$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139302e302f32342d3234203d3e203338313439.roa File: 3135302e3132392e3139302e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: H5limOsnw+oXhtBdjEt0fmYaX6A1zxSuyCkqRKHAtzA= Subject key identifier: 71:92:F8:D1:AD:A8:CF:44:71:CE:AE:67:62:2C:C2:B2:2C:DB:E5:B1 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 3E69A397D77D72BE413D091BA5B384841252A150 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139302e302f32342d3234203d3e203338313439.roa Signing time: Tue 19 Aug 2025 01:00:01 +0000 ROA not before: Tue 19 Aug 2025 00:55:01 +0000 ROA not after: Tue 18 Aug 2026 01:00:01 +0000 asID: 38149 IP address blocks: 150.129.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 06:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:69:a3:97:d7:7d:72:be:41:3d:09:1b:a5:b3:84:84:12:52:a1:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Aug 19 00:55:01 2025 GMT Not After : Aug 18 01:00:01 2026 GMT Subject: CN=7192F8D1ADA8CF4471CEAE67622CC2B22CDBE5B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:d6:46:7e:2a:37:6c:44:c6:74:f5:40:20: f8:23:04:74:5e:db:2a:54:16:d5:32:f3:06:b1:9c: 64:43:7e:ff:5f:ac:c6:97:35:86:5e:65:aa:97:03: f6:f6:d1:7e:9c:10:f4:87:45:c9:35:46:16:35:7c: 18:93:58:3c:05:05:ab:be:08:59:50:09:dc:35:7e: a9:1d:2b:c7:62:0e:7f:4f:19:f6:21:d5:d0:e9:ae: e0:b2:26:fb:4c:dc:9b:89:41:32:e3:22:00:56:d3: 12:e1:44:8b:27:8a:4c:62:c3:19:3a:df:18:bd:7d: c7:01:49:dd:d6:0e:b0:d9:de:4e:67:73:fa:cf:56: de:59:30:de:77:cb:a8:25:fc:b3:05:fb:4a:d6:78: ea:df:bf:46:7e:ec:73:5d:07:8c:f0:01:29:c7:77: 58:11:eb:b6:63:d4:a1:80:df:c1:f9:f3:91:4d:47: 75:90:ac:11:b5:b6:ce:89:57:bc:d2:9c:c9:d0:b4: 33:ab:ac:e7:c5:63:9b:ed:70:5e:00:f6:59:fc:ae: c0:01:0b:e2:1a:76:02:7b:03:7d:7d:44:28:7b:1f: 1c:f3:a6:8f:3c:b9:d4:73:76:ab:26:3e:25:dd:1e: 37:70:9c:3f:71:e2:1c:8d:05:8a:e4:11:0a:46:38: 9a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:92:F8:D1:AD:A8:CF:44:71:CE:AE:67:62:2C:C2:B2:2C:DB:E5:B1 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139302e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.190.0/24 Signature Algorithm: sha256WithRSAEncryption a9:b7:59:ee:9a:d8:31:46:0c:03:c8:99:a8:6c:ef:38:8f:cf: 82:fe:38:4f:10:d8:45:c6:b5:0c:cf:b2:8c:d4:46:fb:b2:af: 59:b7:f1:a6:16:50:df:1d:3e:5c:aa:40:50:59:89:a4:99:4b: 4e:a0:67:98:89:44:9f:1c:38:49:59:cc:02:84:f8:c8:04:1e: 59:83:74:f8:c6:7a:bd:47:a7:df:1b:fc:dc:b2:0f:6e:fa:46: ac:5a:c2:2c:55:f5:86:6d:05:8a:95:16:1f:55:43:3d:0d:cf: ee:97:c8:74:80:7e:e8:f7:8b:85:5f:30:37:19:b1:88:fd:ab: df:66:54:0e:8f:ff:9d:4d:cd:6a:5a:2f:ae:c4:7e:43:f9:44: 65:b0:88:66:bb:c9:91:c0:fd:1e:f3:b9:08:fc:1b:fb:ab:6f: e8:76:79:4a:64:23:36:90:b4:aa:77:65:34:65:e5:c2:96:ae: 54:9c:41:6d:0f:67:3c:59:51:55:19:95:e9:7c:de:d0:86:2a: d0:a8:d4:b9:95:26:fa:18:76:c3:7a:4c:25:99:3c:d0:70:2f: 08:20:8a:84:95:59:26:2c:ad:bf:46:6f:c1:0a:74:ea:78:a2: 6c:21:52:55:b9:63:4a:df:f2:ff:57:68:07:89:cf:92:fd:9c: 3f:b4:76:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPmmjl9d9cr5BPQkbpbOEhBJSoVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA4MTkwMDU1MDFaFw0yNjA4MTgwMTAwMDFaMDMxMTAvBgNV BAMTKDcxOTJGOEQxQURBOENGNDQ3MUNFQUU2NzYyMkNDMkIyMkNEQkU1QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI1tZGfio3bETGdPVAIPgjBHRe 2ypUFtUy8waxnGRDfv9frMaXNYZeZaqXA/b20X6cEPSHRck1RhY1fBiTWDwFBau+ CFlQCdw1fqkdK8diDn9PGfYh1dDpruCyJvtM3JuJQTLjIgBW0xLhRIsnikxiwxk6 3xi9fccBSd3WDrDZ3k5nc/rPVt5ZMN53y6gl/LMF+0rWeOrfv0Z+7HNdB4zwASnH d1gR67Zj1KGA38H585FNR3WQrBG1ts6JV7zSnMnQtDOrrOfFY5vtcF4A9ln8rsAB C+IadgJ7A319RCh7Hxzzpo88udRzdqsmPiXdHjdwnD9x4hyNBYrkEQpGOJqjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcZL40a2oz0Rxzq5nYizCsizb5bEwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzUzMDJlMzEzMjM5MmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAloG+MA0GCSqG SIb3DQEBCwUAA4IBAQCpt1numtgxRgwDyJmobO84j8+C/jhPENhFxrUMz7KM1Eb7 sq9Zt/GmFlDfHT5cqkBQWYmkmUtOoGeYiUSfHDhJWcwChPjIBB5Zg3T4xnq9R6ff G/zcsg9u+kasWsIsVfWGbQWKlRYfVUM9Dc/ul8h0gH7o94uFXzA3GbGI/avfZlQO j/+dTc1qWi+uxH5D+URlsIhmu8mRwP0e87kI/Bv7q2/odnlKZCM2kLSqd2U0ZeXC lq5UnEFtD2c8WVFVGZXpfN7QhirQqNS5lSb6GHbDekwlmTzQcC8IIIqElVkmLK2/ Rm/BCnTqeKJsIVJVuWNK3/L/V2gHic+S/Zw/tHYP -----END CERTIFICATE-----Generated at Sun Aug 24 11:36:04 2025 by rpki-client