$ rpki-client -vvf repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa File: 3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa (raw, json) Hash identifier: duCuSDamX6IXj6dNr3R2KvTWuX1Y0Ld9dMd4eFNkJZc= Subject key identifier: 09:8C:B6:25:E1:80:67:CB:48:5F:15:83:E9:1E:AC:56:E9:8F:E2:CF Certificate issuer: /CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Certificate serial: 4D501BB6D84F3D63CAB95D1366A7A625F9519D59 Authority key identifier: 29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa Signing time: Thu 10 Jul 2025 07:02:53 +0000 ROA not before: Thu 10 Jul 2025 06:57:53 +0000 ROA not after: Thu 09 Jul 2026 07:02:53 +0000 asID: 153075 IP address blocks: 160.25.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 13:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:50:1b:b6:d8:4f:3d:63:ca:b9:5d:13:66:a7:a6:25:f9:51:9d:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Validity Not Before: Jul 10 06:57:53 2025 GMT Not After : Jul 9 07:02:53 2026 GMT Subject: CN=098CB625E18067CB485F1583E91EAC56E98FE2CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8c:0f:54:14:71:e1:78:ae:61:32:d2:39:61: ed:9a:8e:05:cc:cc:1a:9c:b5:d7:cb:1d:e4:13:32: f3:3e:36:37:39:74:cc:dc:c4:4c:d8:67:3a:c3:d2: 70:e0:3d:59:fc:cb:71:d8:7d:39:69:6b:2d:e4:04: e8:94:a1:7e:4a:71:89:5f:71:8c:6d:40:74:b5:26: 49:a0:f5:04:d3:75:1e:fa:db:55:29:6b:51:74:c9: 9d:82:3f:17:95:9e:6e:3f:8f:5d:73:62:a8:29:c2: 72:1e:dd:12:da:fc:37:08:7c:26:be:2f:37:4e:e0: 17:b1:40:6b:3f:77:38:bd:55:f8:33:55:77:eb:95: ab:0e:b6:11:5b:62:7f:2f:7f:0c:c9:99:20:7f:f2: a4:39:61:65:58:90:ae:91:18:7c:46:8f:d0:a8:ab: 6d:ba:52:62:4e:c5:50:0c:2e:33:93:1a:64:ca:1a: 0f:42:5c:e9:ee:ab:23:3e:ad:d6:a8:a2:fc:5a:72: 0d:fb:1f:97:aa:8a:4c:60:b3:04:85:5f:7c:fc:69: 3e:99:b8:e0:e7:5d:c1:d4:34:cd:f7:a9:2c:b7:f7: c4:5b:03:ac:5f:aa:ee:b2:c3:ac:cc:d4:bc:a2:0a: bb:3d:d9:64:95:f9:b4:f8:a3:d6:ed:06:72:c7:cb: 13:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:8C:B6:25:E1:80:67:CB:48:5F:15:83:E9:1E:AC:56:E9:8F:E2:CF X509v3 Authority Key Identifier: keyid:29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.179.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:25:4c:2b:35:56:f4:7e:e8:6d:f5:9a:0a:b7:79:0e:f0:0b: 28:6f:fb:dc:fb:f8:b6:9c:f4:a8:08:6d:cb:44:6b:75:48:20: ed:67:08:87:5b:c0:67:ee:84:8b:f9:0e:82:70:5e:fa:0b:bc: c8:aa:eb:83:53:26:d2:87:b0:07:d1:21:de:44:af:f5:c5:e6: bb:cd:00:33:52:38:e7:91:bc:19:c9:f4:f0:51:8e:7a:c1:f8: 32:52:de:8a:e6:21:e9:dd:cd:4e:be:b2:35:9c:4e:05:d7:f7: bd:62:cf:86:2c:71:e1:e4:9e:c8:e4:59:b4:8a:3a:c2:06:8d: 0b:ad:cb:7b:80:ea:35:e7:0e:1f:88:80:6e:e3:4f:5e:7b:20: 7d:66:c3:7c:63:a9:9a:e2:37:bf:60:95:4e:b1:71:75:64:e9: 18:88:17:8e:7d:e6:9e:75:65:4d:ac:3b:7c:db:b4:84:dc:15: 10:34:31:9f:e7:4e:d9:6e:9f:32:43:74:1c:fd:c9:ee:23:66: 44:31:d3:67:4f:e9:8d:08:11:4c:06:dc:71:54:91:1f:97:80: d0:d9:ef:e4:fd:00:2a:48:cf:67:d9:e8:83:91:22:55:a1:95: b5:b8:d4:e2:67:67:a6:0a:35:6c:f8:06:34:86:5f:ad:00:6b: 52:ec:95:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTVAbtthPPWPKuV0TZqemJflRnVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBG OTVGMkI0NTAeFw0yNTA3MTAwNjU3NTNaFw0yNjA3MDkwNzAyNTNaMDMxMTAvBgNV BAMTKDA5OENCNjI1RTE4MDY3Q0I0ODVGMTU4M0U5MUVBQzU2RTk4RkUyQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jA9UFHHheK5hMtI5Ye2ajgXM zBqctdfLHeQTMvM+Njc5dMzcxEzYZzrD0nDgPVn8y3HYfTlpay3kBOiUoX5KcYlf cYxtQHS1Jkmg9QTTdR7621Upa1F0yZ2CPxeVnm4/j11zYqgpwnIe3RLa/DcIfCa+ LzdO4BexQGs/dzi9VfgzVXfrlasOthFbYn8vfwzJmSB/8qQ5YWVYkK6RGHxGj9Co q226UmJOxVAMLjOTGmTKGg9CXOnuqyM+rdaoovxacg37H5eqikxgswSFX3z8aT6Z uODnXcHUNM33qSy398RbA6xfqu6yw6zM1LyiCrs92WSV+bT4o9btBnLHyxPHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCYy2JeGAZ8tIXxWD6R6sVumP4s8wHwYDVR0j BBgwFoAUKXatx0SL8MqbV9zXiEmh4PlfK0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2M0MzJlMC1kYzNlLTQyY2MtYmNjMC02MjliMTYyMDZjOWEvMC8yOTc2QURDNzQ0 OEJGMENBOUI1N0RDRDc4ODQ5QTFFMEY5NUYyQjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBGOTVG MkI0NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3YzQzMmUwLWRjM2UtNDJjYy1i Y2MwLTYyOWIxNjIwNmM5YS8wLzMxMzYzMDJlMzIzNTJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmzMA0GCSqG SIb3DQEBCwUAA4IBAQAdJUwrNVb0fuht9ZoKt3kO8Asob/vc+/i2nPSoCG3LRGt1 SCDtZwiHW8Bn7oSL+Q6CcF76C7zIquuDUybSh7AH0SHeRK/1xea7zQAzUjjnkbwZ yfTwUY56wfgyUt6K5iHp3c1OvrI1nE4F1/e9Ys+GLHHh5J7I5Fm0ijrCBo0Lrct7 gOo15w4fiIBu409eeyB9ZsN8Y6ma4je/YJVOsXF1ZOkYiBeOfeaedWVNrDt827SE 3BUQNDGf507Zbp8yQ3Qc/cnuI2ZEMdNnT+mNCBFMBtxxVJEfl4DQ2e/k/QAqSM9n 2eiDkSJVoZW1uNTiZ2emCjVs+AY0hl+tAGtS7JUs -----END CERTIFICATE-----Generated at Sat Aug 9 14:19:42 2025 by rpki-client