$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa File: 3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa (raw, json) Hash identifier: Jfww3RbHa7geS4Gb4ZZD8sy4SrKKqpxZdBTdTpaKKZA= Subject key identifier: 70:4E:05:F7:08:CA:A7:1C:4E:42:C9:42:9B:66:3C:F4:37:9D:83:F5 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 525BE948123AAF72926FD55A08CE95106FAE108D Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa Signing time: Fri 26 Sep 2025 06:02:25 +0000 ROA not before: Fri 26 Sep 2025 05:57:25 +0000 ROA not after: Fri 25 Sep 2026 06:02:25 +0000 asID: 63859 IP address blocks: 158.140.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:5b:e9:48:12:3a:af:72:92:6f:d5:5a:08:ce:95:10:6f:ae:10:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 26 05:57:25 2025 GMT Not After : Sep 25 06:02:25 2026 GMT Subject: CN=704E05F708CAA71C4E42C9429B663CF4379D83F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:46:f3:de:a4:4c:79:9c:4b:0a:08:8e:cd:e8: d3:b3:cd:b8:24:9c:b6:d6:7c:0b:df:b7:93:22:74: e2:7f:80:73:4a:36:51:35:84:20:f4:01:9b:7a:d7: ef:3f:48:25:f4:f5:27:77:91:16:52:c7:86:f2:d3: bc:fc:f4:02:82:af:24:81:73:9a:bd:f0:d2:d2:e1: 57:fa:de:82:3e:3a:15:f8:e7:6a:95:e1:6b:10:c1: 2b:a5:d6:26:c7:90:29:48:02:01:5b:9b:6a:9c:a9: ce:d9:4f:92:0f:eb:45:34:60:46:24:14:92:1e:d3: dc:a6:7c:24:b8:23:c8:39:0c:1e:94:de:0b:7e:78: 11:d9:31:49:20:6c:b6:59:19:68:7b:ba:3e:c0:e9: 28:50:9e:9c:bb:82:bd:a2:4e:a2:a5:1e:6a:3a:c2: 33:c5:58:82:d4:9a:d3:4f:46:aa:d2:c6:41:3a:f3: 4b:d0:27:48:67:74:9d:92:94:3a:83:de:52:39:8a: 7c:5d:c7:27:37:b0:77:52:e2:f5:9e:6a:00:84:d0: 95:97:f3:b2:5e:2f:c9:76:f6:fb:8c:e7:41:c9:d1: 5b:4e:8e:57:05:7d:3e:89:e3:76:d7:5a:98:ec:50: 2b:cf:95:77:de:bb:94:ee:b2:bb:fa:2c:62:10:a5: 2a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4E:05:F7:08:CA:A7:1C:4E:42:C9:42:9B:66:3C:F4:37:9D:83:F5 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.190.0/23 Signature Algorithm: sha256WithRSAEncryption 38:00:1a:22:9a:5c:b7:1b:03:0f:be:3c:99:96:cc:c7:97:bf: 4e:e8:f2:ab:1e:99:47:80:1e:99:0c:41:1c:c1:05:e2:ba:56: e2:7f:5e:2a:90:6b:9b:8a:ab:b4:2f:8e:9a:44:69:6a:cf:4c: 2a:c1:96:9f:1a:6c:5f:8b:ba:e2:2e:e6:27:5d:e2:ea:e4:9e: ec:74:1a:4c:05:51:cf:95:ab:9a:aa:79:a3:b0:91:4a:fd:22: 04:e8:05:a3:ce:8e:bf:98:8a:0c:60:2c:92:c3:2f:62:ee:6d: e0:d7:3b:10:37:0b:b2:52:2f:84:6b:d2:6c:05:3a:04:cb:45: 11:30:a1:85:8f:ca:25:4a:57:5b:48:18:0d:64:cf:cb:13:90: 25:06:fa:da:07:93:c4:fa:22:b3:8a:d1:f6:d1:49:05:6d:78: 76:a1:0c:c6:57:f7:49:12:d2:d0:80:56:02:54:81:06:2d:ee: 8f:6e:20:f7:00:1e:1b:d4:b9:15:2e:52:0e:55:d3:88:ae:f5: 2e:8a:f4:2d:17:81:87:7d:09:9d:23:81:5a:27:f8:91:46:ed: b9:57:bf:c4:28:c5:f4:35:c6:76:88:45:2c:ba:b5:c2:65:f0: 89:99:d2:a3:03:6a:00:38:50:4c:bd:a7:c5:c2:48:fa:11:bc: 3b:af:e1:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUlvpSBI6r3KSb9VaCM6VEG+uEI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA5MjYwNTU3MjVaFw0yNjA5MjUwNjAyMjVaMDMxMTAvBgNV BAMTKDcwNEUwNUY3MDhDQUE3MUM0RTQyQzk0MjlCNjYzQ0Y0Mzc5RDgzRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDRvPepEx5nEsKCI7N6NOzzbgk nLbWfAvft5MidOJ/gHNKNlE1hCD0AZt61+8/SCX09Sd3kRZSx4by07z89AKCrySB c5q98NLS4Vf63oI+OhX452qV4WsQwSul1ibHkClIAgFbm2qcqc7ZT5IP60U0YEYk FJIe09ymfCS4I8g5DB6U3gt+eBHZMUkgbLZZGWh7uj7A6ShQnpy7gr2iTqKlHmo6 wjPFWILUmtNPRqrSxkE680vQJ0hndJ2SlDqD3lI5inxdxyc3sHdS4vWeagCE0JWX 87JeL8l29vuM50HJ0VtOjlcFfT6J43bXWpjsUCvPlXfeu5Tusrv6LGIQpSqRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcE4F9wjKpxxOQslCm2Y89Dedg/UwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM5MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnoy+MA0GCSqG SIb3DQEBCwUAA4IBAQA4ABoimly3GwMPvjyZlszHl79O6PKrHplHgB6ZDEEcwQXi ulbif14qkGubiqu0L46aRGlqz0wqwZafGmxfi7riLuYnXeLq5J7sdBpMBVHPlaua qnmjsJFK/SIE6AWjzo6/mIoMYCySwy9i7m3g1zsQNwuyUi+Ea9JsBToEy0URMKGF j8olSldbSBgNZM/LE5AlBvraB5PE+iKzitH20UkFbXh2oQzGV/dJEtLQgFYCVIEG Le6PbiD3AB4b1LkVLlIOVdOIrvUuivQtF4GHfQmdI4FaJ/iRRu25V7/EKMX0NcZ2 iEUsurXCZfCJmdKjA2oAOFBMvafFwkj6Ebw7r+F7 -----END CERTIFICATE-----Generated at Mon Oct 20 04:19:38 2025 by rpki-client