$ rpki-client -vvf repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32332d3234203d3e20313532383332.roa File: 3136302e32352e33362e302f32332d3234203d3e20313532383332.roa (raw, json) Hash identifier: 2KoUt2/IqlrBdeTYa4zU+PXccPJfUuUeEVNRh95cwQ4= Subject key identifier: 44:75:FC:5C:21:30:47:F3:34:8F:CD:11:E9:46:64:85:F6:11:28:61 Certificate issuer: /CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Certificate serial: 58C969D08770C7CE40AAFC69EE5BECCF2B34521F Authority key identifier: B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32332d3234203d3e20313532383332.roa Signing time: Mon 16 Feb 2026 12:34:34 +0000 ROA not before: Mon 16 Feb 2026 12:29:34 +0000 ROA not after: Mon 15 Feb 2027 12:34:34 +0000 asID: 152832 IP address blocks: 160.25.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 17:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c9:69:d0:87:70:c7:ce:40:aa:fc:69:ee:5b:ec:cf:2b:34:52:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Validity Not Before: Feb 16 12:29:34 2026 GMT Not After : Feb 15 12:34:34 2027 GMT Subject: CN=4475FC5C213047F3348FCD11E9466485F6112861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3f:20:88:3d:93:12:d0:58:2f:79:62:6b:b1: 33:79:0a:77:fa:f3:81:18:2b:28:d4:60:fb:4f:10: 56:b8:8e:2c:a8:17:d0:6f:19:ca:ad:4b:d3:d7:3f: 98:46:22:97:aa:71:7e:35:f3:7d:e6:fc:26:87:de: 4e:6c:ec:10:e9:7d:a4:05:2e:51:8a:db:2f:b6:55: 6e:28:56:7c:53:ac:0f:e4:e6:55:1b:a7:f1:cc:b9: 6f:2b:77:20:60:3e:55:26:73:6f:8c:9f:96:7a:8c: 73:bf:ed:2a:95:5c:ed:23:9c:da:00:64:2a:c2:33: 5e:e9:57:b0:b9:f9:59:9a:21:d3:85:ea:26:b2:2a: 11:d1:2b:84:28:19:6e:e7:c8:c4:2d:23:30:ca:e3: 4e:4f:2e:27:a6:20:48:db:a1:82:90:a7:0d:e2:df: af:30:9c:a6:25:27:28:88:01:dd:67:e4:db:76:8e: 37:92:3b:28:74:3c:89:a2:a7:31:d6:8d:7d:0a:28: 5f:1f:bb:69:f1:aa:52:80:93:79:a9:45:10:27:d2: 24:a1:f4:59:9c:49:69:76:e7:3b:24:61:c9:d5:b7: 69:00:9c:c6:44:68:4a:16:28:39:94:5b:15:13:94: 69:bf:bb:2c:53:79:3e:29:17:4e:6d:3f:00:f4:a8: 75:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:75:FC:5C:21:30:47:F3:34:8F:CD:11:E9:46:64:85:F6:11:28:61 X509v3 Authority Key Identifier: keyid:B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32332d3234203d3e20313532383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.36.0/23 Signature Algorithm: sha256WithRSAEncryption 29:66:c8:a4:6e:17:e3:12:91:64:7a:e8:a8:cf:90:d8:ec:f8: c7:82:0e:e8:ca:28:b3:0b:96:bb:86:48:85:fa:7f:07:ba:c6: 4c:f3:ad:ae:fc:7a:00:6f:29:20:56:15:b9:6b:3b:70:76:48: ee:8b:17:7a:27:dd:de:db:06:a6:7d:0a:f2:3c:29:9a:8a:ae: 54:26:bb:15:ce:09:a0:95:b9:b0:2a:8c:f2:e9:39:fd:6e:88: cc:87:3f:f8:c5:1f:6f:17:3d:81:cd:0b:dd:7b:f4:6c:71:7b: ee:00:5e:99:c2:3d:4e:6d:1f:b4:9f:9d:af:b0:05:6d:7e:e3: 9f:14:88:8c:c7:3c:2f:35:3d:dc:7f:78:df:86:57:58:16:8c: 84:0f:35:d6:ff:65:8d:3b:2e:fe:55:14:42:35:5d:3a:e3:a8: 6c:b7:33:81:0b:52:6e:19:76:f6:8c:79:ed:f1:5e:2f:ab:db: 63:9d:61:d4:b0:a9:da:9e:da:68:f2:05:23:09:fb:12:0f:46: 07:2a:54:3b:ed:d8:45:4a:d6:4c:dc:a4:5f:8e:4f:86:af:b0: 2a:64:cf:a7:82:92:8e:d4:f5:7d:cb:60:12:55:ec:15:fa:97: 5f:91:ca:b4:50:93:7b:b9:65:33:0c:a9:2c:14:cb:99:0e:f7: 5c:c3:e5:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWMlp0Idwx85Aqvxp7lvszys0Uh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0 RTE5RUFDQjAeFw0yNjAyMTYxMjI5MzRaFw0yNzAyMTUxMjM0MzRaMDMxMTAvBgNV BAMTKDQ0NzVGQzVDMjEzMDQ3RjMzNDhGQ0QxMUU5NDY2NDg1RjYxMTI4NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhPyCIPZMS0FgveWJrsTN5Cnf6 84EYKyjUYPtPEFa4jiyoF9BvGcqtS9PXP5hGIpeqcX41833m/CaH3k5s7BDpfaQF LlGK2y+2VW4oVnxTrA/k5lUbp/HMuW8rdyBgPlUmc2+Mn5Z6jHO/7SqVXO0jnNoA ZCrCM17pV7C5+VmaIdOF6iayKhHRK4QoGW7nyMQtIzDK405PLiemIEjboYKQpw3i 368wnKYlJyiIAd1n5Nt2jjeSOyh0PImipzHWjX0KKF8fu2nxqlKAk3mpRRAn0iSh 9FmcSWl25zskYcnVt2kAnMZEaEoWKDmUWxUTlGm/uyxTeT4pF05tPwD0qHWFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURHX8XCEwR/M0j80R6UZkhfYRKGEwHwYDVR0j BBgwFoAUuNRExbMYSk+MjxmaQyJCxE4Z6sswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjRiNTNkOC1iMmZmLTQ5NzMtYjFhYy02Zjg1ZmFlYWRiZTUvMC9COEQ0NDRDNUIz MTg0QTRGOEM4RjE5OUE0MzIyNDJDNDRFMTlFQUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0RTE5 RUFDQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNGI1M2Q4LWIyZmYtNDk3My1i MWFjLTZmODVmYWVhZGJlNS8wLzMxMzYzMDJlMzIzNTJlMzMzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZJDANBgkqhkiG 9w0BAQsFAAOCAQEAKWbIpG4X4xKRZHroqM+Q2Oz4x4IO6MooswuWu4ZIhfp/B7rG TPOtrvx6AG8pIFYVuWs7cHZI7osXeifd3tsGpn0K8jwpmoquVCa7Fc4JoJW5sCqM 8uk5/W6IzIc/+MUfbxc9gc0L3Xv0bHF77gBemcI9Tm0ftJ+dr7AFbX7jnxSIjMc8 LzU93H9434ZXWBaMhA811v9ljTsu/lUUQjVdOuOobLczgQtSbhl29ox57fFeL6vb Y51h1LCp2p7aaPIFIwn7Eg9GBypUO+3YRUrWTNykX45Phq+wKmTPp4KSjtT1fctg ElXsFfqXX5HKtFCTe7llMwypLBTLmQ73XMPl6Q== -----END CERTIFICATE-----Generated at Mon Mar 2 18:34:55 2026 by rpki-client