$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa File: 3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: nPFHSb2/jczr+XdnfSxcrrYRiEVEPaihgzy1OskuN8M= Subject key identifier: 8D:78:8F:0C:75:AC:53:0F:9E:28:DE:F1:E8:67:B8:B8:1E:2E:EF:37 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 3B021A9DEFB3F7634E421625F83209A64D6CC7DD Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 05:00:01 +0000 ROA not before: Fri 26 Sep 2025 04:55:01 +0000 ROA not after: Fri 25 Sep 2026 05:00:01 +0000 asID: 18059 IP address blocks: 150.107.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:02:1a:9d:ef:b3:f7:63:4e:42:16:25:f8:32:09:a6:4d:6c:c7:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 04:55:01 2025 GMT Not After : Sep 25 05:00:01 2026 GMT Subject: CN=8D788F0C75AC530F9E28DEF1E867B8B81E2EEF37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:49:c6:d8:c7:f7:8b:2c:09:2d:f0:b5:ef:cc: f9:f0:cf:9f:45:59:19:d2:b1:b7:39:b8:58:7b:36: 68:d2:35:2c:29:31:33:83:cf:2f:55:76:a4:c7:8c: c6:fa:c1:73:81:03:d1:64:d4:0d:c4:d3:38:8c:4c: 7a:d7:99:6d:4f:29:d8:37:48:f5:72:b0:dc:c4:d1: 83:9d:c7:10:5f:46:67:46:33:d5:13:64:24:fd:a4: e4:36:69:e9:87:4d:c6:4b:02:e4:20:ca:17:55:99: d9:29:79:dc:da:4e:03:db:b4:9a:62:82:b5:9b:7d: 6c:4d:22:bf:15:b5:2f:53:11:f6:af:36:24:03:63: b6:f0:f0:c0:4e:8b:57:c4:38:40:2c:09:ce:e9:70: 93:fd:c5:d3:36:4d:60:75:9c:a8:0a:ee:46:c6:5e: ad:b5:71:63:28:e1:e2:43:cd:8a:d7:f9:ac:98:96: 80:ed:6d:98:5a:2a:ae:e8:0b:c8:27:3d:e1:82:b9: f4:61:c7:c1:67:27:b0:bb:76:05:db:7e:8f:4b:06: ae:8c:22:02:33:90:60:c2:5c:81:c9:a2:56:e4:99: 47:f7:f0:41:f4:53:a8:01:67:58:da:76:7e:fb:e2: 10:cd:9d:ce:83:05:05:c9:50:0e:94:50:3b:f7:57: 23:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:78:8F:0C:75:AC:53:0F:9E:28:DE:F1:E8:67:B8:B8:1E:2E:EF:37 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.108.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:4d:1b:6d:d5:e9:d2:bd:30:06:95:ce:cb:62:58:57:8c:24: b3:0b:47:87:aa:17:92:4d:b4:69:ae:dc:97:14:ff:ff:96:4c: 5b:0d:b7:69:78:a9:4a:e5:7b:af:cc:72:31:67:4c:f5:c9:41: 37:f4:0d:6a:dd:f9:ca:77:0c:a9:c8:55:cc:e8:d0:99:7b:a0: cc:dd:17:1f:74:17:d9:e3:6f:3e:8f:4b:68:78:d9:7d:60:7b: f4:d3:5a:45:bf:c3:fc:20:0c:dc:8e:ac:55:fb:20:28:78:69: 43:23:aa:3a:bb:18:50:5c:52:5e:9b:4e:d8:2e:8b:1c:3d:a7: c5:06:e8:8a:77:63:51:1b:42:01:ba:34:f5:36:c3:49:32:e5: 5d:23:dd:c7:f3:38:be:41:b4:d5:21:24:6a:6c:72:b3:27:61: 0d:f8:21:fc:19:42:52:a1:b9:7c:8b:f8:3c:f1:28:e8:f4:3e: 29:c5:9d:cd:c6:8b:59:55:bb:0c:3a:c7:ee:35:ff:a8:c1:95: 1c:ec:80:1a:3e:1d:7b:32:4c:9e:38:65:87:76:e2:d3:35:72: f8:c1:a8:e5:43:bd:82:1f:87:35:ec:6f:5d:79:34:9f:c6:79: 19:f9:85:a5:80:87:90:c0:03:f2:b2:f7:47:28:e4:b6:37:17: 02:94:57:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOwIane+z92NOQhYl+DIJpk1sx90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwNDU1MDFaFw0yNjA5MjUwNTAwMDFaMDMxMTAvBgNV BAMTKDhENzg4RjBDNzVBQzUzMEY5RTI4REVGMUU4NjdCOEI4MUUyRUVGMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAScbYx/eLLAkt8LXvzPnwz59F WRnSsbc5uFh7NmjSNSwpMTODzy9VdqTHjMb6wXOBA9Fk1A3E0ziMTHrXmW1PKdg3 SPVysNzE0YOdxxBfRmdGM9UTZCT9pOQ2aemHTcZLAuQgyhdVmdkpedzaTgPbtJpi grWbfWxNIr8VtS9TEfavNiQDY7bw8MBOi1fEOEAsCc7pcJP9xdM2TWB1nKgK7kbG Xq21cWMo4eJDzYrX+ayYloDtbZhaKq7oC8gnPeGCufRhx8FnJ7C7dgXbfo9LBq6M IgIzkGDCXIHJolbkmUf38EH0U6gBZ1jadn774hDNnc6DBQXJUA6UUDv3VyNTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjXiPDHWsUw+eKN7x6Ge4uB4u7zcwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzUzMDJlMzEzMDM3MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmtsMA0GCSqG SIb3DQEBCwUAA4IBAQBaTRtt1enSvTAGlc7LYlhXjCSzC0eHqheSTbRprtyXFP// lkxbDbdpeKlK5XuvzHIxZ0z1yUE39A1q3fnKdwypyFXM6NCZe6DM3RcfdBfZ428+ j0toeNl9YHv001pFv8P8IAzcjqxV+yAoeGlDI6o6uxhQXFJem07YLoscPafFBuiK d2NRG0IBujT1NsNJMuVdI93H8zi+QbTVISRqbHKzJ2EN+CH8GUJSobl8i/g88Sjo 9D4pxZ3NxotZVbsMOsfuNf+owZUc7IAaPh17MkyeOGWHduLTNXL4wajlQ72CH4c1 7G9deTSfxnkZ+YWlgIeQwAPysvdHKOS2NxcClFfE -----END CERTIFICATE-----Generated at Mon Oct 20 15:26:13 2025 by rpki-client