$ rpki-client -vvf repo-rpki.idnic.net/repo/e2819ba9-5f44-4125-8b8c-fc164b54d73a/0/3136302e32322e39312e302f32342d3234203d3e20313533303635.roa File: 3136302e32322e39312e302f32342d3234203d3e20313533303635.roa (raw, json) Hash identifier: 3hoDD7ig6gcP/Yzm1bfTsMAVOt7p/pOGosEJ4Wxm3M0= Subject key identifier: 00:BB:52:32:78:B9:16:77:A5:C2:24:AA:EF:62:5A:56:B8:85:FE:2A Certificate issuer: /CN=3E08DEC2AE0EB41653597023376671331769A43E Certificate serial: 0DFD620DAC12B8897FCB48E013A962FCF9E714F2 Authority key identifier: 3E:08:DE:C2:AE:0E:B4:16:53:59:70:23:37:66:71:33:17:69:A4:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3E08DEC2AE0EB41653597023376671331769A43E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2819ba9-5f44-4125-8b8c-fc164b54d73a/0/3136302e32322e39312e302f32342d3234203d3e20313533303635.roa Signing time: Tue 28 Oct 2025 03:00:01 +0000 ROA not before: Tue 28 Oct 2025 02:55:01 +0000 ROA not after: Tue 27 Oct 2026 03:00:01 +0000 asID: 153065 IP address blocks: 160.22.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2819ba9-5f44-4125-8b8c-fc164b54d73a/0/3E08DEC2AE0EB41653597023376671331769A43E.crl rsync://repo-rpki.idnic.net/repo/e2819ba9-5f44-4125-8b8c-fc164b54d73a/0/3E08DEC2AE0EB41653597023376671331769A43E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3E08DEC2AE0EB41653597023376671331769A43E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 23:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:fd:62:0d:ac:12:b8:89:7f:cb:48:e0:13:a9:62:fc:f9:e7:14:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E08DEC2AE0EB41653597023376671331769A43E Validity Not Before: Oct 28 02:55:01 2025 GMT Not After : Oct 27 03:00:01 2026 GMT Subject: CN=00BB523278B91677A5C224AAEF625A56B885FE2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c5:74:ba:0f:95:81:71:6d:59:a7:ec:03:1f: d6:e7:9e:80:67:f2:50:e9:85:4d:b8:c1:47:07:58: 9b:b7:b8:88:a9:83:78:ac:73:4e:e3:d4:60:47:9d: 7e:40:95:58:09:8c:96:d3:8e:fc:b2:46:ca:e5:ae: 91:f3:e7:9c:be:38:b5:f4:d8:3c:a5:95:57:d6:99: 42:51:e9:2f:1d:48:b6:44:eb:e3:3d:7f:da:fa:b9: f7:39:55:29:fb:11:77:bd:08:89:85:6e:f8:3d:09: 72:17:9d:46:7d:39:d4:91:d1:0f:4d:4f:30:3a:6d: a1:eb:cf:10:37:03:e9:1e:a2:b7:1f:18:8d:ba:94: 95:34:4e:f2:4b:d2:8a:8a:d0:ff:ef:a0:c2:2d:17: 42:bd:61:63:67:dd:2e:f6:b6:70:fb:7a:8e:5a:5a: c6:c3:48:69:2c:2e:7a:e8:4c:cf:1b:83:51:23:1c: 6b:a1:67:2b:df:71:b8:71:30:7f:65:09:d5:bf:89: d1:e3:76:80:9a:b7:03:96:b4:84:9d:58:71:79:88: f2:8c:e9:88:bc:e6:77:6a:bf:74:55:87:38:ce:14: 5b:2a:5c:11:92:de:79:72:f6:72:f9:a4:37:9d:08: 09:0b:96:e7:46:76:7c:3e:5f:86:5d:a2:9e:2b:15: c7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BB:52:32:78:B9:16:77:A5:C2:24:AA:EF:62:5A:56:B8:85:FE:2A X509v3 Authority Key Identifier: keyid:3E:08:DE:C2:AE:0E:B4:16:53:59:70:23:37:66:71:33:17:69:A4:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2819ba9-5f44-4125-8b8c-fc164b54d73a/0/3E08DEC2AE0EB41653597023376671331769A43E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3E08DEC2AE0EB41653597023376671331769A43E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2819ba9-5f44-4125-8b8c-fc164b54d73a/0/3136302e32322e39312e302f32342d3234203d3e20313533303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.91.0/24 Signature Algorithm: sha256WithRSAEncryption 53:33:9a:4c:a6:ed:1e:8c:4a:93:8a:0d:c5:bd:e8:44:f9:bb: 0c:8b:78:a0:d7:0b:b7:6c:80:13:d0:9a:f0:cc:85:de:fb:04: 99:3b:f3:d2:80:b1:46:76:5a:0c:d9:3c:b2:1c:83:7d:23:a2: 9f:62:aa:90:44:59:65:a3:58:22:c0:8a:75:95:c5:28:a8:60: a8:f8:26:a5:dc:1f:ef:71:81:10:24:42:36:6f:ae:4d:27:98: c9:3c:3c:c6:6e:99:a0:80:52:a7:23:6e:52:de:ca:f8:f6:0d: df:c9:5d:ea:f1:25:59:0a:98:42:27:28:fe:e0:57:b5:a8:cc: 77:93:c6:a4:69:2f:8f:30:bd:29:bf:9d:a3:8c:6f:74:b5:37: f9:fd:e5:41:ca:68:8b:a3:61:2f:a4:0b:ec:84:56:d5:1d:02: 33:d5:a1:9d:6b:d9:26:72:0c:d4:03:4d:da:b3:71:8c:fa:d5: 64:a3:a6:2a:37:34:d0:0e:72:d4:46:8d:3e:02:23:0a:bd:1c: e1:35:8e:de:e8:45:0d:57:97:2d:0a:b5:12:0d:76:cd:df:75: b8:f7:cd:35:ab:df:0d:a8:5a:d4:f0:a9:f3:5c:46:6b:02:e2: a0:98:34:75:72:c3:53:a4:a4:6b:36:61:74:f8:8b:1e:50:78: 4e:91:51:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDf1iDawSuIl/y0jgE6li/PnnFPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwOERFQzJBRTBFQjQxNjUzNTk3MDIzMzc2NjcxMzMx NzY5QTQzRTAeFw0yNTEwMjgwMjU1MDFaFw0yNjEwMjcwMzAwMDFaMDMxMTAvBgNV BAMTKDAwQkI1MjMyNzhCOTE2NzdBNUMyMjRBQUVGNjI1QTU2Qjg4NUZFMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTxXS6D5WBcW1Zp+wDH9bnnoBn 8lDphU24wUcHWJu3uIipg3isc07j1GBHnX5AlVgJjJbTjvyyRsrlrpHz55y+OLX0 2DyllVfWmUJR6S8dSLZE6+M9f9r6ufc5VSn7EXe9CImFbvg9CXIXnUZ9OdSR0Q9N TzA6baHrzxA3A+keorcfGI26lJU0TvJL0oqK0P/voMItF0K9YWNn3S72tnD7eo5a WsbDSGksLnroTM8bg1EjHGuhZyvfcbhxMH9lCdW/idHjdoCatwOWtISdWHF5iPKM 6Yi85ndqv3RVhzjOFFsqXBGS3nly9nL5pDedCAkLludGdnw+X4Zdop4rFccDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUALtSMni5FnelwiSq72JaVriF/iowHwYDVR0j BBgwFoAUPgjewq4OtBZTWXAjN2ZxMxdppD4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MjgxOWJhOS01ZjQ0LTQxMjUtOGI4Yy1mYzE2NGI1NGQ3M2EvMC8zRTA4REVDMkFF MEVCNDE2NTM1OTcwMjMzNzY2NzEzMzE3NjlBNDNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvM0UwOERFQzJBRTBFQjQxNjUzNTk3MDIzMzc2NjcxMzMxNzY5 QTQzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyODE5YmE5LTVmNDQtNDEyNS04 YjhjLWZjMTY0YjU0ZDczYS8wLzMxMzYzMDJlMzIzMjJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWWzANBgkqhkiG 9w0BAQsFAAOCAQEAUzOaTKbtHoxKk4oNxb3oRPm7DIt4oNcLt2yAE9Ca8MyF3vsE mTvz0oCxRnZaDNk8shyDfSOin2KqkERZZaNYIsCKdZXFKKhgqPgmpdwf73GBECRC Nm+uTSeYyTw8xm6ZoIBSpyNuUt7K+PYN38ld6vElWQqYQico/uBXtajMd5PGpGkv jzC9Kb+do4xvdLU3+f3lQcpoi6NhL6QL7IRW1R0CM9WhnWvZJnIM1ANN2rNxjPrV ZKOmKjc00A5y1EaNPgIjCr0c4TWO3uhFDVeXLQq1Eg12zd91uPfNNavfDaha1PCp 81xGawLioJg0dXLDU6SkazZhdPiLHlB4TpFReg== -----END CERTIFICATE-----Generated at Wed Nov 5 04:35:00 2025 by rpki-client