$ rpki-client -vvf repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa File: 3136302e32352e33342e302f32342d3234203d3e20313532383331.roa (raw, json) Hash identifier: wjv3vvC2wj1y4C3rtdqqFi7D2mmhFfTdUSVuxIoWgnY= Subject key identifier: 69:23:F8:42:48:4D:12:0C:FF:EF:E4:A9:1C:19:07:C6:3C:17:2D:FC Certificate issuer: /CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Certificate serial: 4602EEE666FB199C605B1C3A3B667166410AE6D7 Authority key identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa Signing time: Tue 04 Feb 2025 16:32:20 +0000 ROA not before: Tue 04 Feb 2025 16:27:20 +0000 ROA not after: Tue 03 Feb 2026 16:32:20 +0000 asID: 152831 IP address blocks: 160.25.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:02:ee:e6:66:fb:19:9c:60:5b:1c:3a:3b:66:71:66:41:0a:e6:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Validity Not Before: Feb 4 16:27:20 2025 GMT Not After : Feb 3 16:32:20 2026 GMT Subject: CN=6923F842484D120CFFEFE4A91C1907C63C172DFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fb:87:ae:bb:fe:56:87:fd:d1:fd:10:85:39: 6a:69:98:41:28:f0:60:c4:9f:bf:60:ec:39:f9:7c: 35:3a:8d:0a:4e:c8:cc:d6:02:d1:81:a2:0d:37:aa: 26:58:7a:05:4a:b3:f4:5b:c1:3b:39:86:11:cc:77: de:55:65:9b:58:c7:16:c7:8c:7c:fb:67:77:98:8d: d4:24:87:9d:c9:f1:12:fc:0e:76:9f:b3:19:80:3d: bd:c0:8e:7f:72:2d:5c:e7:77:34:e5:2e:8a:61:a0: b4:17:b1:1d:58:ac:82:75:e7:63:57:6e:9a:7a:26: 8f:02:0e:06:6c:aa:bc:db:60:a3:d7:85:01:07:28: aa:67:07:f7:43:e2:93:da:8a:b8:0f:0f:d9:27:bd: a1:67:6c:df:91:35:8b:46:e3:bd:0e:4e:fb:53:96: fa:63:d4:72:49:e2:4c:da:ba:29:eb:62:be:0d:77: 70:32:7f:ef:5c:77:9e:9b:3a:47:9c:97:30:57:0a: a6:3b:8b:a5:66:60:fb:2c:d8:81:ad:20:c3:94:a7: 01:b1:9d:39:b9:b9:b4:c2:fc:e4:c6:cd:37:65:f5: f0:16:12:9b:a1:6d:c2:e9:03:1f:13:92:02:8b:00: 49:10:0b:62:ed:36:4b:aa:c5:d7:a6:d0:8e:b3:c0: 58:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:23:F8:42:48:4D:12:0C:FF:EF:E4:A9:1C:19:07:C6:3C:17:2D:FC X509v3 Authority Key Identifier: keyid:24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.34.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:5e:24:61:44:52:6d:79:cc:f8:b3:4f:e8:dc:57:ba:33:a1: 49:36:6c:0a:c4:2a:bb:0f:9e:de:46:bc:65:e9:ff:65:27:e4: 80:45:9e:aa:23:52:dd:7e:40:8a:39:6b:45:16:f2:f5:41:b1: f1:34:27:93:3e:38:bd:8d:83:10:7f:dc:bf:e2:fb:e6:6a:fa: 1d:a8:79:b8:a2:a4:44:c1:13:35:5e:ee:0b:b3:f6:bc:f4:32: 29:fe:21:41:39:32:b9:b7:81:d7:7d:5d:04:2a:b8:aa:dd:1c: 2b:62:67:ec:1e:9e:cf:d9:65:02:be:ea:68:af:a2:60:da:d8: 9c:f9:12:c4:d5:49:d6:81:87:a9:ea:c1:6f:81:5b:8a:ad:40: 9c:ac:6c:53:27:89:2c:ca:7e:03:f7:fe:00:24:bf:d7:ae:87: cd:dd:b6:9a:36:f6:80:5c:57:84:6c:9c:05:d1:2a:06:26:37: 9a:ce:9c:fa:2e:5c:e7:db:d1:b2:9a:53:02:3d:30:58:26:7c: b3:aa:d3:4d:4d:15:5c:20:ac:e2:ba:4f:1a:80:ba:fd:4a:e5: 54:c3:fa:26:0f:28:f2:1a:11:05:4a:38:57:f2:e8:b2:b6:78: 89:9c:83:43:4b:3e:eb:8f:a0:7b:c3:4f:b9:7a:fb:91:ce:a1: 5a:68:e1:a1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURgLu5mb7GZxgWxw6O2ZxZkEK5tcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRD NjJBQUJEODAeFw0yNTAyMDQxNjI3MjBaFw0yNjAyMDMxNjMyMjBaMDMxMTAvBgNV BAMTKDY5MjNGODQyNDg0RDEyMENGRkVGRTRBOTFDMTkwN0M2M0MxNzJERkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK+4euu/5Wh/3R/RCFOWppmEEo 8GDEn79g7Dn5fDU6jQpOyMzWAtGBog03qiZYegVKs/RbwTs5hhHMd95VZZtYxxbH jHz7Z3eYjdQkh53J8RL8DnafsxmAPb3Ajn9yLVzndzTlLophoLQXsR1YrIJ152NX bpp6Jo8CDgZsqrzbYKPXhQEHKKpnB/dD4pPairgPD9knvaFnbN+RNYtG470OTvtT lvpj1HJJ4kzauinrYr4Nd3Ayf+9cd56bOkeclzBXCqY7i6VmYPss2IGtIMOUpwGx nTm5ubTC/OTGzTdl9fAWEpuhbcLpAx8TkgKLAEkQC2LtNkuqxdem0I6zwFg/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaSP4QkhNEgz/7+SpHBkHxjwXLfwwHwYDVR0j BBgwFoAUJK7N0KCCekjV+671Af7T9MYqq9gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDZjOWI4Yy0zYmU3LTRjMDItOTU1MS1mYmM2ZmZjNDA3MGYvMC8yNEFFQ0REMEEw ODI3QTQ4RDVGQkFFRjUwMUZFRDNGNEM2MkFBQkQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRDNjJB QUJEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNmM5YjhjLTNiZTctNGMwMi05 NTUxLWZiYzZmZmM0MDcwZi8wLzMxMzYzMDJlMzIzNTJlMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZIjANBgkqhkiG 9w0BAQsFAAOCAQEADV4kYURSbXnM+LNP6NxXujOhSTZsCsQquw+e3ka8Zen/ZSfk gEWeqiNS3X5AijlrRRby9UGx8TQnkz44vY2DEH/cv+L75mr6Hah5uKKkRMETNV7u C7P2vPQyKf4hQTkyubeB131dBCq4qt0cK2Jn7B6ez9llAr7qaK+iYNrYnPkSxNVJ 1oGHqerBb4Fbiq1AnKxsUyeJLMp+A/f+ACS/166Hzd22mjb2gFxXhGycBdEqBiY3 ms6c+i5c59vRsppTAj0wWCZ8s6rTTU0VXCCs4rpPGoC6/UrlVMP6Jg8o8hoRBUo4 V/LosrZ4iZyDQ0s+64+ge8NPuXr7kc6hWmjhoQ== -----END CERTIFICATE-----Generated at Wed Nov 5 04:51:31 2025 by rpki-client