$ rpki-client -vvf repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3134362e3139362e34302e302f32322d3234203d3e20313332363532.roa File: 3134362e3139362e34302e302f32322d3234203d3e20313332363532.roa (raw, json) Hash identifier: n+xUq9a7n5f6ndT7big4scouCH78ut4B4QszfPAlm80= Subject key identifier: 3C:6D:98:97:90:55:A0:E3:6B:01:57:60:E7:03:2A:94:B5:DA:F7:6F Certificate issuer: /CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF Certificate serial: 6FDFA3CC648FD5D4B05D19331C889A16A03C3DCB Authority key identifier: 2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3134362e3139362e34302e302f32322d3234203d3e20313332363532.roa Signing time: Tue 22 Jul 2025 07:00:03 +0000 ROA not before: Tue 22 Jul 2025 06:55:03 +0000 ROA not after: Tue 21 Jul 2026 07:00:03 +0000 asID: 132652 IP address blocks: 146.196.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.crl rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 10:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:df:a3:cc:64:8f:d5:d4:b0:5d:19:33:1c:88:9a:16:a0:3c:3d:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF Validity Not Before: Jul 22 06:55:03 2025 GMT Not After : Jul 21 07:00:03 2026 GMT Subject: CN=3C6D98979055A0E36B015760E7032A94B5DAF76F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:fb:4b:17:8f:4d:06:c6:bf:3b:42:1d:0c: f9:19:40:19:1d:81:76:70:b1:6d:7f:a2:ce:ed:1e: 70:af:24:57:b9:75:88:2a:ac:66:6a:ac:63:93:14: d9:8f:3b:ba:7d:7a:86:ae:bb:ff:d1:f1:27:64:57: ba:bf:0a:e2:b9:fd:e5:21:ac:b8:ee:d3:21:e0:65: 5c:d6:9d:7b:8e:5f:52:13:ac:a8:60:88:58:31:f7: 10:6e:c0:3f:42:31:a3:04:e3:f4:39:0c:b2:2d:a4: f8:57:19:a4:0d:58:6e:f0:2a:76:da:b6:7b:27:e1: c8:68:2a:d3:8b:7d:8d:ea:93:df:d2:cf:63:8a:d2: 80:17:3a:18:bf:db:34:84:cd:31:a8:b6:39:16:9e: 89:15:b2:1b:95:24:c7:63:be:f6:e2:cd:e8:00:dd: f8:5e:5b:d9:3f:f4:e4:74:99:33:91:8a:d1:13:5d: 79:dc:ac:51:ce:36:d1:da:0f:b7:c6:6f:35:97:c9: 53:82:4d:47:59:bd:8a:7c:ad:ba:a7:53:ab:d6:ad: a7:4a:40:93:2e:08:85:e7:3a:51:c9:94:b1:77:e7: 0d:6a:72:22:91:d1:c1:1c:50:f0:ab:3d:ab:5d:1c: 3a:72:86:1b:e1:c7:db:c5:f1:6a:62:2a:ea:b0:93: 11:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6D:98:97:90:55:A0:E3:6B:01:57:60:E7:03:2A:94:B5:DA:F7:6F X509v3 Authority Key Identifier: keyid:2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3134362e3139362e34302e302f32322d3234203d3e20313332363532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.196.40.0/22 Signature Algorithm: sha256WithRSAEncryption 51:c4:77:7c:0e:00:5f:5e:69:94:62:da:5f:03:04:6d:61:dd: fb:26:7c:5f:d0:66:45:33:05:fa:43:83:e4:f6:b3:e1:c0:69: 9c:e3:dc:83:43:f8:8b:ce:80:68:ab:a5:d4:ff:d3:b4:3e:00: 5c:80:5f:69:20:cf:a0:35:21:0a:7f:5e:7d:14:70:98:b5:5f: 90:dc:ae:ab:a6:20:91:72:22:2e:37:8a:a1:ed:fc:4d:e4:38: 00:4a:c4:db:da:9a:40:0d:6c:1b:8c:17:c8:ce:21:23:ca:6b: 12:9f:cf:7b:cd:db:09:21:30:a0:8b:bd:b9:7d:31:98:da:0b: 87:de:35:07:86:91:02:e3:f5:b5:db:e3:48:2b:e2:06:dc:0f: ee:d0:fe:20:19:4a:d1:25:c1:07:7d:01:df:5a:9d:67:4a:b4: 35:d9:a1:64:22:3e:63:a8:23:a7:89:70:73:52:b6:e9:0b:84: 4c:5e:bd:cf:e4:ff:c8:b3:ce:1d:e3:a3:3b:f4:bf:ff:b1:87: db:f2:4f:10:f9:86:05:31:f7:6d:4d:6b:39:a5:d9:6e:0f:1c: 15:3a:f0:2a:19:12:34:41:b2:ca:7f:66:de:da:fc:e0:c5:62: 3e:50:90:2a:e2:4a:3a:ef:d4:31:b1:c8:da:42:48:ad:4f:a2: 13:90:0c:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb9+jzGSP1dSwXRkzHIiaFqA8PcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkUxOUI5NzQwNUQ0OThEM0IwNjdBOUExMDA5Q0RDMUUw MkZCMTFDRjAeFw0yNTA3MjIwNjU1MDNaFw0yNjA3MjEwNzAwMDNaMDMxMTAvBgNV BAMTKDNDNkQ5ODk3OTA1NUEwRTM2QjAxNTc2MEU3MDMyQTk0QjVEQUY3NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx1vtLF49NBsa/O0IdDPkZQBkd gXZwsW1/os7tHnCvJFe5dYgqrGZqrGOTFNmPO7p9eoauu//R8SdkV7q/CuK5/eUh rLju0yHgZVzWnXuOX1ITrKhgiFgx9xBuwD9CMaME4/Q5DLItpPhXGaQNWG7wKnba tnsn4choKtOLfY3qk9/Sz2OK0oAXOhi/2zSEzTGotjkWnokVshuVJMdjvvbizegA 3fheW9k/9OR0mTORitETXXncrFHONtHaD7fGbzWXyVOCTUdZvYp8rbqnU6vWradK QJMuCIXnOlHJlLF35w1qciKR0cEcUPCrPatdHDpyhhvhx9vF8WpiKuqwkxGNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPG2Yl5BVoONrAVdg5wMqlLXa928wHwYDVR0j BBgwFoAULhm5dAXUmNOwZ6mhAJzcHgL7Ec8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjYzMmEyYy00MDZlLTQ1ZDctYTAyOC0yNjA0NzRjNzcwMzgvMC8yRTE5Qjk3NDA1 RDQ5OEQzQjA2N0E5QTEwMDlDREMxRTAyRkIxMUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkUxOUI5NzQwNUQ0OThEM0IwNjdBOUExMDA5Q0RDMUUwMkZC MTFDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiNjMyYTJjLTQwNmUtNDVkNy1h MDI4LTI2MDQ3NGM3NzAzOC8wLzMxMzQzNjJlMzEzOTM2MmUzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCksQoMA0GCSqG SIb3DQEBCwUAA4IBAQBRxHd8DgBfXmmUYtpfAwRtYd37Jnxf0GZFMwX6Q4Pk9rPh wGmc49yDQ/iLzoBoq6XU/9O0PgBcgF9pIM+gNSEKf159FHCYtV+Q3K6rpiCRciIu N4qh7fxN5DgASsTb2ppADWwbjBfIziEjymsSn897zdsJITCgi725fTGY2guH3jUH hpEC4/W12+NIK+IG3A/u0P4gGUrRJcEHfQHfWp1nSrQ12aFkIj5jqCOniXBzUrbp C4RMXr3P5P/Is84d46M79L//sYfb8k8Q+YYFMfdtTWs5pdluDxwVOvAqGRI0QbLK f2be2vzgxWI+UJAq4ko679QxscjaQkitT6ITkAzI -----END CERTIFICATE-----Generated at Thu Aug 7 12:53:15 2025 by rpki-client