$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: OqFaFahRbBI+Mjvd9AWnCqh0ODvegxrErsiZfhzwKT4= Subject key identifier: 09:F6:6D:04:8B:3B:71:76:78:DB:64:C2:DA:E0:B7:53:4A:BC:50:FA Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 38665CC58C6AEF7A3BB4213E45A0F2522F1438AF Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:04 +0000 ROA not before: Sun 13 Jul 2025 11:55:04 +0000 ROA not after: Sun 12 Jul 2026 12:00:04 +0000 asID: 63859 IP address blocks: 158.140.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 11:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:66:5c:c5:8c:6a:ef:7a:3b:b4:21:3e:45:a0:f2:52:2f:14:38:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:04 2025 GMT Not After : Jul 12 12:00:04 2026 GMT Subject: CN=09F66D048B3B717678DB64C2DAE0B7534ABC50FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b4:94:61:b1:c6:48:ea:10:3c:5c:c4:0d:3d: e8:a2:eb:99:e1:ff:7e:28:4e:dc:13:6c:aa:da:b3: d2:71:15:9a:d8:78:ca:f8:b4:c4:59:d5:22:a8:49: 97:44:a6:c0:8a:fd:31:8a:10:a0:2a:2e:c8:84:b9: cc:e5:0f:8c:4a:d3:11:0e:0a:d7:33:42:36:aa:3a: 47:6c:ae:a5:ef:05:c9:82:cd:33:f9:7b:c5:f7:af: 95:cf:d2:ec:d5:13:7f:79:61:07:fd:57:59:56:85: 7c:e4:05:e9:54:f8:0c:7e:f5:88:0b:3d:34:3a:05: 01:69:b4:af:65:96:f0:29:0a:4a:1a:76:4c:b0:02: 37:af:32:d4:ad:d4:94:f5:29:d9:f0:5b:ab:7a:d2: 59:c3:61:4c:f2:30:c7:0b:de:db:58:96:c6:2f:b5: 3d:70:1b:98:d4:07:ea:4a:6e:8a:05:71:20:67:04: 0d:f3:92:8e:ac:b6:c7:7c:1b:c7:ff:bf:1d:ba:ec: ba:3a:47:97:7b:4f:0d:8e:b3:78:4b:38:1f:7b:87: 7e:5f:56:86:25:50:34:58:03:ae:54:5b:3a:1a:ef: b8:53:6f:cd:1e:d1:c3:a7:80:32:08:09:12:eb:d0: da:79:43:16:9f:90:0c:60:cc:c9:cf:46:4f:69:40: 49:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F6:6D:04:8B:3B:71:76:78:DB:64:C2:DA:E0:B7:53:4A:BC:50:FA X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.179.0/24 Signature Algorithm: sha256WithRSAEncryption b6:76:f7:4b:41:36:b9:91:99:18:d8:0c:04:31:c6:5b:56:77: ef:0a:02:13:e3:a9:39:55:d9:63:14:6d:ae:72:ee:b9:12:d3: 67:8c:f8:38:0b:01:96:8e:1a:10:13:08:5e:d1:f5:16:ad:2c: 7e:38:bc:99:1a:ff:4b:36:2b:56:2d:d4:c3:b8:fc:66:0a:37: 06:b9:22:9a:76:3a:9e:76:5a:1a:51:13:1c:16:5b:e3:24:aa: c5:7f:73:a6:64:a5:e9:f1:5f:6d:76:e2:b0:26:d6:5a:9b:b1: 8b:14:a2:0e:61:8d:22:20:c9:88:fb:76:dd:84:b9:93:44:47: 96:81:62:1d:e0:f8:f8:df:bf:ec:a2:29:46:aa:57:2e:a8:02: a3:5d:4d:fd:fb:32:c2:03:8e:4d:01:4c:6e:77:77:f4:2c:00: 28:7f:31:be:f5:6a:00:d7:13:c6:d4:bc:9a:9e:50:6d:51:55: 5f:5a:b4:cb:cf:f2:f8:04:cf:cf:7b:58:30:cb:09:32:1c:eb: 0c:82:95:f1:ef:d0:f9:e7:73:4b:2e:62:f0:37:9c:23:1a:ef: 11:59:82:b5:74:fc:ae:b5:3a:e0:bc:00:55:b1:8d:2a:27:3d: 9f:fc:35:9d:d4:04:0a:e0:8c:cc:3e:54:66:d1:6f:a3:fe:fe: 15:58:55:4c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOGZcxYxq73o7tCE+RaDyUi8UOK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDRaFw0yNjA3MTIxMjAwMDRaMDMxMTAvBgNV BAMTKDA5RjY2RDA0OEIzQjcxNzY3OERCNjRDMkRBRTBCNzUzNEFCQzUwRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVtJRhscZI6hA8XMQNPeii65nh /34oTtwTbKras9JxFZrYeMr4tMRZ1SKoSZdEpsCK/TGKEKAqLsiEuczlD4xK0xEO CtczQjaqOkdsrqXvBcmCzTP5e8X3r5XP0uzVE395YQf9V1lWhXzkBelU+Ax+9YgL PTQ6BQFptK9llvApCkoadkywAjevMtSt1JT1KdnwW6t60lnDYUzyMMcL3ttYlsYv tT1wG5jUB+pKbooFcSBnBA3zko6stsd8G8f/vx267Lo6R5d7Tw2Os3hLOB97h35f VoYlUDRYA65UWzoa77hTb80e0cOngDIICRLr0Np5QxafkAxgzMnPRk9pQEk/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCfZtBIs7cXZ422TC2uC3U0q8UPowHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyzMA0GCSqG SIb3DQEBCwUAA4IBAQC2dvdLQTa5kZkY2AwEMcZbVnfvCgIT46k5VdljFG2ucu65 EtNnjPg4CwGWjhoQEwhe0fUWrSx+OLyZGv9LNitWLdTDuPxmCjcGuSKadjqedloa URMcFlvjJKrFf3OmZKXp8V9tduKwJtZam7GLFKIOYY0iIMmI+3bdhLmTREeWgWId 4Pj437/soilGqlcuqAKjXU39+zLCA45NAUxud3f0LAAofzG+9WoA1xPG1LyanlBt UVVfWrTLz/L4BM/Pe1gwywkyHOsMgpXx79D553NLLmLwN5wjGu8RWYK1dPyutTrg vABVsY0qJz2f/DWd1AQK4IzMPlRm0W+j/v4VWFVM -----END CERTIFICATE-----Generated at Fri Aug 8 20:54:23 2025 by rpki-client