$ rpki-client -vvf repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa File: 3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa (raw, json) Hash identifier: VI5amVZMC5v2utwkbkM6uux1JOpkEgEOw5W8n9olw68= Subject key identifier: A1:46:A0:95:E2:09:1C:D1:DE:4F:F1:AF:31:9A:4C:44:3D:55:B6:68 Certificate issuer: /CN=C08E65A250AEDC93967004D660D25DB8293AB419 Certificate serial: 4C50C11ADFB7299F6651B6F655EAA934A0E1785F Authority key identifier: C0:8E:65:A2:50:AE:DC:93:96:70:04:D6:60:D2:5D:B8:29:3A:B4:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa Signing time: Mon 06 Oct 2025 13:00:02 +0000 ROA not before: Mon 06 Oct 2025 12:55:02 +0000 ROA not after: Mon 05 Oct 2026 13:00:02 +0000 asID: 153132 IP address blocks: 160.187.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.crl rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:50:c1:1a:df:b7:29:9f:66:51:b6:f6:55:ea:a9:34:a0:e1:78:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C08E65A250AEDC93967004D660D25DB8293AB419 Validity Not Before: Oct 6 12:55:02 2025 GMT Not After : Oct 5 13:00:02 2026 GMT Subject: CN=A146A095E2091CD1DE4FF1AF319A4C443D55B668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3c:ac:2f:24:2c:70:6a:b9:7e:59:f0:9d:67: 6e:94:c6:01:98:dd:ab:fd:95:e7:ca:44:1a:47:b8: f0:68:0a:62:51:75:69:75:06:c1:89:67:b8:e5:92: 9a:41:d3:99:6a:1d:a9:d2:62:b9:0b:56:9a:e5:79: e2:56:2e:0f:4b:36:d7:49:ec:e8:8a:bd:cf:c5:fa: 6f:47:b2:9b:85:7e:03:3e:62:9e:d4:2f:f7:00:57: b7:5e:50:bb:14:11:8a:f7:2c:99:bf:db:f6:98:9f: 7c:7d:fa:51:d0:ae:4b:38:0d:b5:a2:cc:1b:f9:a6: 18:e0:88:18:ee:dd:aa:34:4c:23:83:25:60:cf:48: 69:3b:cb:45:fd:5c:f6:97:96:0a:eb:52:39:a4:f0: 4b:27:4c:7c:e1:89:b6:66:13:cf:22:5f:67:32:5c: ce:37:47:cb:02:a2:ec:0a:46:c8:8c:f0:c6:33:e9: 69:db:b3:1b:3a:bd:91:6f:83:20:81:0a:9f:50:52: fe:e3:56:6a:ea:a2:8e:a6:77:ae:76:fb:17:78:6b: 39:6c:7a:de:5f:41:4b:a6:aa:27:5b:da:28:77:00: 9f:ad:ad:c1:f0:15:06:2d:c7:e2:88:57:60:5c:eb: bf:03:53:90:f9:51:a1:1f:7e:4c:4a:23:3c:61:07: 64:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:46:A0:95:E2:09:1C:D1:DE:4F:F1:AF:31:9A:4C:44:3D:55:B6:68 X509v3 Authority Key Identifier: keyid:C0:8E:65:A2:50:AE:DC:93:96:70:04:D6:60:D2:5D:B8:29:3A:B4:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/C08E65A250AEDC93967004D660D25DB8293AB419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C08E65A250AEDC93967004D660D25DB8293AB419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.219.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:f9:85:3b:2e:ed:ba:b5:94:e8:c0:d2:17:fc:b9:5c:4e:15: 67:4f:f1:6c:bb:31:6b:cc:20:2f:86:87:6c:8f:75:e3:a8:95: e4:00:d0:8f:21:a6:10:06:78:c9:4a:af:ff:66:f6:59:f7:f4: a6:f2:e4:13:41:04:77:32:ae:ea:09:78:81:91:38:99:13:6e: 1d:8c:7c:09:51:39:8f:9b:89:27:5c:c5:cf:e4:f2:ef:8f:a3: 6c:aa:35:87:8d:5a:a4:76:53:1b:29:fd:77:4d:20:86:87:35: bf:28:35:2a:52:7c:62:37:e4:09:0f:15:67:07:a1:da:1f:fd: 79:b4:fb:ad:3d:ba:7d:bf:ae:3f:b9:99:8f:ec:71:3e:a2:d4: f6:ef:d4:97:02:90:db:50:94:1b:95:a5:67:93:d0:ba:4d:30: cd:5b:82:38:a4:96:13:92:17:7f:9c:d2:00:ed:fe:67:8f:43: 8b:87:1f:17:d3:6d:e9:a0:d1:05:9b:11:43:b4:41:ee:cd:b4: bf:06:8d:dd:a9:d6:16:fa:0b:21:0a:f3:3d:30:cf:dc:a5:b5: 42:0a:e6:80:8c:ef:f1:1d:99:a1:95:25:db:77:1d:77:f9:95: c8:4a:4b:45:b8:18:b4:f8:c9:94:ae:33:b2:ca:e6:97:6d:9e: f1:ed:1d:b2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTFDBGt+3KZ9mUbb2VeqpNKDheF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzA4RTY1QTI1MEFFREM5Mzk2NzAwNEQ2NjBEMjVEQjgy OTNBQjQxOTAeFw0yNTEwMDYxMjU1MDJaFw0yNjEwMDUxMzAwMDJaMDMxMTAvBgNV BAMTKEExNDZBMDk1RTIwOTFDRDFERTRGRjFBRjMxOUE0QzQ0M0Q1NUI2NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBPKwvJCxwarl+WfCdZ26UxgGY 3av9lefKRBpHuPBoCmJRdWl1BsGJZ7jlkppB05lqHanSYrkLVprleeJWLg9LNtdJ 7OiKvc/F+m9HspuFfgM+Yp7UL/cAV7deULsUEYr3LJm/2/aYn3x9+lHQrks4DbWi zBv5phjgiBju3ao0TCODJWDPSGk7y0X9XPaXlgrrUjmk8EsnTHzhibZmE88iX2cy XM43R8sCouwKRsiM8MYz6Wnbsxs6vZFvgyCBCp9QUv7jVmrqoo6md652+xd4azls et5fQUumqidb2ih3AJ+trcHwFQYtx+KIV2Bc678DU5D5UaEffkxKIzxhB2RFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoUagleIJHNHeT/GvMZpMRD1VtmgwHwYDVR0j BBgwFoAUwI5lolCu3JOWcATWYNJduCk6tBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODFkNTRjYi01N2E5LTRhMTYtYTcwZS1jNWY2MDI0ZTEzOWQvMC9DMDhFNjVBMjUw QUVEQzkzOTY3MDA0RDY2MEQyNURCODI5M0FCNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzA4RTY1QTI1MEFFREM5Mzk2NzAwNEQ2NjBEMjVEQjgyOTNB QjQxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4MWQ1NGNiLTU3YTktNGExNi1h NzBlLWM1ZjYwMjRlMTM5ZC8wLzMxMzYzMDJlMzEzODM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu9swDQYJ KoZIhvcNAQELBQADggEBAB35hTsu7bq1lOjA0hf8uVxOFWdP8Wy7MWvMIC+Gh2yP deOoleQA0I8hphAGeMlKr/9m9ln39Kby5BNBBHcyruoJeIGROJkTbh2MfAlROY+b iSdcxc/k8u+Po2yqNYeNWqR2Uxsp/XdNIIaHNb8oNSpSfGI35AkPFWcHodof/Xm0 +609un2/rj+5mY/scT6i1Pbv1JcCkNtQlBuVpWeT0LpNMM1bgjiklhOSF3+c0gDt /mePQ4uHHxfTbemg0QWbEUO0Qe7NtL8Gjd2p1hb6CyEK8z0wz9yltUIK5oCM7/Ed maGVJdt3HXf5lchKS0W4GLT4yZSuM7LK5pdtnvHtHbI= -----END CERTIFICATE-----Generated at Wed Nov 5 04:20:59 2025 by rpki-client