D53C Authority key identifier: 52:80:98:CF:FE:13:30:AD:3E:55:7B:CF:EC:2D:8B:46:92:F5:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/3135372e36362e35342e302f32332d3233203d3e20313431383932.roa Signing time: Fri 07 Mar 2025 09:00:01 +0000 ROA not before: Fri 07 Mar 2025 08:55:01 +0000 ROA not after: Fri 06 Mar 2026 09:00:01 +0000 asID: 141892 IP address blocks: 157.66.54.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.crl rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 17:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:06:0e:f9:08:2f:08:48:2a:bd:1d:1c:07:c8:6d:57:84:14:d5:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528098CFFE1330AD3E557BCFEC2D8B4692F51248 Validity Not Before: Mar 7 08:55:01 2025 GMT Not After : Mar 6 09:00:01 2026 GMT Subject: CN=66702A6C0DEA6EDC6B090442710AC81BE4D256D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7f:15:53:b3:c3:b9:ec:9c:3c:d9:6d:78:fe: 46:48:1a:b2:ab:60:e2:fc:9a:58:c2:b1:d2:57:7d: 90:63:32:cd:d3:2f:40:81:ed:bb:d3:60:68:52:10: 3a:f2:97:c6:24:4d:52:0a:9f:13:f5:0d:a3:df:32: 79:bf:a5:09:a9:2e:a3:b4:5f:00:de:4d:50:84:bc: e1:f1:45:13:cd:be:36:3a:4c:03:79:cb:12:80:8e: 03:d8:07:c8:f5:64:00:50:78:a0:df:0c:1e:fb:04: 80:44:2d:6d:5a:34:96:2b:47:8f:e8:c9:bf:e1:14: d9:e5:df:e1:d9:62:b3:2b:b1:14:b7:ff:c2:d7:b3: bf:33:12:b6:f8:71:4b:a7:30:12:2f:a1:00:d2:2d: f0:d7:a8:e8:68:63:3d:d0:2c:db:67:da:95:04:01: 8d:f2:77:fd:92:fa:00:7b:94:dd:b8:3d:8c:9b:c8: b8:62:90:4f:a1:45:4e:e3:c8:c6:e3:86:fd:2f:47: b0:f1:ff:d3:b0:02:8e:54:78:db:d5:31:2b:64:98: 42:12:31:05:bb:34:d5:a3:b2:aa:7a:8b:42:c9:e3: 1d:d0:16:f2:02:09:fd:96:7a:00:cf:8d:52:f2:5c: 79:e9:f8:bd:b4:95:76:6a:63:f8:19:60:c6:04:23: 60:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:70:2A:6C:0D:EA:6E:DC:6B:09:04:42:71:0A:C8:1B:E4:D2:56:D6 X509v3 Authority Key Identifier: keyid:52:80:98:CF:FE:13:30:AD:3E:55:7B:CF:EC:2D:8B:46:92:F5:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/3135372e36362e35342e302f32332d3233203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.54.0/23 Signature Algorithm: sha256WithRSAEncryption 15:19:f4:85:9c:18:45:dd:aa:6d:a6:d0:33:75:32:0a:f7:3c: eb:7d:53:5e:9a:8a:26:21:fc:0e:f9:ed:74:da:42:2e:92:b6: b2:bb:3f:4a:87:4d:1d:f8:c4:75:ab:d6:51:aa:a0:20:a1:9b: c5:45:88:10:f6:02:93:80:7f:41:99:9c:9b:77:e5:b4:c6:e3: 0a:64:dd:d6:fc:78:62:87:df:c4:37:a8:75:b4:b5:fe:29:8e: 97:2e:7e:dd:79:f2:1c:c3:a8:d1:0b:a5:95:50:28:6f:a4:42: 44:b3:a3:f2:17:dc:72:91:82:df:f7:2d:cf:b4:21:9b:a0:de: 77:fd:b6:64:a3:cf:88:a1:7a:6f:72:ec:ef:41:a4:b8:b9:0f: 56:af:76:1f:3b:9c:3e:90:4c:b5:64:60:d1:df:64:16:73:65: 98:a2:9b:cb:51:b8:3a:8b:57:2a:6f:42:e0:88:e9:e8:38:16: 94:20:de:f8:3d:9a:c6:8a:7a:dd:01:3b:8b:d4:26:63:fd:37: d4:93:9f:f0:2f:cd:50:cf:02:2d:92:53:b7:23:67:75:c9:6d: 3e:31:f0:6a:9e:ba:29:76:b6:ad:d3:ed:dd:4b:9b:4f:ba:8a: 7c:70:78:ad:52:4b:54:a1:e2:ab:d2:b9:e7:7e:30:6f:36:9c: a9:d9:0e:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbQYO+QgvCEgqvR0cB8htV4QU1TwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4MDk4Q0ZGRTEzMzBBRDNFNTU3QkNGRUMyRDhCNDY5 MkY1MTI0ODAeFw0yNTAzMDcwODU1MDFaFw0yNjAzMDYwOTAwMDFaMDMxMTAvBgNV BAMTKDY2NzAyQTZDMERFQTZFREM2QjA5MDQ0MjcxMEFDODFCRTREMjU2RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdfxVTs8O57Jw82W14/kZIGrKr YOL8mljCsdJXfZBjMs3TL0CB7bvTYGhSEDryl8YkTVIKnxP1DaPfMnm/pQmpLqO0 XwDeTVCEvOHxRRPNvjY6TAN5yxKAjgPYB8j1ZABQeKDfDB77BIBELW1aNJYrR4/o yb/hFNnl3+HZYrMrsRS3/8LXs78zErb4cUunMBIvoQDSLfDXqOhoYz3QLNtn2pUE AY3yd/2S+gB7lN24PYybyLhikE+hRU7jyMbjhv0vR7Dx/9OwAo5UeNvVMStkmEIS MQW7NNWjsqp6i0LJ4x3QFvICCf2WegDPjVLyXHnp+L20lXZqY/gZYMYEI2BlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZnAqbA3qbtxrCQRCcQrIG+TSVtYwHwYDVR0j BBgwFoAUUoCYz/4TMK0+VXvP7C2LRpL1EkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OGRjMDg0OS04M2ZiLTRjYzgtOGMyMS1iZTZjYTdhMmVkODMvMC81MjgwOThDRkZF MTMzMEFEM0U1NTdCQ0ZFQzJEOEI0NjkyRjUxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTI4MDk4Q0ZGRTEzMzBBRDNFNTU3QkNGRUMyRDhCNDY5MkY1 MTI0OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4ZGMwODQ5LTgzZmItNGNjOC04 YzIxLWJlNmNhN2EyZWQ4My8wLzMxMzUzNzJlMzYzNjJlMzUzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CNjANBgkqhkiG 9w0BAQsFAAOCAQEAFRn0hZwYRd2qbabQM3UyCvc8631TXpqKJiH8DvntdNpCLpK2 srs/SodNHfjEdavWUaqgIKGbxUWIEPYCk4B/QZmcm3fltMbjCmTd1vx4YoffxDeo dbS1/imOly5+3XnyHMOo0QullVAob6RCRLOj8hfccpGC3/ctz7Qhm6Ded/22ZKPP iKF6b3Ls70GkuLkPVq92HzucPpBMtWRg0d9kFnNlmKKby1G4OotXKm9C4Ijp6DgW lCDe+D2axop63QE7i9QmY/031JOf8C/NUM8CLZJTtyNndcltPjHwap66KXa2rdPt 3UubT7qKfHB4rVJLVKHiq9K5534wbzacqdkOfA== -----END CERTIFICATE-----Generated at Sun Jun 29 16:00:06 2025 by rpki-client