$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: OPUKe+pYbzDgKIXD5ebp4rb6X8z2aHhQsSF8hk0i/sU= Subject key identifier: 75:CA:A0:EB:3E:24:C7:45:6E:F5:DF:87:79:2B:14:36:75:7E:15:50 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 1A4BA9EDEFAE854E2EDD1B9CD8EF191CD6FF56B7 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 10:00:03 +0000 ROA not before: Sun 13 Jul 2025 09:55:03 +0000 ROA not after: Sun 12 Jul 2026 10:00:03 +0000 asID: 63859 IP address blocks: 158.140.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4b:a9:ed:ef:ae:85:4e:2e:dd:1b:9c:d8:ef:19:1c:d6:ff:56:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 09:55:03 2025 GMT Not After : Jul 12 10:00:03 2026 GMT Subject: CN=75CAA0EB3E24C7456EF5DF87792B1436757E1550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:35:3a:1f:46:36:72:47:3c:ef:c5:74:6d:b2: aa:8b:b8:00:a9:18:16:64:4e:08:99:f5:4e:df:d0: 38:f7:a0:57:fe:82:e5:2b:b5:f0:38:2e:d5:71:90: b7:85:8e:6e:06:69:ad:9b:cc:c7:4e:57:83:9d:86: 0c:20:66:ce:ca:d8:b9:aa:fe:4a:12:6d:c6:57:72: 87:db:93:cc:94:34:9e:94:23:6a:0c:a0:a0:52:79: c3:2d:5a:e3:fc:a5:da:91:17:7f:be:de:ea:67:29: c3:eb:76:4b:86:17:fc:15:89:0b:7d:da:c2:75:e1: 40:78:ba:66:3a:16:b0:57:29:2b:af:c8:8d:c4:6d: ca:88:50:99:ac:78:ec:e8:8e:dd:3c:1b:cf:ad:d9: f0:8c:d6:f8:29:e6:3b:b0:ee:c8:7c:92:34:e7:c0: 8d:b4:c0:f2:d6:3a:a8:92:d6:3e:9d:07:6f:af:57: f2:fb:9a:21:d1:4c:2f:fa:2f:71:e5:1c:20:0d:53: a6:8c:b6:90:3e:fe:7d:83:68:43:a0:ea:31:7a:a2: 72:5f:81:78:2c:f0:83:78:30:c8:51:32:7f:02:b3: 0d:17:b1:d2:ad:b6:eb:0b:ca:e3:f3:9a:73:de:dd: ff:05:36:8f:7a:7f:63:2b:79:fe:c6:59:04:16:f9: 4c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CA:A0:EB:3E:24:C7:45:6E:F5:DF:87:79:2B:14:36:75:7E:15:50 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3138342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.184.0/24 Signature Algorithm: sha256WithRSAEncryption 06:d5:9c:e1:83:69:64:8a:9c:48:83:23:3d:ba:a3:c0:61:1c: c0:64:70:fc:72:1e:8e:f9:e3:d3:4c:75:a7:e7:99:21:c1:e6: df:a0:0a:a9:68:97:d4:f0:63:dc:d2:d7:46:3d:8f:84:be:2c: 97:06:79:fb:4c:c1:a8:37:76:1f:d3:e4:da:1c:a3:14:eb:3d: 58:0e:4d:7e:76:c7:f7:03:08:d4:a3:ff:b2:6b:1a:d8:73:5f: 3c:3c:44:b1:5c:38:83:a1:f5:16:9e:60:05:99:59:75:aa:8e: 2d:f4:b8:4c:c4:13:d7:2a:42:75:91:23:6f:75:93:8a:8e:7e: 37:82:ea:ed:86:99:7d:15:3d:f1:e8:fa:b2:bc:09:c9:84:c0: 73:2a:28:76:95:aa:76:94:30:6d:7e:a2:24:0f:47:04:24:c2: ba:1b:2b:2e:ca:54:7b:83:ab:82:02:09:df:64:31:62:d4:bf: a5:b1:92:b9:77:80:60:9d:d7:a3:bc:90:fc:3f:ab:ce:8d:1f: 5e:1e:74:bf:1d:04:b2:90:ca:66:93:1e:84:13:20:66:a3:c3: b5:31:1a:34:35:89:0e:c0:9e:5b:a2:5b:94:ea:58:32:70:29: 28:cf:89:ef:98:7b:99:5e:af:17:2f:35:5d:59:ac:16:53:23: cf:d2:aa:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGkup7e+uhU4u3Ruc2O8ZHNb/VrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMwOTU1MDNaFw0yNjA3MTIxMDAwMDNaMDMxMTAvBgNV BAMTKDc1Q0FBMEVCM0UyNEM3NDU2RUY1REY4Nzc5MkIxNDM2NzU3RTE1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKNTofRjZyRzzvxXRtsqqLuACp GBZkTgiZ9U7f0Dj3oFf+guUrtfA4LtVxkLeFjm4Gaa2bzMdOV4OdhgwgZs7K2Lmq /koSbcZXcofbk8yUNJ6UI2oMoKBSecMtWuP8pdqRF3++3upnKcPrdkuGF/wViQt9 2sJ14UB4umY6FrBXKSuvyI3EbcqIUJmseOzojt08G8+t2fCM1vgp5juw7sh8kjTn wI20wPLWOqiS1j6dB2+vV/L7miHRTC/6L3HlHCANU6aMtpA+/n2DaEOg6jF6onJf gXgs8IN4MMhRMn8Csw0XsdKttusLyuPzmnPe3f8FNo96f2Mref7GWQQW+UxbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdcqg6z4kx0Vu9d+HeSsUNnV+FVAwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzMxMzUzODJlMzEzNDMwMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy4MA0GCSqG SIb3DQEBCwUAA4IBAQAG1Zzhg2lkipxIgyM9uqPAYRzAZHD8ch6O+ePTTHWn55kh webfoAqpaJfU8GPc0tdGPY+EviyXBnn7TMGoN3Yf0+TaHKMU6z1YDk1+dsf3AwjU o/+yaxrYc188PESxXDiDofUWnmAFmVl1qo4t9LhMxBPXKkJ1kSNvdZOKjn43gurt hpl9FT3x6PqyvAnJhMBzKih2lap2lDBtfqIkD0cEJMK6GysuylR7g6uCAgnfZDFi 1L+lsZK5d4BgndejvJD8P6vOjR9eHnS/HQSykMpmkx6EEyBmo8O1MRo0NYkOwJ5b oluU6lgycCkoz4nvmHuZXq8XLzVdWawWUyPP0qpW -----END CERTIFICATE-----Generated at Mon Jul 21 19:29:06 2025 by rpki-client