$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39322e302f32342d3234203d3e20313532383335.roa File: 3136302e32322e39322e302f32342d3234203d3e20313532383335.roa (raw, json) Hash identifier: +o6+ngIFA4hU6bMKlAFkTNxS1BaRiBEB0UhCbvig7rE= Subject key identifier: DC:51:B9:D7:D3:0F:9E:FC:59:94:E0:65:F4:EC:A9:1F:26:83:6E:42 Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 6007EC71A43D7D22945AE68C4B2CF80438725BC6 Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39322e302f32342d3234203d3e20313532383335.roa Signing time: Mon 27 Oct 2025 11:00:01 +0000 ROA not before: Mon 27 Oct 2025 10:55:01 +0000 ROA not after: Mon 26 Oct 2026 11:00:01 +0000 asID: 152835 IP address blocks: 160.22.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 18:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:07:ec:71:a4:3d:7d:22:94:5a:e6:8c:4b:2c:f8:04:38:72:5b:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Oct 27 10:55:01 2025 GMT Not After : Oct 26 11:00:01 2026 GMT Subject: CN=DC51B9D7D30F9EFC5994E065F4ECA91F26836E42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b2:58:f7:31:bc:40:cd:99:b8:c4:4e:7a:fb: 81:5e:77:2e:3c:74:ac:53:d8:e6:c6:42:b7:b2:bf: 95:a7:0e:52:68:0b:97:81:8b:38:2a:2d:9f:4d:e4: d8:7f:d5:0d:01:06:43:9a:91:4e:40:98:3c:ba:4f: dc:3a:33:cb:db:f4:d1:e4:bd:38:dc:95:7b:08:99: 78:3f:47:4a:a4:1f:50:46:7c:5b:71:7e:58:39:dc: a4:14:d4:07:73:56:4a:58:20:63:17:34:6a:12:59: 5e:29:16:e2:99:7c:90:e5:5e:ea:22:8c:c9:50:ea: d5:27:8a:70:83:a3:6e:11:c9:f7:11:4e:62:2f:24: 2f:f9:b6:f3:cc:41:62:a3:f0:94:30:ac:d1:e4:22: 5a:8e:9d:c0:d3:aa:58:df:01:d8:11:61:fd:6a:ca: 98:de:f2:c6:94:64:b8:cd:6c:49:02:f3:7c:bc:82: 7d:69:94:b3:76:e7:49:3b:f3:ed:15:3a:ff:12:91: 50:22:98:dd:29:50:da:78:29:0c:35:fa:68:17:e1: 7b:0d:b7:53:6b:79:f5:44:f3:2b:7a:67:99:50:2f: e4:ef:30:9a:c8:ae:13:52:45:1d:96:bc:52:76:96: a0:fa:42:9b:14:66:6e:76:d0:44:90:df:ed:af:3c: 2d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:51:B9:D7:D3:0F:9E:FC:59:94:E0:65:F4:EC:A9:1F:26:83:6E:42 X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/3136302e32322e39322e302f32342d3234203d3e20313532383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.92.0/24 Signature Algorithm: sha256WithRSAEncryption a4:1d:b1:d4:70:37:8e:51:bf:7d:b0:eb:a9:1f:22:a2:54:29: 45:99:ee:07:fd:a7:64:1a:d9:3c:59:5c:cb:ff:bc:e0:de:d1: da:8e:41:5d:6c:d0:e5:50:85:aa:19:2f:52:39:8f:08:03:38: cb:c2:d1:1d:26:60:24:23:c9:10:af:d6:ac:ad:97:d6:45:6e: e1:5b:8f:ad:a4:fb:17:69:18:9b:74:01:0c:30:8c:23:aa:3e: 01:f5:f7:12:bf:7a:7b:80:92:9d:aa:b3:7a:48:41:2d:31:81: b9:de:da:9d:a5:07:3f:23:9e:87:54:9b:d1:29:4b:88:ab:db: 5a:df:63:f7:40:f1:39:71:c1:78:40:99:c1:22:15:57:e6:58: 1a:4f:02:95:12:fb:10:98:66:5c:b2:eb:a4:4a:30:31:26:d7: 4b:bb:66:e2:6a:e9:07:1e:85:79:e0:9c:0d:90:88:86:7c:80: cf:98:2f:0e:f7:3b:86:f6:a6:9d:3f:3b:1f:80:1b:c9:13:78: 4e:5d:db:d4:a2:7e:9f:1b:2d:cb:9e:33:cd:0e:a1:95:32:3c: 5c:ae:98:88:b3:b9:02:7e:54:6c:cd:98:79:cb:7d:d5:d6:42: 39:ff:4b:e4:80:8f:1d:30:e9:27:4f:14:1d:c1:1f:b3:d8:a1: 2e:74:d0:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYAfscaQ9fSKUWuaMSyz4BDhyW8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNTEwMjcxMDU1MDFaFw0yNjEwMjYxMTAwMDFaMDMxMTAvBgNV BAMTKERDNTFCOUQ3RDMwRjlFRkM1OTk0RTA2NUY0RUNBOTFGMjY4MzZFNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4slj3MbxAzZm4xE56+4Fedy48 dKxT2ObGQreyv5WnDlJoC5eBizgqLZ9N5Nh/1Q0BBkOakU5AmDy6T9w6M8vb9NHk vTjclXsImXg/R0qkH1BGfFtxflg53KQU1AdzVkpYIGMXNGoSWV4pFuKZfJDlXuoi jMlQ6tUninCDo24RyfcRTmIvJC/5tvPMQWKj8JQwrNHkIlqOncDTqljfAdgRYf1q ypje8saUZLjNbEkC83y8gn1plLN250k78+0VOv8SkVAimN0pUNp4KQw1+mgX4XsN t1NrefVE8yt6Z5lQL+TvMJrIrhNSRR2WvFJ2lqD6QpsUZm520ESQ3+2vPC1XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3FG519MPnvxZlOBl9OypHyaDbkIwHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyZDI5YjMyLTNhMjktNGExNC1i YzliLWM3NmEwMDdjYTAzMi8wLzMxMzYzMDJlMzIzMjJlMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWXDANBgkqhkiG 9w0BAQsFAAOCAQEApB2x1HA3jlG/fbDrqR8iolQpRZnuB/2nZBrZPFlcy/+84N7R 2o5BXWzQ5VCFqhkvUjmPCAM4y8LRHSZgJCPJEK/WrK2X1kVu4VuPraT7F2kYm3QB DDCMI6o+AfX3Er96e4CSnaqzekhBLTGBud7anaUHPyOeh1Sb0SlLiKvbWt9j90Dx OXHBeECZwSIVV+ZYGk8ClRL7EJhmXLLrpEowMSbXS7tm4mrpBx6FeeCcDZCIhnyA z5gvDvc7hvamnT87H4AbyRN4Tl3b1KJ+nxsty54zzQ6hlTI8XK6YiLO5An5UbM2Y ect91dZCOf9L5ICPHTDpJ08UHcEfs9ihLnTQRw== -----END CERTIFICATE-----Generated at Wed Nov 5 10:15:38 2025 by rpki-client