$ rpki-client -vvf repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa File: 3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa (raw, json) Hash identifier: j6GGNkDlZ8/5j/chso3KUABnf96v3SEZ7wOBbSLK09c= Subject key identifier: C5:14:53:04:1D:8F:BA:1B:FD:81:78:7E:93:8C:87:E8:38:37:6D:B8 Certificate issuer: /CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Certificate serial: 684D99491F297360E8B421A003B2798FCFCDBBAE Authority key identifier: 97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa Signing time: Wed 30 Jul 2025 18:00:00 +0000 ROA not before: Wed 30 Jul 2025 17:55:00 +0000 ROA not after: Wed 29 Jul 2026 18:00:00 +0000 asID: 152822 IP address blocks: 160.22.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4d:99:49:1f:29:73:60:e8:b4:21:a0:03:b2:79:8f:cf:cd:bb:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9789A84AF43285D8FD7ED7A3B9667B682B770585 Validity Not Before: Jul 30 17:55:00 2025 GMT Not After : Jul 29 18:00:00 2026 GMT Subject: CN=C51453041D8FBA1BFD81787E938C87E838376DB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:82:d4:97:02:90:ff:d0:83:0f:13:e4:ed:15: b4:cd:64:af:83:88:82:61:f0:fe:55:23:6b:b6:5a: 55:8a:58:15:44:4a:b7:bf:c3:44:0f:2b:a8:64:2f: a4:b2:09:64:26:52:22:a4:cf:4b:cc:bb:bb:e8:ef: b9:d1:2d:e3:c2:ca:2a:30:b7:5a:1e:f3:38:2e:6b: 16:2a:66:d1:26:26:19:f9:4c:6c:b0:0b:78:a1:02: a5:35:62:ff:b7:ed:b8:a7:33:c5:e8:c5:7d:64:eb: 48:ee:05:77:66:64:68:be:c8:bc:b6:75:47:26:74: 82:fd:14:6c:81:dc:39:84:9f:69:81:25:bf:24:5a: 69:a5:38:1c:54:76:a9:79:c9:43:e3:02:a1:04:e8: b0:4a:17:3c:ee:80:99:43:20:9b:61:83:5b:cf:4e: 21:0c:35:87:0d:9e:f3:eb:bc:9d:48:40:00:60:59: d1:4a:21:a7:23:69:e1:45:c2:c1:d6:e4:c1:4f:79: 9a:9a:40:45:34:eb:4f:24:4c:55:78:e0:c5:20:8e: f4:d4:1e:f4:6b:ea:7e:3b:7d:48:de:da:a6:70:b8: 49:fb:7f:15:19:a9:c6:f6:94:b6:67:2a:de:61:21: 56:24:f3:64:28:7c:ac:c3:24:40:20:a4:99:0f:12: 95:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:14:53:04:1D:8F:BA:1B:FD:81:78:7E:93:8C:87:E8:38:37:6D:B8 X509v3 Authority Key Identifier: keyid:97:89:A8:4A:F4:32:85:D8:FD:7E:D7:A3:B9:66:7B:68:2B:77:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/9789A84AF43285D8FD7ED7A3B9667B682B770585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9789A84AF43285D8FD7ED7A3B9667B682B770585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.196.0/24 Signature Algorithm: sha256WithRSAEncryption a6:6c:93:05:45:e7:82:d8:4c:bc:d1:9f:88:45:a1:0f:16:60: 56:5a:2d:0b:72:ad:66:e0:e7:6b:eb:86:83:c6:c8:89:d4:c0: 3b:a5:80:96:75:e7:3c:2d:6d:e6:26:36:12:18:02:a4:65:58: 42:de:b0:f0:72:67:c0:f1:42:05:70:fe:09:69:e7:99:7b:0b: ec:eb:23:b8:dc:b8:cd:29:97:16:00:7c:28:dd:47:4a:67:07: 4d:2a:65:fd:c8:0e:45:d7:06:57:ba:3c:9c:9d:43:ac:c0:7b: db:3e:0c:e4:f2:c8:25:11:01:ff:27:ee:3b:6b:0b:0f:1f:48: 07:1f:64:27:8e:b6:4a:9b:7c:fc:12:70:19:51:10:74:f0:fa: 74:3a:e4:b0:9e:52:10:16:63:0c:f2:1c:f8:c3:4c:88:d4:cc: d9:dd:69:be:93:29:b4:7f:29:8f:2b:d6:04:51:12:a5:4d:21: 6e:4f:03:21:9a:24:75:9a:1e:50:f5:66:19:c5:5c:83:91:9b: 82:83:f6:32:f3:9b:58:af:c7:4f:a1:c8:ff:94:47:7d:eb:28: 1e:f9:1d:43:30:c6:3d:50:e5:95:85:c0:b1:e0:5f:1c:8c:0c: e7:21:f5:29:70:62:7f:ae:49:4b:51:f4:60:fd:a8:a9:cc:e4: 23:78:d3:db -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaE2ZSR8pc2DotCGgA7J5j8/Nu64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgy Qjc3MDU4NTAeFw0yNTA3MzAxNzU1MDBaFw0yNjA3MjkxODAwMDBaMDMxMTAvBgNV BAMTKEM1MTQ1MzA0MUQ4RkJBMUJGRDgxNzg3RTkzOEM4N0U4MzgzNzZEQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFgtSXApD/0IMPE+TtFbTNZK+D iIJh8P5VI2u2WlWKWBVESre/w0QPK6hkL6SyCWQmUiKkz0vMu7vo77nRLePCyiow t1oe8zguaxYqZtEmJhn5TGywC3ihAqU1Yv+37binM8XoxX1k60juBXdmZGi+yLy2 dUcmdIL9FGyB3DmEn2mBJb8kWmmlOBxUdql5yUPjAqEE6LBKFzzugJlDIJthg1vP TiEMNYcNnvPrvJ1IQABgWdFKIacjaeFFwsHW5MFPeZqaQEU0608kTFV44MUgjvTU HvRr6n47fUje2qZwuEn7fxUZqcb2lLZnKt5hIVYk82QofKzDJEAgpJkPEpU7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxRRTBB2Puhv9gXh+k4yH6Dg3bbgwHwYDVR0j BBgwFoAUl4moSvQyhdj9ftejuWZ7aCt3BYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjFhMGRmNi0xZDNhLTRiY2MtYjNkMS02NDY5NWY4N2UzN2YvMC85Nzg5QTg0QUY0 MzI4NUQ4RkQ3RUQ3QTNCOTY2N0I2ODJCNzcwNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTc4OUE4NEFGNDMyODVEOEZEN0VEN0EzQjk2NjdCNjgyQjc3 MDU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMWEwZGY2LTFkM2EtNGJjYy1i M2QxLTY0Njk1Zjg3ZTM3Zi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbEMA0GCSqG SIb3DQEBCwUAA4IBAQCmbJMFReeC2Ey80Z+IRaEPFmBWWi0Lcq1m4Odr64aDxsiJ 1MA7pYCWdec8LW3mJjYSGAKkZVhC3rDwcmfA8UIFcP4JaeeZewvs6yO43LjNKZcW AHwo3UdKZwdNKmX9yA5F1wZXujycnUOswHvbPgzk8sglEQH/J+47awsPH0gHH2Qn jrZKm3z8EnAZURB08Pp0OuSwnlIQFmMM8hz4w0yI1MzZ3Wm+kym0fymPK9YEURKl TSFuTwMhmiR1mh5Q9WYZxVyDkZuCg/Yy85tYr8dPocj/lEd96yge+R1DMMY9UOWV hcCx4F8cjAznIfUpcGJ/rklLUfRg/aipzOQjeNPb -----END CERTIFICATE-----Generated at Wed Nov 5 00:51:03 2025 by rpki-client