$ rpki-client -vvf repo-rpki.idnic.net/repo/57c05521-0338-4f31-a209-4f878bef638a/0/3135302e3234322e3137362e302f32332d3233203d3e20313532303639.roa File: 3135302e3234322e3137362e302f32332d3233203d3e20313532303639.roa (raw, json) Hash identifier: 859yRYxg6dYMZDhycmHxCWbBfEwXNU7EIcEdV25XiMg= Subject key identifier: AD:09:53:1B:9E:49:9C:4C:85:14:04:05:C8:E9:31:E0:F0:B7:09:D3 Certificate issuer: /CN=10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4 Certificate serial: 1CDB9BB82F5AAFDB12CD3582298422173ACB59E0 Authority key identifier: 10:90:2B:F3:AE:C1:65:FC:9C:C3:CD:72:AD:CA:BF:5B:BF:7B:7C:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57c05521-0338-4f31-a209-4f878bef638a/0/3135302e3234322e3137362e302f32332d3233203d3e20313532303639.roa Signing time: Thu 18 Sep 2025 02:00:01 +0000 ROA not before: Thu 18 Sep 2025 01:55:01 +0000 ROA not after: Thu 17 Sep 2026 02:00:01 +0000 asID: 152069 IP address blocks: 150.242.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57c05521-0338-4f31-a209-4f878bef638a/0/10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4.crl rsync://repo-rpki.idnic.net/repo/57c05521-0338-4f31-a209-4f878bef638a/0/10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:db:9b:b8:2f:5a:af:db:12:cd:35:82:29:84:22:17:3a:cb:59:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4 Validity Not Before: Sep 18 01:55:01 2025 GMT Not After : Sep 17 02:00:01 2026 GMT Subject: CN=AD09531B9E499C4C85140405C8E931E0F0B709D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:91:3f:7c:cd:aa:3e:d7:82:26:70:54:83:2a: 30:c4:b6:d3:79:c2:a1:2a:2c:5b:dd:4b:53:d7:ac: fe:27:dd:06:c7:3c:d4:3d:d4:b9:3f:ad:a1:ee:7a: 5a:7e:fd:55:40:2e:59:1c:83:df:62:d3:6a:b7:43: 5b:6b:26:6d:2b:1b:9e:53:c0:6c:89:fa:94:85:4e: b9:5e:01:c8:4c:53:55:71:98:2f:1b:ac:64:0e:5d: 80:91:d2:73:29:b3:dc:07:d7:1b:06:07:8a:c1:4c: 9e:ad:8c:39:0c:fc:1c:4b:2c:d1:54:d7:86:58:d8: 78:09:61:ac:95:33:e0:a5:da:16:04:23:e4:15:51: 2a:c7:3b:ba:1d:bb:0f:b3:b4:32:a0:ef:73:83:9c: 1d:8a:2a:eb:33:69:44:6f:d3:08:43:91:9d:8f:c5: 4f:48:6e:0d:94:fc:9c:d9:ad:79:46:cd:f0:b9:c2: a3:b5:f8:f6:f0:51:11:1b:65:7a:33:e6:8d:d4:66: ed:0b:5f:75:a8:71:18:6e:ba:4a:87:d1:de:88:3f: 74:79:5d:0b:35:0e:91:f7:f0:39:f8:47:22:4e:68: a1:94:30:39:88:6c:d4:20:06:0c:df:51:91:8b:e7: 9d:8f:f7:c5:8f:f7:2b:c7:b6:bb:b9:7a:58:bc:7a: d6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:09:53:1B:9E:49:9C:4C:85:14:04:05:C8:E9:31:E0:F0:B7:09:D3 X509v3 Authority Key Identifier: keyid:10:90:2B:F3:AE:C1:65:FC:9C:C3:CD:72:AD:CA:BF:5B:BF:7B:7C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57c05521-0338-4f31-a209-4f878bef638a/0/10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10902BF3AEC165FC9CC3CD72ADCABF5BBF7B7CF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57c05521-0338-4f31-a209-4f878bef638a/0/3135302e3234322e3137362e302f32332d3233203d3e20313532303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.242.176.0/23 Signature Algorithm: sha256WithRSAEncryption be:89:0e:bc:e5:cd:3b:d3:34:04:85:4b:b6:dc:c0:ac:7b:ed: f8:ea:fd:8f:88:a6:7c:68:88:e5:6f:e6:4c:6f:9f:65:30:34: bd:9a:c5:53:13:34:cd:e8:71:d1:99:0f:ea:5a:ec:68:75:89: a5:23:0f:c9:ed:c0:9d:38:24:10:b9:51:07:77:ff:43:99:ae: b5:28:4b:ad:84:83:cc:df:13:3a:8e:b6:e0:44:c4:20:50:52: 66:3e:37:b9:eb:5d:e7:b6:50:fc:56:42:09:75:b4:29:e6:17: 6c:df:10:e9:f6:f9:bc:9b:47:02:9c:3d:6e:11:2b:f3:60:af: 62:ee:b2:6a:a4:4a:0d:94:f8:7a:33:48:35:20:70:39:a3:a3: ef:66:ba:9d:55:3a:c3:23:05:15:d7:6a:c4:1c:4d:f5:6f:26: 24:94:ee:d3:0a:a0:bf:23:26:9a:5c:00:ef:f8:eb:51:47:97: 60:35:74:1f:e7:b3:41:51:97:ee:22:e7:28:14:17:54:22:a4: 11:16:0f:13:97:81:54:83:1e:e9:a4:bb:0d:0a:28:4c:08:bb: d4:07:c3:c4:25:3c:c7:19:42:8f:36:8b:0a:c8:c3:2e:f4:23: 2d:84:99:f6:4a:30:bc:88:da:6f:89:86:94:d9:01:20:6b:bc: 0a:6e:60:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHNubuC9ar9sSzTWCKYQiFzrLWeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA5MDJCRjNBRUMxNjVGQzlDQzNDRDcyQURDQUJGNUJC RjdCN0NGNDAeFw0yNTA5MTgwMTU1MDFaFw0yNjA5MTcwMjAwMDFaMDMxMTAvBgNV BAMTKEFEMDk1MzFCOUU0OTlDNEM4NTE0MDQwNUM4RTkzMUUwRjBCNzA5RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYkT98zao+14ImcFSDKjDEttN5 wqEqLFvdS1PXrP4n3QbHPNQ91Lk/raHuelp+/VVALlkcg99i02q3Q1trJm0rG55T wGyJ+pSFTrleAchMU1VxmC8brGQOXYCR0nMps9wH1xsGB4rBTJ6tjDkM/BxLLNFU 14ZY2HgJYayVM+Cl2hYEI+QVUSrHO7oduw+ztDKg73ODnB2KKuszaURv0whDkZ2P xU9Ibg2U/JzZrXlGzfC5wqO1+PbwUREbZXoz5o3UZu0LX3WocRhuukqH0d6IP3R5 XQs1DpH38Dn4RyJOaKGUMDmIbNQgBgzfUZGL552P98WP9yvHtru5eli8etZhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrQlTG55JnEyFFAQFyOkx4PC3CdMwHwYDVR0j BBgwFoAUEJAr867BZfycw81yrcq/W797fPQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2MwNTUyMS0wMzM4LTRmMzEtYTIwOS00Zjg3OGJlZjYzOGEvMC8xMDkwMkJGM0FF QzE2NUZDOUNDM0NENzJBRENBQkY1QkJGN0I3Q0Y0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA5MDJCRjNBRUMxNjVGQzlDQzNDRDcyQURDQUJGNUJCRjdC N0NGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3YzA1NTIxLTAzMzgtNGYzMS1h MjA5LTRmODc4YmVmNjM4YS8wLzMxMzUzMDJlMzIzNDMyMmUzMTM3MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzIzMDM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGW8rAwDQYJ KoZIhvcNAQELBQADggEBAL6JDrzlzTvTNASFS7bcwKx77fjq/Y+IpnxoiOVv5kxv n2UwNL2axVMTNM3ocdGZD+pa7Gh1iaUjD8ntwJ04JBC5UQd3/0OZrrUoS62Eg8zf EzqOtuBExCBQUmY+N7nrXee2UPxWQgl1tCnmF2zfEOn2+bybRwKcPW4RK/Ngr2Lu smqkSg2U+HozSDUgcDmjo+9mup1VOsMjBRXXasQcTfVvJiSU7tMKoL8jJppcAO/4 61FHl2A1dB/ns0FRl+4i5ygUF1QipBEWDxOXgVSDHumkuw0KKEwIu9QHw8QlPMcZ Qo82iwrIwy70Iy2EmfZKMLyI2m+JhpTZASBrvApuYOk= -----END CERTIFICATE-----Generated at Mon Oct 20 20:59:41 2025 by rpki-client