$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa File: 3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: EX58fbQELKasuVoQc5t0TQHGuIzmGrY2Rt+oYRpte2Y= Subject key identifier: 0F:AA:84:62:C3:EB:15:01:B0:4D:C0:B7:92:70:73:F3:6E:9E:C3:C4 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 4C98E04A4BFF1A5840E0701716C1B96BEC3119D1 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa Signing time: Fri 06 Mar 2026 09:00:03 +0000 ROA not before: Fri 06 Mar 2026 08:55:03 +0000 ROA not after: Fri 05 Mar 2027 09:00:03 +0000 asID: 55685 IP address blocks: 150.107.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 09:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:98:e0:4a:4b:ff:1a:58:40:e0:70:17:16:c1:b9:6b:ec:31:19:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Mar 6 08:55:03 2026 GMT Not After : Mar 5 09:00:03 2027 GMT Subject: CN=0FAA8462C3EB1501B04DC0B7927073F36E9EC3C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:1e:ce:30:73:eb:5f:62:7b:a5:c8:a4:d0: a5:b5:95:7b:90:f3:34:55:82:7f:b4:78:5b:f6:5e: f0:a3:14:21:b3:5b:31:18:47:b0:24:3f:03:28:2d: 60:e8:0b:03:85:30:7a:38:d2:af:b3:bd:f3:f8:88: e7:a8:e0:70:ae:09:10:65:12:f9:5f:c1:ca:e2:e8: 16:b5:93:63:72:d3:ad:a3:47:06:27:8c:4c:55:7c: dd:10:f7:6e:da:9a:8c:8a:64:60:f5:da:c9:d9:79: 48:e6:a6:aa:38:76:ce:cc:3e:c4:54:59:23:57:a4: 39:8d:e2:3f:81:2f:6f:90:45:4f:6a:12:c8:d9:19: 3b:95:0b:6f:e9:cc:a4:8b:4e:a9:ca:cd:98:99:fe: 72:0b:73:a8:a4:ca:94:35:8e:4a:52:ed:5c:43:14: a3:af:19:dd:75:88:99:3c:b5:c6:41:ee:4d:24:18: 58:85:11:45:1a:bd:fe:7f:52:72:4e:56:4d:6d:97: 0f:c8:48:df:60:c7:46:07:f8:e2:0d:89:f4:5f:66: fe:93:9f:8c:cc:67:41:05:db:a0:3d:ef:14:67:e3: 06:5e:b4:82:47:10:d9:34:05:1e:8f:16:5f:d1:b2: 5f:63:3c:7f:c7:05:91:d0:25:4b:b9:33:cb:ac:0b: 23:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AA:84:62:C3:EB:15:01:B0:4D:C0:B7:92:70:73:F3:6E:9E:C3:C4 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134322e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.142.0/24 Signature Algorithm: sha256WithRSAEncryption 04:36:47:12:5a:c6:44:7f:67:7d:bd:e3:6d:c7:bb:14:1e:dc: 02:cb:83:9a:d7:a5:2d:2c:fa:28:61:71:35:e1:ef:61:b0:90: 3a:ff:62:bc:38:eb:b2:de:bc:d8:de:76:3f:93:25:a7:59:28: 53:a4:c2:22:52:5c:77:99:e4:09:db:87:d6:f7:dd:22:db:e4: e3:78:34:46:b9:c7:80:ef:9d:35:0c:04:8f:91:c6:b7:02:f9: 62:cb:25:bf:0c:a5:0e:fa:79:7a:8e:82:07:37:7a:ad:f3:57: 48:e3:cd:36:da:e9:08:8c:cb:2f:8a:ab:90:cb:29:46:d0:9f: 6c:42:a9:88:09:9d:c2:b3:9a:a5:84:69:8d:3b:2e:65:61:5b: 6a:1f:1b:69:56:c4:83:ed:63:cb:a9:b2:45:b4:fa:78:37:01: 1d:46:43:ee:e4:1a:de:f1:c0:40:a2:04:1e:bc:0f:11:ff:8f: 1b:43:16:92:55:9e:e3:af:86:08:72:92:1c:c3:51:1d:71:7e: 55:6f:43:86:f1:7f:b1:e9:94:ff:d7:98:34:79:e4:0f:14:20: aa:c7:3b:86:55:93:9b:0f:12:3a:28:78:28:61:0d:ab:48:a8: 36:39:f4:57:6b:22:59:90:e4:6e:83:56:62:92:68:6f:bf:ac: 38:36:87:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTJjgSkv/GlhA4HAXFsG5a+wxGdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNjAzMDYwODU1MDNaFw0yNzAzMDUwOTAwMDNaMDMxMTAvBgNV BAMTKDBGQUE4NDYyQzNFQjE1MDFCMDREQzBCNzkyNzA3M0YzNkU5RUMzQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0dh7OMHPrX2J7pcik0KW1lXuQ 8zRVgn+0eFv2XvCjFCGzWzEYR7AkPwMoLWDoCwOFMHo40q+zvfP4iOeo4HCuCRBl Evlfwcri6Ba1k2Ny062jRwYnjExVfN0Q927amoyKZGD12snZeUjmpqo4ds7MPsRU WSNXpDmN4j+BL2+QRU9qEsjZGTuVC2/pzKSLTqnKzZiZ/nILc6ikypQ1jkpS7VxD FKOvGd11iJk8tcZB7k0kGFiFEUUavf5/UnJOVk1tlw/ISN9gx0YH+OINifRfZv6T n4zMZ0EF26A97xRn4wZetIJHENk0BR6PFl/Rsl9jPH/HBZHQJUu5M8usCyNVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD6qEYsPrFQGwTcC3knBz826ew8QwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuOMA0GCSqG SIb3DQEBCwUAA4IBAQAENkcSWsZEf2d9veNtx7sUHtwCy4Oa16UtLPooYXE14e9h sJA6/2K8OOuy3rzY3nY/kyWnWShTpMIiUlx3meQJ24fW990i2+TjeDRGuceA7501 DASPkca3AvliyyW/DKUO+nl6joIHN3qt81dI48022ukIjMsviquQyylG0J9sQqmI CZ3Cs5qlhGmNOy5lYVtqHxtpVsSD7WPLqbJFtPp4NwEdRkPu5Bre8cBAogQevA8R /48bQxaSVZ7jr4YIcpIcw1EdcX5Vb0OG8X+x6ZT/15g0eeQPFCCqxzuGVZObDxI6 KHgoYQ2rSKg2OfRXayJZkORug1Zikmhvv6w4NodR -----END CERTIFICATE-----Generated at Thu Mar 26 13:23:56 2026 by rpki-client