$ rpki-client -vvf repo-rpki.idnic.net/repo/33dc034f-3823-48af-953d-aaa873b0fb6a/0/3136302e3139312e3233352e302f32342d3234203d3e20313533313439.roa File: 3136302e3139312e3233352e302f32342d3234203d3e20313533313439.roa (raw, json) Hash identifier: 057q45kqdRxLvAiRPvpE9xTv/5F62FgJizN22DjE3/s= Subject key identifier: 44:4B:61:C4:73:4D:C8:1E:60:F4:D3:0D:45:F1:75:1F:A1:16:C3:70 Certificate issuer: /CN=8B30167CDA20FE7EDCFC647AC86B14BB27E430C8 Certificate serial: 554FF332CA996194499C40279684751EB16AAFE6 Authority key identifier: 8B:30:16:7C:DA:20:FE:7E:DC:FC:64:7A:C8:6B:14:BB:27:E4:30:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8B30167CDA20FE7EDCFC647AC86B14BB27E430C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/33dc034f-3823-48af-953d-aaa873b0fb6a/0/3136302e3139312e3233352e302f32342d3234203d3e20313533313439.roa Signing time: Wed 05 Nov 2025 08:02:23 +0000 ROA not before: Wed 05 Nov 2025 07:57:23 +0000 ROA not after: Wed 04 Nov 2026 08:02:23 +0000 asID: 153149 IP address blocks: 160.191.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/33dc034f-3823-48af-953d-aaa873b0fb6a/0/8B30167CDA20FE7EDCFC647AC86B14BB27E430C8.crl rsync://repo-rpki.idnic.net/repo/33dc034f-3823-48af-953d-aaa873b0fb6a/0/8B30167CDA20FE7EDCFC647AC86B14BB27E430C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8B30167CDA20FE7EDCFC647AC86B14BB27E430C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 10:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:4f:f3:32:ca:99:61:94:49:9c:40:27:96:84:75:1e:b1:6a:af:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B30167CDA20FE7EDCFC647AC86B14BB27E430C8 Validity Not Before: Nov 5 07:57:23 2025 GMT Not After : Nov 4 08:02:23 2026 GMT Subject: CN=444B61C4734DC81E60F4D30D45F1751FA116C370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:1f:30:98:01:dc:c3:17:1e:6e:62:c1:27: 48:13:27:17:9d:a7:4d:38:0d:98:69:cc:17:bf:69: 84:b1:6c:9d:c8:e3:37:32:88:78:df:c9:5d:e4:dc: 11:68:97:33:72:ba:fc:06:5e:7b:6a:70:24:bb:de: b5:03:11:04:bd:71:27:2a:ce:62:9f:e3:45:74:e5: 52:ba:06:f3:21:25:7d:9f:7b:7f:92:55:9a:c8:47: 4a:e8:36:ba:66:3e:5d:fc:4c:61:bb:b5:a0:f2:2d: 26:4f:62:29:ea:72:7f:ed:ab:a1:84:ca:53:15:9c: ed:b6:3d:eb:b6:0b:47:0e:18:46:64:1b:73:6b:f6: d8:ed:b0:b8:37:d8:36:5c:5f:a1:63:86:fa:5e:9b: c1:4d:65:8c:66:c1:fa:9d:50:3b:00:16:50:49:82: 3c:98:9c:ee:19:55:57:6b:42:51:0b:bc:e2:ad:41: 93:e1:42:63:27:60:a0:c5:77:9f:a5:ef:07:73:18: fb:5d:8b:a9:a1:f7:ef:99:c2:3e:16:3b:23:72:0a: 33:5c:e3:a6:73:b4:76:7e:33:04:24:0a:80:11:48: 91:19:4b:2e:cc:a4:ea:ad:6e:a7:8a:e7:40:38:42: 4d:1c:86:d5:8e:e9:48:79:d3:00:c8:4d:86:a1:5e: 2a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:4B:61:C4:73:4D:C8:1E:60:F4:D3:0D:45:F1:75:1F:A1:16:C3:70 X509v3 Authority Key Identifier: keyid:8B:30:16:7C:DA:20:FE:7E:DC:FC:64:7A:C8:6B:14:BB:27:E4:30:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/33dc034f-3823-48af-953d-aaa873b0fb6a/0/8B30167CDA20FE7EDCFC647AC86B14BB27E430C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8B30167CDA20FE7EDCFC647AC86B14BB27E430C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33dc034f-3823-48af-953d-aaa873b0fb6a/0/3136302e3139312e3233352e302f32342d3234203d3e20313533313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.235.0/24 Signature Algorithm: sha256WithRSAEncryption b4:93:c8:c3:cc:c6:9c:a7:27:5b:49:af:bc:a6:51:cc:68:bb: 06:16:a5:14:30:20:4c:e5:fc:30:1d:e9:1d:12:08:ef:4a:fc: 47:78:e9:93:0a:71:b8:5f:0c:1f:32:1c:87:ed:c0:bf:2c:90: 9c:16:33:7b:70:33:bb:e4:bc:be:f8:ab:26:9f:dc:db:19:6d: 6d:4a:91:04:cc:43:58:da:37:b2:78:12:7d:37:5c:92:10:3b: c9:fc:9f:02:c3:b7:67:44:a6:d0:d3:56:b9:23:91:b5:7b:f3: c2:d7:68:5c:b4:40:87:75:44:33:aa:36:1f:74:a7:40:00:1d: 84:11:d0:f6:5e:e8:e0:9a:30:80:ef:c1:25:e6:70:75:d8:c5: 37:02:76:81:ed:88:36:96:9e:3c:ae:ba:c6:9f:05:a0:6e:59: 51:3e:f4:89:04:55:77:1f:8d:7b:b2:a3:93:c8:2b:98:bf:5e: f7:47:a7:7c:b4:ee:1d:1c:38:9a:e6:8b:6d:0f:67:55:88:42: 4c:80:dc:4b:b4:10:a7:03:6d:e7:94:aa:1c:32:4f:2e:06:28: a1:96:15:d3:9a:e0:aa:ef:54:f3:56:86:39:4c:e9:81:dd:59: 66:5c:ad:40:10:46:d4:34:58:bf:93:8b:39:d5:34:32:53:97: b5:cc:6d:bd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVU/zMsqZYZRJnEAnloR1HrFqr+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIzMDE2N0NEQTIwRkU3RURDRkM2NDdBQzg2QjE0QkIy N0U0MzBDODAeFw0yNTExMDUwNzU3MjNaFw0yNjExMDQwODAyMjNaMDMxMTAvBgNV BAMTKDQ0NEI2MUM0NzM0REM4MUU2MEY0RDMwRDQ1RjE3NTFGQTExNkMzNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCsh8wmAHcwxcebmLBJ0gTJxed p004DZhpzBe/aYSxbJ3I4zcyiHjfyV3k3BFolzNyuvwGXntqcCS73rUDEQS9cScq zmKf40V05VK6BvMhJX2fe3+SVZrIR0roNrpmPl38TGG7taDyLSZPYinqcn/tq6GE ylMVnO22Peu2C0cOGEZkG3Nr9tjtsLg32DZcX6Fjhvpem8FNZYxmwfqdUDsAFlBJ gjyYnO4ZVVdrQlELvOKtQZPhQmMnYKDFd5+l7wdzGPtdi6mh9++Zwj4WOyNyCjNc 46ZztHZ+MwQkCoARSJEZSy7MpOqtbqeK50A4Qk0chtWO6Uh50wDITYahXiobAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUREthxHNNyB5g9NMNRfF1H6EWw3AwHwYDVR0j BBgwFoAUizAWfNog/n7c/GR6yGsUuyfkMMgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z M2RjMDM0Zi0zODIzLTQ4YWYtOTUzZC1hYWE4NzNiMGZiNmEvMC84QjMwMTY3Q0RB MjBGRTdFRENGQzY0N0FDODZCMTRCQjI3RTQzMEM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEIzMDE2N0NEQTIwRkU3RURDRkM2NDdBQzg2QjE0QkIyN0U0 MzBDOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzZGMwMzRmLTM4MjMtNDhhZi05 NTNkLWFhYTg3M2IwZmI2YS8wLzMxMzYzMDJlMzEzOTMxMmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgv+swDQYJ KoZIhvcNAQELBQADggEBALSTyMPMxpynJ1tJr7ymUcxouwYWpRQwIEzl/DAd6R0S CO9K/Ed46ZMKcbhfDB8yHIftwL8skJwWM3twM7vkvL74qyaf3NsZbW1KkQTMQ1ja N7J4En03XJIQO8n8nwLDt2dEptDTVrkjkbV788LXaFy0QId1RDOqNh90p0AAHYQR 0PZe6OCaMIDvwSXmcHXYxTcCdoHtiDaWnjyuusafBaBuWVE+9IkEVXcfjXuyo5PI K5i/XvdHp3y07h0cOJrmi20PZ1WIQkyA3Eu0EKcDbeeUqhwyTy4GKKGWFdOa4Krv VPNWhjlM6YHdWWZcrUAQRtQ0WL+TiznVNDJTl7XMbb0= -----END CERTIFICATE-----Generated at Wed Nov 5 12:17:31 2025 by rpki-client