$ rpki-client -vvf repo-rpki.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa File: 3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa (raw, json) Hash identifier: hxLgZVEmgK6Q9Qorix7qtcxFffjQzl54opLxUmCvE+8= Subject key identifier: EA:E9:F8:B9:B5:88:6F:02:07:E6:96:A2:6C:07:A0:38:15:77:2D:60 Certificate issuer: /CN=C23F832F27DB88B8BC58766932FDA19B3E3A4CBF Certificate serial: 148FFD9501FB13E80C6B6E2EE3BA384CC142F3AD Authority key identifier: C2:3F:83:2F:27:DB:88:B8:BC:58:76:69:32:FD:A1:9B:3E:3A:4C:BF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C23F832F27DB88B8BC58766932FDA19B3E3A4CBF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa Signing time: Thu 10 Jul 2025 09:02:23 +0000 ROA not before: Thu 10 Jul 2025 08:57:23 +0000 ROA not after: Thu 09 Jul 2026 09:02:23 +0000 asID: 153091 IP address blocks: 160.25.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/C23F832F27DB88B8BC58766932FDA19B3E3A4CBF.crl rsync://repo-rpki.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/C23F832F27DB88B8BC58766932FDA19B3E3A4CBF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C23F832F27DB88B8BC58766932FDA19B3E3A4CBF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 09:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:8f:fd:95:01:fb:13:e8:0c:6b:6e:2e:e3:ba:38:4c:c1:42:f3:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C23F832F27DB88B8BC58766932FDA19B3E3A4CBF Validity Not Before: Jul 10 08:57:23 2025 GMT Not After : Jul 9 09:02:23 2026 GMT Subject: CN=EAE9F8B9B5886F0207E696A26C07A03815772D60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8a:28:29:6f:2c:07:2b:1e:1b:a3:63:a8:19: 3e:d9:bd:f5:b8:34:ef:b3:79:bd:22:cb:95:40:fc: 56:68:cb:6a:9f:0c:39:20:fb:6f:d4:1f:56:06:d4: 25:71:ec:55:7f:3d:2d:16:b2:88:e6:13:e4:2b:88: 41:04:37:3d:35:d9:05:03:69:3e:5e:65:d7:b4:66: 8c:52:8c:76:d7:37:e3:e7:ef:01:9f:63:f6:9f:7d: a1:0c:9e:0e:36:f1:fa:0f:47:95:02:a3:5f:9f:20: 44:76:ec:e8:56:54:59:ab:40:b7:f2:fa:a8:06:60: 3c:88:61:0b:f0:05:de:cb:7e:8b:2b:4d:30:47:36: 82:bd:30:3b:ed:fe:b3:1c:cb:5d:28:48:ae:18:07: 0f:17:41:5a:a0:2e:d6:8e:cc:dc:e9:08:c0:28:f0: a7:69:8d:d4:88:45:0d:96:2e:18:ac:16:7e:38:d8: 54:72:e0:66:f1:a9:45:fa:99:b1:62:f0:aa:7f:08: 61:75:b1:ca:2e:2e:04:01:91:ff:be:c0:be:4d:af: 2e:0e:ac:25:d5:15:c6:40:67:57:14:89:9a:64:b9: 82:fa:3d:af:15:d0:d8:7b:1f:f7:ee:9c:48:58:4d: fb:12:b6:00:cf:7a:f6:53:68:cc:6a:56:89:6b:2e: ec:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E9:F8:B9:B5:88:6F:02:07:E6:96:A2:6C:07:A0:38:15:77:2D:60 X509v3 Authority Key Identifier: keyid:C2:3F:83:2F:27:DB:88:B8:BC:58:76:69:32:FD:A1:9B:3E:3A:4C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/C23F832F27DB88B8BC58766932FDA19B3E3A4CBF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C23F832F27DB88B8BC58766932FDA19B3E3A4CBF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.248.0/24 Signature Algorithm: sha256WithRSAEncryption 69:d5:9f:b1:29:48:c6:60:66:3c:87:8b:e8:99:5c:26:e8:c6: f0:0a:ad:d8:f1:cc:43:32:39:df:a6:e7:27:7d:50:9c:41:c2: 92:ae:86:40:d6:7d:53:1f:a4:79:c1:08:59:2c:2f:83:90:ce: 58:e7:f5:33:f2:2b:ec:81:d3:b4:d9:f5:4f:06:29:f3:91:b9: 5c:cc:fe:99:ba:11:7e:93:c9:33:83:78:3f:69:00:72:9b:bf: e7:2a:70:2a:27:00:54:62:2c:a7:d0:9b:ac:be:83:dc:b1:c6: 08:be:fa:1d:b6:14:2e:75:a3:cb:a7:c1:bc:29:ae:2b:48:d7: 52:80:5b:d1:ee:91:3b:83:3b:9f:ff:ba:01:6f:d4:2d:82:23: 65:90:1a:2d:1d:18:7f:5b:f6:8e:cd:af:e4:de:86:cf:03:6b: 3a:e6:59:5b:3c:0c:64:c1:83:5b:e5:3c:ea:77:42:c6:ee:dd: 29:c8:ac:79:22:6b:36:97:89:42:84:60:b1:0c:72:76:3c:f9: ed:3f:6c:e2:f0:17:f3:40:65:77:22:92:3b:b5:8d:b3:a4:8b: eb:9b:ba:f5:78:ba:6b:f6:e6:42:41:2c:11:db:e1:41:46:f1: 17:35:0e:ea:4f:13:ce:27:c7:b0:4d:b5:cd:47:a3:22:28:95: 00:c1:d9:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFI/9lQH7E+gMa24u47o4TMFC860wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIzRjgzMkYyN0RCODhCOEJDNTg3NjY5MzJGREExOUIz RTNBNENCRjAeFw0yNTA3MTAwODU3MjNaFw0yNjA3MDkwOTAyMjNaMDMxMTAvBgNV BAMTKEVBRTlGOEI5QjU4ODZGMDIwN0U2OTZBMjZDMDdBMDM4MTU3NzJENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3iigpbywHKx4bo2OoGT7ZvfW4 NO+zeb0iy5VA/FZoy2qfDDkg+2/UH1YG1CVx7FV/PS0WsojmE+QriEEENz012QUD aT5eZde0ZoxSjHbXN+Pn7wGfY/affaEMng428foPR5UCo1+fIER27OhWVFmrQLfy +qgGYDyIYQvwBd7LfosrTTBHNoK9MDvt/rMcy10oSK4YBw8XQVqgLtaOzNzpCMAo 8KdpjdSIRQ2WLhisFn442FRy4GbxqUX6mbFi8Kp/CGF1scouLgQBkf++wL5Nry4O rCXVFcZAZ1cUiZpkuYL6Pa8V0Nh7H/funEhYTfsStgDPevZTaMxqVolrLux3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6un4ubWIbwIH5paibAegOBV3LWAwHwYDVR0j BBgwFoAUwj+DLyfbiLi8WHZpMv2hmz46TL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Mjc5ZWU5Yy1hZDJiLTRiZWQtODY0MS0yM2JmMmQzYjE2ZGIvMC9DMjNGODMyRjI3 REI4OEI4QkM1ODc2NjkzMkZEQTE5QjNFM0E0Q0JGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzIzRjgzMkYyN0RCODhCOEJDNTg3NjY5MzJGREExOUIzRTNB NENCRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyNzllZTljLWFkMmItNGJlZC04 NjQxLTIzYmYyZDNiMTZkYi8wLzMxMzYzMDJlMzIzNTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn4MA0GCSqG SIb3DQEBCwUAA4IBAQBp1Z+xKUjGYGY8h4vomVwm6MbwCq3Y8cxDMjnfpucnfVCc QcKSroZA1n1TH6R5wQhZLC+DkM5Y5/Uz8ivsgdO02fVPBinzkblczP6ZuhF+k8kz g3g/aQBym7/nKnAqJwBUYiyn0JusvoPcscYIvvodthQudaPLp8G8Ka4rSNdSgFvR 7pE7gzuf/7oBb9QtgiNlkBotHRh/W/aOza/k3obPA2s65llbPAxkwYNb5Tzqd0LG 7t0pyKx5Ims2l4lChGCxDHJ2PPntP2zi8BfzQGV3IpI7tY2zpIvrm7r1eLpr9uZC QSwR2+FBRvEXNQ7qTxPOJ8ewTbXNR6MiKJUAwdmz -----END CERTIFICATE-----Generated at Thu Aug 7 03:20:16 2025 by rpki-client