$ rpki-client -vvf repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33352e302f32342d3234203d3e20313532383331.roa File: 3136302e32352e33352e302f32342d3234203d3e20313532383331.roa (raw, json) Hash identifier: +gBVwNw7mH+NkrJk5YLfGGsFiQ/hE9AOEiojhde40e4= Subject key identifier: 79:5F:4C:B3:66:EC:90:E3:74:48:FE:43:20:62:4C:02:36:1F:CE:51 Certificate issuer: /CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Certificate serial: 09A7AEED53C7A31E49A8E7A25B0D9FC937B61CE2 Authority key identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33352e302f32342d3234203d3e20313532383331.roa Signing time: Tue 06 Jan 2026 17:02:48 +0000 ROA not before: Tue 06 Jan 2026 16:57:48 +0000 ROA not after: Tue 05 Jan 2027 17:02:48 +0000 asID: 152831 IP address blocks: 160.25.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 02:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a7:ae:ed:53:c7:a3:1e:49:a8:e7:a2:5b:0d:9f:c9:37:b6:1c:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Validity Not Before: Jan 6 16:57:48 2026 GMT Not After : Jan 5 17:02:48 2027 GMT Subject: CN=795F4CB366EC90E37448FE4320624C02361FCE51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:78:d9:da:5e:68:2d:3b:d1:f6:0b:8b:19:06: c8:9e:73:63:1e:40:b8:73:f3:2b:11:1d:24:30:2f: 2c:3f:a2:3a:71:22:64:2a:c9:43:77:74:b2:9b:ad: 13:13:ae:2d:9f:66:50:aa:c8:8e:f3:d5:8a:0f:91: 7c:37:8c:1a:c8:fd:c5:6f:9c:2d:6a:90:e4:60:60: 6e:ae:6f:10:d9:de:17:11:23:95:67:3f:8e:fb:4d: c3:6d:46:21:af:4c:67:4d:7f:d6:a7:c4:ee:ff:58: 35:49:cc:b7:08:0d:f7:d7:71:a6:69:62:93:c0:de: a8:6e:8f:00:9f:02:22:59:35:51:75:69:de:d2:17: 02:79:ac:d4:e8:2e:fc:30:25:fa:1f:f0:18:cb:d2: c3:aa:d7:9a:35:94:67:5f:2f:2a:ec:f9:c5:b3:f6: d4:f8:66:65:1e:92:f9:f0:2c:b5:c1:99:b4:09:1d: 81:56:b3:b6:bd:ea:ba:37:5f:88:c3:e2:bf:c2:20: 62:30:a6:0a:e3:7b:ac:d3:5e:b9:c2:6b:e4:48:55: 10:56:0d:27:84:8d:ae:89:06:10:bc:12:a9:14:f1: 69:2c:0c:b2:65:8e:57:27:8e:e0:a6:44:66:7d:1c: 1e:21:ac:7c:7b:15:c3:66:62:88:48:69:8c:20:47: c8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5F:4C:B3:66:EC:90:E3:74:48:FE:43:20:62:4C:02:36:1F:CE:51 X509v3 Authority Key Identifier: keyid:24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33352e302f32342d3234203d3e20313532383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.35.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:ca:4c:7b:7b:c4:9e:c1:76:57:5f:74:ca:5a:c4:8b:ee:4c: 73:3d:66:0e:bd:58:fe:aa:3e:53:41:4c:14:b7:b8:db:bd:41: 60:3e:20:ca:33:8d:9e:5a:f5:2f:9e:b8:56:93:f1:15:51:9c: 3b:6b:71:39:ea:d2:3a:63:e8:3d:ba:57:3c:5c:aa:7a:30:e6: 6d:ed:30:3a:d3:cd:74:4f:90:8b:8f:e7:20:2d:38:0c:99:c8: 43:8e:88:0b:3a:8f:6c:6e:95:b9:82:f4:23:a8:17:76:0c:60: 35:fc:7e:fd:26:b9:b8:75:67:a1:fe:36:4a:91:36:25:5f:99: 68:04:4f:e3:96:0a:ce:5e:f4:db:8d:f6:e5:8b:65:0f:2b:40: 34:38:83:4c:a9:b4:a8:dd:4c:67:87:44:39:6f:0c:b1:0b:1d: a4:e3:9b:14:af:bf:83:bf:2a:6e:cf:aa:8c:d3:1e:a9:e5:34: ee:ea:bd:92:11:d0:ae:52:33:a1:95:cc:5c:cc:a5:8f:5e:f3: 79:58:69:8c:5b:67:98:75:53:cd:5e:6c:1d:9a:e4:cc:60:39: d6:f8:07:66:fb:cb:ec:2e:c1:1f:c2:2c:55:12:2f:1d:73:e2: a0:45:07:0f:54:a9:40:e3:55:d3:cc:38:45:74:0a:43:92:22: 18:d8:37:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCaeu7VPHox5JqOeiWw2fyTe2HOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRD NjJBQUJEODAeFw0yNjAxMDYxNjU3NDhaFw0yNzAxMDUxNzAyNDhaMDMxMTAvBgNV BAMTKDc5NUY0Q0IzNjZFQzkwRTM3NDQ4RkU0MzIwNjI0QzAyMzYxRkNFNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9eNnaXmgtO9H2C4sZBsiec2Me QLhz8ysRHSQwLyw/ojpxImQqyUN3dLKbrRMTri2fZlCqyI7z1YoPkXw3jBrI/cVv nC1qkORgYG6ubxDZ3hcRI5VnP477TcNtRiGvTGdNf9anxO7/WDVJzLcIDffXcaZp YpPA3qhujwCfAiJZNVF1ad7SFwJ5rNToLvwwJfof8BjL0sOq15o1lGdfLyrs+cWz 9tT4ZmUekvnwLLXBmbQJHYFWs7a96ro3X4jD4r/CIGIwpgrje6zTXrnCa+RIVRBW DSeEja6JBhC8EqkU8WksDLJljlcnjuCmRGZ9HB4hrHx7FcNmYohIaYwgR8h1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeV9Ms2bskON0SP5DIGJMAjYfzlEwHwYDVR0j BBgwFoAUJK7N0KCCekjV+671Af7T9MYqq9gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDZjOWI4Yy0zYmU3LTRjMDItOTU1MS1mYmM2ZmZjNDA3MGYvMC8yNEFFQ0REMEEw ODI3QTQ4RDVGQkFFRjUwMUZFRDNGNEM2MkFBQkQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRDNjJB QUJEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNmM5YjhjLTNiZTctNGMwMi05 NTUxLWZiYzZmZmM0MDcwZi8wLzMxMzYzMDJlMzIzNTJlMzMzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZIzANBgkqhkiG 9w0BAQsFAAOCAQEATcpMe3vEnsF2V190ylrEi+5Mcz1mDr1Y/qo+U0FMFLe4271B YD4gyjONnlr1L564VpPxFVGcO2txOerSOmPoPbpXPFyqejDmbe0wOtPNdE+Qi4/n IC04DJnIQ46ICzqPbG6VuYL0I6gXdgxgNfx+/Sa5uHVnof42SpE2JV+ZaARP45YK zl7024325YtlDytANDiDTKm0qN1MZ4dEOW8MsQsdpOObFK+/g78qbs+qjNMeqeU0 7uq9khHQrlIzoZXMXMylj17zeVhpjFtnmHVTzV5sHZrkzGA51vgHZvvL7C7BH8Is VRIvHXPioEUHD1SpQONV08w4RXQKQ5IiGNg3hQ== -----END CERTIFICATE-----Generated at Mon Mar 2 23:56:22 2026 by rpki-client