$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa File: 3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa (raw, json) Hash identifier: MG/J/pE598W0dSws8CxeYL22B2yFb4db9pJ8veM+SQU= Subject key identifier: A6:65:45:14:B9:F7:0B:FE:EE:70:BD:F8:C6:3D:6C:85:1A:91:17:D2 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 6496E544F6875EBA0F87DDBBDB36952F2469A4B6 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa Signing time: Fri 15 Aug 2025 02:02:27 +0000 ROA not before: Fri 15 Aug 2025 01:57:27 +0000 ROA not after: Fri 14 Aug 2026 02:02:27 +0000 asID: 134654 IP address blocks: 175.184.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 15:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:96:e5:44:f6:87:5e:ba:0f:87:dd:bb:db:36:95:2f:24:69:a4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Aug 15 01:57:27 2025 GMT Not After : Aug 14 02:02:27 2026 GMT Subject: CN=A6654514B9F70BFEEE70BDF8C63D6C851A9117D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f4:4e:ca:10:98:c0:62:57:a3:73:68:aa:ef: 23:fa:41:8f:83:ab:bd:1d:3e:5e:e9:2c:07:87:11: 9a:db:17:1f:d9:8f:39:12:01:a9:7c:0e:11:cf:7d: b1:d1:75:89:5a:cc:8b:ef:f2:3c:5f:7e:80:53:d8: e4:b5:cd:86:2f:97:bc:93:66:81:0b:e1:48:08:f2: 42:57:86:a1:0f:66:4c:2b:26:d5:71:2a:ef:21:5c: f0:9d:b1:27:dc:5c:db:d8:5a:1b:22:09:eb:c8:76: 37:93:80:dd:45:53:d4:f7:7f:e3:20:5e:b2:dd:a8: bc:eb:0b:d1:c4:55:85:c4:6a:3d:e0:9f:63:07:a7: 59:7f:8b:8a:7a:0a:c6:71:47:38:a0:6a:42:c9:47: 88:74:da:42:86:66:28:66:f3:e2:53:56:ae:b7:de: f4:56:83:3c:06:ae:7c:41:09:68:b2:0f:19:b3:6c: 49:f8:55:21:4f:b8:67:35:4b:62:c6:a0:b7:13:c2: a9:73:36:b8:6e:e1:f4:81:cb:59:ee:2d:9a:ea:30: 21:26:98:af:03:50:6e:55:17:7c:9e:8c:3e:c7:bb: 33:f6:a3:21:83:c7:1b:e7:1b:5f:6c:ec:ce:e8:fc: 03:5e:59:f7:35:90:04:d2:08:b5:75:b4:fb:ec:44: 63:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:65:45:14:B9:F7:0B:FE:EE:70:BD:F8:C6:3D:6C:85:1A:91:17:D2 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3233382e302f32332d3234203d3e20313334363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.184.238.0/23 Signature Algorithm: sha256WithRSAEncryption 29:d3:fb:15:4e:ee:18:cb:ba:8f:65:32:9a:05:06:26:44:40: a8:f5:61:24:ff:f3:8a:84:0f:93:c2:96:5f:d9:e3:95:ed:71: 19:30:d8:a9:70:a2:71:e5:fa:1f:68:b6:2c:5e:44:70:3e:23: 63:38:62:ab:62:0d:cd:44:5c:4c:56:31:41:5a:b1:08:62:54: 69:69:87:be:a8:c2:32:52:e7:c0:5c:3a:1f:af:ff:4a:ee:89: 85:a8:5f:0d:e4:3c:bf:54:c9:05:6c:75:8b:2d:55:22:70:a3: c6:a6:3e:55:67:aa:00:63:b8:a4:ea:ec:86:69:4e:48:4b:88: c4:f6:cb:7e:df:b4:f6:a7:a6:17:81:bb:bd:5c:7a:c9:76:04: 42:2a:04:4b:4e:33:fc:15:65:31:ee:62:ba:d1:f0:17:05:f8: 0f:5d:f6:66:d0:2d:95:2f:21:5e:56:f2:9d:5b:fc:1b:4c:89: f4:84:6c:ab:55:45:67:21:2a:47:79:cc:0f:5c:9c:12:41:17: 85:39:8b:91:8e:8e:dd:28:a3:0a:7c:33:b7:9b:24:07:04:d1: d9:a1:8e:a3:d2:ce:25:e5:f0:b9:c1:a2:8d:18:ed:d6:37:28: 70:42:81:d3:3e:74:71:12:6d:9d:07:41:48:86:2b:99:fb:00: 0d:96:0c:92 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZJblRPaHXroPh9272zaVLyRppLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA4MTUwMTU3MjdaFw0yNjA4MTQwMjAyMjdaMDMxMTAvBgNV BAMTKEE2NjU0NTE0QjlGNzBCRkVFRTcwQkRGOEM2M0Q2Qzg1MUE5MTE3RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs9E7KEJjAYlejc2iq7yP6QY+D q70dPl7pLAeHEZrbFx/ZjzkSAal8DhHPfbHRdYlazIvv8jxffoBT2OS1zYYvl7yT ZoEL4UgI8kJXhqEPZkwrJtVxKu8hXPCdsSfcXNvYWhsiCevIdjeTgN1FU9T3f+Mg XrLdqLzrC9HEVYXEaj3gn2MHp1l/i4p6CsZxRzigakLJR4h02kKGZihm8+JTVq63 3vRWgzwGrnxBCWiyDxmzbEn4VSFPuGc1S2LGoLcTwqlzNrhu4fSBy1nuLZrqMCEm mK8DUG5VF3yejD7HuzP2oyGDxxvnG19s7M7o/ANeWfc1kATSCLV1tPvsRGMPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpmVFFLn3C/7ucL34xj1shRqRF9IwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzczNTJlMzEzODM0MmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGvuO4wDQYJ KoZIhvcNAQELBQADggEBACnT+xVO7hjLuo9lMpoFBiZEQKj1YST/84qED5PCll/Z 45XtcRkw2KlwonHl+h9otixeRHA+I2M4YqtiDc1EXExWMUFasQhiVGlph76owjJS 58BcOh+v/0ruiYWoXw3kPL9UyQVsdYstVSJwo8amPlVnqgBjuKTq7IZpTkhLiMT2 y37ftPanpheBu71cesl2BEIqBEtOM/wVZTHuYrrR8BcF+A9d9mbQLZUvIV5W8p1b /BtMifSEbKtVRWchKkd5zA9cnBJBF4U5i5GOjt0oowp8M7ebJAcE0dmhjqPSziXl 8LnBoo0Y7dY3KHBCgdM+dHESbZ0HQUiGK5n7AA2WDJI= -----END CERTIFICATE-----Generated at Thu Oct 30 17:57:41 2025 by rpki-client