$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: k6+bQ+0qJihdjFmhRzGxe+4JIBbZh/UiXzxnsGps0cM= Subject key identifier: 30:C5:38:B4:35:CB:A4:F1:21:40:0B:1B:7B:8F:78:FD:EA:E6:AF:8A Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 261F64D5DC911E4465685B10B058F2C3DEB046D7 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:06 +0000 ROA not before: Sun 13 Jul 2025 11:55:06 +0000 ROA not after: Sun 12 Jul 2026 12:00:06 +0000 asID: 63859 IP address blocks: 158.140.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:1f:64:d5:dc:91:1e:44:65:68:5b:10:b0:58:f2:c3:de:b0:46:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:06 2025 GMT Not After : Jul 12 12:00:06 2026 GMT Subject: CN=30C538B435CBA4F121400B1B7B8F78FDEAE6AF8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b2:88:e3:78:52:ed:47:a2:bf:69:99:79:41: 9f:ad:98:0a:23:54:cb:e4:83:3a:3a:f1:2c:e2:17: 0a:d7:35:7f:d9:06:82:6b:27:04:97:e2:08:6c:01: 71:00:7f:6f:e3:3d:c4:20:1f:5a:16:07:60:7a:8f: 1a:57:a4:6a:1b:fd:6c:d9:3a:43:56:f8:f1:52:a0: 84:94:7a:a5:94:fa:87:6a:37:67:67:07:fa:d9:ca: ba:e4:16:d0:2b:40:34:c2:8b:9a:d1:e8:7e:d2:6b: b3:29:d6:1b:c1:a2:8e:d5:cf:69:34:b9:f0:47:cf: c9:01:1c:48:53:01:59:38:b0:f9:21:07:42:a1:b6: f6:8f:6e:29:5f:d8:aa:17:91:95:a9:de:a3:31:34: 83:be:df:01:1a:ea:f4:9c:5c:56:d4:30:34:1d:14: 04:0b:e4:a1:9f:24:0f:dc:5e:e1:ab:73:30:b0:50: f1:3e:3c:46:11:42:e6:a2:1c:db:12:d7:70:89:8c: d2:62:41:7d:54:18:82:3b:db:d3:a7:81:68:5d:0f: ce:96:fb:f0:38:c5:b0:be:31:43:4a:a0:fa:f3:d0: 08:a0:dc:90:62:33:bf:c2:d3:43:10:f8:a1:ce:01: 79:71:5f:ec:2a:29:a5:f7:64:31:65:57:24:42:30: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C5:38:B4:35:CB:A4:F1:21:40:0B:1B:7B:8F:78:FD:EA:E6:AF:8A X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.170.0/24 Signature Algorithm: sha256WithRSAEncryption 83:c6:62:39:d0:84:9d:6c:eb:6b:80:05:76:d3:33:96:11:d7: b5:a3:4e:7d:24:d5:b8:9d:5c:23:0b:e2:94:b3:db:4d:f8:66: 88:02:4b:5d:80:28:00:2a:f5:f8:a6:ea:b8:62:14:b5:e6:b1: 4c:3e:d3:8f:dc:b4:ac:6f:22:fc:85:9d:da:5f:b3:b3:bb:e7: f3:be:9b:68:74:44:08:20:25:9b:f7:c9:84:6b:fc:9f:c7:ea: 38:f8:18:f9:4a:4d:ed:96:cb:37:bd:d9:f8:d9:d8:69:a9:9a: ef:29:46:da:48:be:78:0b:9c:e8:2c:65:63:87:3d:59:36:e0: 22:18:12:55:6f:4c:24:85:ed:7e:3d:27:36:d2:15:d6:39:a1: 65:87:79:28:a5:09:ea:f5:c8:c5:18:71:08:d7:2b:d0:eb:72: 83:0c:11:a2:7c:22:f0:c3:36:85:53:06:69:9f:1b:15:54:85: 0d:e5:d0:3b:b4:12:ce:a8:af:ac:e9:b1:4f:68:df:fa:15:ab: 6a:02:26:50:2d:d7:5a:bf:43:75:28:62:f0:7c:6c:8e:53:f3: f4:f7:04:3b:39:6d:2a:e8:99:87:07:15:73:0c:83:46:25:97: 2c:7f:40:50:20:ca:3a:01:fe:8a:86:f8:ea:6c:73:59:ed:82: 6a:ff:ab:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJh9k1dyRHkRlaFsQsFjyw96wRtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDZaFw0yNjA3MTIxMjAwMDZaMDMxMTAvBgNV BAMTKDMwQzUzOEI0MzVDQkE0RjEyMTQwMEIxQjdCOEY3OEZERUFFNkFGOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/sojjeFLtR6K/aZl5QZ+tmAoj VMvkgzo68SziFwrXNX/ZBoJrJwSX4ghsAXEAf2/jPcQgH1oWB2B6jxpXpGob/WzZ OkNW+PFSoISUeqWU+odqN2dnB/rZyrrkFtArQDTCi5rR6H7Sa7Mp1hvBoo7Vz2k0 ufBHz8kBHEhTAVk4sPkhB0KhtvaPbilf2KoXkZWp3qMxNIO+3wEa6vScXFbUMDQd FAQL5KGfJA/cXuGrczCwUPE+PEYRQuaiHNsS13CJjNJiQX1UGII729OngWhdD86W +/A4xbC+MUNKoPrz0Aig3JBiM7/C00MQ+KHOAXlxX+wqKaX3ZDFlVyRCMGoRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMMU4tDXLpPEhQAsbe494/ermr4owHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyqMA0GCSqG SIb3DQEBCwUAA4IBAQCDxmI50ISdbOtrgAV20zOWEde1o059JNW4nVwjC+KUs9tN +GaIAktdgCgAKvX4puq4YhS15rFMPtOP3LSsbyL8hZ3aX7Ozu+fzvptodEQIICWb 98mEa/yfx+o4+Bj5Sk3tlss3vdn42dhpqZrvKUbaSL54C5zoLGVjhz1ZNuAiGBJV b0wkhe1+PSc20hXWOaFlh3kopQnq9cjFGHEI1yvQ63KDDBGifCLwwzaFUwZpnxsV VIUN5dA7tBLOqK+s6bFPaN/6FatqAiZQLddav0N1KGLwfGyOU/P09wQ7OW0q6JmH BxVzDINGJZcsf0BQIMo6Af6KhvjqbHNZ7YJq/6s4 -----END CERTIFICATE-----Generated at Mon Jul 21 14:45:09 2025 by rpki-client