$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa File: 3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: sg9h3bKYAlqGHJDMvyUj6H0/M1Aw0iaDSiX106si2NI= Subject key identifier: 58:42:4B:DE:40:FF:8C:FA:8A:8A:11:1C:27:32:14:CE:55:62:CC:2A Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 6880830F617B3371C77463405FCD020754F7A223 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa Signing time: Tue 19 Aug 2025 01:00:01 +0000 ROA not before: Tue 19 Aug 2025 00:55:01 +0000 ROA not after: Tue 18 Aug 2026 01:00:01 +0000 asID: 38149 IP address blocks: 150.129.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 06:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:80:83:0f:61:7b:33:71:c7:74:63:40:5f:cd:02:07:54:f7:a2:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Aug 19 00:55:01 2025 GMT Not After : Aug 18 01:00:01 2026 GMT Subject: CN=58424BDE40FF8CFA8A8A111C273214CE5562CC2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:17:a3:1a:ec:6c:da:2c:f8:c3:59:8d:9f:27: 04:8e:8f:a1:43:50:e6:c6:e3:cb:48:e4:75:1f:9f: 29:fb:8c:70:15:32:bf:9d:70:5b:64:07:71:89:4d: 59:64:62:a9:70:3f:aa:92:ea:9d:23:45:1c:77:86: fa:17:80:56:30:af:25:85:c8:2b:b6:1b:fc:e4:6f: a1:b7:b9:23:ba:b5:3d:7d:84:71:fa:e7:ac:25:65: 96:95:e9:6c:63:4e:81:3c:af:c3:10:e7:f3:83:a7: 56:8d:46:3a:ea:35:07:70:89:be:f6:1c:51:da:85: 1a:ce:c1:36:45:ca:a9:db:40:e0:ca:42:99:1e:65: ba:0a:5e:c1:13:5a:af:16:49:8a:2f:2c:7e:e2:d5: 48:3a:a0:6b:dc:08:f0:4f:fb:21:20:e6:4d:55:02: 07:88:1a:a6:8b:82:c3:69:ec:d2:b2:8b:ff:0b:39: b7:d2:3b:31:70:17:3d:ce:68:bd:97:51:cd:2c:90: 9b:80:e7:29:8a:ae:ce:7a:cb:22:11:1f:4c:03:58: e9:31:0e:62:1f:f5:98:2e:d5:4a:d9:39:04:44:e4: dc:06:62:f2:ca:d4:70:e6:d9:29:fe:66:85:71:33: a3:7c:42:5e:07:95:e3:e2:23:d6:6c:18:89:5b:d8: 6b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:42:4B:DE:40:FF:8C:FA:8A:8A:11:1C:27:32:14:CE:55:62:CC:2A X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.191.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:1a:82:8d:39:9c:ed:8e:de:df:8a:3e:fb:e9:fb:1f:25:e1: 8a:8d:86:e6:58:f3:43:9b:05:34:89:0b:dc:7e:bf:08:78:a0: d5:bd:e6:e9:8d:96:16:a1:d1:2b:22:44:99:cd:82:42:c4:b0: d4:f1:70:18:9a:81:79:e2:ce:78:48:2e:9f:0b:29:45:92:fa: 7e:15:c2:f1:0c:67:dd:4c:d6:bc:e3:5c:7a:14:58:f9:ce:bc: c4:cb:1d:b2:08:b1:ff:28:ee:3c:2a:14:6f:6e:ac:87:11:81: 0f:8d:46:8b:07:b4:b7:7d:f6:23:4b:75:78:ae:b4:50:7e:42: 7c:97:45:65:0c:80:f5:21:4e:88:9c:e8:44:a5:8d:1f:ad:34: b3:57:5f:9c:3c:52:3f:89:81:20:da:b8:57:ae:f4:bd:1c:16: d8:91:b3:86:71:29:3f:c2:a4:9f:08:47:2d:fd:ea:52:cf:f9: 78:c2:9e:58:b5:36:96:af:61:7d:92:54:a2:67:4f:eb:85:0d: 32:98:31:a9:56:78:03:e8:3e:cb:4f:9d:8b:76:84:8e:02:a9: 81:c3:a3:62:27:b5:e3:1d:a9:e4:80:9f:c5:30:4c:9d:6c:01: 1a:51:5d:b4:2d:25:ff:3b:19:96:f9:27:46:f4:71:5a:c4:13: 0b:01:25:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaICDD2F7M3HHdGNAX80CB1T3oiMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA4MTkwMDU1MDFaFw0yNjA4MTgwMTAwMDFaMDMxMTAvBgNV BAMTKDU4NDI0QkRFNDBGRjhDRkE4QThBMTExQzI3MzIxNENFNTU2MkNDMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4F6Ma7GzaLPjDWY2fJwSOj6FD UObG48tI5HUfnyn7jHAVMr+dcFtkB3GJTVlkYqlwP6qS6p0jRRx3hvoXgFYwryWF yCu2G/zkb6G3uSO6tT19hHH656wlZZaV6WxjToE8r8MQ5/ODp1aNRjrqNQdwib72 HFHahRrOwTZFyqnbQODKQpkeZboKXsETWq8WSYovLH7i1Ug6oGvcCPBP+yEg5k1V AgeIGqaLgsNp7NKyi/8LObfSOzFwFz3OaL2XUc0skJuA5ymKrs56yyIRH0wDWOkx DmIf9Zgu1UrZOQRE5NwGYvLK1HDm2Sn+ZoVxM6N8Ql4HlePiI9ZsGIlb2GvLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWEJL3kD/jPqKihEcJzIUzlVizCowHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzUzMDJlMzEzMjM5MmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAloG/MA0GCSqG SIb3DQEBCwUAA4IBAQB6GoKNOZztjt7fij776fsfJeGKjYbmWPNDmwU0iQvcfr8I eKDVvebpjZYWodErIkSZzYJCxLDU8XAYmoF54s54SC6fCylFkvp+FcLxDGfdTNa8 41x6FFj5zrzEyx2yCLH/KO48KhRvbqyHEYEPjUaLB7S3ffYjS3V4rrRQfkJ8l0Vl DID1IU6InOhEpY0frTSzV1+cPFI/iYEg2rhXrvS9HBbYkbOGcSk/wqSfCEct/epS z/l4wp5YtTaWr2F9klSiZ0/rhQ0ymDGpVngD6D7LT52LdoSOAqmBw6NiJ7XjHank gJ/FMEydbAEaUV20LSX/OxmW+SdG9HFaxBMLASX2 -----END CERTIFICATE-----Generated at Sun Aug 24 09:31:31 2025 by rpki-client