$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa File: 3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa (raw, json) Hash identifier: 4O9lmpHneuudT9xjvw5LwULxiETAfGvFoNCP2XYgoOQ= Subject key identifier: FD:76:7B:25:3B:FE:23:4C:B1:C1:06:53:F8:74:25:51:E4:99:3D:39 Certificate issuer: /CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Certificate serial: 086044637AA88E8DC431ACED98CE1036F5DC26BA Authority key identifier: E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa Signing time: Fri 11 Jul 2025 12:00:03 +0000 ROA not before: Fri 11 Jul 2025 11:55:03 +0000 ROA not after: Fri 10 Jul 2026 12:00:03 +0000 asID: 153087 IP address blocks: 160.25.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 12:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:60:44:63:7a:a8:8e:8d:c4:31:ac:ed:98:ce:10:36:f5:dc:26:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3FB5E3343EC63D705FF51B645113F74C7965236 Validity Not Before: Jul 11 11:55:03 2025 GMT Not After : Jul 10 12:00:03 2026 GMT Subject: CN=FD767B253BFE234CB1C10653F8742551E4993D39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:da:d9:20:98:5a:e9:8e:db:a5:00:bd:3f:45: 8e:a3:7e:b8:d6:d6:ae:95:1e:ee:71:95:95:58:23: 1d:70:eb:c7:f6:c4:f8:b1:39:e3:36:e9:c1:88:2d: d1:34:39:ba:0e:a9:e5:e2:16:98:0f:18:a1:c6:08: 8d:76:ed:cc:91:28:05:0e:d1:2d:06:c4:77:67:37: a5:76:2f:43:07:6e:36:70:33:75:8c:12:da:83:76: 12:af:c5:ba:82:15:28:0b:15:ac:db:c6:f9:7c:f4: ce:23:17:ee:ad:65:9c:a5:84:89:65:15:9d:f1:ea: b9:ed:b1:28:79:36:34:f3:47:f4:c0:50:c2:d1:92: aa:b3:e2:18:86:36:18:f6:7e:fb:eb:c9:2c:90:10: 7d:f5:c0:74:64:95:88:00:b8:e0:69:01:70:5f:ac: 0f:9d:91:41:e3:31:92:48:3d:77:5d:da:e1:38:6e: 3f:c8:72:f4:7f:60:a9:0d:c9:dd:2f:64:3f:87:9f: 45:1c:83:88:4e:c0:37:33:4a:36:70:c2:3e:e7:b1: a3:66:3b:ac:6e:68:83:e0:22:6c:2b:95:4f:8a:3f: 94:d3:bf:97:91:35:bf:10:4d:84:b8:90:07:d8:21: 77:1c:42:f2:be:40:3a:4f:9b:75:d6:aa:b5:37:a3: 76:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:76:7B:25:3B:FE:23:4C:B1:C1:06:53:F8:74:25:51:E4:99:3D:39 X509v3 Authority Key Identifier: keyid:E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232332e302f32342d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.223.0/24 Signature Algorithm: sha256WithRSAEncryption 37:77:94:db:d2:a3:62:7b:6b:57:e8:72:95:3d:62:85:dc:07: 18:fa:82:0b:ac:20:8c:44:a7:a9:fd:23:c6:92:8f:8c:13:f6: 06:97:ef:3b:c4:fd:47:58:68:75:71:2b:c7:ec:6a:a8:46:ec: ff:13:63:9a:1c:74:b4:11:19:e5:c2:e2:48:6a:11:a2:3e:93: ec:3b:dd:9d:84:2e:18:58:eb:63:23:d5:f4:04:ee:46:bf:72: 35:18:7d:ad:5d:ca:de:29:2f:ec:8c:8b:45:f9:7d:e4:22:bf: 93:a4:21:c3:bd:fa:03:87:55:d2:27:1d:e9:36:67:d5:e2:e0: 37:e7:92:34:77:c9:f9:34:c5:c7:80:66:7e:de:e8:bd:c9:d3: c1:a9:f6:a3:8c:0c:3c:0d:c3:87:14:04:34:20:b1:39:65:d4: 48:be:06:7b:60:f1:7c:07:d4:41:22:6b:0b:96:2d:c2:af:53: 01:4f:0f:a3:53:b0:f1:fb:3f:a7:21:05:06:67:d4:35:e6:74: 98:85:0c:d4:a6:f9:5f:22:8c:f2:05:14:9e:fd:63:95:f5:59: c7:e2:da:34:a6:0a:3d:e1:69:97:f8:13:30:94:0d:5c:56:47: 92:fe:7b:38:c3:de:b4:e1:f2:98:d7:17:95:33:68:09:09:84: bb:75:d8:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCGBEY3qojo3EMaztmM4QNvXcJrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRD Nzk2NTIzNjAeFw0yNTA3MTExMTU1MDNaFw0yNjA3MTAxMjAwMDNaMDMxMTAvBgNV BAMTKEZENzY3QjI1M0JGRTIzNENCMUMxMDY1M0Y4NzQyNTUxRTQ5OTNEMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr2tkgmFrpjtulAL0/RY6jfrjW 1q6VHu5xlZVYIx1w68f2xPixOeM26cGILdE0OboOqeXiFpgPGKHGCI127cyRKAUO 0S0GxHdnN6V2L0MHbjZwM3WMEtqDdhKvxbqCFSgLFazbxvl89M4jF+6tZZylhIll FZ3x6rntsSh5NjTzR/TAUMLRkqqz4hiGNhj2fvvrySyQEH31wHRklYgAuOBpAXBf rA+dkUHjMZJIPXdd2uE4bj/IcvR/YKkNyd0vZD+Hn0Ucg4hOwDczSjZwwj7nsaNm O6xuaIPgImwrlU+KP5TTv5eRNb8QTYS4kAfYIXccQvK+QDpPm3XWqrU3o3ZRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/XZ7JTv+I0yxwQZT+HQlUeSZPTkwHwYDVR0j BBgwFoAU4/teM0PsY9cF/1G2RRE/dMeWUjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMC9FM0ZCNUUzMzQz RUM2M0Q3MDVGRjUxQjY0NTExM0Y3NEM3OTY1MjM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRTNGQjVFMzM0M0VDNjNENzA1RkY1MUI2NDUxMTNGNzRDNzk2 NTIzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8wLzMxMzYzMDJlMzIzNTJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnfMA0GCSqG SIb3DQEBCwUAA4IBAQA3d5Tb0qNie2tX6HKVPWKF3AcY+oILrCCMRKep/SPGko+M E/YGl+87xP1HWGh1cSvH7GqoRuz/E2OaHHS0ERnlwuJIahGiPpPsO92dhC4YWOtj I9X0BO5Gv3I1GH2tXcreKS/sjItF+X3kIr+TpCHDvfoDh1XSJx3pNmfV4uA355I0 d8n5NMXHgGZ+3ui9ydPBqfajjAw8DcOHFAQ0ILE5ZdRIvgZ7YPF8B9RBImsLli3C r1MBTw+jU7Dx+z+nIQUGZ9Q15nSYhQzUpvlfIozyBRSe/WOV9VnH4to0pgo94WmX +BMwlA1cVkeS/ns4w9604fKY1xeVM2gJCYS7ddgQ -----END CERTIFICATE-----Generated at Thu Jul 24 17:19:22 2025 by rpki-client