$ rpki-client -vvf repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa File: 3136302e32352e33342e302f32342d3234203d3e20313532383331.roa (raw, json) Hash identifier: 07AYTQCRXN9L1KmjaIr5Q8Dzp8wOL7x5otWYmSe9QU0= Subject key identifier: 99:7A:BD:76:84:09:5C:76:A0:BF:0E:67:3B:7F:9C:61:6E:64:F8:F8 Certificate issuer: /CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Certificate serial: 1FA19C5543B175734C875E8C16A9AB9B061BF16A Authority key identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa Signing time: Tue 06 Jan 2026 17:02:48 +0000 ROA not before: Tue 06 Jan 2026 16:57:48 +0000 ROA not after: Tue 05 Jan 2027 17:02:48 +0000 asID: 152831 IP address blocks: 160.25.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 02:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:a1:9c:55:43:b1:75:73:4c:87:5e:8c:16:a9:ab:9b:06:1b:f1:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Validity Not Before: Jan 6 16:57:48 2026 GMT Not After : Jan 5 17:02:48 2027 GMT Subject: CN=997ABD7684095C76A0BF0E673B7F9C616E64F8F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8f:a6:53:87:5a:77:cf:ee:e3:c3:a1:dd:5c: ba:82:7d:84:38:5f:62:b4:5b:8f:97:a7:6d:9e:15: 03:9e:a6:42:ce:6d:5f:a0:6b:1c:3b:3c:7e:97:14: 64:8a:04:10:75:e3:c2:e8:2c:04:74:2e:ed:a4:a2: 91:1b:9c:e6:cb:25:ef:f3:32:e5:64:f7:93:c4:c2: 1b:88:b8:0b:71:7b:00:95:26:87:13:81:12:07:5d: b1:04:57:f5:43:46:a7:43:41:13:17:d2:0f:db:9e: d6:58:77:2e:a7:3a:ce:73:a5:da:e0:64:a5:ce:cf: a9:d0:5d:06:70:d6:98:f7:f5:4e:12:01:d9:ac:c8: 9b:98:21:b7:83:c2:d8:a6:75:cc:d0:74:05:94:78: e1:05:ef:7f:43:85:1b:80:62:af:01:85:2e:4c:c9: c5:96:9c:b1:93:8b:60:6d:78:6a:d6:40:d1:10:69: 1e:8a:33:e3:64:9b:ad:c3:24:35:c5:58:6c:9a:c0: d1:a1:0c:84:23:4a:66:be:ec:43:4c:ce:26:d8:9a: 51:79:48:95:f5:e1:60:8e:08:f4:3b:0c:37:8b:b8: 86:59:c8:60:fd:9e:f8:58:0f:79:e1:5c:2b:f3:a3: 91:2b:d9:48:42:7e:0d:5f:20:2d:e6:bf:4d:aa:e3: 31:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7A:BD:76:84:09:5C:76:A0:BF:0E:67:3B:7F:9C:61:6E:64:F8:F8 X509v3 Authority Key Identifier: keyid:24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.34.0/24 Signature Algorithm: sha256WithRSAEncryption 33:27:6b:04:36:0c:77:10:5b:38:64:2e:f1:cb:52:02:60:2b: 2f:a2:30:09:b9:87:06:43:ab:e5:20:5e:aa:e1:26:d3:8c:16: de:ad:dd:d0:2e:bb:29:02:8d:07:7a:f7:f0:73:e4:ac:72:09: 72:0c:01:5f:85:c7:12:af:65:ad:84:40:29:15:76:42:65:48: 5c:7f:73:07:48:e1:ac:2a:73:ad:1e:3b:f2:d0:5b:eb:8c:95: 99:c9:95:01:13:59:62:9f:1d:56:0b:19:c4:a8:8e:54:26:89: c8:82:e7:41:c2:fa:14:7f:a2:1e:95:7c:b3:8f:bd:fb:6a:f5: 83:9b:36:da:ac:31:97:29:2a:01:a4:50:62:29:7c:cb:8f:0f: e8:1c:99:e1:d6:f9:ff:58:58:19:94:3b:eb:68:82:d4:34:b2: a7:84:20:2e:29:8f:92:f6:0c:df:45:ea:67:03:ab:30:b5:ed: 04:23:32:e3:cf:c0:7f:8c:66:af:37:1a:8e:be:b8:6c:d0:a3: 9b:cb:9a:60:f2:11:52:ad:dd:87:fc:52:c7:12:a5:a4:5a:e2: fa:1e:fb:72:d9:84:1c:8d:ec:2d:9c:5e:8d:ae:2b:09:8f:e1: 32:22:7c:ea:ed:0c:60:54:f9:d9:b9:af:c8:2c:14:bd:91:88: b4:a9:30:e2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH6GcVUOxdXNMh16MFqmrmwYb8WowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRD NjJBQUJEODAeFw0yNjAxMDYxNjU3NDhaFw0yNzAxMDUxNzAyNDhaMDMxMTAvBgNV BAMTKDk5N0FCRDc2ODQwOTVDNzZBMEJGMEU2NzNCN0Y5QzYxNkU2NEY4RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIj6ZTh1p3z+7jw6HdXLqCfYQ4 X2K0W4+Xp22eFQOepkLObV+gaxw7PH6XFGSKBBB148LoLAR0Lu2kopEbnObLJe/z MuVk95PEwhuIuAtxewCVJocTgRIHXbEEV/VDRqdDQRMX0g/bntZYdy6nOs5zpdrg ZKXOz6nQXQZw1pj39U4SAdmsyJuYIbeDwtimdczQdAWUeOEF739DhRuAYq8BhS5M ycWWnLGTi2BteGrWQNEQaR6KM+Nkm63DJDXFWGyawNGhDIQjSma+7ENMzibYmlF5 SJX14WCOCPQ7DDeLuIZZyGD9nvhYD3nhXCvzo5Er2UhCfg1fIC3mv02q4zF3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmXq9doQJXHagvw5nO3+cYW5k+PgwHwYDVR0j BBgwFoAUJK7N0KCCekjV+671Af7T9MYqq9gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDZjOWI4Yy0zYmU3LTRjMDItOTU1MS1mYmM2ZmZjNDA3MGYvMC8yNEFFQ0REMEEw ODI3QTQ4RDVGQkFFRjUwMUZFRDNGNEM2MkFBQkQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRDNjJB QUJEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNmM5YjhjLTNiZTctNGMwMi05 NTUxLWZiYzZmZmM0MDcwZi8wLzMxMzYzMDJlMzIzNTJlMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZIjANBgkqhkiG 9w0BAQsFAAOCAQEAMydrBDYMdxBbOGQu8ctSAmArL6IwCbmHBkOr5SBequEm04wW 3q3d0C67KQKNB3r38HPkrHIJcgwBX4XHEq9lrYRAKRV2QmVIXH9zB0jhrCpzrR47 8tBb64yVmcmVARNZYp8dVgsZxKiOVCaJyILnQcL6FH+iHpV8s4+9+2r1g5s22qwx lykqAaRQYil8y48P6ByZ4db5/1hYGZQ762iC1DSyp4QgLimPkvYM30XqZwOrMLXt BCMy48/Af4xmrzcajr64bNCjm8uaYPIRUq3dh/xSxxKlpFri+h77ctmEHI3sLZxe ja4rCY/hMiJ86u0MYFT52bmvyCwUvZGItKkw4g== -----END CERTIFICATE-----Generated at Mon Mar 2 23:56:22 2026 by rpki-client