$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: YedS1YSBpGKS/FxE4rWQlRXoRSMsnkf1tePxbKDyk3g= Subject key identifier: FD:99:AC:C0:5D:45:F4:61:5C:6B:24:19:6F:05:A6:CA:DD:50:21:22 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5B1675F39356C1ABC99486D4328F5DBE605974D2 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 09:00:20 +0000 ROA not before: Sun 13 Jul 2025 08:55:20 +0000 ROA not after: Sun 12 Jul 2026 09:00:20 +0000 asID: 63859 IP address blocks: 158.140.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 18:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:16:75:f3:93:56:c1:ab:c9:94:86:d4:32:8f:5d:be:60:59:74:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 08:55:20 2025 GMT Not After : Jul 12 09:00:20 2026 GMT Subject: CN=FD99ACC05D45F4615C6B24196F05A6CADD502122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:42:32:be:ff:e0:0d:9a:d3:eb:87:bb:1e:30: 97:70:c1:70:45:da:01:c5:b2:12:2e:1b:bb:6f:7d: d0:f0:29:8b:c6:40:d5:f4:35:4e:db:62:84:c7:06: f7:a0:28:2c:44:1f:63:fd:24:2b:16:00:c6:a3:87: 20:72:3c:91:85:f1:21:f1:11:4d:4c:7e:c9:d2:13: 54:a4:0f:16:c1:de:3e:32:f6:b8:a7:7f:e5:13:fe: d4:6d:a3:d9:76:d0:88:36:1e:55:f5:4b:b7:ee:e9: 2e:bb:c7:05:a6:8c:10:f2:12:ee:aa:ac:0c:15:6f: 6e:f6:0f:1e:48:39:8b:bf:80:2d:67:0b:5c:2e:85: 5c:15:23:10:44:98:73:66:7f:2e:66:f8:a0:82:25: 2e:2a:bc:d8:80:0b:71:2c:3c:cf:48:f9:b2:8d:af: e8:d9:31:8f:e2:95:1f:3d:d7:6f:3f:f3:fe:e7:97: 93:aa:24:7c:6b:84:8f:7e:f5:b8:5d:dd:e9:5e:c1: 05:ad:b9:d4:1d:0d:4a:6a:df:a6:74:9c:fd:8d:dd: 91:44:77:13:fc:0f:52:bb:60:e5:eb:ce:2c:34:cf: d7:50:a2:24:f2:4b:18:0d:27:a7:3b:4d:62:e5:75: 34:24:ee:64:89:79:2f:5c:62:14:4c:24:17:c6:65: 53:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:99:AC:C0:5D:45:F4:61:5C:6B:24:19:6F:05:A6:CA:DD:50:21:22 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.163.0/24 Signature Algorithm: sha256WithRSAEncryption 37:6e:c3:e8:c3:c4:49:df:01:2d:8d:ee:89:c8:41:c5:11:6a: 15:a9:45:e7:c7:74:84:1f:6c:38:1c:5e:05:64:84:d6:67:0a: c2:1f:5b:a5:9b:68:ef:36:c5:db:fe:b4:ee:3a:f7:ba:b4:c9: 93:59:6e:4c:01:a0:42:ce:5d:67:4f:48:5d:89:49:30:a3:56: d8:ed:23:84:07:96:9d:7c:61:47:04:95:db:da:66:ca:3f:fc: 22:89:13:e5:39:09:0b:f1:8e:aa:ed:41:55:1a:3e:d5:9a:a5: dc:42:d8:c7:5a:f1:61:45:a2:ee:3b:cf:e3:7c:b5:70:38:56: cb:31:2b:bb:38:17:09:3f:22:30:1f:79:1f:cd:fd:ba:bd:63: 49:1a:2c:a3:6c:b8:5f:48:08:6a:f7:35:0d:4d:dd:dc:cb:95: 55:fe:19:b3:4d:15:41:d9:85:ab:33:6a:21:a5:b1:b7:13:36: cc:49:0b:b9:bf:47:a1:eb:be:da:cb:ca:cc:d0:b6:eb:4d:ac: d2:05:69:08:ca:9e:46:37:9f:16:7f:0c:45:97:d8:f8:d4:c3: 4e:6e:96:69:79:fb:6f:e7:7b:f0:ec:2f:5b:e7:fb:a4:cf:73: 8f:58:c9:63:ef:15:84:a0:45:d9:45:7e:88:a8:47:13:dc:c4: 80:40:ac:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWxZ185NWwavJlIbUMo9dvmBZdNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMwODU1MjBaFw0yNjA3MTIwOTAwMjBaMDMxMTAvBgNV BAMTKEZEOTlBQ0MwNUQ0NUY0NjE1QzZCMjQxOTZGMDVBNkNBREQ1MDIxMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlQjK+/+ANmtPrh7seMJdwwXBF 2gHFshIuG7tvfdDwKYvGQNX0NU7bYoTHBvegKCxEH2P9JCsWAMajhyByPJGF8SHx EU1MfsnSE1SkDxbB3j4y9rinf+UT/tRto9l20Ig2HlX1S7fu6S67xwWmjBDyEu6q rAwVb272Dx5IOYu/gC1nC1wuhVwVIxBEmHNmfy5m+KCCJS4qvNiAC3EsPM9I+bKN r+jZMY/ilR89128/8/7nl5OqJHxrhI9+9bhd3elewQWtudQdDUpq36Z0nP2N3ZFE dxP8D1K7YOXrziw0z9dQoiTySxgNJ6c7TWLldTQk7mSJeS9cYhRMJBfGZVP/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/ZmswF1F9GFcayQZbwWmyt1QISIwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyjMA0GCSqG SIb3DQEBCwUAA4IBAQA3bsPow8RJ3wEtje6JyEHFEWoVqUXnx3SEH2w4HF4FZITW ZwrCH1ulm2jvNsXb/rTuOve6tMmTWW5MAaBCzl1nT0hdiUkwo1bY7SOEB5adfGFH BJXb2mbKP/wiiRPlOQkL8Y6q7UFVGj7VmqXcQtjHWvFhRaLuO8/jfLVwOFbLMSu7 OBcJPyIwH3kfzf26vWNJGiyjbLhfSAhq9zUNTd3cy5VV/hmzTRVB2YWrM2ohpbG3 EzbMSQu5v0eh677ay8rM0LbrTazSBWkIyp5GN58WfwxFl9j41MNObpZpeftv53vw 7C9b5/ukz3OPWMlj7xWEoEXZRX6IqEcT3MSAQKzk -----END CERTIFICATE-----Generated at Sun Oct 26 22:57:10 2025 by rpki-client