$ rpki-client -vvf repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/3138302e3233352e3134382e302f32322d3234203d3e203435373331.roa File: 3138302e3233352e3134382e302f32322d3234203d3e203435373331.roa (raw, json) Hash identifier: HxGB/bUslsxHfeCfoct3SORx0s0Y1RxTBE2WHAbQK5w= Subject key identifier: E9:66:3E:B6:AA:FC:EE:9A:0A:82:83:95:3E:2C:CA:AC:51:A4:4D:7E Certificate issuer: /CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD Certificate serial: 7CC4436A1EF4D9EBA94D7C1478A8C519C5488A77 Authority key identifier: 81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/3138302e3233352e3134382e302f32322d3234203d3e203435373331.roa Signing time: Mon 14 Jul 2025 09:00:02 +0000 ROA not before: Mon 14 Jul 2025 08:55:02 +0000 ROA not after: Mon 13 Jul 2026 09:00:02 +0000 asID: 45731 IP address blocks: 180.235.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.crl rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 09:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:c4:43:6a:1e:f4:d9:eb:a9:4d:7c:14:78:a8:c5:19:c5:48:8a:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD Validity Not Before: Jul 14 08:55:02 2025 GMT Not After : Jul 13 09:00:02 2026 GMT Subject: CN=E9663EB6AAFCEE9A0A8283953E2CCAAC51A44D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2b:34:73:0c:6c:97:ff:e4:e0:4c:00:32:83: cf:77:39:80:08:39:83:6f:12:d0:01:dd:e5:75:a9: 95:2c:7f:67:1f:0c:85:54:a6:e1:32:af:a3:cf:e7: 35:eb:83:4b:8b:73:db:d3:9f:e4:d6:41:64:89:e4: 09:6e:8f:2f:05:ba:ab:52:0c:29:08:44:c3:c8:4e: e7:fd:54:ec:e5:c2:d5:74:16:13:bd:59:4a:81:4c: 05:2f:26:58:0f:84:b0:09:19:3d:94:e2:f9:be:33: d9:b2:70:13:1c:64:5f:b1:9a:84:6d:15:8e:df:90: e4:fd:4d:8a:c4:ed:d8:10:24:03:0f:65:59:7d:65: c6:a5:cd:f2:63:8e:cb:19:38:9f:de:c1:e8:26:31: 4c:57:72:23:4b:a5:ee:3c:10:32:7a:40:bb:04:97: c3:d6:9c:92:b6:3e:7b:4f:f1:e8:df:5c:a3:be:ca: 11:16:04:ba:c8:6d:53:fc:b0:9d:c5:3d:66:3e:d6: f6:61:ef:05:56:91:dc:33:c5:35:7f:04:55:85:e2: 29:4c:30:72:d4:25:b2:6c:7f:d5:49:4c:38:f6:eb: 27:6b:b5:48:fc:5e:7f:24:62:a7:40:ea:49:dd:77: 93:8a:6d:2c:c6:3e:b7:2c:68:ca:ba:5c:08:5d:0d: 2f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:66:3E:B6:AA:FC:EE:9A:0A:82:83:95:3E:2C:CA:AC:51:A4:4D:7E X509v3 Authority Key Identifier: keyid:81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/3138302e3233352e3134382e302f32322d3234203d3e203435373331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.235.148.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:91:05:1a:fd:34:82:c6:77:3d:28:63:2a:a5:49:21:09:07: 55:64:17:4b:e1:f4:93:c8:33:f3:c1:f3:36:6d:52:1c:9b:51: 3e:3a:5e:ae:77:1a:6c:73:0e:b2:4e:ac:93:02:79:7d:7f:26: cf:91:a2:74:92:c4:a6:c3:17:50:db:f3:9e:37:a7:ac:bf:1a: 28:b9:3e:c1:21:97:ae:b6:c6:1d:32:d0:d4:35:90:c7:d7:f8: 3d:13:05:2b:26:41:95:c8:36:1a:24:35:e7:e0:9c:08:10:67: 18:5d:84:47:6a:f5:dc:29:7e:91:c8:38:e5:f2:4b:70:46:9c: 36:36:6f:63:92:eb:3a:0d:f6:71:06:9f:2c:28:9f:6e:87:ec: 6e:b5:f7:77:5f:0b:89:a3:20:fa:55:8b:78:81:35:99:8d:4a: 3a:1e:d7:49:2a:7f:a4:70:08:46:89:8a:76:98:13:35:ca:3e: be:97:50:96:8e:2c:e6:68:db:f7:ba:34:af:11:63:0d:a5:d4: f4:c9:eb:d0:83:e0:cd:d2:ae:a9:4e:cc:8d:87:c8:c0:62:71: 41:3e:af:6c:e3:de:5f:17:fa:bb:13:45:10:59:e7:e6:a6:e6: c7:53:d3:92:40:e3:cf:6c:08:61:d4:e2:b0:5f:ae:f3:f5:95: 38:c2:fc:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfMRDah702eupTXwUeKjFGcVIincwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODExNUQzMDA5MUY4OTQ4Qjc2QUUwQUFDOEI0RjY4NTUw REEzMjFDRDAeFw0yNTA3MTQwODU1MDJaFw0yNjA3MTMwOTAwMDJaMDMxMTAvBgNV BAMTKEU5NjYzRUI2QUFGQ0VFOUEwQTgyODM5NTNFMkNDQUFDNTFBNDREN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfKzRzDGyX/+TgTAAyg893OYAI OYNvEtAB3eV1qZUsf2cfDIVUpuEyr6PP5zXrg0uLc9vTn+TWQWSJ5Alujy8FuqtS DCkIRMPITuf9VOzlwtV0FhO9WUqBTAUvJlgPhLAJGT2U4vm+M9mycBMcZF+xmoRt FY7fkOT9TYrE7dgQJAMPZVl9ZcalzfJjjssZOJ/ewegmMUxXciNLpe48EDJ6QLsE l8PWnJK2PntP8ejfXKO+yhEWBLrIbVP8sJ3FPWY+1vZh7wVWkdwzxTV/BFWF4ilM MHLUJbJsf9VJTDj26ydrtUj8Xn8kYqdA6kndd5OKbSzGPrcsaMq6XAhdDS+bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6WY+tqr87poKgoOVPizKrFGkTX4wHwYDVR0j BBgwFoAUgRXTAJH4lIt2rgqsi09oVQ2jIc0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YmRiYmMwOC00ZThlLTQ0YmEtYTRjZi0wNWUyMzNkZGEzYTUvMC84MTE1RDMwMDkx Rjg5NDhCNzZBRTBBQUM4QjRGNjg1NTBEQTMyMUNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODExNUQzMDA5MUY4OTQ4Qjc2QUUwQUFDOEI0RjY4NTUwREEz MjFDRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZGJiYzA4LTRlOGUtNDRiYS1h NGNmLTA1ZTIzM2RkYTNhNS8wLzMxMzgzMDJlMzIzMzM1MmUzMTM0MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtOuUMA0GCSqG SIb3DQEBCwUAA4IBAQB/kQUa/TSCxnc9KGMqpUkhCQdVZBdL4fSTyDPzwfM2bVIc m1E+Ol6udxpscw6yTqyTAnl9fybPkaJ0ksSmwxdQ2/OeN6esvxoouT7BIZeutsYd MtDUNZDH1/g9EwUrJkGVyDYaJDXn4JwIEGcYXYRHavXcKX6RyDjl8ktwRpw2Nm9j kus6DfZxBp8sKJ9uh+xutfd3XwuJoyD6VYt4gTWZjUo6HtdJKn+kcAhGiYp2mBM1 yj6+l1CWjizmaNv3ujSvEWMNpdT0yevQg+DN0q6pTsyNh8jAYnFBPq9s495fF/q7 E0UQWefmpubHU9OSQOPPbAhh1OKwX67z9ZU4wvzu -----END CERTIFICATE-----Generated at Sat Aug 23 15:32:37 2025 by rpki-client