$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134302e302f32342d3234203d3e203535363835.roa File: 3135302e3130372e3134302e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: yJSmH/b4qSBiuAJgeQpZDqe5iMVxZW/RQImvquSyjoM= Subject key identifier: 14:AC:67:1C:47:6D:7D:95:FC:5B:8D:96:7F:7B:96:6C:55:4B:6E:55 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 59B7CDB9BDC8251FCD08304B01CAF1319187C942 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134302e302f32342d3234203d3e203535363835.roa Signing time: Fri 06 Mar 2026 09:00:02 +0000 ROA not before: Fri 06 Mar 2026 08:55:02 +0000 ROA not after: Fri 05 Mar 2027 09:00:02 +0000 asID: 55685 IP address blocks: 150.107.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 09:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:b7:cd:b9:bd:c8:25:1f:cd:08:30:4b:01:ca:f1:31:91:87:c9:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Mar 6 08:55:02 2026 GMT Not After : Mar 5 09:00:02 2027 GMT Subject: CN=14AC671C476D7D95FC5B8D967F7B966C554B6E55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2b:6d:fd:d8:4e:b0:bd:8b:4f:7a:17:94:ac: 69:ca:82:29:4b:ec:e8:58:46:64:ef:01:81:aa:c0: 14:50:17:c7:db:1e:4f:25:28:3a:98:f9:ae:ce:ac: 2e:84:a4:7b:fb:b0:dc:bd:e6:7e:e6:cc:2c:a9:fa: a5:11:00:2c:74:aa:b5:c2:31:2d:25:0f:02:4d:e0: f2:cc:d3:7b:d3:f0:07:55:c7:6d:eb:7c:d6:53:be: 96:c6:8b:36:b7:44:fd:27:93:a7:09:c5:55:8a:71: 0d:69:d9:fa:f6:04:5a:b1:2f:a9:d4:f4:1d:66:50: 09:0d:fc:67:eb:79:d9:c4:c6:9f:81:05:6b:16:85: 82:0a:ff:29:31:21:b0:ea:d9:8b:83:6a:71:75:e8: 5a:bc:0e:8a:33:8d:5a:91:66:36:a9:76:e5:54:98: a3:f1:66:91:28:49:93:0e:d2:69:75:68:f2:78:a8: ad:ee:a4:0f:9c:96:20:8b:00:20:48:e3:cc:5c:34: 92:a5:f0:22:69:99:f3:1f:88:c3:ac:58:10:75:cf: e3:58:15:28:70:9e:fc:28:37:0b:0f:70:19:78:d3: af:ba:f7:ff:0b:09:02:16:c1:12:99:9a:54:f2:27: 24:15:60:d6:e5:da:f2:d0:3a:80:7c:7a:7f:97:b4: 1c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AC:67:1C:47:6D:7D:95:FC:5B:8D:96:7F:7B:96:6C:55:4B:6E:55 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134302e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.140.0/24 Signature Algorithm: sha256WithRSAEncryption 52:18:2b:56:a0:80:6f:48:7e:68:a5:e2:87:cb:c5:36:30:56: ae:d1:60:d1:94:4c:a8:a0:28:96:4a:35:1b:69:65:38:74:ae: 5d:ef:c4:01:72:e3:5e:7f:2d:ad:d2:36:67:c2:f0:2b:cb:a8: 14:2e:e3:32:a6:bf:41:af:66:41:a4:db:a5:2d:c1:8c:44:7e: 2b:0c:28:71:f5:ec:b2:7f:8d:b7:22:bd:1b:87:8e:43:05:19: 50:18:4c:7f:5e:a4:bd:e2:d4:fd:f4:20:f3:67:c8:47:7e:bc: 31:43:f9:fc:d7:3b:8a:06:1f:0b:75:7a:e0:39:44:7d:b4:98: db:fc:aa:08:c8:b2:57:da:f4:3a:2d:c0:4f:65:14:17:f5:8a: 48:25:9a:d3:d5:79:8d:66:43:1b:35:85:8a:2e:fa:06:3d:fb: eb:97:d2:d8:43:91:f4:ab:b3:43:54:dc:d3:e1:d0:0a:5b:bb: b5:ab:54:13:de:aa:ae:58:2b:a3:47:05:0b:21:17:06:ec:c3: 2e:6d:5a:97:ca:25:6c:26:48:4f:d2:bf:84:b5:4e:a1:17:bb: aa:63:f6:88:fe:36:2e:12:6b:6d:1a:b2:e6:62:21:db:4e:1e: e1:da:44:c0:be:71:02:89:83:be:e2:93:61:fe:76:e5:2a:38: b9:cd:fe:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWbfNub3IJR/NCDBLAcrxMZGHyUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNjAzMDYwODU1MDJaFw0yNzAzMDUwOTAwMDJaMDMxMTAvBgNV BAMTKDE0QUM2NzFDNDc2RDdEOTVGQzVCOEQ5NjdGN0I5NjZDNTU0QjZFNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXK2392E6wvYtPeheUrGnKgilL 7OhYRmTvAYGqwBRQF8fbHk8lKDqY+a7OrC6EpHv7sNy95n7mzCyp+qURACx0qrXC MS0lDwJN4PLM03vT8AdVx23rfNZTvpbGiza3RP0nk6cJxVWKcQ1p2fr2BFqxL6nU 9B1mUAkN/GfrednExp+BBWsWhYIK/ykxIbDq2YuDanF16Fq8DoozjVqRZjapduVU mKPxZpEoSZMO0ml1aPJ4qK3upA+cliCLACBI48xcNJKl8CJpmfMfiMOsWBB1z+NY FShwnvwoNwsPcBl406+69/8LCQIWwRKZmlTyJyQVYNbl2vLQOoB8en+XtBxdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFKxnHEdtfZX8W42Wf3uWbFVLblUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuMMA0GCSqG SIb3DQEBCwUAA4IBAQBSGCtWoIBvSH5opeKHy8U2MFau0WDRlEyooCiWSjUbaWU4 dK5d78QBcuNefy2t0jZnwvAry6gULuMypr9Br2ZBpNulLcGMRH4rDChx9eyyf423 Ir0bh45DBRlQGEx/XqS94tT99CDzZ8hHfrwxQ/n81zuKBh8LdXrgOUR9tJjb/KoI yLJX2vQ6LcBPZRQX9YpIJZrT1XmNZkMbNYWKLvoGPfvrl9LYQ5H0q7NDVNzT4dAK W7u1q1QT3qquWCujRwULIRcG7MMubVqXyiVsJkhP0r+EtU6hF7uqY/aI/jYuEmtt GrLmYiHbTh7h2kTAvnECiYO+4pNh/nblKji5zf7o -----END CERTIFICATE-----Generated at Thu Mar 26 13:23:47 2026 by rpki-client