$ rpki-client -vvf repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32342d3234203d3e20313532383338.roa File: 3136302e32352e3132362e302f32342d3234203d3e20313532383338.roa (raw, json) Hash identifier: aFVZHS7nINB+JL7AEdDHRgxQQpnHeECBqD4GE79htH4= Subject key identifier: F0:E7:21:19:4B:45:F5:C7:C3:A5:0F:35:B4:DB:04:84:FE:62:9D:B0 Certificate issuer: /CN=56302D09256688774B85DCD3BAEEB0CB17E8884D Certificate serial: 165BDEA19E3A175FB654D46C43ADF22E081CC81D Authority key identifier: 56:30:2D:09:25:66:88:77:4B:85:DC:D3:BA:EE:B0:CB:17:E8:88:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32342d3234203d3e20313532383338.roa Signing time: Sat 02 Aug 2025 03:01:05 +0000 ROA not before: Sat 02 Aug 2025 02:56:05 +0000 ROA not after: Sat 01 Aug 2026 03:01:05 +0000 asID: 152838 IP address blocks: 160.25.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.crl rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 09:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:5b:de:a1:9e:3a:17:5f:b6:54:d4:6c:43:ad:f2:2e:08:1c:c8:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56302D09256688774B85DCD3BAEEB0CB17E8884D Validity Not Before: Aug 2 02:56:05 2025 GMT Not After : Aug 1 03:01:05 2026 GMT Subject: CN=F0E721194B45F5C7C3A50F35B4DB0484FE629DB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:ef:87:ae:c6:96:ea:4c:7b:ed:57:ba:aa: 6b:90:9f:57:86:e8:0c:cd:22:c9:47:b8:dc:5a:ea: ae:94:35:a4:7c:1f:d3:55:8f:1f:40:9c:49:82:99: 45:78:db:21:59:66:d3:99:7f:98:d9:7d:c6:8b:cd: d7:96:0e:b6:8c:e0:a5:46:8b:69:5e:87:11:76:69: ee:11:f3:1a:de:46:63:8a:18:0c:5f:5b:6e:e8:85: 90:a7:56:cb:88:96:66:58:e7:ed:23:7c:e0:7d:fc: 49:e7:4c:af:70:9d:58:28:e4:f6:9e:08:50:33:0d: 4e:bb:82:a0:16:7e:65:bb:ce:dd:94:3e:d2:a7:96: d8:f6:89:b0:4e:42:b8:fe:2a:14:4e:2d:cf:c2:6a: 9a:8c:f2:f7:3e:bd:68:3e:98:00:f6:de:d3:32:43: d1:a6:02:b0:fe:ea:4b:93:3d:9b:59:31:6c:42:08: b3:25:cd:a7:56:b9:90:ec:50:ad:c1:6d:b0:0e:6d: 56:97:81:9e:5c:56:4e:ec:27:23:14:f0:95:fe:47: 6a:af:c8:5f:32:a8:15:80:a6:77:16:d6:f0:c9:89: e5:54:e8:93:87:97:02:dd:ef:30:c1:37:81:62:d2: 7f:92:17:4c:91:1f:39:37:c6:a2:27:12:ea:e1:84: a6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E7:21:19:4B:45:F5:C7:C3:A5:0F:35:B4:DB:04:84:FE:62:9D:B0 X509v3 Authority Key Identifier: keyid:56:30:2D:09:25:66:88:77:4B:85:DC:D3:BA:EE:B0:CB:17:E8:88:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32342d3234203d3e20313532383338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.126.0/24 Signature Algorithm: sha256WithRSAEncryption 54:11:0c:64:6b:73:b0:66:56:bd:0c:f0:cf:8d:6e:8e:8a:07: 0f:7a:cd:36:a7:0b:83:15:9e:0a:06:76:56:d1:21:98:f0:fd: 7c:7c:78:08:52:65:93:1c:39:b9:1f:b5:8c:0f:54:34:72:92: 33:10:05:84:3f:0a:3b:50:92:43:ad:6d:66:76:50:8a:96:90: 89:02:e9:05:a6:93:2e:98:85:78:c7:de:3d:11:d1:59:d0:c9: 68:de:58:18:fb:c2:a7:19:2c:ae:d5:4d:0c:e2:d9:ed:1a:69: 83:be:94:64:fb:6b:08:23:15:93:9d:98:62:b8:6e:30:57:73: 51:60:b5:3f:c8:d8:4b:eb:3a:1c:c3:9f:07:4f:d9:83:c5:07: 3a:3a:0f:61:5c:2f:cb:69:c8:46:37:90:df:52:64:4b:ea:4a: 32:1e:8b:53:6a:14:32:63:a9:8a:a9:2f:a6:a2:81:e0:a0:4c: 3f:2a:b0:07:5c:14:d1:e6:1f:18:22:2f:2b:ec:af:b3:42:d5: 9b:2e:19:e9:af:d6:94:7b:b2:ac:c4:0f:5c:14:8f:f3:a3:a0: 5b:52:4e:36:17:c3:a9:13:45:0d:57:f1:09:20:b3:31:f2:54: 3d:54:39:4d:a2:6d:7a:8f:aa:db:f7:60:a4:a3:19:e7:53:c4: 1d:c3:e3:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFlveoZ46F1+2VNRsQ63yLggcyB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYzMDJEMDkyNTY2ODg3NzRCODVEQ0QzQkFFRUIwQ0Ix N0U4ODg0RDAeFw0yNTA4MDIwMjU2MDVaFw0yNjA4MDEwMzAxMDVaMDMxMTAvBgNV BAMTKEYwRTcyMTE5NEI0NUY1QzdDM0E1MEYzNUI0REIwNDg0RkU2MjlEQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrwO+HrsaW6kx77Ve6qmuQn1eG 6AzNIslHuNxa6q6UNaR8H9NVjx9AnEmCmUV42yFZZtOZf5jZfcaLzdeWDraM4KVG i2lehxF2ae4R8xreRmOKGAxfW27ohZCnVsuIlmZY5+0jfOB9/EnnTK9wnVgo5Pae CFAzDU67gqAWfmW7zt2UPtKnltj2ibBOQrj+KhROLc/CapqM8vc+vWg+mAD23tMy Q9GmArD+6kuTPZtZMWxCCLMlzadWuZDsUK3BbbAObVaXgZ5cVk7sJyMU8JX+R2qv yF8yqBWApncW1vDJieVU6JOHlwLd7zDBN4Fi0n+SF0yRHzk3xqInEurhhKbVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8OchGUtF9cfDpQ81tNsEhP5inbAwHwYDVR0j BBgwFoAUVjAtCSVmiHdLhdzTuu6wyxfoiE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MjA2ZGVmYS1mYTQzLTRmOTMtOTNjZS0zOWZkZmY4MWMxOWEvMC81NjMwMkQwOTI1 NjY4ODc3NEI4NURDRDNCQUVFQjBDQjE3RTg4ODRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTYzMDJEMDkyNTY2ODg3NzRCODVEQ0QzQkFFRUIwQ0IxN0U4 ODg0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyMDZkZWZhLWZhNDMtNGY5My05 M2NlLTM5ZmRmZjgxYzE5YS8wLzMxMzYzMDJlMzIzNTJlMzEzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl+MA0GCSqG SIb3DQEBCwUAA4IBAQBUEQxka3OwZla9DPDPjW6OigcPes02pwuDFZ4KBnZW0SGY 8P18fHgIUmWTHDm5H7WMD1Q0cpIzEAWEPwo7UJJDrW1mdlCKlpCJAukFppMumIV4 x949EdFZ0Mlo3lgY+8KnGSyu1U0M4tntGmmDvpRk+2sIIxWTnZhiuG4wV3NRYLU/ yNhL6zocw58HT9mDxQc6Og9hXC/LachGN5DfUmRL6koyHotTahQyY6mKqS+mooHg oEw/KrAHXBTR5h8YIi8r7K+zQtWbLhnpr9aUe7KsxA9cFI/zo6BbUk42F8OpE0UN V/EJILMx8lQ9VDlNom16j6rb92CkoxnnU8Qdw+Ph -----END CERTIFICATE-----Generated at Wed Aug 6 19:31:36 2025 by rpki-client