$ rpki-client -vvf repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32332d3234203d3e20313532383332.roa File: 3136302e32352e33362e302f32332d3234203d3e20313532383332.roa (raw, json) Hash identifier: 9wCzZBokUdgA6nDZL9CPWVnRmT/IcfmN/N7BSRO44UA= Subject key identifier: 31:32:A7:EE:7D:64:17:BD:D3:C5:5B:B3:E6:F4:FC:8B:B8:62:7D:F0 Certificate issuer: /CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Certificate serial: 5A0CCC3142C18F6E3A9B74046A51F5316FE47B5A Authority key identifier: B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32332d3234203d3e20313532383332.roa Signing time: Tue 05 Aug 2025 06:00:00 +0000 ROA not before: Tue 05 Aug 2025 05:55:00 +0000 ROA not after: Tue 04 Aug 2026 06:00:00 +0000 asID: 152832 IP address blocks: 160.25.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 08:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:0c:cc:31:42:c1:8f:6e:3a:9b:74:04:6a:51:f5:31:6f:e4:7b:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Validity Not Before: Aug 5 05:55:00 2025 GMT Not After : Aug 4 06:00:00 2026 GMT Subject: CN=3132A7EE7D6417BDD3C55BB3E6F4FC8BB8627DF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:34:f4:7f:9d:24:a9:59:47:37:5b:d7:e8:76: 2c:c7:95:f5:8c:e0:dc:ef:28:d3:bb:32:37:78:e9: 9b:c1:72:1b:3f:be:0f:04:9e:42:5a:e7:98:4e:82: 41:a4:69:c3:63:61:e5:a4:cf:a3:23:d7:e7:02:e4: 12:0b:24:01:5c:af:69:92:5e:9e:3c:51:62:10:6d: dc:97:bf:bd:f6:f6:ce:ed:96:ed:b9:fe:ac:de:dc: 25:de:9c:26:fc:06:5d:a5:a5:da:3a:93:8e:a3:01: e8:07:b2:18:eb:2b:ff:2c:a9:ee:a9:b6:04:e3:52: d3:b8:77:f5:c4:d4:51:ee:a8:e6:96:76:ed:7a:5b: 76:da:4a:27:a6:c2:5f:79:8c:7b:b4:8d:2c:2e:fa: 7a:3a:34:bd:20:79:41:0d:01:2a:b8:c4:68:16:bf: b9:30:0d:f9:b7:10:a8:35:2b:32:5a:ea:d8:0d:c3: d8:06:a7:b0:d3:f2:ac:a1:de:3e:9a:aa:49:76:f4: 46:2e:e3:cc:05:75:51:3c:10:b8:68:d0:e1:36:0e: 0d:de:9d:81:f3:60:0c:bc:34:b1:01:65:c7:b6:45: f2:98:d6:58:f5:81:57:a7:1d:87:70:a8:f9:94:ee: ca:ae:95:ea:33:8e:b5:89:e4:94:96:ae:68:f2:a2: 4a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:32:A7:EE:7D:64:17:BD:D3:C5:5B:B3:E6:F4:FC:8B:B8:62:7D:F0 X509v3 Authority Key Identifier: keyid:B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32332d3234203d3e20313532383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.36.0/23 Signature Algorithm: sha256WithRSAEncryption c2:bc:9e:98:d3:61:37:45:8e:9f:d3:79:15:21:2f:4a:d7:a7: c2:61:0b:26:8d:86:36:fb:53:9f:59:fd:51:7b:9a:ab:13:78: 70:65:b4:cc:b9:e7:af:15:a5:b1:07:32:0d:ad:1d:c9:12:22: 42:b2:18:4d:c0:2c:c0:22:53:65:78:57:60:81:78:4a:1f:31: 28:d1:f7:8e:22:fc:b8:90:c6:68:16:4b:1b:38:41:b6:96:9f: 23:4d:84:06:76:fa:dd:09:1a:3f:4d:6a:e9:4c:22:da:4f:3c: d7:19:64:ce:36:32:92:e2:27:8a:9e:fa:00:3d:1b:ec:5d:dc: be:d5:86:b5:fa:fd:da:75:a7:fd:44:f8:cf:77:c9:8c:76:ee: a7:6c:0a:fd:a9:32:bd:b7:35:d5:cd:c1:4d:ea:06:5f:79:4b: bf:ef:b2:2e:ab:9d:ae:e6:ce:5b:97:47:b4:7c:4a:66:2f:ff: 05:ea:a5:ab:04:77:de:c5:11:04:da:90:09:e3:68:9c:cb:18: f5:6e:1d:34:87:f7:dc:13:7f:12:9f:0e:c4:fa:04:ab:d4:f5: ff:2c:fe:1c:9b:9c:f7:f3:b1:81:3b:9a:11:ed:f4:74:a1:e8: 4a:7a:cc:c1:26:d0:2b:ca:8f:a7:5e:2c:db:fc:b7:e0:bc:9b: 23:9c:b2:52 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWgzMMULBj246m3QEalH1MW/ke1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0 RTE5RUFDQjAeFw0yNTA4MDUwNTU1MDBaFw0yNjA4MDQwNjAwMDBaMDMxMTAvBgNV BAMTKDMxMzJBN0VFN0Q2NDE3QkREM0M1NUJCM0U2RjRGQzhCQjg2MjdERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaNPR/nSSpWUc3W9fodizHlfWM 4NzvKNO7Mjd46ZvBchs/vg8EnkJa55hOgkGkacNjYeWkz6Mj1+cC5BILJAFcr2mS Xp48UWIQbdyXv7329s7tlu25/qze3CXenCb8Bl2lpdo6k46jAegHshjrK/8sqe6p tgTjUtO4d/XE1FHuqOaWdu16W3baSiemwl95jHu0jSwu+no6NL0geUENASq4xGgW v7kwDfm3EKg1KzJa6tgNw9gGp7DT8qyh3j6aqkl29EYu48wFdVE8ELho0OE2Dg3e nYHzYAy8NLEBZce2RfKY1lj1gVenHYdwqPmU7squleozjrWJ5JSWrmjyokoLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMTKn7n1kF73TxVuz5vT8i7hiffAwHwYDVR0j BBgwFoAUuNRExbMYSk+MjxmaQyJCxE4Z6sswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjRiNTNkOC1iMmZmLTQ5NzMtYjFhYy02Zjg1ZmFlYWRiZTUvMC9COEQ0NDRDNUIz MTg0QTRGOEM4RjE5OUE0MzIyNDJDNDRFMTlFQUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0RTE5 RUFDQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNGI1M2Q4LWIyZmYtNDk3My1i MWFjLTZmODVmYWVhZGJlNS8wLzMxMzYzMDJlMzIzNTJlMzMzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZJDANBgkqhkiG 9w0BAQsFAAOCAQEAwryemNNhN0WOn9N5FSEvStenwmELJo2GNvtTn1n9UXuaqxN4 cGW0zLnnrxWlsQcyDa0dyRIiQrIYTcAswCJTZXhXYIF4Sh8xKNH3jiL8uJDGaBZL GzhBtpafI02EBnb63QkaP01q6Uwi2k881xlkzjYykuInip76AD0b7F3cvtWGtfr9 2nWn/UT4z3fJjHbup2wK/akyvbc11c3BTeoGX3lLv++yLqudrubOW5dHtHxKZi// BeqlqwR33sURBNqQCeNonMsY9W4dNIf33BN/Ep8OxPoEq9T1/yz+HJuc9/OxgTua Ee30dKHoSnrMwSbQK8qPp14s2/y34LybI5yyUg== -----END CERTIFICATE-----Generated at Thu Aug 7 23:55:30 2025 by rpki-client