$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: nzte34eMkvGI5OWfd2QmHW5GND/3VKTFBpmC6ns891s= Subject key identifier: F1:26:AE:B9:70:1E:48:D4:D2:6D:53:05:3C:A5:CB:49:D6:7E:90:59 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 09ACDCA4D757BC34A7C55CFA3E3E19357DF6535B Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:05 +0000 ROA not before: Sun 13 Jul 2025 11:55:05 +0000 ROA not after: Sun 12 Jul 2026 12:00:05 +0000 asID: 63859 IP address blocks: 158.140.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ac:dc:a4:d7:57:bc:34:a7:c5:5c:fa:3e:3e:19:35:7d:f6:53:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:05 2025 GMT Not After : Jul 12 12:00:05 2026 GMT Subject: CN=F126AEB9701E48D4D26D53053CA5CB49D67E9059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:47:f4:2b:26:28:35:62:f2:c5:33:ac:7f:d4: 4e:b6:5f:83:c7:99:1b:8d:15:00:76:0e:1a:04:cd: 0e:d4:f9:9a:39:2e:11:a7:7b:78:7e:6f:16:54:1c: e6:31:e0:59:0d:af:dd:b4:a3:ca:4d:4a:75:43:16: a0:f8:de:b0:93:61:71:1a:9c:87:87:61:f0:4b:fe: e2:20:50:4d:17:1b:af:98:c6:b3:e8:84:26:75:db: b0:a9:b4:b6:05:00:e8:dd:f5:79:e0:68:c8:ca:f7: ad:67:62:78:d5:6d:e9:df:50:47:73:56:82:0a:e5: 2b:d3:27:9b:74:f0:ab:1a:f7:bd:61:99:77:be:19: a5:bb:38:7e:32:51:f4:c5:72:7d:95:84:d2:0f:10: 79:ed:43:2c:b2:f5:46:1a:b9:45:d8:f1:31:2b:15: 07:b7:42:48:aa:85:b6:02:10:ee:e9:22:18:fd:05: 23:46:38:69:f6:f0:8a:5d:14:29:75:b5:00:8f:51: 72:bb:d7:7b:55:fb:e8:7b:d0:31:8b:83:cd:92:38: 3c:78:d1:bf:67:e1:54:45:6e:e2:75:15:22:cd:45: e9:c0:09:cc:7a:40:c2:26:cd:6a:f5:35:9a:66:1c: 0c:ad:86:e7:63:da:4d:77:a9:34:c9:6f:fa:44:18: 1f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:26:AE:B9:70:1E:48:D4:D2:6D:53:05:3C:A5:CB:49:D6:7E:90:59 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.167.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:cd:2f:98:c2:47:62:a8:5b:d3:a1:70:d5:7e:68:51:5d:0f: 87:ca:00:e6:de:91:38:e2:23:9c:22:4f:49:36:58:3b:47:ff: c1:fd:6f:af:3b:97:86:06:cb:61:c6:f8:02:d0:fd:5b:3f:5a: 4b:72:5c:0b:ec:72:aa:55:78:ae:c3:24:46:09:ed:02:2d:4d: 92:e6:b5:ff:92:e8:19:64:ca:95:fb:50:0a:3f:6e:1d:d1:34: 10:5c:09:75:19:6d:10:37:f7:d1:9c:48:86:a5:b0:c5:f0:de: e7:6d:e0:0e:b4:31:5f:d5:ed:d9:c5:19:ad:a4:8b:be:4d:6d: f3:b9:63:07:2d:1a:2b:d5:73:bf:5f:34:55:98:5e:57:e3:03: ae:9e:e8:1a:52:6b:6a:34:80:5f:51:02:28:82:a2:6c:fd:a5: 8b:92:86:ce:cb:eb:2c:dd:36:44:7c:e6:24:80:8b:65:f0:85: 0b:b2:5a:a0:bf:00:75:e2:cc:66:4e:bc:7e:ee:74:68:be:1e: cd:2e:71:5e:00:fd:36:49:b1:63:b8:0c:78:94:00:17:19:d1: 97:ac:c1:65:59:79:17:44:a7:45:e5:9b:ee:c3:4c:42:27:bb: d2:a8:4e:77:c9:cf:1f:94:5b:25:56:78:3d:13:d7:6a:15:fa: d8:ea:96:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCazcpNdXvDSnxVz6Pj4ZNX32U1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDVaFw0yNjA3MTIxMjAwMDVaMDMxMTAvBgNV BAMTKEYxMjZBRUI5NzAxRTQ4RDREMjZENTMwNTNDQTVDQjQ5RDY3RTkwNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0R/QrJig1YvLFM6x/1E62X4PH mRuNFQB2DhoEzQ7U+Zo5LhGne3h+bxZUHOYx4FkNr920o8pNSnVDFqD43rCTYXEa nIeHYfBL/uIgUE0XG6+YxrPohCZ127CptLYFAOjd9XngaMjK961nYnjVbenfUEdz VoIK5SvTJ5t08Ksa971hmXe+GaW7OH4yUfTFcn2VhNIPEHntQyyy9UYauUXY8TEr FQe3QkiqhbYCEO7pIhj9BSNGOGn28IpdFCl1tQCPUXK713tV++h70DGLg82SODx4 0b9n4VRFbuJ1FSLNRenACcx6QMImzWr1NZpmHAythudj2k13qTTJb/pEGB/BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8SauuXAeSNTSbVMFPKXLSdZ+kFkwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoynMA0GCSqG SIb3DQEBCwUAA4IBAQAfzS+YwkdiqFvToXDVfmhRXQ+HygDm3pE44iOcIk9JNlg7 R//B/W+vO5eGBsthxvgC0P1bP1pLclwL7HKqVXiuwyRGCe0CLU2S5rX/kugZZMqV +1AKP24d0TQQXAl1GW0QN/fRnEiGpbDF8N7nbeAOtDFf1e3ZxRmtpIu+TW3zuWMH LRor1XO/XzRVmF5X4wOunugaUmtqNIBfUQIogqJs/aWLkobOy+ss3TZEfOYkgItl 8IULslqgvwB14sxmTrx+7nRovh7NLnFeAP02SbFjuAx4lAAXGdGXrMFlWXkXRKdF 5Zvuw0xCJ7vSqE53yc8flFslVng9E9dqFfrY6pYP -----END CERTIFICATE-----Generated at Sat Aug 23 18:56:05 2025 by rpki-client