$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138372e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: XYbF1qXsShVp/Qs3YufMoOdacoSPbOI2JOPKDJHPIgc= Subject key identifier: 40:4E:4D:E5:1D:91:52:3C:6F:5A:E4:F9:15:D4:CE:D5:97:CC:8C:0C Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 01A94324B6499BA25E98A763A6EFB2AC2D246477 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138372e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:02 +0000 ROA not before: Sun 13 Jul 2025 11:55:02 +0000 ROA not after: Sun 12 Jul 2026 12:00:02 +0000 asID: 63859 IP address blocks: 158.140.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 11:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:a9:43:24:b6:49:9b:a2:5e:98:a7:63:a6:ef:b2:ac:2d:24:64:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:02 2025 GMT Not After : Jul 12 12:00:02 2026 GMT Subject: CN=404E4DE51D91523C6F5AE4F915D4CED597CC8C0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bc:25:57:17:1e:ad:45:f2:f2:53:f8:ea:82: 82:35:7b:9a:12:2a:5f:c9:e5:0c:19:9a:7b:d3:96: ff:27:1d:21:83:5f:13:dd:ff:3a:ae:07:10:66:e3: 76:d5:13:6a:67:47:df:60:96:87:37:d9:34:d2:04: 3e:09:82:b5:98:04:18:82:25:29:97:85:cb:07:c2: b3:e5:3f:8f:6e:98:cb:9d:e1:7f:a8:81:ae:35:d7: 87:a6:d5:34:19:ed:00:6f:6e:a0:7d:73:c6:6b:92: 5c:db:8c:3a:23:4c:8c:6e:78:0c:29:00:2b:d7:03: 1d:8a:99:6c:89:9d:63:96:44:81:9a:03:3b:f2:fd: 35:38:19:56:9b:3f:c4:f4:19:b4:41:3c:26:9b:73: 2e:5d:56:47:4c:1a:d3:df:96:74:f2:83:5c:58:d8: 9d:aa:6e:aa:d0:8a:76:e9:98:77:43:00:24:16:ad: 1b:f2:ca:c0:47:0c:46:b3:3f:6a:00:4b:d0:c5:e2: d3:9d:71:0e:f1:ed:84:e5:67:b2:8c:ea:06:9c:21: b7:66:e4:86:5d:99:d2:7e:30:3c:40:8f:d2:b6:fb: a4:74:3f:ac:69:2f:16:b8:a3:df:38:f5:28:d1:8e: c2:5e:90:0d:49:9f:89:c5:f5:19:0d:05:27:b8:b1: 03:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4E:4D:E5:1D:91:52:3C:6F:5A:E4:F9:15:D4:CE:D5:97:CC:8C:0C X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.187.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:6c:b5:09:b4:fc:11:e2:ee:62:50:6a:62:2a:8e:5e:07:71: e4:89:1a:ae:3e:77:5f:43:b0:f5:38:ae:5c:ff:1f:44:91:b8: e6:9d:7b:73:a5:37:29:a2:10:76:e2:d0:1d:2a:09:b3:23:a9: 5c:6e:f1:84:4a:60:11:40:3a:0a:93:73:0d:0c:b1:e9:9f:d9: 37:80:63:0e:8d:ff:d0:bd:af:8d:32:61:88:8f:8f:f6:16:7b: 3b:80:2b:2a:10:fa:1a:af:e8:a1:2c:17:41:0f:a6:b0:31:00: 29:27:b1:53:48:44:8c:63:a6:2d:64:46:7b:b6:5b:f8:95:1b: 38:5f:3a:b2:37:02:6b:e4:c3:0b:6a:59:2a:00:7c:d0:0c:3b: 20:e2:79:1a:5c:45:7c:8a:e1:19:ee:5a:94:1f:db:c1:d0:34: 2e:d9:49:a9:1e:9c:56:25:bb:5a:a6:88:24:bb:6b:66:d9:74: c5:28:23:f8:2b:a5:8c:d6:63:0c:cb:c8:3f:f2:64:e3:1c:92: a2:c0:82:5d:c2:6a:e4:2c:55:1f:4a:2c:f0:52:a7:70:90:f7: 8f:a6:ba:e4:ae:23:d3:1e:56:87:bf:d9:64:a2:05:27:72:41: d7:8a:19:b4:77:2f:3f:0a:ca:8d:21:a3:28:3b:72:55:48:bc: a5:f2:60:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAalDJLZJm6JemKdjpu+yrC0kZHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDJaFw0yNjA3MTIxMjAwMDJaMDMxMTAvBgNV BAMTKDQwNEU0REU1MUQ5MTUyM0M2RjVBRTRGOTE1RDRDRUQ1OTdDQzhDMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWvCVXFx6tRfLyU/jqgoI1e5oS Kl/J5QwZmnvTlv8nHSGDXxPd/zquBxBm43bVE2pnR99gloc32TTSBD4JgrWYBBiC JSmXhcsHwrPlP49umMud4X+oga4114em1TQZ7QBvbqB9c8ZrklzbjDojTIxueAwp ACvXAx2KmWyJnWOWRIGaAzvy/TU4GVabP8T0GbRBPCabcy5dVkdMGtPflnTyg1xY 2J2qbqrQinbpmHdDACQWrRvyysBHDEazP2oAS9DF4tOdcQ7x7YTlZ7KM6gacIbdm 5IZdmdJ+MDxAj9K2+6R0P6xpLxa4o9849SjRjsJekA1Jn4nF9RkNBSe4sQPnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQE5N5R2RUjxvWuT5FdTO1ZfMjAwwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy7MA0GCSqG SIb3DQEBCwUAA4IBAQBNbLUJtPwR4u5iUGpiKo5eB3HkiRquPndfQ7D1OK5c/x9E kbjmnXtzpTcpohB24tAdKgmzI6lcbvGESmARQDoKk3MNDLHpn9k3gGMOjf/Qva+N MmGIj4/2Fns7gCsqEPoar+ihLBdBD6awMQApJ7FTSESMY6YtZEZ7tlv4lRs4Xzqy NwJr5MMLalkqAHzQDDsg4nkaXEV8iuEZ7lqUH9vB0DQu2UmpHpxWJbtapogku2tm 2XTFKCP4K6WM1mMMy8g/8mTjHJKiwIJdwmrkLFUfSizwUqdwkPePprrkriPTHlaH v9lkogUnckHXihm0dy8/CsqNIaMoO3JVSLyl8mBc -----END CERTIFICATE-----Generated at Fri Aug 8 19:30:18 2025 by rpki-client