$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa File: 3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa (raw, json) Hash identifier: KzwY0iiHcJ5O0UVPUHPKtH6yEpVlgjbtPe1xq08+n3c= Subject key identifier: 58:63:3C:AC:F6:72:3D:B5:CB:B5:75:9E:93:67:74:DA:23:1B:CA:25 Certificate issuer: /CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Certificate serial: 7DC9D1DA117AD4290EA680C7B5E4937D6D4268AB Authority key identifier: E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa Signing time: Fri 11 Jul 2025 12:00:03 +0000 ROA not before: Fri 11 Jul 2025 11:55:03 +0000 ROA not after: Fri 10 Jul 2026 12:00:03 +0000 asID: 153087 IP address blocks: 160.25.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 01:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c9:d1:da:11:7a:d4:29:0e:a6:80:c7:b5:e4:93:7d:6d:42:68:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Validity Not Before: Jul 11 11:55:03 2025 GMT Not After : Jul 10 12:00:03 2026 GMT Subject: CN=58633CACF6723DB5CBB5759E936774DA231BCA25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:bb:aa:74:12:df:a5:69:3c:21:f0:29:4b: 89:46:cf:fa:5c:41:70:17:99:0b:83:93:69:b6:b5: 2b:ac:c3:7b:d1:7b:ae:a5:f3:08:9b:05:c9:a0:42: ca:55:04:5e:6e:bd:74:2c:1f:7f:b0:09:eb:41:04: 2b:5e:81:4e:a2:1e:c6:5a:3a:b2:69:6f:c2:3c:08: 9e:89:81:1b:40:0a:b5:36:46:04:23:96:a9:d3:48: 13:60:a9:d3:2a:d9:d1:69:12:df:f8:94:d7:9a:e5: f5:a6:97:29:94:35:ad:80:57:79:8a:25:72:f9:3a: a7:34:2a:0e:a1:b8:9a:c8:e7:21:13:2e:f5:51:4c: ed:ec:3d:24:94:f5:3f:f7:98:00:9e:67:02:18:66: 4d:50:45:b3:24:45:07:fa:a0:cb:d6:81:e5:a7:f5: 5c:c8:01:64:4b:84:04:dc:4d:8d:d6:32:54:ca:7a: 82:03:69:01:ad:c6:1c:b7:8a:83:b1:12:14:1d:28: a5:b4:75:8d:9f:f5:80:e4:e3:b3:1d:6f:86:b5:b3: 64:cc:ec:d3:b6:50:29:62:ff:d7:91:3b:58:27:7e: c2:c6:fc:ea:07:db:d4:a4:af:1d:8f:2a:f5:83:67: b6:1b:e8:fd:92:3b:21:55:91:35:13:bb:b0:ba:72: 6f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:63:3C:AC:F6:72:3D:B5:CB:B5:75:9E:93:67:74:DA:23:1B:CA:25 X509v3 Authority Key Identifier: keyid:E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.222.0/23 Signature Algorithm: sha256WithRSAEncryption 86:ee:ce:76:f6:c3:4b:79:c7:40:2a:16:6c:26:9a:4b:1f:0b: de:6b:ae:b4:56:8b:82:f4:da:28:6a:d8:66:7f:e1:9d:a0:f3: 07:78:3b:1e:2e:a0:e5:7f:30:83:d1:a4:a6:9a:7e:6f:ec:70: a3:da:27:86:c6:f4:27:71:8d:56:58:49:12:b4:82:5c:63:5e: 31:3e:d8:6b:01:44:a0:60:31:a1:71:d5:71:6f:16:fc:c0:20: 46:bc:c7:d9:b9:36:f7:78:f7:bb:72:a9:ab:62:16:ee:e6:2a: a0:61:61:39:28:f9:a3:ba:1c:84:44:26:35:0c:e0:f4:21:4f: 21:38:2d:5b:d6:d8:f0:1c:d6:55:a1:a5:64:40:0e:e9:f7:a3: a6:ee:53:04:00:bf:2d:97:30:4e:9a:c4:f4:3f:85:81:76:4a: c8:ce:52:a1:09:40:55:e4:7a:c5:30:8c:c0:38:c0:51:e1:29: b4:dd:5c:e2:6f:c1:56:11:9b:0e:a6:a9:7f:d4:6c:b8:b5:8e: 9f:b8:56:99:a9:71:3b:8f:22:67:56:1e:0a:cc:9b:b0:3c:ac: 85:78:d7:f7:90:23:bb:b7:47:78:38:07:95:fd:2b:be:6e:67: 14:37:53:c5:e3:67:36:60:a5:99:1c:21:b3:b8:86:1a:85:5e: c4:3f:8a:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfcnR2hF61CkOpoDHteSTfW1CaKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRD Nzk2NTIzNjAeFw0yNTA3MTExMTU1MDNaFw0yNjA3MTAxMjAwMDNaMDMxMTAvBgNV BAMTKDU4NjMzQ0FDRjY3MjNEQjVDQkI1NzU5RTkzNjc3NERBMjMxQkNBMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGwbuqdBLfpWk8IfApS4lGz/pc QXAXmQuDk2m2tSusw3vRe66l8wibBcmgQspVBF5uvXQsH3+wCetBBCtegU6iHsZa OrJpb8I8CJ6JgRtACrU2RgQjlqnTSBNgqdMq2dFpEt/4lNea5fWmlymUNa2AV3mK JXL5Oqc0Kg6huJrI5yETLvVRTO3sPSSU9T/3mACeZwIYZk1QRbMkRQf6oMvWgeWn 9VzIAWRLhATcTY3WMlTKeoIDaQGtxhy3ioOxEhQdKKW0dY2f9YDk47Mdb4a1s2TM 7NO2UCli/9eRO1gnfsLG/OoH29Skrx2PKvWDZ7Yb6P2SOyFVkTUTu7C6cm+tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWGM8rPZyPbXLtXWek2d02iMbyiUwHwYDVR0j BBgwFoAU4/teM0PsY9cF/1G2RRE/dMeWUjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMC9FM0ZCNUUzMzQz RUM2M0Q3MDVGRjUxQjY0NTExM0Y3NEM3OTY1MjM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRDNzk2 NTIzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8wLzMxMzYzMDJlMzIzNTJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBneMA0GCSqG SIb3DQEBCwUAA4IBAQCG7s529sNLecdAKhZsJppLHwvea660VouC9Nooathmf+Gd oPMHeDseLqDlfzCD0aSmmn5v7HCj2ieGxvQncY1WWEkStIJcY14xPthrAUSgYDGh cdVxbxb8wCBGvMfZuTb3ePe7cqmrYhbu5iqgYWE5KPmjuhyERCY1DOD0IU8hOC1b 1tjwHNZVoaVkQA7p96Om7lMEAL8tlzBOmsT0P4WBdkrIzlKhCUBV5HrFMIzAOMBR 4Sm03Vzib8FWEZsOpql/1Gy4tY6fuFaZqXE7jyJnVh4KzJuwPKyFeNf3kCO7t0d4 OAeV/Su+bmcUN1PF42c2YKWZHCGzuIYahV7EP4qP -----END CERTIFICATE-----Generated at Wed Jul 23 23:45:57 2025 by rpki-client