$ rpki-client -vvf repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa File: 3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa (raw, json) Hash identifier: gKD6cMrbmMD3BQHPO//21JJbyMzelItTAF6aFVjLccI= Subject key identifier: ED:84:6F:42:17:21:AD:BB:8C:0C:91:1E:A8:51:29:06:21:75:B0:E4 Certificate issuer: /CN=F69535097C181B143312D8EA1A6A52D500443902 Certificate serial: 7235BCFE50A9970B40A32891D7B8DC4163E3A78B Authority key identifier: F6:95:35:09:7C:18:1B:14:33:12:D8:EA:1A:6A:52:D5:00:44:39:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F69535097C181B143312D8EA1A6A52D500443902.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa Signing time: Tue 15 Jul 2025 04:00:00 +0000 ROA not before: Tue 15 Jul 2025 03:55:00 +0000 ROA not after: Tue 14 Jul 2026 04:00:00 +0000 asID: 153091 IP address blocks: 160.25.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/F69535097C181B143312D8EA1A6A52D500443902.crl rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/F69535097C181B143312D8EA1A6A52D500443902.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F69535097C181B143312D8EA1A6A52D500443902.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 04:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:35:bc:fe:50:a9:97:0b:40:a3:28:91:d7:b8:dc:41:63:e3:a7:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69535097C181B143312D8EA1A6A52D500443902 Validity Not Before: Jul 15 03:55:00 2025 GMT Not After : Jul 14 04:00:00 2026 GMT Subject: CN=ED846F421721ADBB8C0C911EA85129062175B0E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:db:37:8f:88:05:91:1a:d8:5b:47:b1:46:0c: d6:52:54:c7:52:18:35:3d:72:0f:e6:bd:40:87:32: 61:b2:d2:31:cb:18:b6:72:62:77:4c:73:63:13:c4: 14:24:24:be:a8:8f:f9:d8:db:71:c0:95:01:67:3d: 2a:7e:d1:3f:08:18:89:79:bb:d2:7c:60:cd:70:09: c3:cc:bb:fa:bd:fa:0b:66:b4:30:30:28:43:75:16: 5a:62:2d:99:fa:5f:e1:25:f7:30:bb:12:ee:b5:2c: 24:a5:50:90:f5:52:f2:c6:91:27:fc:df:7c:f3:33: 57:27:51:e9:e6:50:2d:95:a8:24:37:d3:c3:7f:fc: ca:a9:bc:04:e6:e7:87:8f:49:ff:51:55:d3:a9:55: 70:ee:48:89:f5:ca:3b:fa:5b:3d:f5:99:ed:a2:4a: a2:5c:c7:61:41:7c:17:1b:f7:b9:f6:21:3b:61:02: 41:16:83:e9:2a:5c:3d:88:44:f7:0c:83:2a:ad:08: 07:6a:3f:38:2c:19:56:07:60:fe:8f:94:9a:80:cb: e7:e1:d0:4b:89:4b:9c:c5:d0:cf:ca:f0:9b:0f:67: 86:88:11:23:86:40:53:e9:35:36:2e:85:96:31:f7: 26:a4:42:0b:6b:4d:9b:ed:50:6e:18:11:30:90:7b: 4c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:84:6F:42:17:21:AD:BB:8C:0C:91:1E:A8:51:29:06:21:75:B0:E4 X509v3 Authority Key Identifier: keyid:F6:95:35:09:7C:18:1B:14:33:12:D8:EA:1A:6A:52:D5:00:44:39:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/F69535097C181B143312D8EA1A6A52D500443902.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F69535097C181B143312D8EA1A6A52D500443902.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.248.0/24 Signature Algorithm: sha256WithRSAEncryption c0:d2:92:09:2e:ab:c0:54:49:ef:9a:c1:84:3e:0a:24:ef:b5: 31:bc:65:12:f0:a0:b4:59:93:90:6d:70:61:62:bf:75:0f:73: 76:fd:25:6c:8d:a9:0a:bc:a0:f1:80:21:b4:da:86:aa:43:53: 63:7a:15:61:18:6f:9d:2a:d2:b6:d1:00:ec:c8:53:9b:6f:f3: 62:85:b8:dc:40:2a:fc:56:f6:9f:54:09:1a:0e:25:b8:a5:f2: 65:09:ac:65:d2:3b:0e:ad:b6:64:c7:24:6d:52:c0:9a:c9:82: 32:39:d0:f4:9c:48:43:7d:69:29:b7:31:e8:b6:ba:cf:a7:d5: a1:89:f0:ef:76:a9:35:00:07:ff:ad:7d:00:43:24:0c:02:0e: 7d:9c:29:37:67:e8:4a:b5:64:66:d0:2c:19:52:0e:0d:3e:87: 76:cd:09:21:92:18:e8:76:28:e2:48:dc:05:f5:37:b5:73:a4: f4:f1:f8:1e:a6:e0:98:52:45:c6:98:79:24:9a:bd:31:b2:9c: c8:cb:cf:30:9a:23:db:82:8d:30:53:ca:8e:3f:3f:90:40:cc: b0:fe:cb:57:f6:04:d1:d0:71:49:9f:48:67:9b:9c:03:c0:ba: 99:8d:e5:f6:7d:1a:92:23:d1:af:05:f5:45:9b:b8:92:ba:64: 4c:c6:b4:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcjW8/lCplwtAoyiR17jcQWPjp4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5NTM1MDk3QzE4MUIxNDMzMTJEOEVBMUE2QTUyRDUw MDQ0MzkwMjAeFw0yNTA3MTUwMzU1MDBaFw0yNjA3MTQwNDAwMDBaMDMxMTAvBgNV BAMTKEVEODQ2RjQyMTcyMUFEQkI4QzBDOTExRUE4NTEyOTA2MjE3NUIwRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC72zePiAWRGthbR7FGDNZSVMdS GDU9cg/mvUCHMmGy0jHLGLZyYndMc2MTxBQkJL6oj/nY23HAlQFnPSp+0T8IGIl5 u9J8YM1wCcPMu/q9+gtmtDAwKEN1FlpiLZn6X+El9zC7Eu61LCSlUJD1UvLGkSf8 33zzM1cnUenmUC2VqCQ308N//MqpvATm54ePSf9RVdOpVXDuSIn1yjv6Wz31me2i SqJcx2FBfBcb97n2ITthAkEWg+kqXD2IRPcMgyqtCAdqPzgsGVYHYP6PlJqAy+fh 0EuJS5zF0M/K8JsPZ4aIESOGQFPpNTYuhZYx9yakQgtrTZvtUG4YETCQe0zzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7YRvQhchrbuMDJEeqFEpBiF1sOQwHwYDVR0j BBgwFoAU9pU1CXwYGxQzEtjqGmpS1QBEOQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTRjNTcwYS00NDc0LTRjYmYtYjhmOS1mZjk3OTE3ODE1NDkvMC9GNjk1MzUwOTdD MTgxQjE0MzMxMkQ4RUExQTZBNTJENTAwNDQzOTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjY5NTM1MDk3QzE4MUIxNDMzMTJEOEVBMUE2QTUyRDUwMDQ0 MzkwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlNGM1NzBhLTQ0NzQtNGNiZi1i OGY5LWZmOTc5MTc4MTU0OS8wLzMxMzYzMDJlMzIzNTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn4MA0GCSqG SIb3DQEBCwUAA4IBAQDA0pIJLqvAVEnvmsGEPgok77UxvGUS8KC0WZOQbXBhYr91 D3N2/SVsjakKvKDxgCG02oaqQ1NjehVhGG+dKtK20QDsyFObb/NihbjcQCr8Vvaf VAkaDiW4pfJlCaxl0jsOrbZkxyRtUsCayYIyOdD0nEhDfWkptzHotrrPp9WhifDv dqk1AAf/rX0AQyQMAg59nCk3Z+hKtWRm0CwZUg4NPod2zQkhkhjodijiSNwF9Te1 c6T08fgepuCYUkXGmHkkmr0xspzIy88wmiPbgo0wU8qOPz+QQMyw/stX9gTR0HFJ n0hnm5wDwLqZjeX2fRqSI9GvBfVFm7iSumRMxrSw -----END CERTIFICATE-----Generated at Thu Aug 7 04:40:10 2025 by rpki-client