$ rpki-client -vvf repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa File: 3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa (raw, json) Hash identifier: WXTlhMYeWb2XPsk3kKz2q/Y6eUxTYpdY6/4zyAzkOVg= Subject key identifier: 9C:FB:9E:9D:D8:D9:1D:E6:C2:71:84:3B:FF:73:47:5E:66:F9:6A:9A Certificate issuer: /CN=8107B8970680BF15377E222E6093ED124116C40F Certificate serial: 63D539382EAB68DB634B6B394C20BB8B26AA87D4 Authority key identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa Signing time: Sun 02 Nov 2025 05:40:51 +0000 ROA not before: Sun 02 Nov 2025 05:35:51 +0000 ROA not after: Sun 01 Nov 2026 05:40:51 +0000 asID: 152811 IP address blocks: 160.22.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d5:39:38:2e:ab:68:db:63:4b:6b:39:4c:20:bb:8b:26:aa:87:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8107B8970680BF15377E222E6093ED124116C40F Validity Not Before: Nov 2 05:35:51 2025 GMT Not After : Nov 1 05:40:51 2026 GMT Subject: CN=9CFB9E9DD8D91DE6C271843BFF73475E66F96A9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ec:bb:9c:1e:f3:17:e3:e4:7c:f4:b7:37:34: 2d:94:23:17:c2:da:66:1b:4e:cf:35:bf:44:d2:bf: ad:4c:c6:b2:b1:09:37:6c:2a:1d:b0:9c:e5:ba:ef: 2b:60:c5:1c:36:ff:b9:12:f5:51:a4:6d:61:05:fc: a3:d0:14:98:d9:69:af:66:01:a8:4c:7a:ca:84:6b: cb:f7:76:b5:e5:90:4a:87:f9:ec:4e:25:41:64:0a: fe:76:f9:88:3c:94:06:1d:3f:58:1c:b2:6d:01:e0: a1:71:3f:0f:8d:62:c4:85:c1:07:5a:4b:cf:cc:b2: c9:79:62:dc:9d:2f:00:da:9d:58:e1:8e:39:5d:12: 38:3c:67:29:36:9b:6f:1d:b6:8a:7a:37:13:52:9d: 70:db:be:ca:03:55:bd:46:7b:ef:0d:cf:f9:9b:fb: af:61:64:6b:89:32:c2:9d:a6:01:fd:25:60:55:1c: f4:fa:d2:2f:46:2d:8b:7b:91:e4:ac:ab:0b:80:74: 63:37:3c:66:6a:f1:34:7d:d3:cc:c3:30:5e:f5:92: e5:f6:17:93:92:7a:5c:90:12:62:40:ad:e5:98:65: e7:f0:b7:3a:3b:bf:df:2b:c6:59:7e:4c:97:14:f9: 8e:be:39:f1:02:3d:96:79:f0:14:5c:77:e2:a4:23: f3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:FB:9E:9D:D8:D9:1D:E6:C2:71:84:3B:FF:73:47:5E:66:F9:6A:9A X509v3 Authority Key Identifier: keyid:81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:7c:f8:43:2f:38:65:56:1d:0c:aa:75:fb:b7:b5:4b:84:18: 12:a0:3a:19:0d:b2:3b:87:f8:09:d5:ba:40:a8:43:67:f3:50: 45:18:64:0d:d5:c5:64:71:f6:ae:0a:ef:e2:95:5b:53:6e:94: ad:a7:30:99:1b:41:07:95:8b:3b:b8:05:55:a1:e5:17:ff:3e: 45:91:56:1c:c8:48:8e:ea:cc:bf:92:1f:ef:29:a3:b8:7d:a2: b6:4a:34:bf:f4:c6:23:f1:b0:c9:c0:70:aa:a0:f4:34:23:e7: 91:d1:65:13:21:9d:d6:85:34:2e:75:3a:be:2c:c8:19:f2:3e: 97:d7:c0:eb:f9:72:0b:d8:e8:f7:ac:55:d5:13:b1:5c:b1:a6: 33:45:28:3f:93:2c:5a:1e:e2:bf:a0:35:b4:f2:24:35:a7:8a: 63:53:56:5f:62:2d:79:f9:b6:a8:c5:18:5f:0f:7a:b7:8e:66: 62:89:16:5a:5e:a2:88:ce:36:f7:28:67:fa:97:2a:87:02:4d: a3:20:a4:37:1d:ff:26:d0:b0:b6:08:d1:23:2e:1f:f9:1b:11: 7c:50:6a:ce:cf:d4:6e:10:db:6f:92:cb:cc:3b:84:87:b4:75: 69:e8:79:b5:13:64:12:60:9f:f5:c8:47:f0:4e:c1:cc:49:af: bb:31:1d:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY9U5OC6raNtjS2s5TCC7iyaqh9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0 MTE2QzQwRjAeFw0yNTExMDIwNTM1NTFaFw0yNjExMDEwNTQwNTFaMDMxMTAvBgNV BAMTKDlDRkI5RTlERDhEOTFERTZDMjcxODQzQkZGNzM0NzVFNjZGOTZBOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP7LucHvMX4+R89Lc3NC2UIxfC 2mYbTs81v0TSv61MxrKxCTdsKh2wnOW67ytgxRw2/7kS9VGkbWEF/KPQFJjZaa9m AahMesqEa8v3drXlkEqH+exOJUFkCv52+Yg8lAYdP1gcsm0B4KFxPw+NYsSFwQda S8/Mssl5YtydLwDanVjhjjldEjg8Zyk2m28dtop6NxNSnXDbvsoDVb1Ge+8Nz/mb +69hZGuJMsKdpgH9JWBVHPT60i9GLYt7keSsqwuAdGM3PGZq8TR908zDMF71kuX2 F5OSelyQEmJAreWYZefwtzo7v98rxll+TJcU+Y6+OfECPZZ58BRcd+KkI/OHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnPuendjZHebCcYQ7/3NHXmb5apowHwYDVR0j BBgwFoAUgQe4lwaAvxU3fiIuYJPtEkEWxA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTk1YjRiNC1iYzhhLTRjZTUtYjU1MC05YWE3YjM2ZWUxZmEvMC84MTA3Qjg5NzA2 ODBCRjE1Mzc3RTIyMkU2MDkzRUQxMjQxMTZDNDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0MTE2 QzQwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0LWJjOGEtNGNlNS1i NTUwLTlhYTdiMzZlZTFmYS8wLzMxMzYzMDJlMzIzMjJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaIMA0GCSqG SIb3DQEBCwUAA4IBAQBufPhDLzhlVh0MqnX7t7VLhBgSoDoZDbI7h/gJ1bpAqENn 81BFGGQN1cVkcfauCu/ilVtTbpStpzCZG0EHlYs7uAVVoeUX/z5FkVYcyEiO6sy/ kh/vKaO4faK2SjS/9MYj8bDJwHCqoPQ0I+eR0WUTIZ3WhTQudTq+LMgZ8j6X18Dr +XIL2Oj3rFXVE7FcsaYzRSg/kyxaHuK/oDW08iQ1p4pjU1ZfYi15+baoxRhfD3q3 jmZiiRZaXqKIzjb3KGf6lyqHAk2jIKQ3Hf8m0LC2CNEjLh/5GxF8UGrOz9RuENtv ksvMO4SHtHVp6Hm1E2QSYJ/1yEfwTsHMSa+7MR0t -----END CERTIFICATE-----Generated at Tue Nov 4 23:22:18 2025 by rpki-client