$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f31392d3234203d3e20313335343738.roa File: 3137352e3135382e33322e302f31392d3234203d3e20313335343738.roa (raw, json) Hash identifier: atmaN7VfuZGEAxBx3mBciW1u2N3hThOAJ46HBH8lQC0= Subject key identifier: 87:88:73:D7:17:BA:CD:E7:02:D5:9F:33:54:2E:92:E7:E9:F9:86:6D Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 708A21C2DBF05326DCB9F231F20DF0DD74B3A10C Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f31392d3234203d3e20313335343738.roa Signing time: Mon 08 Sep 2025 03:52:48 +0000 ROA not before: Mon 08 Sep 2025 03:47:48 +0000 ROA not after: Mon 07 Sep 2026 03:52:48 +0000 asID: 135478 IP address blocks: 175.158.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 08:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:8a:21:c2:db:f0:53:26:dc:b9:f2:31:f2:0d:f0:dd:74:b3:a1:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Sep 8 03:47:48 2025 GMT Not After : Sep 7 03:52:48 2026 GMT Subject: CN=878873D717BACDE702D59F33542E92E7E9F9866D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:47:54:5e:10:99:85:29:96:ed:8f:eb:b3:b5: a3:26:10:d9:24:31:70:37:7a:82:ea:b4:b6:e8:7e: 22:3c:ac:9f:86:49:b8:9c:7f:da:ab:03:0b:7d:c9: 80:e7:13:23:53:6a:9e:2e:80:31:82:a6:f8:0b:60: 42:03:ee:da:3a:35:af:71:bd:c0:00:83:fb:c7:1b: 90:b3:0a:89:c8:e2:eb:8b:8f:c1:3b:bb:15:33:a6: 31:fa:ff:91:f5:ac:4a:ff:03:bd:9f:17:a0:c1:28: 04:d6:75:b0:02:ca:87:bf:e7:a5:f9:01:7f:cf:67: 26:3c:1f:98:5c:d5:db:0e:ae:81:b6:76:92:d7:d0: f0:50:71:2a:f8:74:c3:2b:4c:16:7a:81:af:6b:3c: ac:1a:47:2e:ec:32:8e:0a:fd:2a:b8:81:82:78:c0: ce:0c:3c:5a:0b:b8:73:27:cd:1c:62:3b:87:73:9a: 6c:6d:b8:08:00:df:be:69:c7:be:27:29:28:6c:f0: 4a:e8:05:74:b2:25:52:8e:88:33:68:d0:05:fc:cf: 89:36:71:ce:cf:df:f8:e9:a3:3b:61:99:e8:02:b6: 50:89:1c:b4:f2:0f:08:45:5a:8b:57:57:33:54:1b: d6:af:b2:b3:71:b4:21:f1:84:c0:cc:99:5f:d5:7c: 01:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:88:73:D7:17:BA:CD:E7:02:D5:9F:33:54:2E:92:E7:E9:F9:86:6D X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f31392d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.158.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5d:c4:ce:1e:86:59:8f:b6:04:e4:9d:36:c5:6a:2d:bd:b6:ac: 19:cc:e6:ac:61:70:6f:3a:08:28:db:02:1f:d0:e7:db:8c:d3: 90:63:55:22:96:3d:18:8a:5b:79:ca:10:a7:3c:fe:ab:ed:14: ef:bc:f1:a4:8e:31:a2:c0:bb:42:cb:4e:7e:04:ab:18:5b:be: 42:01:45:ee:c5:78:a1:3e:da:b9:a1:6f:63:16:8f:de:8c:ca: 3c:18:68:88:7c:9b:94:82:93:30:93:29:40:1e:92:64:0a:52: 27:db:f2:cd:cd:70:d1:41:39:05:87:81:de:40:71:92:37:49: 24:a6:59:e1:72:44:f2:a0:2c:fa:c5:e6:4c:3d:57:4a:37:28: 0a:6c:01:f4:a1:d6:ae:82:08:2a:b0:f4:75:0d:14:01:4a:68: 87:86:bc:cf:6c:a7:88:d0:74:98:b0:90:95:af:ab:36:80:7f: 91:37:66:d8:f7:9b:3c:99:6b:1a:cd:ae:79:70:54:c9:a6:64: 86:a1:c9:08:58:22:b9:fe:f4:a3:2e:63:ee:0b:39:e8:c9:1c: 0c:89:11:69:63:25:cc:1d:b7:2c:f9:4b:35:b4:55:e0:34:49: 30:03:7a:2e:94:e8:5f:a9:d5:66:25:c5:94:a2:0a:b5:96:0d: 4b:81:e1:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcIohwtvwUybcufIx8g3w3XSzoQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA5MDgwMzQ3NDhaFw0yNjA5MDcwMzUyNDhaMDMxMTAvBgNV BAMTKDg3ODg3M0Q3MTdCQUNERTcwMkQ1OUYzMzU0MkU5MkU3RTlGOTg2NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqR1ReEJmFKZbtj+uztaMmENkk MXA3eoLqtLbofiI8rJ+GSbicf9qrAwt9yYDnEyNTap4ugDGCpvgLYEID7to6Na9x vcAAg/vHG5CzConI4uuLj8E7uxUzpjH6/5H1rEr/A72fF6DBKATWdbACyoe/56X5 AX/PZyY8H5hc1dsOroG2dpLX0PBQcSr4dMMrTBZ6ga9rPKwaRy7sMo4K/Sq4gYJ4 wM4MPFoLuHMnzRxiO4dzmmxtuAgA375px74nKShs8EroBXSyJVKOiDNo0AX8z4k2 cc7P3/jpozthmegCtlCJHLTyDwhFWotXVzNUG9avsrNxtCHxhMDMmV/VfAFTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUh4hz1xe6zecC1Z8zVC6S5+n5hm0wHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMxMzczNTJlMzEzNTM4MmUzMzMyMmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFr54gMA0GCSqG SIb3DQEBCwUAA4IBAQBdxM4ehlmPtgTknTbFai29tqwZzOasYXBvOggo2wIf0Ofb jNOQY1Uilj0Yilt5yhCnPP6r7RTvvPGkjjGiwLtCy05+BKsYW75CAUXuxXihPtq5 oW9jFo/ejMo8GGiIfJuUgpMwkylAHpJkClIn2/LNzXDRQTkFh4HeQHGSN0kkplnh ckTyoCz6xeZMPVdKNygKbAH0odaugggqsPR1DRQBSmiHhrzPbKeI0HSYsJCVr6s2 gH+RN2bY95s8mWsaza55cFTJpmSGockIWCK5/vSjLmPuCznoyRwMiRFpYyXMHbcs +Us1tFXgNEkwA3oulOhfqdVmJcWUogq1lg1LgeG0 -----END CERTIFICATE-----Generated at Mon Sep 15 15:11:31 2025 by rpki-client