$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: lpkFF4YVS0NUZ+A/yyhCVFpGscEs9wNKSBGb1vrCcnE= Subject key identifier: 11:8B:06:62:2A:90:B5:6A:ED:35:D4:CC:07:67:88:C0:28:49:3F:83 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5FF5C132C30506D64FEAC4581EC4E68A3F503D2D Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 11:00:02 +0000 ROA not before: Sun 13 Jul 2025 10:55:02 +0000 ROA not after: Sun 12 Jul 2026 11:00:02 +0000 asID: 63859 IP address blocks: 158.140.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:f5:c1:32:c3:05:06:d6:4f:ea:c4:58:1e:c4:e6:8a:3f:50:3d:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 10:55:02 2025 GMT Not After : Jul 12 11:00:02 2026 GMT Subject: CN=118B06622A90B56AED35D4CC076788C028493F83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:61:a8:f3:da:11:46:74:9c:06:f0:74:5c:b2: b3:22:7e:5a:86:58:39:06:92:b2:54:f2:8d:38:50: a2:e0:c5:c6:29:6c:3c:05:c4:c5:c4:44:43:e0:af: 90:d6:44:c6:34:eb:ef:02:d8:62:51:42:7c:f3:b8: e3:28:2d:1e:84:38:40:3a:74:ae:77:80:55:22:0e: fa:ee:81:e5:7b:c8:09:a3:a0:91:1c:ad:f9:15:26: 06:fb:15:2c:71:19:c9:ac:45:54:85:08:c1:fc:c9: 5a:75:09:9e:59:25:90:cc:99:90:ff:37:b6:8b:8b: cb:70:a1:97:d2:b2:b8:59:63:22:41:52:eb:b5:7c: a8:a3:75:6a:57:fa:96:49:19:f3:f3:e9:f4:c3:f9: 3c:e6:90:51:29:7d:3f:a2:77:3b:2b:46:14:8a:02: fc:ef:1a:d4:44:aa:3c:4f:d5:d3:c8:85:66:0b:0b: 66:1e:9a:17:70:cc:96:16:38:b8:fe:d2:f8:ba:6e: e1:b6:c7:69:25:43:0f:e9:35:f9:88:3f:c5:dd:90: e7:1d:c5:31:95:7e:f9:3e:f4:7a:1e:11:c8:ce:d3: 36:e9:b2:1f:95:3f:4c:45:c9:55:9d:c3:7b:1c:19: 13:78:3b:a7:de:90:ab:44:ad:40:d2:8a:6b:c2:e9: 91:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:8B:06:62:2A:90:B5:6A:ED:35:D4:CC:07:67:88:C0:28:49:3F:83 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.181.0/24 Signature Algorithm: sha256WithRSAEncryption 66:fe:dc:98:d7:ea:ba:8e:11:72:ec:9c:21:c2:e0:a2:e9:58: 8b:51:d5:24:d4:57:f2:23:95:ed:27:43:4d:33:75:b6:9f:ce: 71:0b:ff:93:53:11:7c:2d:12:95:fb:39:8d:86:9d:fb:b7:8a: c5:9a:6c:61:84:34:96:6c:45:3b:15:85:a9:d6:4c:3a:6f:9b: 83:4d:2f:b1:cb:4d:5d:3a:e2:f6:01:65:54:43:c9:29:52:9f: fb:72:85:f2:df:72:5e:23:5e:5f:c4:05:57:8e:11:d9:13:34: 57:03:45:6e:cf:36:2d:71:15:57:3a:89:27:4b:ae:3b:9a:10: 57:52:31:fe:86:f3:a9:c5:c4:e3:8a:9e:f0:09:85:b4:f4:2a: e3:c1:9f:59:3d:7d:91:dc:8e:28:aa:78:e4:af:9d:6f:36:b1: ee:7a:92:92:94:30:87:65:09:b0:79:54:bb:78:16:48:9f:da: d8:6a:bf:2e:89:d6:47:08:70:32:f3:86:4a:37:81:91:29:86: d0:59:fe:45:0f:0b:1d:43:89:b2:b1:6b:28:4b:74:47:34:4b: c0:b3:b2:be:6a:8b:42:e6:8b:db:c9:08:b4:e1:52:c0:1b:0d: f3:75:0e:55:88:c2:b7:0a:ae:cb:9d:3e:ad:3a:72:79:7f:4b: 2e:bc:6f:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX/XBMsMFBtZP6sRYHsTmij9QPS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMDU1MDJaFw0yNjA3MTIxMTAwMDJaMDMxMTAvBgNV BAMTKDExOEIwNjYyMkE5MEI1NkFFRDM1RDRDQzA3Njc4OEMwMjg0OTNGODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfYajz2hFGdJwG8HRcsrMiflqG WDkGkrJU8o04UKLgxcYpbDwFxMXEREPgr5DWRMY06+8C2GJRQnzzuOMoLR6EOEA6 dK53gFUiDvrugeV7yAmjoJEcrfkVJgb7FSxxGcmsRVSFCMH8yVp1CZ5ZJZDMmZD/ N7aLi8twoZfSsrhZYyJBUuu1fKijdWpX+pZJGfPz6fTD+TzmkFEpfT+idzsrRhSK AvzvGtREqjxP1dPIhWYLC2YemhdwzJYWOLj+0vi6buG2x2klQw/pNfmIP8XdkOcd xTGVfvk+9HoeEcjO0zbpsh+VP0xFyVWdw3scGRN4O6fekKtErUDSimvC6ZGfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEYsGYiqQtWrtNdTMB2eIwChJP4MwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy1MA0GCSqG SIb3DQEBCwUAA4IBAQBm/tyY1+q6jhFy7JwhwuCi6ViLUdUk1FfyI5XtJ0NNM3W2 n85xC/+TUxF8LRKV+zmNhp37t4rFmmxhhDSWbEU7FYWp1kw6b5uDTS+xy01dOuL2 AWVUQ8kpUp/7coXy33JeI15fxAVXjhHZEzRXA0VuzzYtcRVXOoknS647mhBXUjH+ hvOpxcTjip7wCYW09CrjwZ9ZPX2R3I4oqnjkr51vNrHuepKSlDCHZQmweVS7eBZI n9rYar8uidZHCHAy84ZKN4GRKYbQWf5FDwsdQ4mysWsoS3RHNEvAs7K+aotC5ovb yQi04VLAGw3zdQ5ViMK3Cq7LnT6tOnJ5f0suvG8d -----END CERTIFICATE-----Generated at Mon Jul 21 14:45:11 2025 by rpki-client