$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: wKr+MmZDCaPTtb36l0iiGlftJPH1DYlW3fkHnfy/pnY= Subject key identifier: ED:07:FD:5C:DD:4A:34:2A:79:65:F0:D4:0B:F2:B8:AB:0A:1C:AB:E9 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 6AC1F58F4FC81B28EC8D5BDE1A75955FBAF5D942 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 11:00:02 +0000 ROA not before: Sun 13 Jul 2025 10:55:02 +0000 ROA not after: Sun 12 Jul 2026 11:00:02 +0000 asID: 63859 IP address blocks: 158.140.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:c1:f5:8f:4f:c8:1b:28:ec:8d:5b:de:1a:75:95:5f:ba:f5:d9:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 10:55:02 2025 GMT Not After : Jul 12 11:00:02 2026 GMT Subject: CN=ED07FD5CDD4A342A7965F0D40BF2B8AB0A1CABE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:81:e5:03:20:85:d5:7a:46:2c:b8:aa:b8:1c: ce:db:41:0c:b3:0a:77:96:b6:86:fa:eb:b1:bc:e5: 47:92:ed:73:c0:6a:ad:45:70:b9:b9:43:c9:30:26: 6b:58:82:ec:be:69:8b:bf:e8:26:6f:d3:9f:28:2f: 0f:5c:ce:74:6e:be:6a:02:a9:02:c0:fc:2d:f1:ab: db:72:b5:a4:68:a1:0d:f5:6f:12:a7:f5:2b:32:db: 7d:e1:92:92:e5:1b:06:ec:ac:7a:07:e9:93:4b:10: d4:6f:a0:93:5d:21:04:dd:d2:aa:10:f4:74:73:03: a9:c3:2e:e6:4b:74:71:38:85:4a:8e:4e:be:c0:fd: 5f:49:36:43:41:9d:b2:c4:0f:8f:45:e8:44:6f:df: a4:2d:1c:20:7d:9c:7b:cc:55:4a:7c:15:6c:1b:39: 1b:81:a0:f7:56:7f:3e:cf:09:92:99:38:13:19:1c: 95:6b:f4:28:b0:ae:68:38:6a:7f:dc:83:43:63:b9: 01:02:00:32:01:58:75:b5:c4:69:2c:5b:04:3b:c9: 49:99:2e:8e:ea:30:b8:b9:59:a2:dc:fa:17:5d:db: 24:32:7c:04:e8:f0:c1:53:0e:30:df:54:fb:42:21: a1:46:b1:4f:2d:ff:6f:9f:63:e3:71:13:6c:8c:d1: bf:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:07:FD:5C:DD:4A:34:2A:79:65:F0:D4:0B:F2:B8:AB:0A:1C:AB:E9 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.166.0/24 Signature Algorithm: sha256WithRSAEncryption 33:b3:73:93:67:13:06:50:86:b3:a3:19:7e:ea:5b:13:be:63: c1:ae:52:32:de:dc:76:a4:f3:3e:80:f9:4b:cc:58:33:e9:dd: af:10:86:67:c0:1f:97:a3:a3:c3:f9:82:83:7f:46:b5:84:42: 9e:20:f3:c4:bf:3a:da:34:68:24:96:4b:e8:15:b7:80:ee:25: 4f:de:53:18:cc:76:dd:79:04:53:dc:66:c5:51:ed:5b:a7:53: 4d:af:af:96:41:ba:ba:4d:50:83:4e:3b:4b:22:73:50:4d:13: fa:e8:95:60:6f:96:47:c0:82:f8:89:4c:1b:ef:37:28:09:38: 44:fb:bb:b0:94:0b:29:b5:4c:55:1e:54:34:cb:8d:3d:72:ad: f6:86:a1:0b:10:26:37:66:e1:22:fa:de:1d:99:c6:5c:97:e3: 31:0c:f3:fd:fd:18:0a:48:51:50:09:66:74:28:35:e0:d2:f1: 57:47:f5:fe:75:42:20:87:fa:bb:d1:59:70:de:97:60:02:41: b0:d9:0e:b2:25:6c:e9:25:e8:e6:51:77:b9:d9:8d:68:69:16: c3:e2:06:b1:5d:73:b5:ff:ee:ae:c1:4a:cb:70:03:9d:8a:85: 1a:eb:04:42:5c:4a:98:55:53:24:f1:b7:36:25:6d:78:8f:f5: 16:58:e8:66 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUasH1j0/IGyjsjVveGnWVX7r12UIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMDU1MDJaFw0yNjA3MTIxMTAwMDJaMDMxMTAvBgNV BAMTKEVEMDdGRDVDREQ0QTM0MkE3OTY1RjBENDBCRjJCOEFCMEExQ0FCRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdgeUDIIXVekYsuKq4HM7bQQyz CneWtob667G85UeS7XPAaq1FcLm5Q8kwJmtYguy+aYu/6CZv058oLw9cznRuvmoC qQLA/C3xq9tytaRooQ31bxKn9Ssy233hkpLlGwbsrHoH6ZNLENRvoJNdIQTd0qoQ 9HRzA6nDLuZLdHE4hUqOTr7A/V9JNkNBnbLED49F6ERv36QtHCB9nHvMVUp8FWwb ORuBoPdWfz7PCZKZOBMZHJVr9Ciwrmg4an/cg0NjuQECADIBWHW1xGksWwQ7yUmZ Lo7qMLi5WaLc+hdd2yQyfATo8MFTDjDfVPtCIaFGsU8t/2+fY+NxE2yM0b9HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7Qf9XN1KNCp5ZfDUC/K4qwocq+kwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoymMA0GCSqG SIb3DQEBCwUAA4IBAQAzs3OTZxMGUIazoxl+6lsTvmPBrlIy3tx2pPM+gPlLzFgz 6d2vEIZnwB+Xo6PD+YKDf0a1hEKeIPPEvzraNGgklkvoFbeA7iVP3lMYzHbdeQRT 3GbFUe1bp1NNr6+WQbq6TVCDTjtLInNQTRP66JVgb5ZHwIL4iUwb7zcoCThE+7uw lAsptUxVHlQ0y409cq32hqELECY3ZuEi+t4dmcZcl+MxDPP9/RgKSFFQCWZ0KDXg 0vFXR/X+dUIgh/q70Vlw3pdgAkGw2Q6yJWzpJejmUXe52Y1oaRbD4gaxXXO1/+6u wUrLcAOdioUa6wRCXEqYVVMk8bc2JW14j/UWWOhm -----END CERTIFICATE-----Generated at Mon Jul 21 14:41:11 2025 by rpki-client