$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: xwuQA6wMGZRUxNpfJWYR3HAZEL4fIbv+QHUNr+ees+Q= Subject key identifier: 87:39:BA:E6:CC:40:3F:B6:2F:5C:B7:D2:70:62:31:93:81:30:5E:00 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 2C8F1369E94897747222E652C5FFF07F9BC3A12E Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136302e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 11:00:02 +0000 ROA not before: Sun 13 Jul 2025 10:55:02 +0000 ROA not after: Sun 12 Jul 2026 11:00:02 +0000 asID: 63859 IP address blocks: 158.140.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:8f:13:69:e9:48:97:74:72:22:e6:52:c5:ff:f0:7f:9b:c3:a1:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 10:55:02 2025 GMT Not After : Jul 12 11:00:02 2026 GMT Subject: CN=8739BAE6CC403FB62F5CB7D27062319381305E00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c2:50:7f:14:e8:b9:d4:f0:67:75:21:59:d0: 6d:c0:2a:a4:28:59:ae:e5:77:b1:05:95:d4:ed:89: cc:df:00:82:01:49:bb:3b:d6:e4:d6:1b:25:ee:7a: b0:55:de:81:2a:da:63:38:ff:cf:9e:6d:31:97:82: 20:2e:21:ae:aa:8b:f0:d5:60:b5:a4:58:3a:cc:0d: 3f:86:14:5b:86:35:56:36:ff:2a:d0:4a:3a:f7:17: e0:43:67:42:4c:4d:01:53:71:41:1a:f5:aa:fc:26: fa:62:ad:5a:4b:5f:1d:da:51:70:b7:fe:37:38:94: d6:c9:38:80:40:5c:aa:0d:47:cf:01:eb:32:3a:cb: 66:78:7f:20:a2:4c:77:04:da:e6:aa:67:7b:6e:36: e9:82:6d:47:b3:d1:6a:32:e8:8f:6d:d1:e9:b6:50: f2:64:c1:c5:10:1d:ff:a8:4a:65:78:a0:df:77:5f: 69:06:4c:d8:4b:e9:9a:6f:12:29:28:6e:db:fd:bb: 11:40:eb:4c:b2:3c:93:f8:ba:2f:dd:c5:ed:dc:2c: 03:42:58:77:7e:4f:0c:c1:0e:6d:84:38:33:e2:b4: aa:86:4c:36:4d:a3:df:15:6f:59:41:8a:ea:34:e0: 26:b8:32:85:9c:db:77:76:7b:25:05:2e:76:93:e9: 33:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:39:BA:E6:CC:40:3F:B6:2F:5C:B7:D2:70:62:31:93:81:30:5E:00 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.160.0/24 Signature Algorithm: sha256WithRSAEncryption a4:24:94:bf:91:bb:7e:7c:cb:14:49:25:8f:d7:42:b2:87:e3: 4e:18:f2:83:f1:44:f6:8b:32:11:a9:49:99:e8:1c:d0:aa:eb: fb:f2:fc:34:91:3e:b2:8a:c3:50:98:b7:77:c5:45:f9:49:fd: 52:11:6b:7c:d2:33:ec:44:db:37:33:49:75:ee:83:19:af:dd: ae:32:9a:34:cc:64:7a:13:69:10:a0:54:8b:ab:ac:77:32:d1: d4:96:2c:79:44:a7:8b:3a:72:36:de:52:63:da:6d:69:c0:d2: 06:11:85:17:07:bc:26:9c:18:a1:8c:20:25:da:2a:80:ba:12: ef:85:32:f7:0f:c9:8c:18:5e:c2:bb:ac:6c:56:51:25:4b:30: 8c:9a:f5:11:ff:25:f2:dc:06:4e:fa:0e:8c:a6:6c:55:e1:fe: 75:a4:5c:ff:31:a3:01:66:82:af:2c:93:9d:d8:bb:c5:5b:21: a2:42:6f:fb:17:ba:6e:75:b5:23:37:98:3c:98:1a:78:70:39: 79:16:55:fc:35:f3:55:0a:f0:f2:5b:ac:c7:08:85:a7:cc:61: 85:0c:b6:07:a6:9e:1d:5d:1f:17:c6:d4:33:2f:fc:52:ba:48: 33:20:6a:60:ac:7d:c1:e5:dc:63:2a:2f:32:24:16:d4:f2:13: f9:1e:da:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULI8TaelIl3RyIuZSxf/wf5vDoS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMDU1MDJaFw0yNjA3MTIxMTAwMDJaMDMxMTAvBgNV BAMTKDg3MzlCQUU2Q0M0MDNGQjYyRjVDQjdEMjcwNjIzMTkzODEzMDVFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwwlB/FOi51PBndSFZ0G3AKqQo Wa7ld7EFldTticzfAIIBSbs71uTWGyXuerBV3oEq2mM4/8+ebTGXgiAuIa6qi/DV YLWkWDrMDT+GFFuGNVY2/yrQSjr3F+BDZ0JMTQFTcUEa9ar8JvpirVpLXx3aUXC3 /jc4lNbJOIBAXKoNR88B6zI6y2Z4fyCiTHcE2uaqZ3tuNumCbUez0Woy6I9t0em2 UPJkwcUQHf+oSmV4oN93X2kGTNhL6ZpvEikobtv9uxFA60yyPJP4ui/dxe3cLANC WHd+TwzBDm2EODPitKqGTDZNo98Vb1lBiuo04Ca4MoWc23d2eyUFLnaT6TPTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhzm65sxAP7YvXLfScGIxk4EwXgAwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoygMA0GCSqG SIb3DQEBCwUAA4IBAQCkJJS/kbt+fMsUSSWP10Kyh+NOGPKD8UT2izIRqUmZ6BzQ quv78vw0kT6yisNQmLd3xUX5Sf1SEWt80jPsRNs3M0l17oMZr92uMpo0zGR6E2kQ oFSLq6x3MtHUlix5RKeLOnI23lJj2m1pwNIGEYUXB7wmnBihjCAl2iqAuhLvhTL3 D8mMGF7Cu6xsVlElSzCMmvUR/yXy3AZO+g6MpmxV4f51pFz/MaMBZoKvLJOd2LvF WyGiQm/7F7pudbUjN5g8mBp4cDl5FlX8NfNVCvDyW6zHCIWnzGGFDLYHpp4dXR8X xtQzL/xSukgzIGpgrH3B5dxjKi8yJBbU8hP5Htpt -----END CERTIFICATE-----Generated at Sat Aug 23 18:57:01 2025 by rpki-client