$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: raH4n/zUgYBeUzo4jlpiliRcH2HnYLfEood8Kr9EgQQ= Subject key identifier: F1:28:E2:E6:BC:60:BA:2D:A8:B0:00:32:44:98:FF:95:50:66:D1:90 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 584EEA2031F616F66B31D64ADDCF340EEAD1EB59 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 10:00:02 +0000 ROA not before: Sun 13 Jul 2025 09:55:02 +0000 ROA not after: Sun 12 Jul 2026 10:00:02 +0000 asID: 63859 IP address blocks: 158.140.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:4e:ea:20:31:f6:16:f6:6b:31:d6:4a:dd:cf:34:0e:ea:d1:eb:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 09:55:02 2025 GMT Not After : Jul 12 10:00:02 2026 GMT Subject: CN=F128E2E6BC60BA2DA8B000324498FF955066D190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:68:77:0c:61:39:08:ee:5c:b6:f7:5c:ce: 60:f7:53:2b:78:48:24:dd:f2:32:bd:88:a7:4a:70: 37:5f:bb:98:be:ea:0e:75:49:75:f9:ce:62:ce:82: 3e:a7:18:54:7b:39:c4:ba:1b:d9:f7:2d:cb:42:c8: 53:40:cb:e5:63:54:b8:ac:41:df:1d:cb:e6:4b:df: ce:83:68:d0:9b:bc:8e:1e:9a:8d:45:c2:d8:83:a4: b6:9b:a8:02:2a:c3:b4:a5:1d:9c:80:c8:0a:22:69: 24:c0:ac:8f:81:6a:0e:a0:bd:b3:9d:3e:e8:33:42: b3:9c:90:a2:7b:09:cf:90:17:b1:8c:3f:ee:b4:4f: 85:5c:fd:d9:91:b3:ed:1e:73:57:ed:83:28:63:84: 08:65:f1:ce:e4:3d:b4:fb:8f:41:6d:e5:48:97:fc: c7:f9:6c:d8:7b:6b:c8:e2:5f:ee:6e:03:cc:a9:1b: 59:7d:db:12:d0:5a:96:a4:d3:1c:d6:19:b3:c3:39: 52:ee:f6:b5:5c:c7:84:53:8a:c3:7c:2c:b8:2e:a0: c7:3f:19:2c:5e:dd:2c:8b:a3:02:c6:86:f9:c6:9d: c8:7f:71:6e:70:8e:b7:bd:b1:cb:19:e8:3a:49:46: a6:7f:fe:e9:0e:7a:cf:d3:82:db:bb:61:b6:3e:23: 99:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:28:E2:E6:BC:60:BA:2D:A8:B0:00:32:44:98:FF:95:50:66:D1:90 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.183.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:59:d4:45:73:0f:ea:50:77:cb:df:10:10:26:05:36:28:46: 07:cc:70:4b:13:11:b8:00:f4:f1:06:75:7a:bd:96:27:73:2d: 3c:17:2c:17:64:f6:3e:e2:4f:d4:a0:c6:17:8b:ca:1b:7b:02: e8:ec:01:00:66:c0:71:7a:95:43:48:85:eb:28:bb:34:6e:24: 51:43:b5:a4:3d:d8:c2:9b:cd:70:f0:a5:e4:db:f1:36:6b:01: c5:c7:f3:03:99:a5:9a:22:5d:72:97:e6:6a:31:48:04:eb:66: 99:46:92:0f:24:bc:39:f0:f1:5e:4b:00:00:4f:bd:e6:f1:05: 2a:10:b8:e5:0a:1b:ac:3f:c9:51:0b:23:3b:1d:0d:6c:ea:70: ea:1f:9e:41:56:1a:19:e7:e4:04:89:22:a1:95:f3:1e:05:fe: 31:87:16:0c:76:8e:01:47:8c:e4:f6:ec:af:2c:ea:73:87:7f: b3:22:5f:d6:4b:74:b9:e4:67:18:b7:7a:5d:49:39:4e:45:31: 25:3a:6b:30:83:89:aa:9a:07:d9:6b:5b:33:ac:9c:ba:04:6b: 04:e9:45:d9:2a:dd:0c:86:04:43:ca:ee:a8:1f:38:c6:b3:24: 4f:48:3c:6f:ba:8b:88:b5:15:68:c6:ad:6b:b5:a1:01:62:2a: 4c:1b:13:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWE7qIDH2FvZrMdZK3c80DurR61kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMwOTU1MDJaFw0yNjA3MTIxMDAwMDJaMDMxMTAvBgNV BAMTKEYxMjhFMkU2QkM2MEJBMkRBOEIwMDAzMjQ0OThGRjk1NTA2NkQxOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC49mh3DGE5CO5ctvdczmD3Uyt4 SCTd8jK9iKdKcDdfu5i+6g51SXX5zmLOgj6nGFR7OcS6G9n3LctCyFNAy+VjVLis Qd8dy+ZL386DaNCbvI4emo1FwtiDpLabqAIqw7SlHZyAyAoiaSTArI+Bag6gvbOd PugzQrOckKJ7Cc+QF7GMP+60T4Vc/dmRs+0ec1ftgyhjhAhl8c7kPbT7j0Ft5UiX /Mf5bNh7a8jiX+5uA8ypG1l92xLQWpak0xzWGbPDOVLu9rVcx4RTisN8LLguoMc/ GSxe3SyLowLGhvnGnch/cW5wjre9scsZ6DpJRqZ//ukOes/Tgtu7YbY+I5nRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8Sji5rxgui2osAAyRJj/lVBm0ZAwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy3MA0GCSqG SIb3DQEBCwUAA4IBAQA7WdRFcw/qUHfL3xAQJgU2KEYHzHBLExG4APTxBnV6vZYn cy08FywXZPY+4k/UoMYXi8obewLo7AEAZsBxepVDSIXrKLs0biRRQ7WkPdjCm81w 8KXk2/E2awHFx/MDmaWaIl1yl+ZqMUgE62aZRpIPJLw58PFeSwAAT73m8QUqELjl ChusP8lRCyM7HQ1s6nDqH55BVhoZ5+QEiSKhlfMeBf4xhxYMdo4BR4zk9uyvLOpz h3+zIl/WS3S55GcYt3pdSTlORTElOmswg4mqmgfZa1szrJy6BGsE6UXZKt0MhgRD yu6oHzjGsyRPSDxvuouItRVoxq1rtaEBYipMGxOP -----END CERTIFICATE-----Generated at Mon Jul 21 14:45:09 2025 by rpki-client