$ rpki-client -vvf repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132372e302f32342d3234203d3e20313532383338.roa File: 3136302e32352e3132372e302f32342d3234203d3e20313532383338.roa (raw, json) Hash identifier: narOg/Y+HQu36n1a+2Amx/Ji0/PrZsxnYg1qBFxyHaM= Subject key identifier: 05:C2:68:15:FD:97:59:1E:17:FB:AF:F7:CF:B6:DB:0A:19:6A:C8:01 Certificate issuer: /CN=56302D09256688774B85DCD3BAEEB0CB17E8884D Certificate serial: 24F9644251A08882BEF0FD624E4158B1A2DCD246 Authority key identifier: 56:30:2D:09:25:66:88:77:4B:85:DC:D3:BA:EE:B0:CB:17:E8:88:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132372e302f32342d3234203d3e20313532383338.roa Signing time: Sat 02 Aug 2025 03:01:05 +0000 ROA not before: Sat 02 Aug 2025 02:56:05 +0000 ROA not after: Sat 01 Aug 2026 03:01:05 +0000 asID: 152838 IP address blocks: 160.25.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.crl rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 09:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f9:64:42:51:a0:88:82:be:f0:fd:62:4e:41:58:b1:a2:dc:d2:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56302D09256688774B85DCD3BAEEB0CB17E8884D Validity Not Before: Aug 2 02:56:05 2025 GMT Not After : Aug 1 03:01:05 2026 GMT Subject: CN=05C26815FD97591E17FBAFF7CFB6DB0A196AC801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fb:fc:20:03:b2:b9:ac:30:a4:f6:0d:6d:c7: 26:29:4f:19:8d:f3:fe:50:77:b8:e5:4f:af:07:fe: fa:80:66:cc:35:72:74:31:55:78:d8:c1:7e:b9:46: 87:b0:26:0d:fa:f7:db:04:a1:cb:4e:ec:4c:84:52: df:8d:75:fd:68:b1:2f:1d:5a:ac:01:b0:24:f3:d3: ad:ef:f8:fd:84:61:9a:d8:c0:da:4d:be:7d:16:80: 75:6a:70:14:75:74:1a:5e:f8:b5:a0:17:7c:47:5e: 5a:45:8c:df:30:0c:eb:8d:be:e1:30:bb:da:77:ba: e8:e8:b5:89:78:b8:bf:7d:e7:4b:84:ef:e3:a6:24: 6a:bc:12:b6:f8:d8:d2:89:98:aa:e1:59:0c:fb:37: 34:e3:f8:65:9f:cd:44:9a:48:e3:91:b7:43:3b:63: 2e:58:40:f8:c5:d3:1e:b2:cb:60:90:48:1a:a0:c0: f0:2b:c2:ac:2f:e3:77:17:bb:fa:86:5c:dc:ab:7f: d4:83:67:07:bc:1f:31:01:9c:64:25:3c:d5:4a:84: d4:46:79:04:78:38:24:8a:43:1d:3d:9f:c0:81:22: 71:cb:fb:63:b8:50:28:16:7f:62:fb:b0:87:13:f1: 1d:ef:30:8c:75:eb:5b:62:4a:d8:e6:98:b5:15:84: fb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C2:68:15:FD:97:59:1E:17:FB:AF:F7:CF:B6:DB:0A:19:6A:C8:01 X509v3 Authority Key Identifier: keyid:56:30:2D:09:25:66:88:77:4B:85:DC:D3:BA:EE:B0:CB:17:E8:88:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132372e302f32342d3234203d3e20313532383338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.127.0/24 Signature Algorithm: sha256WithRSAEncryption 15:b5:a1:92:3e:4a:18:0f:48:ce:08:16:8e:8e:42:f7:dc:42: 4b:a1:13:33:65:0c:db:04:43:75:32:b5:dd:1a:54:dd:c6:19: 87:6f:be:9d:7d:93:b5:e6:7a:47:4a:cd:47:56:70:72:3a:e0: ac:ab:79:50:cb:82:b2:66:91:f8:77:58:39:79:44:14:df:d0: 2e:4e:6e:53:43:7c:7e:03:8c:73:04:6c:0a:ec:ff:db:95:a8: 5e:5a:79:9b:e6:8e:c5:93:16:4b:af:85:85:dd:39:a2:f5:b2: 32:3d:c8:f2:71:e0:b9:2a:8b:31:25:b5:89:89:58:31:61:71: 91:46:84:66:ed:ee:9d:03:f7:95:97:70:8c:8d:ea:82:05:97: da:1f:a4:13:52:5a:63:9a:06:8b:e4:9b:c4:0c:dd:94:d7:ad: a8:08:a2:95:dc:9a:65:39:64:86:87:5c:71:43:23:58:6e:ff: 28:b6:8f:3b:2c:95:fa:25:f1:98:0e:d0:04:d7:a5:67:e9:4a: 3e:cc:d1:9c:c1:7f:ed:bf:9d:b4:f9:c1:29:87:1c:a6:99:49: e6:9b:c9:39:03:be:95:41:d2:49:c6:9b:1d:3d:83:6b:f9:99: 84:03:a9:9e:d5:32:07:c8:d6:e5:1e:64:03:2e:8e:76:f8:92: f2:e4:1e:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJPlkQlGgiIK+8P1iTkFYsaLc0kYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYzMDJEMDkyNTY2ODg3NzRCODVEQ0QzQkFFRUIwQ0Ix N0U4ODg0RDAeFw0yNTA4MDIwMjU2MDVaFw0yNjA4MDEwMzAxMDVaMDMxMTAvBgNV BAMTKDA1QzI2ODE1RkQ5NzU5MUUxN0ZCQUZGN0NGQjZEQjBBMTk2QUM4MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi+/wgA7K5rDCk9g1txyYpTxmN 8/5Qd7jlT68H/vqAZsw1cnQxVXjYwX65RoewJg3699sEoctO7EyEUt+Ndf1osS8d WqwBsCTz063v+P2EYZrYwNpNvn0WgHVqcBR1dBpe+LWgF3xHXlpFjN8wDOuNvuEw u9p3uujotYl4uL9950uE7+OmJGq8Erb42NKJmKrhWQz7NzTj+GWfzUSaSOORt0M7 Yy5YQPjF0x6yy2CQSBqgwPArwqwv43cXu/qGXNyrf9SDZwe8HzEBnGQlPNVKhNRG eQR4OCSKQx09n8CBInHL+2O4UCgWf2L7sIcT8R3vMIx161tiStjmmLUVhPs9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBcJoFf2XWR4X+6/3z7bbChlqyAEwHwYDVR0j BBgwFoAUVjAtCSVmiHdLhdzTuu6wyxfoiE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MjA2ZGVmYS1mYTQzLTRmOTMtOTNjZS0zOWZkZmY4MWMxOWEvMC81NjMwMkQwOTI1 NjY4ODc3NEI4NURDRDNCQUVFQjBDQjE3RTg4ODRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTYzMDJEMDkyNTY2ODg3NzRCODVEQ0QzQkFFRUIwQ0IxN0U4 ODg0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyMDZkZWZhLWZhNDMtNGY5My05 M2NlLTM5ZmRmZjgxYzE5YS8wLzMxMzYzMDJlMzIzNTJlMzEzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl/MA0GCSqG SIb3DQEBCwUAA4IBAQAVtaGSPkoYD0jOCBaOjkL33EJLoRMzZQzbBEN1MrXdGlTd xhmHb76dfZO15npHSs1HVnByOuCsq3lQy4KyZpH4d1g5eUQU39AuTm5TQ3x+A4xz BGwK7P/blaheWnmb5o7FkxZLr4WF3Tmi9bIyPcjyceC5KosxJbWJiVgxYXGRRoRm 7e6dA/eVl3CMjeqCBZfaH6QTUlpjmgaL5JvEDN2U162oCKKV3JplOWSGh1xxQyNY bv8oto87LJX6JfGYDtAE16Vn6Uo+zNGcwX/tv520+cEphxymmUnmm8k5A76VQdJJ xpsdPYNr+ZmEA6me1TIHyNblHmQDLo52+JLy5B5g -----END CERTIFICATE-----Generated at Wed Aug 6 19:33:25 2025 by rpki-client