$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa File: 3137352e3130362e31322e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: puOBMlRabKx1arYa8qhCGUA7BHMr63pCDZUImuR6utQ= Subject key identifier: B6:97:44:2E:B6:B7:FE:BA:3A:9A:31:CE:07:2D:37:80:51:29:9E:F7 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 0DE8F25E17C86809582706BD8BF39ED645FE444A Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa Signing time: Tue 14 Oct 2025 16:00:03 +0000 ROA not before: Tue 14 Oct 2025 15:55:03 +0000 ROA not after: Tue 13 Oct 2026 16:00:03 +0000 asID: 46023 IP address blocks: 175.106.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 18:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:e8:f2:5e:17:c8:68:09:58:27:06:bd:8b:f3:9e:d6:45:fe:44:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Oct 14 15:55:03 2025 GMT Not After : Oct 13 16:00:03 2026 GMT Subject: CN=B697442EB6B7FEBA3A9A31CE072D378051299EF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0f:cb:9f:d2:0f:b1:55:30:0c:bd:af:81:b8: 44:ed:e0:fd:00:cc:6c:36:c8:93:2e:4b:f6:88:1d: 4a:55:9b:3f:77:fc:58:e9:21:b5:41:e5:08:cf:67: e4:27:fc:02:e4:6f:80:ef:3d:70:0b:37:e4:65:a6: d2:18:4d:3f:7e:86:e0:fe:72:5e:7d:a0:05:94:79: c1:bb:74:20:9c:b8:27:17:aa:4a:dc:02:74:ce:64: 63:84:e4:88:81:b2:e4:4b:d0:8e:d2:e8:48:83:91: dd:e0:99:8f:23:16:88:19:08:42:e3:87:6d:16:01: b6:27:84:12:27:a8:2c:63:8c:68:e4:26:a8:6e:5a: bb:83:28:d2:38:60:49:34:cf:b7:04:71:30:fb:84: c3:35:b5:f7:35:9e:0b:eb:a1:a9:52:6f:42:67:f4: 7c:2e:a4:65:a1:64:9b:2f:d2:50:d0:9e:b2:5d:72: ce:fe:70:60:26:a3:de:58:99:7f:ec:5e:8a:b8:c9: 90:10:58:e3:73:b3:63:fe:12:bc:a0:1b:d2:f1:1d: ff:10:c8:bb:a6:80:b3:74:33:ad:e2:08:30:f6:58: a5:77:3c:38:d9:ee:cc:aa:25:bd:90:46:34:58:bf: 68:45:3a:73:1b:ac:f2:7d:c2:be:bf:5e:2f:08:a6: 33:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:97:44:2E:B6:B7:FE:BA:3A:9A:31:CE:07:2D:37:80:51:29:9E:F7 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.106.12.0/23 Signature Algorithm: sha256WithRSAEncryption a5:5b:ef:04:d9:9a:d0:da:83:9a:66:5c:2c:06:26:b6:d0:66: 7d:4c:a6:08:2a:c2:cb:ac:3f:e2:36:41:1e:ba:7a:d6:a9:08: cb:43:04:89:ab:92:45:8c:86:da:c3:fa:f0:39:cc:c5:db:37: c0:ac:47:cf:93:46:2c:13:65:6c:1b:90:23:b4:02:01:92:e2: d4:53:94:54:43:fb:85:1c:39:f4:eb:19:10:e1:f9:98:16:2e: d2:1b:ad:20:ec:57:12:ae:6b:98:47:fb:61:22:0a:f8:59:c4: e0:60:b0:9b:61:6a:27:b3:24:c4:99:a3:32:cc:32:20:39:29: 1e:0c:65:ef:d8:98:46:98:91:7a:8a:4d:c8:68:fb:1b:35:96: fd:54:6f:09:04:15:b0:da:ef:b2:78:83:6e:03:3b:c8:df:2c: 83:ef:3e:ed:04:a9:b3:b9:b0:35:ab:fb:b7:f4:3c:3e:51:07: d6:06:99:c9:08:b3:c4:ba:f0:f9:8f:a7:00:75:06:00:0b:25: 1a:24:af:ee:33:73:e1:6a:ae:e9:df:18:05:bb:d2:3b:0f:aa: 4c:3c:b8:9b:57:64:e8:84:3a:7d:42:9a:b7:5c:29:e4:5e:82: 0a:f4:b7:4a:f4:62:a1:f5:1c:96:67:fb:bd:93:dd:67:4a:0b: 96:9a:7e:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDejyXhfIaAlYJwa9i/Oe1kX+REowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTEwMTQxNTU1MDNaFw0yNjEwMTMxNjAwMDNaMDMxMTAvBgNV BAMTKEI2OTc0NDJFQjZCN0ZFQkEzQTlBMzFDRTA3MkQzNzgwNTEyOTlFRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKD8uf0g+xVTAMva+BuETt4P0A zGw2yJMuS/aIHUpVmz93/FjpIbVB5QjPZ+Qn/ALkb4DvPXALN+RlptIYTT9+huD+ cl59oAWUecG7dCCcuCcXqkrcAnTOZGOE5IiBsuRL0I7S6EiDkd3gmY8jFogZCELj h20WAbYnhBInqCxjjGjkJqhuWruDKNI4YEk0z7cEcTD7hMM1tfc1ngvroalSb0Jn 9HwupGWhZJsv0lDQnrJdcs7+cGAmo95YmX/sXoq4yZAQWONzs2P+ErygG9LxHf8Q yLumgLN0M63iCDD2WKV3PDjZ7syqJb2QRjRYv2hFOnMbrPJ9wr6/Xi8IpjM3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtpdELra3/ro6mjHOBy03gFEpnvcwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzczNTJlMzEzMDM2MmUzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAa9qDDANBgkqhkiG 9w0BAQsFAAOCAQEApVvvBNma0NqDmmZcLAYmttBmfUymCCrCy6w/4jZBHrp61qkI y0MEiauSRYyG2sP68DnMxds3wKxHz5NGLBNlbBuQI7QCAZLi1FOUVEP7hRw59OsZ EOH5mBYu0hutIOxXEq5rmEf7YSIK+FnE4GCwm2FqJ7MkxJmjMswyIDkpHgxl79iY RpiReopNyGj7GzWW/VRvCQQVsNrvsniDbgM7yN8sg+8+7QSps7mwNav7t/Q8PlEH 1gaZyQizxLrw+Y+nAHUGAAslGiSv7jNz4Wqu6d8YBbvSOw+qTDy4m1dk6IQ6fUKa t1wp5F6CCvS3SvRiofUclmf7vZPdZ0oLlpp+zQ== -----END CERTIFICATE-----Generated at Tue Oct 21 00:01:34 2025 by rpki-client