$ rpki-client -vvf repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/3136302e3138372e35352e302f32342d3234203d3e20313533313137.roa File: 3136302e3138372e35352e302f32342d3234203d3e20313533313137.roa (raw, json) Hash identifier: KBNbxQjOLfhYwGB4Wp4pMpbXxYHR8QezEvyeUuNBjy8= Subject key identifier: 1A:A8:4F:F6:0E:00:C4:6A:89:82:62:CE:94:D1:70:73:28:9E:99:E0 Certificate issuer: /CN=AED8CB33E789DD342182B8DD6D16D95A45B981EF Certificate serial: 25CEB5E569687399406C4BE1034603CC2F037753 Authority key identifier: AE:D8:CB:33:E7:89:DD:34:21:82:B8:DD:6D:16:D9:5A:45:B9:81:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AED8CB33E789DD342182B8DD6D16D95A45B981EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/3136302e3138372e35352e302f32342d3234203d3e20313533313137.roa Signing time: Wed 27 Aug 2025 09:02:03 +0000 ROA not before: Wed 27 Aug 2025 08:57:03 +0000 ROA not after: Wed 26 Aug 2026 09:02:03 +0000 asID: 153117 IP address blocks: 160.187.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/AED8CB33E789DD342182B8DD6D16D95A45B981EF.crl rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/AED8CB33E789DD342182B8DD6D16D95A45B981EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AED8CB33E789DD342182B8DD6D16D95A45B981EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 12:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ce:b5:e5:69:68:73:99:40:6c:4b:e1:03:46:03:cc:2f:03:77:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AED8CB33E789DD342182B8DD6D16D95A45B981EF Validity Not Before: Aug 27 08:57:03 2025 GMT Not After : Aug 26 09:02:03 2026 GMT Subject: CN=1AA84FF60E00C46A898262CE94D17073289E99E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:cc:c5:63:92:a7:3d:07:9f:3a:54:7f:3a: c8:75:5d:73:9e:e1:84:5a:cd:e9:f1:1a:54:55:9b: 9e:82:25:1b:5c:21:a9:b3:38:d2:96:e5:e3:4f:7a: 83:41:84:db:52:6e:b3:81:5d:8c:62:0b:97:bd:09: a6:cf:a0:74:f6:5d:d6:05:00:0a:89:28:a9:86:72: 46:da:14:9a:6c:82:50:1f:d8:b6:a6:c7:0b:9a:fc: bb:49:bf:6a:e2:0e:c9:3b:99:ce:b7:9f:54:c6:fc: 53:c4:df:f8:0f:fb:64:84:cc:02:c1:94:50:70:21: 66:ae:c0:d0:60:60:74:43:d1:5d:89:97:3d:8c:55: 85:eb:4b:70:7a:8f:cf:d5:54:2a:0d:be:5a:a7:11: 19:73:e2:cf:46:9c:49:52:c3:ec:99:12:01:4d:41: 97:0a:4a:1a:aa:fe:d8:62:29:41:5e:2e:f6:eb:cf: be:f1:3c:bd:a6:ae:12:c7:f9:9b:b5:e9:0a:f1:1e: 13:1d:c0:0f:c0:1e:a5:e8:1e:d1:40:d2:55:62:c8: 78:b0:10:cc:ff:30:b6:17:49:ba:46:b9:b7:f0:89: ac:dc:26:b9:77:a0:ca:68:b0:e9:fd:45:96:03:77: 22:8e:16:43:e5:c8:df:53:38:b2:10:b6:9f:d4:bd: 71:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A8:4F:F6:0E:00:C4:6A:89:82:62:CE:94:D1:70:73:28:9E:99:E0 X509v3 Authority Key Identifier: keyid:AE:D8:CB:33:E7:89:DD:34:21:82:B8:DD:6D:16:D9:5A:45:B9:81:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/AED8CB33E789DD342182B8DD6D16D95A45B981EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AED8CB33E789DD342182B8DD6D16D95A45B981EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/3136302e3138372e35352e302f32342d3234203d3e20313533313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.55.0/24 Signature Algorithm: sha256WithRSAEncryption 15:32:32:a9:9c:e7:9b:43:bc:04:d9:bd:99:05:35:86:9f:57: ff:ad:4c:28:c4:25:e0:d5:7d:02:44:71:ff:e6:fd:9f:5b:71: 46:59:fd:88:9d:fe:4c:36:8f:6f:4d:d7:19:ae:72:a3:50:f3: 6d:93:f2:95:69:ae:b2:0b:22:5e:ba:6c:11:31:cf:20:04:bc: d4:00:93:c7:b3:03:87:4f:ee:e1:1e:85:16:e1:52:fb:96:8f: de:0e:d1:55:6f:bd:1d:55:fb:5f:8c:33:58:46:79:7c:f5:13: 3a:60:93:39:bd:01:51:02:35:e5:66:57:2f:9e:05:1b:36:22: e9:52:11:3e:4f:79:c3:28:b5:a8:c5:ad:97:65:b8:7c:03:f0: 6a:0b:70:a6:5a:25:96:e0:0a:37:02:f0:d8:1b:0e:56:83:c2: 98:17:87:d3:85:a6:9a:7d:60:25:c8:e0:38:b2:32:0a:20:df: 26:79:ab:93:b5:7a:1b:da:23:5e:78:58:9e:71:64:ca:45:c0: 5b:46:57:ce:3f:02:9b:6e:0d:51:ea:63:d6:be:77:63:5b:32: b9:4e:37:64:cf:11:36:ac:66:24:55:9c:47:27:92:7b:dc:93: 66:67:d0:9c:c3:bd:e0:d6:55:f1:0f:31:36:41:a6:33:a1:b5: be:8c:9e:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJc615Wloc5lAbEvhA0YDzC8Dd1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEOENCMzNFNzg5REQzNDIxODJCOERENkQxNkQ5NUE0 NUI5ODFFRjAeFw0yNTA4MjcwODU3MDNaFw0yNjA4MjYwOTAyMDNaMDMxMTAvBgNV BAMTKDFBQTg0RkY2MEUwMEM0NkE4OTgyNjJDRTk0RDE3MDczMjg5RTk5RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+pczFY5KnPQefOlR/Osh1XXOe 4YRazenxGlRVm56CJRtcIamzONKW5eNPeoNBhNtSbrOBXYxiC5e9CabPoHT2XdYF AAqJKKmGckbaFJpsglAf2Lamxwua/LtJv2riDsk7mc63n1TG/FPE3/gP+2SEzALB lFBwIWauwNBgYHRD0V2Jlz2MVYXrS3B6j8/VVCoNvlqnERlz4s9GnElSw+yZEgFN QZcKShqq/thiKUFeLvbrz77xPL2mrhLH+Zu16QrxHhMdwA/AHqXoHtFA0lViyHiw EMz/MLYXSbpGubfwiazcJrl3oMposOn9RZYDdyKOFkPlyN9TOLIQtp/UvXERAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGqhP9g4AxGqJgmLOlNFwcyiemeAwHwYDVR0j BBgwFoAUrtjLM+eJ3TQhgrjdbRbZWkW5ge8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWIwN2E5ZS02MmRmLTQ4MDgtOWQyYS1hNmU2ODg0YmNiYmIvMC9BRUQ4Q0IzM0U3 ODlERDM0MjE4MkI4REQ2RDE2RDk1QTQ1Qjk4MUVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUVEOENCMzNFNzg5REQzNDIxODJCOERENkQxNkQ5NUE0NUI5 ODFFRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5YjA3YTllLTYyZGYtNDgwOC05 ZDJhLWE2ZTY4ODRiY2JiYi8wLzMxMzYzMDJlMzEzODM3MmUzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoLs3MA0GCSqG SIb3DQEBCwUAA4IBAQAVMjKpnOebQ7wE2b2ZBTWGn1f/rUwoxCXg1X0CRHH/5v2f W3FGWf2Inf5MNo9vTdcZrnKjUPNtk/KVaa6yCyJeumwRMc8gBLzUAJPHswOHT+7h HoUW4VL7lo/eDtFVb70dVftfjDNYRnl89RM6YJM5vQFRAjXlZlcvngUbNiLpUhE+ T3nDKLWoxa2XZbh8A/BqC3CmWiWW4Ao3AvDYGw5Wg8KYF4fThaaafWAlyOA4sjIK IN8meauTtXob2iNeeFiecWTKRcBbRlfOPwKbbg1R6mPWvndjWzK5TjdkzxE2rGYk VZxHJ5J73JNmZ9Ccw73g1lXxDzE2QaYzobW+jJ7O -----END CERTIFICATE-----Generated at Mon Sep 8 21:34:13 2025 by rpki-client