$ rpki-client -vvf repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa File: 3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa (raw, json) Hash identifier: 8LHoVIhEhZZi4ckWiEYo4t6/wwxdQqhZstJq2KaWDnQ= Subject key identifier: 8F:22:25:C5:06:21:12:FD:38:6B:4F:B0:37:AA:24:2E:FF:3A:61:30 Certificate issuer: /CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Certificate serial: 0CFF3A5FA5C3E88CA34E2094B94BE8F49B3BCBF1 Authority key identifier: 9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa Signing time: Mon 28 Jul 2025 12:00:02 +0000 ROA not before: Mon 28 Jul 2025 11:55:02 +0000 ROA not after: Mon 27 Jul 2026 12:00:02 +0000 asID: 152830 IP address blocks: 160.22.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 06:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ff:3a:5f:a5:c3:e8:8c:a3:4e:20:94:b9:4b:e8:f4:9b:3b:cb:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Validity Not Before: Jul 28 11:55:02 2025 GMT Not After : Jul 27 12:00:02 2026 GMT Subject: CN=8F2225C5062112FD386B4FB037AA242EFF3A6130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:71:3a:87:51:d8:47:9f:ee:db:41:df:37:c5: 64:39:c0:6f:2d:36:5a:2a:68:5f:25:51:bc:7d:22: db:4e:5c:eb:6c:c1:1d:82:43:73:a2:60:a4:c0:0b: 9d:09:69:31:02:d1:82:f1:f5:1b:6d:df:64:39:47: e1:c9:37:cf:b8:63:40:05:cd:0a:f8:31:6c:97:c8: 2e:14:14:14:ab:f6:0b:5d:a4:8f:2a:9f:e3:f5:bc: 79:bd:27:bf:08:c0:50:ef:5b:11:fe:30:73:b3:e9: 5e:7b:3f:31:36:3c:96:b2:8b:9e:d4:44:a3:53:4a: 17:dd:5b:ef:7e:d0:dc:97:06:b6:6e:69:b8:84:fd: 6e:a4:e8:02:11:1e:40:89:be:03:31:b9:d0:c3:5a: 22:55:d9:7e:04:95:19:ab:b5:cb:52:ce:3e:c6:db: 10:90:20:14:74:09:16:86:70:6c:38:19:b0:0f:a6: db:84:47:b7:f9:d0:65:76:b3:50:96:ee:aa:26:8c: a9:f4:9c:eb:12:eb:6b:2a:5d:ac:7b:e5:d7:b9:7f: 5c:86:60:20:ef:35:f4:4c:f9:32:e6:99:cc:95:35: af:7c:0e:b7:fb:82:00:a5:70:2f:79:cf:c1:2b:43: 2f:b0:e6:81:24:eb:fc:c3:84:8b:39:d6:bf:8f:97: de:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:22:25:C5:06:21:12:FD:38:6B:4F:B0:37:AA:24:2E:FF:3A:61:30 X509v3 Authority Key Identifier: keyid:9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.193.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:b0:4c:f9:fe:27:80:80:12:fc:e6:35:19:78:a2:14:a8:d1: e3:10:16:9d:53:f5:a5:a8:b1:57:8e:55:67:69:31:12:cb:1d: db:7a:7d:97:27:8b:19:b4:2b:95:b0:b3:b1:5b:38:a4:63:4f: 77:ba:9c:4f:81:75:05:a0:09:f7:ea:ce:85:f1:68:85:f3:e2: 69:3b:35:a8:f3:94:81:23:e0:05:ac:e6:25:89:c5:90:1e:72: c3:1f:53:c8:2d:9f:ce:65:b9:84:d4:e8:7a:64:65:6b:91:a0: 21:90:38:4a:0b:2a:e7:0c:1e:3c:e6:f6:d1:8a:a5:cd:07:3b: 94:2d:0b:08:3c:6d:54:f4:a4:f0:49:46:59:65:e6:dd:07:70: 52:31:5d:69:70:31:6c:06:a7:f3:de:8e:64:a4:fa:4f:59:39: 19:a2:a2:51:ae:c0:94:44:cd:bf:78:cf:86:1a:95:23:73:19: 2e:0a:d6:27:ba:68:21:d0:ab:8e:ae:12:58:7e:e6:23:68:2a: b3:e5:42:ae:46:05:0a:42:c4:44:3d:58:18:94:90:5e:7d:3c: 31:db:ee:ea:81:39:d0:e0:a9:7d:ea:77:34:42:02:4a:80:a8: bd:a5:ff:76:1c:38:82:07:00:4c:27:df:66:b6:52:ab:46:b3: 33:30:62:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDP86X6XD6IyjTiCUuUvo9Js7y/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhD MDBGQzZGNTAeFw0yNTA3MjgxMTU1MDJaFw0yNjA3MjcxMjAwMDJaMDMxMTAvBgNV BAMTKDhGMjIyNUM1MDYyMTEyRkQzODZCNEZCMDM3QUEyNDJFRkYzQTYxMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDocTqHUdhHn+7bQd83xWQ5wG8t NloqaF8lUbx9IttOXOtswR2CQ3OiYKTAC50JaTEC0YLx9Rtt32Q5R+HJN8+4Y0AF zQr4MWyXyC4UFBSr9gtdpI8qn+P1vHm9J78IwFDvWxH+MHOz6V57PzE2PJayi57U RKNTShfdW+9+0NyXBrZuabiE/W6k6AIRHkCJvgMxudDDWiJV2X4ElRmrtctSzj7G 2xCQIBR0CRaGcGw4GbAPptuER7f50GV2s1CW7qomjKn0nOsS62sqXax75de5f1yG YCDvNfRM+TLmmcyVNa98Drf7ggClcC95z8ErQy+w5oEk6/zDhIs51r+Pl97fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjyIlxQYhEv04a0+wN6okLv86YTAwHwYDVR0j BBgwFoAUn+7MRHYaE+omyjaFCLtqSMAPxvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMC85RkVFQ0M0NDc2 MUExM0VBMjZDQTM2ODUwOEJCNkE0OEMwMEZDNkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhDMDBG QzZGNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbBMA0GCSqG SIb3DQEBCwUAA4IBAQAKsEz5/ieAgBL85jUZeKIUqNHjEBadU/WlqLFXjlVnaTES yx3ben2XJ4sZtCuVsLOxWzikY093upxPgXUFoAn36s6F8WiF8+JpOzWo85SBI+AF rOYlicWQHnLDH1PILZ/OZbmE1Oh6ZGVrkaAhkDhKCyrnDB485vbRiqXNBzuULQsI PG1U9KTwSUZZZebdB3BSMV1pcDFsBqfz3o5kpPpPWTkZoqJRrsCURM2/eM+GGpUj cxkuCtYnumgh0KuOrhJYfuYjaCqz5UKuRgUKQsREPVgYlJBefTwx2+7qgTnQ4Kl9 6nc0QgJKgKi9pf92HDiCBwBMJ99mtlKrRrMzMGKm -----END CERTIFICATE-----Generated at Wed Nov 5 15:12:39 2025 by rpki-client