$ rpki-client -vvf repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa File: 3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa (raw, json) Hash identifier: jF9/a6Jp1M+je5Rsp2up/n4DNy0dv/N5PQgKJQwfemc= Subject key identifier: 5C:20:98:2A:5A:96:73:6F:89:69:EC:1A:78:3A:6F:C1:C0:6E:38:BC Certificate issuer: /CN=405E466852C38FD4CD20BA6115840947D5D24F5D Certificate serial: 4C0B7B4E3AD1532C240B3607B08D4848DD90CFBE Authority key identifier: 40:5E:46:68:52:C3:8F:D4:CD:20:BA:61:15:84:09:47:D5:D2:4F:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa Signing time: Thu 17 Jul 2025 08:02:49 +0000 ROA not before: Thu 17 Jul 2025 07:57:49 +0000 ROA not after: Thu 16 Jul 2026 08:02:49 +0000 asID: 153108 IP address blocks: 160.25.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/405E466852C38FD4CD20BA6115840947D5D24F5D.crl rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/405E466852C38FD4CD20BA6115840947D5D24F5D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 11:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:0b:7b:4e:3a:d1:53:2c:24:0b:36:07:b0:8d:48:48:dd:90:cf:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=405E466852C38FD4CD20BA6115840947D5D24F5D Validity Not Before: Jul 17 07:57:49 2025 GMT Not After : Jul 16 08:02:49 2026 GMT Subject: CN=5C20982A5A96736F8969EC1A783A6FC1C06E38BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:52:a1:db:26:6a:5b:b7:00:e0:21:db:c1:22: a3:3d:73:70:9c:9c:91:a7:6c:6b:72:09:08:e1:88: c9:af:a3:cd:71:ee:90:45:c9:a3:8d:09:5b:37:35: c6:8f:01:2e:38:90:f5:da:36:2c:7e:62:4a:59:2a: dd:c4:27:e5:3b:16:e8:51:27:43:2f:01:0e:c7:ed: 90:ef:8e:ec:03:ad:d4:ad:68:fd:bb:e5:68:ae:4a: dc:70:26:17:4b:72:91:5a:c0:1e:4a:4a:30:b8:34: f7:a3:a5:eb:ce:f8:a7:71:fd:27:15:7c:88:0f:99: c2:c8:c3:0a:f8:c0:7a:5d:12:67:21:01:17:47:df: 3d:56:12:47:85:29:79:c0:05:16:29:15:e2:50:12: df:17:83:19:53:2d:2b:60:f8:07:60:bc:65:88:13: 57:57:7d:53:b2:d6:88:66:8e:4e:7e:37:86:6b:a5: 40:59:af:09:2b:c1:5d:dd:94:ed:35:41:d7:39:13: ca:cb:51:7a:4e:e5:10:d7:5b:7b:96:90:db:5c:84: 03:71:bc:3f:9b:de:57:b8:08:f8:86:40:28:19:0e: 7c:6f:1e:ed:de:fb:55:ac:78:8a:01:9d:a1:d4:00: 5e:6d:a5:cd:67:a0:a2:e4:14:e3:33:41:9e:6c:42: 27:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:20:98:2A:5A:96:73:6F:89:69:EC:1A:78:3A:6F:C1:C0:6E:38:BC X509v3 Authority Key Identifier: keyid:40:5E:46:68:52:C3:8F:D4:CD:20:BA:61:15:84:09:47:D5:D2:4F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/405E466852C38FD4CD20BA6115840947D5D24F5D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.203.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:ed:0c:e3:c4:8a:1a:13:50:9a:6d:05:4a:81:cb:ed:6c:35: 46:fd:38:35:4a:c0:99:ef:44:76:c9:be:3c:82:36:6d:7a:5d: 9e:7a:79:dd:38:b5:cb:ee:1e:d0:9e:f4:6f:3e:2a:03:f7:c1: 11:93:cc:43:7e:db:87:3b:79:5c:4d:84:a9:ee:48:da:e9:2e: 90:55:8a:08:66:9f:77:1a:79:fa:77:32:7a:ee:5e:a6:c2:a9: 89:e2:5b:c2:4e:32:33:70:0d:b0:f4:46:8a:a4:05:9f:ce:12: 89:e6:7f:ac:c0:dd:05:ea:a5:b7:f8:fa:39:f1:b4:f2:8c:59: 82:59:ab:a6:0d:af:87:ab:5c:47:4a:92:b8:bc:c2:a9:b5:8b: 65:d6:a7:98:e6:2c:4e:a7:78:ad:d6:2c:9a:26:c8:60:49:b3: 12:00:7d:89:0a:28:00:19:43:21:87:f5:c9:98:6c:80:90:22: 8b:26:9a:65:a1:99:bb:7a:fb:36:77:0d:3d:2e:5f:9a:7b:45: a9:26:89:0e:d2:fa:e7:05:d6:0e:a9:6a:b6:7c:8d:57:c7:53: b6:36:79:a6:d5:8e:66:1e:74:db:63:8f:bb:bc:3d:a7:8b:0f: 31:d5:6f:90:17:c6:5e:5f:f0:e9:9d:1d:ea:9b:1e:25:21:3d: c8:3e:32:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTAt7TjrRUywkCzYHsI1ISN2Qz74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA1RTQ2Njg1MkMzOEZENENEMjBCQTYxMTU4NDA5NDdE NUQyNEY1RDAeFw0yNTA3MTcwNzU3NDlaFw0yNjA3MTYwODAyNDlaMDMxMTAvBgNV BAMTKDVDMjA5ODJBNUE5NjczNkY4OTY5RUMxQTc4M0E2RkMxQzA2RTM4QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVUqHbJmpbtwDgIdvBIqM9c3Cc nJGnbGtyCQjhiMmvo81x7pBFyaONCVs3NcaPAS44kPXaNix+YkpZKt3EJ+U7FuhR J0MvAQ7H7ZDvjuwDrdStaP275WiuStxwJhdLcpFawB5KSjC4NPejpevO+Kdx/ScV fIgPmcLIwwr4wHpdEmchARdH3z1WEkeFKXnABRYpFeJQEt8XgxlTLStg+AdgvGWI E1dXfVOy1ohmjk5+N4ZrpUBZrwkrwV3dlO01Qdc5E8rLUXpO5RDXW3uWkNtchANx vD+b3le4CPiGQCgZDnxvHu3e+1WseIoBnaHUAF5tpc1noKLkFOMzQZ5sQifRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXCCYKlqWc2+JaewaeDpvwcBuOLwwHwYDVR0j BBgwFoAUQF5GaFLDj9TNILphFYQJR9XST10wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWM2MTU1ZS0yZDJmLTRmOWUtYjIxOC1lYjUyNWIzYTExMTkvMC80MDVFNDY2ODUy QzM4RkQ0Q0QyMEJBNjExNTg0MDk0N0Q1RDI0RjVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA1RTQ2Njg1MkMzOEZENENEMjBCQTYxMTU4NDA5NDdENUQy NEY1RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYzYxNTVlLTJkMmYtNGY5ZS1i MjE4LWViNTI1YjNhMTExOS8wLzMxMzYzMDJlMzIzNTJlMzIzMDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnLMA0GCSqG SIb3DQEBCwUAA4IBAQBt7QzjxIoaE1CabQVKgcvtbDVG/Tg1SsCZ70R2yb48gjZt el2eenndOLXL7h7QnvRvPioD98ERk8xDftuHO3lcTYSp7kja6S6QVYoIZp93Gnn6 dzJ67l6mwqmJ4lvCTjIzcA2w9EaKpAWfzhKJ5n+swN0F6qW3+Po58bTyjFmCWaum Da+Hq1xHSpK4vMKptYtl1qeY5ixOp3it1iyaJshgSbMSAH2JCigAGUMhh/XJmGyA kCKLJpploZm7evs2dw09Ll+ae0WpJokO0vrnBdYOqWq2fI1Xx1O2Nnmm1Y5mHnTb Y4+7vD2niw8x1W+QF8ZeX/DpnR3qmx4lIT3IPjK+ -----END CERTIFICATE-----Generated at Wed Aug 6 12:31:37 2025 by rpki-client