$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: pTTjwrV1QIu6SOKwmUvyOhjSk2WrEsFFcswXdNBhjlk= Subject key identifier: 89:A3:05:64:7D:4B:98:FF:AA:2F:62:96:51:21:15:5C:7D:08:19:4C Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 644181BEC3A492A49C27076C23CDC92807F25C56 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:03 +0000 ROA not before: Sun 13 Jul 2025 11:55:03 +0000 ROA not after: Sun 12 Jul 2026 12:00:03 +0000 asID: 63859 IP address blocks: 158.140.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:41:81:be:c3:a4:92:a4:9c:27:07:6c:23:cd:c9:28:07:f2:5c:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:03 2025 GMT Not After : Jul 12 12:00:03 2026 GMT Subject: CN=89A305647D4B98FFAA2F62965121155C7D08194C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:10:1c:e7:46:f6:7c:61:67:2c:0b:43:20:37: 90:b6:9f:5b:49:44:05:5e:2d:2e:80:3f:d7:f9:a6: cd:cd:1c:80:1c:3e:75:ec:d1:00:9f:92:a1:60:ae: 51:18:6c:71:67:94:36:7f:2c:58:08:06:dd:d7:40: 1c:34:06:82:b7:dd:b1:0a:ed:c4:f5:00:66:1b:ed: dc:a5:aa:e2:94:30:be:5e:b1:ac:77:44:0f:d3:d1: ad:33:d0:72:9c:6e:51:93:93:3c:8a:24:03:e2:fe: cb:c7:54:4b:9c:2a:b4:b5:ac:fd:76:e6:87:bc:84: f1:58:09:96:89:19:93:2c:18:aa:6d:e4:f7:d8:53: 00:7b:27:41:0a:8f:2c:9d:be:4e:be:07:0f:08:50: 07:61:1a:58:97:58:84:ce:7c:c0:35:7d:1a:0f:e5: 7f:b8:9d:b7:2d:02:1f:85:9d:75:49:e6:c1:66:ea: d8:b2:95:c4:73:13:a9:62:15:fb:d7:a9:e3:7d:9a: bd:b7:e5:05:d9:25:92:63:6b:00:d1:8a:50:0c:2b: 07:05:28:6e:65:a0:ed:36:0f:7e:b7:1c:60:04:c5: 05:a3:4e:b8:42:b4:be:0b:d3:70:16:fe:25:5b:64: 23:b0:e9:37:a3:ef:38:91:0a:30:65:03:85:20:8d: 34:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A3:05:64:7D:4B:98:FF:AA:2F:62:96:51:21:15:5C:7D:08:19:4C X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.177.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:78:7f:83:d5:05:99:04:45:54:68:ef:35:da:f9:b4:68:79: 0f:5d:1a:4d:ae:0c:d5:3b:f2:a4:bd:bd:6f:a9:c7:c0:e4:f1: f7:a6:3c:fb:af:0f:50:b9:ac:a4:6b:18:f9:18:5a:4b:9f:98: a8:5a:15:f5:0d:fb:85:93:3b:6a:49:14:05:6e:f6:20:c9:de: af:66:24:b0:c4:5f:d4:6b:16:f4:94:cf:11:88:f8:5f:10:d6: 51:f6:87:19:7a:9f:ee:62:1c:c6:52:1b:d6:7e:bd:4b:89:75: e5:0c:7c:2f:f6:78:c1:f4:ab:6c:1a:e1:df:25:37:82:8b:19: 56:67:f6:a1:d9:de:e7:6b:f4:33:b0:c4:64:6f:99:d1:67:70: b1:a0:d8:80:67:9c:07:ee:c6:ad:1c:c7:85:f1:88:3b:ed:a4: 8c:02:e9:42:df:b5:4f:e2:76:52:8a:0f:1f:dc:d0:5a:b0:08: 6f:34:14:10:c2:63:f0:8f:74:8f:5f:5e:41:20:87:77:bc:19: 7a:15:5d:16:3b:6d:32:b7:1f:82:e1:8f:34:42:57:3c:52:c9: a0:08:ab:2b:cd:66:ca:b1:e4:b9:97:ee:8f:d2:12:90:29:a1: 1f:10:d5:43:ff:7f:88:4e:21:7f:89:e5:f9:ad:51:29:5d:21: b2:38:2e:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZEGBvsOkkqScJwdsI83JKAfyXFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDNaFw0yNjA3MTIxMjAwMDNaMDMxMTAvBgNV BAMTKDg5QTMwNTY0N0Q0Qjk4RkZBQTJGNjI5NjUxMjExNTVDN0QwODE5NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdEBznRvZ8YWcsC0MgN5C2n1tJ RAVeLS6AP9f5ps3NHIAcPnXs0QCfkqFgrlEYbHFnlDZ/LFgIBt3XQBw0BoK33bEK 7cT1AGYb7dylquKUML5esax3RA/T0a0z0HKcblGTkzyKJAPi/svHVEucKrS1rP12 5oe8hPFYCZaJGZMsGKpt5PfYUwB7J0EKjyydvk6+Bw8IUAdhGliXWITOfMA1fRoP 5X+4nbctAh+FnXVJ5sFm6tiylcRzE6liFfvXqeN9mr235QXZJZJjawDRilAMKwcF KG5loO02D363HGAExQWjTrhCtL4L03AW/iVbZCOw6Tej7ziRCjBlA4UgjTT9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiaMFZH1LmP+qL2KWUSEVXH0IGUwwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM3MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyxMA0GCSqG SIb3DQEBCwUAA4IBAQAMeH+D1QWZBEVUaO812vm0aHkPXRpNrgzVO/Kkvb1vqcfA 5PH3pjz7rw9Quaykaxj5GFpLn5ioWhX1DfuFkztqSRQFbvYgyd6vZiSwxF/Uaxb0 lM8RiPhfENZR9ocZep/uYhzGUhvWfr1LiXXlDHwv9njB9KtsGuHfJTeCixlWZ/ah 2d7na/QzsMRkb5nRZ3CxoNiAZ5wH7satHMeF8Yg77aSMAulC37VP4nZSig8f3NBa sAhvNBQQwmPwj3SPX15BIId3vBl6FV0WO20ytx+C4Y80Qlc8UsmgCKsrzWbKseS5 l+6P0hKQKaEfENVD/3+ITiF/ieX5rVEpXSGyOC5s -----END CERTIFICATE-----Generated at Mon Jul 21 14:45:10 2025 by rpki-client