$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e382e302f32332d3234203d3e203436303233.roa File: 3137352e3130362e382e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: MgMzZhpXSVdRb7dy5DImnXaGG5aUkB79RtHA8qW/5rc= Subject key identifier: F4:CE:B0:EA:C5:03:61:71:EA:53:3C:A0:FC:5B:A3:9F:C6:8A:0B:85 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 2E7444C410AA81956EA8B242177641219C80120A Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e382e302f32332d3234203d3e203436303233.roa Signing time: Tue 14 Oct 2025 16:00:03 +0000 ROA not before: Tue 14 Oct 2025 15:55:03 +0000 ROA not after: Tue 13 Oct 2026 16:00:03 +0000 asID: 46023 IP address blocks: 175.106.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 18:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:74:44:c4:10:aa:81:95:6e:a8:b2:42:17:76:41:21:9c:80:12:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Oct 14 15:55:03 2025 GMT Not After : Oct 13 16:00:03 2026 GMT Subject: CN=F4CEB0EAC5036171EA533CA0FC5BA39FC68A0B85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:bd:8a:8b:e0:13:9c:79:e3:62:ac:10:98: 84:8c:2a:d8:97:79:ed:3f:d5:85:a2:f9:0e:16:2c: ec:f2:c8:fa:c1:17:49:cd:77:67:10:ca:72:33:1b: a3:6f:52:4a:90:15:ae:79:e7:d9:56:56:9d:a9:7d: 4c:a5:f9:6b:4d:b1:c4:1d:55:5d:bd:42:32:54:08: f2:3b:7a:d3:c2:80:43:61:90:4a:1f:62:c4:6c:99: 1f:90:2d:9c:42:aa:63:d3:fd:2e:31:eb:52:a8:ed: 9f:21:91:ab:b8:ef:0b:ad:9c:fc:ec:1f:aa:af:97: 32:2f:6d:60:17:2d:5e:54:c3:84:58:d0:9f:05:8e: 0c:ef:45:93:b0:e5:10:81:0b:9b:ab:b8:80:d7:1f: 44:72:dc:47:ea:01:7f:c1:38:5d:18:64:cd:8f:86: 30:c8:22:21:2c:b8:cd:a2:4f:82:d7:a3:16:a9:94: 00:a6:6e:18:23:42:6e:b8:33:c7:e1:1a:c5:30:96: fd:73:68:a9:2d:4f:29:48:82:dc:4a:dd:ba:7a:a2: dd:b8:ac:b7:f6:23:bc:64:76:72:9c:3e:df:c4:9f: fc:26:f5:de:6e:d7:66:b0:a1:32:9a:ba:a8:89:06: fc:d0:c4:ba:a3:6e:47:fd:99:29:9b:bf:dc:49:10: 9d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:CE:B0:EA:C5:03:61:71:EA:53:3C:A0:FC:5B:A3:9F:C6:8A:0B:85 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e382e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.106.8.0/23 Signature Algorithm: sha256WithRSAEncryption 95:39:64:df:22:be:4d:e7:6c:67:88:fe:f7:0d:fc:0a:89:34: e7:e7:6a:56:4e:16:9d:d4:0e:ed:0b:ca:6e:d9:7f:d9:f5:e9: ab:99:53:ff:e2:e2:18:de:5e:5a:42:cf:91:99:b9:64:a9:91: 06:08:32:dd:8f:b5:d0:94:a9:12:56:80:44:11:98:c8:9b:17: ab:8e:22:3a:02:f2:2c:20:5e:7f:4b:6f:79:3a:7f:b2:bb:bd: 93:0f:e7:5a:88:5e:4e:36:ec:48:8f:eb:54:48:23:00:44:c8: 86:58:1d:9f:00:b3:01:52:92:45:93:ed:aa:32:b2:6a:04:fe: a2:07:1d:41:61:38:5d:9e:12:f5:4b:d2:fa:29:80:d3:49:56: bd:59:4b:89:d9:48:b5:f7:d9:8e:85:71:d7:43:04:93:9d:0a: c4:aa:f1:58:b5:d2:34:84:e0:5a:85:cf:be:6b:a2:a6:32:8a: 76:8a:d9:dd:3e:fa:1e:29:db:33:a7:e7:7d:b0:5b:31:21:d1: c8:a6:cd:5e:2d:73:38:89:ec:e9:7d:1f:4f:0e:b2:38:9f:f4: f0:dd:16:e8:77:74:23:38:3a:7b:b8:76:ee:0a:2e:15:8a:55: 2f:b3:98:85:0a:ac:17:70:2e:3e:e2:e0:f8:1f:05:10:38:10: 0d:f7:83:84 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULnRExBCqgZVuqLJCF3ZBIZyAEgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTEwMTQxNTU1MDNaFw0yNjEwMTMxNjAwMDNaMDMxMTAvBgNV BAMTKEY0Q0VCMEVBQzUwMzYxNzFFQTUzM0NBMEZDNUJBMzlGQzY4QTBCODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAyb2Ki+ATnHnjYqwQmISMKtiX ee0/1YWi+Q4WLOzyyPrBF0nNd2cQynIzG6NvUkqQFa5559lWVp2pfUyl+WtNscQd VV29QjJUCPI7etPCgENhkEofYsRsmR+QLZxCqmPT/S4x61Ko7Z8hkau47wutnPzs H6qvlzIvbWAXLV5Uw4RY0J8FjgzvRZOw5RCBC5uruIDXH0Ry3EfqAX/BOF0YZM2P hjDIIiEsuM2iT4LXoxaplACmbhgjQm64M8fhGsUwlv1zaKktTylIgtxK3bp6ot24 rLf2I7xkdnKcPt/En/wm9d5u12awoTKauqiJBvzQxLqjbkf9mSmbv9xJEJ13AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9M6w6sUDYXHqUzyg/Fujn8aKC4UwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzczNTJlMzEzMDM2MmUzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGvaggwDQYJKoZIhvcN AQELBQADggEBAJU5ZN8ivk3nbGeI/vcN/AqJNOfnalZOFp3UDu0Lym7Zf9n16auZ U//i4hjeXlpCz5GZuWSpkQYIMt2PtdCUqRJWgEQRmMibF6uOIjoC8iwgXn9Lb3k6 f7K7vZMP51qIXk427EiP61RIIwBEyIZYHZ8AswFSkkWT7aoysmoE/qIHHUFhOF2e EvVL0vopgNNJVr1ZS4nZSLX32Y6FcddDBJOdCsSq8Vi10jSE4FqFz75roqYyinaK 2d0++h4p2zOn532wWzEh0cimzV4tcziJ7Ol9H08Osjif9PDdFuh3dCM4Onu4du4K LhWKVS+zmIUKrBdwLj7i4PgfBRA4EA33g4Q= -----END CERTIFICATE-----Generated at Mon Oct 20 19:08:47 2025 by rpki-client