$ rpki-client -vvf repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133372e302f32342d3234203d3e20313532383131.roa File: 3136302e32322e3133372e302f32342d3234203d3e20313532383131.roa (raw, json) Hash identifier: HT3mtD9EzYNDUslH4D8zHP3cyYz5I1nQiUhW1KPbzG8= Subject key identifier: 2F:41:F1:67:92:89:98:E5:C0:C6:B7:00:3D:72:25:74:65:DF:2D:32 Certificate issuer: /CN=8107B8970680BF15377E222E6093ED124116C40F Certificate serial: 6B6A496063FEEFC58CA987E564DB80D30BD0B0E9 Authority key identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133372e302f32342d3234203d3e20313532383131.roa Signing time: Sun 02 Nov 2025 05:41:39 +0000 ROA not before: Sun 02 Nov 2025 05:36:39 +0000 ROA not after: Sun 01 Nov 2026 05:41:39 +0000 asID: 152811 IP address blocks: 160.22.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6a:49:60:63:fe:ef:c5:8c:a9:87:e5:64:db:80:d3:0b:d0:b0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8107B8970680BF15377E222E6093ED124116C40F Validity Not Before: Nov 2 05:36:39 2025 GMT Not After : Nov 1 05:41:39 2026 GMT Subject: CN=2F41F167928998E5C0C6B7003D72257465DF2D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c2:fc:7b:04:ec:a6:a8:d7:86:90:e8:8e:c3: 34:27:00:cd:c5:35:7d:4e:1e:11:09:20:6b:85:3a: 80:17:94:8e:2a:f6:4f:35:64:76:41:96:dc:1c:f3: 30:c3:aa:03:65:5d:e6:06:5b:24:7a:27:18:91:71: 9d:03:9c:52:97:7a:35:70:87:a0:97:88:2a:81:71: c8:ed:c2:bf:fc:c4:af:4f:60:96:d1:57:b7:eb:c6: ce:b3:af:c7:10:3c:6f:e8:28:5e:e1:64:b7:df:1d: 41:90:f5:6a:00:b9:df:27:27:8c:2b:ff:af:00:0d: 88:4f:f0:c8:39:c8:81:78:97:fc:b4:e2:4e:25:8f: e0:98:56:c5:d0:4e:43:1b:c3:c2:7e:f3:1b:55:48: 98:d1:b6:30:91:83:b2:cc:ba:ca:a8:0b:e2:78:e9: ee:04:ed:81:ba:8a:b8:0b:39:6a:e8:93:0d:72:db: 71:ed:70:e4:81:52:4b:58:7a:d5:90:f6:6e:94:01: d9:84:59:1d:2f:b6:13:ab:f4:72:fa:3a:af:40:c1: d1:39:65:61:10:d3:50:05:56:ad:1f:f3:19:1b:08: ac:b9:2d:b3:28:c0:b4:b2:b7:bf:91:72:74:89:5d: 9c:a8:05:1f:64:87:73:c1:4d:63:65:3e:cf:04:78: 8a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:41:F1:67:92:89:98:E5:C0:C6:B7:00:3D:72:25:74:65:DF:2D:32 X509v3 Authority Key Identifier: keyid:81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133372e302f32342d3234203d3e20313532383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.137.0/24 Signature Algorithm: sha256WithRSAEncryption 36:b5:71:80:24:d0:c3:83:1e:72:cf:30:b5:21:8f:51:f1:2d: ad:73:69:7f:91:cc:e8:88:ae:8f:73:3c:70:89:70:97:0d:4f: 22:d7:8c:f1:58:9c:17:34:9c:d2:5f:a3:61:2d:9b:5e:c1:4f: 4e:46:dd:aa:d9:1c:8b:e1:38:87:d3:c7:05:4f:d6:95:01:e2: dd:c9:b5:b8:54:0f:d9:0d:66:44:96:94:ee:97:11:a7:f3:e0: 19:7a:8f:0a:72:ac:3b:63:a5:61:08:5d:db:fd:45:30:e0:ae: 8d:12:df:8b:81:28:75:4b:17:e0:68:20:b7:bf:d7:94:b2:7f: 03:7c:e6:e7:85:c8:b8:da:60:51:e5:ab:75:3a:ef:6e:13:ac: 1a:e2:e1:4b:94:1d:99:d7:80:c5:8c:d3:f9:30:46:d6:e0:32: b5:43:d9:46:61:37:dd:22:93:3c:51:84:06:49:bf:55:a4:d2: cf:65:14:af:f6:29:31:7d:17:c7:af:95:a6:0b:9b:ea:04:47: d9:22:71:24:84:2e:92:a8:5f:bd:9b:48:f5:46:76:84:39:49: e5:48:00:f3:bf:c1:75:35:60:57:d0:98:b9:51:a6:7e:3b:9f: 66:a9:97:0e:b3:d5:f8:af:83:08:ee:d1:67:a4:48:33:23:c2: 1a:72:6e:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa2pJYGP+78WMqYflZNuA0wvQsOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0 MTE2QzQwRjAeFw0yNTExMDIwNTM2MzlaFw0yNjExMDEwNTQxMzlaMDMxMTAvBgNV BAMTKDJGNDFGMTY3OTI4OTk4RTVDMEM2QjcwMDNENzIyNTc0NjVERjJEMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNwvx7BOymqNeGkOiOwzQnAM3F NX1OHhEJIGuFOoAXlI4q9k81ZHZBltwc8zDDqgNlXeYGWyR6JxiRcZ0DnFKXejVw h6CXiCqBccjtwr/8xK9PYJbRV7frxs6zr8cQPG/oKF7hZLffHUGQ9WoAud8nJ4wr /68ADYhP8Mg5yIF4l/y04k4lj+CYVsXQTkMbw8J+8xtVSJjRtjCRg7LMusqoC+J4 6e4E7YG6irgLOWrokw1y23HtcOSBUktYetWQ9m6UAdmEWR0vthOr9HL6Oq9AwdE5 ZWEQ01AFVq0f8xkbCKy5LbMowLSyt7+RcnSJXZyoBR9kh3PBTWNlPs8EeIqxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL0HxZ5KJmOXAxrcAPXIldGXfLTIwHwYDVR0j BBgwFoAUgQe4lwaAvxU3fiIuYJPtEkEWxA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTk1YjRiNC1iYzhhLTRjZTUtYjU1MC05YWE3YjM2ZWUxZmEvMC84MTA3Qjg5NzA2 ODBCRjE1Mzc3RTIyMkU2MDkzRUQxMjQxMTZDNDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0MTE2 QzQwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0LWJjOGEtNGNlNS1i NTUwLTlhYTdiMzZlZTFmYS8wLzMxMzYzMDJlMzIzMjJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaJMA0GCSqG SIb3DQEBCwUAA4IBAQA2tXGAJNDDgx5yzzC1IY9R8S2tc2l/kczoiK6PczxwiXCX DU8i14zxWJwXNJzSX6NhLZtewU9ORt2q2RyL4TiH08cFT9aVAeLdybW4VA/ZDWZE lpTulxGn8+AZeo8Kcqw7Y6VhCF3b/UUw4K6NEt+LgSh1SxfgaCC3v9eUsn8DfObn hci42mBR5at1Ou9uE6wa4uFLlB2Z14DFjNP5MEbW4DK1Q9lGYTfdIpM8UYQGSb9V pNLPZRSv9ikxfRfHr5WmC5vqBEfZInEkhC6SqF+9m0j1RnaEOUnlSADzv8F1NWBX 0Ji5UaZ+O59mqZcOs9X4r4MI7tFnpEgzI8Iacm72 -----END CERTIFICATE-----Generated at Tue Nov 4 21:47:45 2025 by rpki-client