$ rpki-client -vvf repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3233203d3e20313439373436.roa File: 3136302e32352e35302e302f32332d3233203d3e20313439373436.roa (raw, json) Hash identifier: ItdPic80wypsThSkca8xGdGFm8YCN4V6loLuyuZH6qY= Subject key identifier: 24:E9:F0:F1:E3:1C:52:FA:4F:79:92:62:0A:D7:1F:61:B8:BE:A5:4D Certificate issuer: /CN=295131167768CC78482F796BB58CF5A01A014393 Certificate serial: 1372FC41CAAB9DE37D386AABEB21CCAD80BF8132 Authority key identifier: 29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3233203d3e20313439373436.roa Signing time: Wed 03 Sep 2025 07:00:00 +0000 ROA not before: Wed 03 Sep 2025 06:55:00 +0000 ROA not after: Wed 02 Sep 2026 07:00:00 +0000 asID: 149746 IP address blocks: 160.25.50.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 01:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:72:fc:41:ca:ab:9d:e3:7d:38:6a:ab:eb:21:cc:ad:80:bf:81:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295131167768CC78482F796BB58CF5A01A014393 Validity Not Before: Sep 3 06:55:00 2025 GMT Not After : Sep 2 07:00:00 2026 GMT Subject: CN=24E9F0F1E31C52FA4F7992620AD71F61B8BEA54D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:90:b3:a6:e2:6e:ed:b7:a6:f5:f3:cc:06:e2: cc:c2:05:82:52:c1:cc:e2:2c:d5:41:01:04:ec:7c: d6:52:f1:eb:7a:71:80:fb:74:0b:ba:df:3d:1e:9f: 0e:40:11:47:a5:e2:87:a8:82:56:67:70:3a:64:de: 91:a2:77:e7:9e:98:fb:7e:ec:18:1a:cc:e6:67:63: 09:8e:ce:dc:74:ff:aa:e6:8c:2e:4d:d7:ef:38:74: 7a:03:0a:4d:e8:6a:14:53:35:15:91:f1:76:e5:c0: ea:a9:e5:73:aa:c8:b4:53:fe:cc:ed:b1:c9:66:5b: f6:0e:05:fa:24:ef:d8:84:82:63:8e:4e:b1:cf:85: ab:60:25:1f:b5:6c:41:83:c8:6a:37:6b:b2:11:c5: 9c:74:8e:a2:24:bc:36:47:8e:6f:1f:a3:10:62:9b: bc:22:32:4c:4f:1d:80:6f:c4:d7:58:7b:e6:35:09: e4:88:90:5a:59:09:74:59:b2:4e:10:e3:bb:b8:f8: 21:7b:a6:9c:51:12:1b:c4:fa:b2:fb:30:52:39:d4: c4:53:0c:fe:d9:72:c1:ef:a0:c9:87:d6:b9:52:c5: fb:a0:29:8a:0a:86:52:5f:56:43:cd:ed:97:4f:7e: 63:c8:46:a4:6e:96:f5:30:b0:a7:0e:55:b2:2a:82: c1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E9:F0:F1:E3:1C:52:FA:4F:79:92:62:0A:D7:1F:61:B8:BE:A5:4D X509v3 Authority Key Identifier: keyid:29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3233203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.50.0/23 Signature Algorithm: sha256WithRSAEncryption 79:2d:de:e7:4e:0c:28:41:d4:fa:53:fc:75:35:24:a6:0a:eb: d0:28:b3:04:b1:ce:4d:23:91:ad:1b:2a:db:08:92:52:10:b8: 9e:cb:40:26:f4:39:bd:51:5d:c3:00:22:dd:e2:8d:27:c6:e0: d4:8d:72:29:cf:e5:f8:9c:e7:12:ff:59:05:66:fa:b9:7e:7f: 41:8c:57:63:a0:5b:f1:5f:f0:55:25:4d:bd:8d:78:37:09:6f: 0c:4a:94:09:2c:8a:af:ca:fb:a6:d5:e1:38:7e:1e:71:16:ca: 07:7f:2c:1f:ad:1b:08:84:95:48:5e:4e:04:59:65:eb:94:17: 71:f2:3b:69:cb:6a:7e:78:67:b8:c3:0d:87:01:25:7a:bf:2a: dc:25:91:09:ea:86:7f:49:b7:13:69:93:0d:66:bb:1c:56:cb: 7e:ea:a9:e8:51:96:51:5a:a8:eb:a7:fd:47:24:db:2e:8b:94: e9:0c:eb:41:8f:d1:8e:ad:be:27:67:2b:de:c3:e8:a1:b6:0a: 5b:71:18:3e:d6:69:c0:53:84:3d:24:4c:b3:53:ff:53:56:b7: a8:d4:b4:08:ee:a6:93:1e:e2:71:2a:2e:7d:89:a3:cb:99:cc: 24:d9:01:10:49:ec:e2:49:62:79:ef:8e:89:1d:91:73:96:6d: 45:86:55:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE3L8QcqrneN9OGqr6yHMrYC/gTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAx QTAxNDM5MzAeFw0yNTA5MDMwNjU1MDBaFw0yNjA5MDIwNzAwMDBaMDMxMTAvBgNV BAMTKDI0RTlGMEYxRTMxQzUyRkE0Rjc5OTI2MjBBRDcxRjYxQjhCRUE1NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0kLOm4m7tt6b188wG4szCBYJS wcziLNVBAQTsfNZS8et6cYD7dAu63z0enw5AEUel4oeoglZncDpk3pGid+eemPt+ 7BgazOZnYwmOztx0/6rmjC5N1+84dHoDCk3oahRTNRWR8XblwOqp5XOqyLRT/szt sclmW/YOBfok79iEgmOOTrHPhatgJR+1bEGDyGo3a7IRxZx0jqIkvDZHjm8foxBi m7wiMkxPHYBvxNdYe+Y1CeSIkFpZCXRZsk4Q47u4+CF7ppxREhvE+rL7MFI51MRT DP7ZcsHvoMmH1rlSxfugKYoKhlJfVkPN7ZdPfmPIRqRulvUwsKcOVbIqgsG7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJOnw8eMcUvpPeZJiCtcfYbi+pU0wHwYDVR0j BBgwFoAUKVExFndozHhIL3lrtYz1oBoBQ5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWVjYTUwYi01NzIyLTQ5MTgtODMxNC04NTlkM2MxZjU1YTIvMC8yOTUxMzExNjc3 NjhDQzc4NDgyRjc5NkJCNThDRjVBMDFBMDE0MzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAxQTAx NDM5My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZWNhNTBiLTU3MjItNDkxOC04 MzE0LTg1OWQzYzFmNTVhMi8wLzMxMzYzMDJlMzIzNTJlMzUzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzOTM3MzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZMjANBgkqhkiG 9w0BAQsFAAOCAQEAeS3e504MKEHU+lP8dTUkpgrr0CizBLHOTSORrRsq2wiSUhC4 nstAJvQ5vVFdwwAi3eKNJ8bg1I1yKc/l+JznEv9ZBWb6uX5/QYxXY6Bb8V/wVSVN vY14NwlvDEqUCSyKr8r7ptXhOH4ecRbKB38sH60bCISVSF5OBFll65QXcfI7actq fnhnuMMNhwEler8q3CWRCeqGf0m3E2mTDWa7HFbLfuqp6FGWUVqo66f9RyTbLouU 6QzrQY/Rjq2+J2cr3sPoobYKW3EYPtZpwFOEPSRMs1P/U1a3qNS0CO6mkx7icSou fYmjy5nMJNkBEEns4kliee+OiR2Rc5ZtRYZVow== -----END CERTIFICATE-----Generated at Mon Sep 8 09:32:15 2025 by rpki-client