$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: rhMO2MqPh3cniLXYWkvzSHWIOXssanP6t0N54AP5VLU= Subject key identifier: 4A:B5:04:C7:A7:05:7F:A4:8C:56:9C:21:45:C5:0C:92:B4:72:B8:1E Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 4DDB5EC08B0F07751A74CF0A7808244D3245B454 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 09:00:20 +0000 ROA not before: Sun 13 Jul 2025 08:55:20 +0000 ROA not after: Sun 12 Jul 2026 09:00:20 +0000 asID: 63859 IP address blocks: 158.140.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 18:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:db:5e:c0:8b:0f:07:75:1a:74:cf:0a:78:08:24:4d:32:45:b4:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 08:55:20 2025 GMT Not After : Jul 12 09:00:20 2026 GMT Subject: CN=4AB504C7A7057FA48C569C2145C50C92B472B81E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:2e:23:af:0f:e7:b6:96:56:5f:45:f9:9f: fc:d0:6d:b5:2e:24:54:cd:6e:47:e9:6f:b5:36:7c: 2a:fd:2d:a6:6b:0a:ef:9f:c9:b8:18:10:ee:e8:33: 5e:02:d1:f7:e7:3d:23:44:d7:da:23:c0:68:3c:29: fc:68:57:c3:ad:eb:6f:cf:0c:0b:1a:8f:e8:a8:de: ce:1b:29:da:82:84:14:b8:d0:34:48:be:16:a7:88: 36:b7:d0:a1:bb:83:5b:1b:36:57:ef:c2:ae:ee:c9: 74:68:9b:f6:42:37:77:0d:c6:e1:42:d8:89:61:26: f9:fc:c0:f3:33:d8:af:70:98:95:c3:19:7a:b3:9b: e3:8f:79:6c:17:73:da:13:f3:9e:7d:bb:97:eb:92: df:d9:c3:23:a6:d6:8e:95:55:2f:0d:8d:53:9b:e3: 9b:a7:6b:4c:b7:c6:59:57:71:d9:9a:c0:f7:f2:dd: 30:97:cb:90:79:d7:3f:da:b5:e0:0b:85:3c:e7:40: 3a:60:b6:05:b0:86:33:30:9c:d4:58:ff:d6:7e:ce: 29:62:c3:f0:84:1c:27:d6:c4:3d:ed:da:32:1d:2e: df:1a:31:17:dd:e5:4a:bd:bb:28:5d:4d:f1:3a:3c: 99:d5:8b:c1:c4:03:a6:d3:91:58:89:3c:7c:ad:f7: 5e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B5:04:C7:A7:05:7F:A4:8C:56:9C:21:45:C5:0C:92:B4:72:B8:1E X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.165.0/24 Signature Algorithm: sha256WithRSAEncryption 95:ed:75:ae:34:eb:ec:7a:6c:6d:3a:9d:7a:56:4e:a3:ea:29: 0f:23:26:fc:0f:df:71:05:c2:d8:d0:05:44:6d:8f:6e:b2:95: 69:ef:4f:67:7f:3b:d4:3f:89:a0:ec:bf:dc:30:95:68:6b:c9: a0:95:f4:cc:c6:87:f7:52:62:76:50:8e:7f:44:c3:97:17:f8: 1e:7d:02:14:94:a0:cc:d0:3c:88:f5:e6:27:81:2c:e3:c9:87: d0:0e:c5:f0:3e:e8:24:ab:b9:30:98:9c:95:be:4c:1f:e7:0b: 7c:f1:46:e7:72:b7:ac:fa:76:b1:81:04:26:fc:79:11:6f:58: 52:59:f3:1c:50:4d:f9:93:82:31:c9:e5:7f:25:ce:e0:7d:1a: 38:e1:a2:48:34:0f:e7:80:89:eb:bd:89:f0:e1:7e:fe:2f:35: 4b:f3:68:f2:4f:31:47:3f:27:bb:cf:be:c0:51:c6:89:1e:ad: 0c:36:ba:41:d7:c4:1b:4e:a4:33:70:1e:58:5f:84:3f:45:b7: 6f:05:bc:60:79:6a:82:62:5b:57:e1:cb:85:ba:06:a6:34:d9: d6:c4:95:04:c2:40:06:c5:39:60:28:0d:17:5b:e7:ca:de:13: 99:ce:0d:87:79:a6:8a:c1:bb:53:73:9f:5e:5c:8b:83:82:32: 4e:1c:87:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTdtewIsPB3UadM8KeAgkTTJFtFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMwODU1MjBaFw0yNjA3MTIwOTAwMjBaMDMxMTAvBgNV BAMTKDRBQjUwNEM3QTcwNTdGQTQ4QzU2OUMyMTQ1QzUwQzkyQjQ3MkI4MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGEy4jrw/ntpZWX0X5n/zQbbUu JFTNbkfpb7U2fCr9LaZrCu+fybgYEO7oM14C0ffnPSNE19ojwGg8KfxoV8Ot62/P DAsaj+io3s4bKdqChBS40DRIvhaniDa30KG7g1sbNlfvwq7uyXRom/ZCN3cNxuFC 2IlhJvn8wPMz2K9wmJXDGXqzm+OPeWwXc9oT8559u5frkt/ZwyOm1o6VVS8NjVOb 45una0y3xllXcdmawPfy3TCXy5B51z/ateALhTznQDpgtgWwhjMwnNRY/9Z+zili w/CEHCfWxD3t2jIdLt8aMRfd5Uq9uyhdTfE6PJnVi8HEA6bTkViJPHyt9167AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSrUEx6cFf6SMVpwhRcUMkrRyuB4wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoylMA0GCSqG SIb3DQEBCwUAA4IBAQCV7XWuNOvsemxtOp16Vk6j6ikPIyb8D99xBcLY0AVEbY9u spVp709nfzvUP4mg7L/cMJVoa8mglfTMxof3UmJ2UI5/RMOXF/gefQIUlKDM0DyI 9eYngSzjyYfQDsXwPugkq7kwmJyVvkwf5wt88Ubncres+naxgQQm/HkRb1hSWfMc UE35k4IxyeV/Jc7gfRo44aJINA/ngInrvYnw4X7+LzVL82jyTzFHPye7z77AUcaJ Hq0MNrpB18QbTqQzcB5YX4Q/RbdvBbxgeWqCYltX4cuFugamNNnWxJUEwkAGxTlg KA0XW+fK3hOZzg2HeaaKwbtTc59eXIuDgjJOHIfP -----END CERTIFICATE-----Generated at Sun Oct 26 22:57:10 2025 by rpki-client