$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 3Uw/rSl4bh2agh9HaM8+kHb0YWFMWcTlJD24YRMT5OI= Subject key identifier: 9A:1B:09:E8:6D:BB:41:65:88:69:21:70:4B:6B:B8:EE:F7:62:AC:B6 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 4D7F7C38C88C2E5A070A7B3DCA0F5EEDFA5876E3 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:03 +0000 ROA not before: Sun 13 Jul 2025 11:55:03 +0000 ROA not after: Sun 12 Jul 2026 12:00:03 +0000 asID: 63859 IP address blocks: 158.140.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:7f:7c:38:c8:8c:2e:5a:07:0a:7b:3d:ca:0f:5e:ed:fa:58:76:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:03 2025 GMT Not After : Jul 12 12:00:03 2026 GMT Subject: CN=9A1B09E86DBB4165886921704B6BB8EEF762ACB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ba:4d:7e:e2:f7:f3:4f:2c:75:9f:93:4b:39: 0b:a9:bf:9f:00:a1:3b:1e:9d:4f:cd:64:e2:45:56: a2:96:39:cb:cf:f9:6c:5f:09:24:34:9b:ce:8e:ce: ca:e7:06:7b:c6:ee:3d:69:5b:2a:72:11:e2:19:78: e1:42:25:33:2a:93:2a:8d:ce:53:e4:62:42:8f:59: 0f:19:20:bc:9d:4f:62:71:52:91:c7:ca:d2:18:e9: c3:d7:22:a2:19:2f:a2:34:0d:ba:b9:73:12:d5:c9: a1:c4:d5:91:da:b0:05:36:c2:dd:58:1f:e8:7b:4b: ec:e3:3c:08:f2:96:87:0b:9c:5b:07:bd:99:4c:3d: bf:5c:5b:bc:0c:b3:23:42:82:a8:0b:29:d5:54:86: df:a6:0e:87:50:f6:30:49:e5:52:99:d7:9c:7f:87: b5:83:1e:fe:70:a4:da:bf:2a:ab:cb:86:39:ac:dc: c1:2b:37:ec:07:5a:6e:b2:c1:7a:62:66:c0:5b:d3: bb:a9:2e:3d:07:9d:5d:20:1b:61:5c:8b:54:5d:04: 18:97:b3:73:10:68:c3:72:cb:8a:8c:94:4e:ee:57: ad:6d:5c:cb:4b:af:40:ec:33:59:79:cd:7e:36:1a: 0a:61:87:e8:84:cb:c8:86:32:b6:82:5d:f8:3c:ca: bf:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1B:09:E8:6D:BB:41:65:88:69:21:70:4B:6B:B8:EE:F7:62:AC:B6 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.161.0/24 Signature Algorithm: sha256WithRSAEncryption 75:36:27:d1:ee:85:25:83:e2:0a:aa:97:4f:ba:c9:d5:84:44: c6:c3:7f:0c:05:e6:dd:9f:68:50:7c:1d:42:f2:98:9b:2e:f7: 71:73:5b:3c:6f:85:47:07:a0:64:3b:bb:b2:3d:04:79:4e:55: 87:2c:a8:3e:0b:3c:ac:74:a7:4b:3c:8c:8b:8d:54:9e:98:eb: 91:15:ba:e1:da:34:c1:27:08:3e:97:d8:f2:50:f8:76:34:b6: f2:1c:d3:2e:fc:ef:aa:3c:7a:75:b4:01:f5:b4:82:08:5b:f2: 29:d6:b3:f1:98:f8:4c:d5:8d:6e:89:52:38:b4:59:9e:50:ce: 3c:af:6c:79:59:da:3b:83:ba:ab:8f:4a:bb:4d:6e:d1:57:26: 6e:74:1e:93:24:56:09:fd:2d:c8:94:48:50:88:0b:6a:e2:63: 26:8b:82:44:02:2d:3d:d7:c1:6a:66:2a:61:12:14:0b:d9:f1: 5a:f2:af:d0:0f:f0:f1:50:91:a8:6e:c4:1d:d5:31:bc:ca:bc: 49:72:ee:79:01:9e:f7:e4:75:60:c3:3b:71:07:ad:18:3b:66: a4:ae:3c:5f:6e:8d:4e:3c:1f:ff:28:e6:bb:44:22:7c:af:fe: bd:2e:cf:31:38:de:b5:ac:7c:0f:03:b4:5d:7e:25:92:6f:94: a2:93:49:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTX98OMiMLloHCns9yg9e7fpYduMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDNaFw0yNjA3MTIxMjAwMDNaMDMxMTAvBgNV BAMTKDlBMUIwOUU4NkRCQjQxNjU4ODY5MjE3MDRCNkJCOEVFRjc2MkFDQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWuk1+4vfzTyx1n5NLOQupv58A oTsenU/NZOJFVqKWOcvP+WxfCSQ0m86OzsrnBnvG7j1pWypyEeIZeOFCJTMqkyqN zlPkYkKPWQ8ZILydT2JxUpHHytIY6cPXIqIZL6I0Dbq5cxLVyaHE1ZHasAU2wt1Y H+h7S+zjPAjylocLnFsHvZlMPb9cW7wMsyNCgqgLKdVUht+mDodQ9jBJ5VKZ15x/ h7WDHv5wpNq/KqvLhjms3MErN+wHWm6ywXpiZsBb07upLj0HnV0gG2Fci1RdBBiX s3MQaMNyy4qMlE7uV61tXMtLr0DsM1l5zX42Ggphh+iEy8iGMraCXfg8yr/lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmhsJ6G27QWWIaSFwS2u47vdirLYwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyhMA0GCSqG SIb3DQEBCwUAA4IBAQB1NifR7oUlg+IKqpdPusnVhETGw38MBebdn2hQfB1C8pib Lvdxc1s8b4VHB6BkO7uyPQR5TlWHLKg+CzysdKdLPIyLjVSemOuRFbrh2jTBJwg+ l9jyUPh2NLbyHNMu/O+qPHp1tAH1tIIIW/Ip1rPxmPhM1Y1uiVI4tFmeUM48r2x5 Wdo7g7qrj0q7TW7RVyZudB6TJFYJ/S3IlEhQiAtq4mMmi4JEAi0918FqZiphEhQL 2fFa8q/QD/DxUJGobsQd1TG8yrxJcu55AZ735HVgwztxB60YO2akrjxfbo1OPB// KOa7RCJ8r/69Ls8xON61rHwPA7RdfiWSb5Sik0mE -----END CERTIFICATE-----Generated at Sat Aug 23 16:38:53 2025 by rpki-client