$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa File: 3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa (raw, json) Hash identifier: TUzFMsEIFjmnDLri6vPKTFWHWFqmADC1pDUr5mNeK+o= Subject key identifier: FE:3B:29:D3:72:1D:72:0E:42:7D:72:09:00:D9:19:82:B7:FB:30:CF Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 4B7C2437C3B17F88CD81F70BA8700D7BAF699DCE Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa Signing time: Sat 19 Jul 2025 05:00:02 +0000 ROA not before: Sat 19 Jul 2025 04:55:02 +0000 ROA not after: Sat 18 Jul 2026 05:00:02 +0000 asID: 153096 IP address blocks: 160.25.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 12:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:7c:24:37:c3:b1:7f:88:cd:81:f7:0b:a8:70:0d:7b:af:69:9d:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: Jul 19 04:55:02 2025 GMT Not After : Jul 18 05:00:02 2026 GMT Subject: CN=FE3B29D3721D720E427D720900D91982B7FB30CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dc:fb:94:8b:29:0f:52:1f:7e:f4:cc:01:9c: 54:92:0e:c8:7f:8b:52:c8:8c:d7:a1:bf:2e:09:97: 1f:10:75:d3:f7:b6:b6:d6:b4:1a:07:b1:25:41:63: d4:b6:22:9b:93:4c:eb:87:b9:83:6b:2a:77:36:9c: d9:67:a5:4d:b0:93:03:88:9f:90:5c:79:5f:75:75: 72:fc:72:77:31:7a:1a:c1:94:eb:f6:58:16:70:e9: a6:88:c1:ea:e5:2c:51:2c:b3:2f:5d:6d:5b:9d:cb: 28:05:69:d0:82:c2:bd:2c:da:85:ff:a5:48:ce:f4: 60:13:e4:e7:b8:85:47:94:82:c8:d2:b4:31:37:7b: 0a:d0:f6:ac:06:5a:2b:96:5a:75:63:5d:47:f4:13: e1:26:ec:6f:21:a8:2f:4b:8b:4e:dc:bc:2a:02:aa: 1d:09:17:1e:ce:24:f1:66:2c:24:93:23:90:30:b1: 78:4f:b5:f2:ea:45:5d:f6:c7:31:95:79:f1:fe:26: c6:77:e2:25:93:97:e8:a5:f6:4d:d4:9c:12:92:47: 12:44:54:26:3e:1d:1c:e3:1c:8c:cf:01:2a:57:b6: 09:d9:84:42:8b:5f:9c:91:5a:53:1c:9a:65:9d:98: ab:21:67:78:de:37:b4:0f:38:8a:48:3a:da:47:0e: 1d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3B:29:D3:72:1D:72:0E:42:7D:72:09:00:D9:19:82:B7:FB:30:CF X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.118.0/23 Signature Algorithm: sha256WithRSAEncryption 77:e7:9f:31:55:3d:bd:cb:dd:46:6b:8a:e5:87:80:e3:9b:8a: 51:67:4d:44:0d:79:68:20:8b:2a:8e:b3:f3:12:4b:7b:11:7d: db:86:72:9c:62:d8:29:c8:12:ba:93:fc:d4:dd:08:60:51:26: 5a:72:6c:02:ca:e6:c2:58:86:69:12:f8:d2:72:c3:66:95:66: 83:05:a2:24:a6:64:12:61:fd:1a:fb:90:79:7e:51:6c:6e:2c: 4f:d2:61:7b:68:66:bd:f7:e2:33:5c:a4:fd:e9:19:18:ae:1a: c5:2f:44:05:83:fb:a6:db:d7:47:55:be:43:4e:97:b3:13:8d: 55:d4:57:89:cc:de:f9:a3:b7:7d:2e:eb:83:5a:f6:30:f8:98: 3c:d2:0e:be:4e:33:ae:3d:1b:27:3b:7f:85:e0:56:17:a3:f4: 3b:59:02:b1:d1:53:03:1b:9b:65:ec:86:bb:e2:a0:61:39:01: f7:88:12:80:2d:38:d7:0f:b0:60:0a:a4:e1:4d:96:08:69:81: a9:d7:af:98:1a:af:2c:cd:84:3a:b7:09:a5:8e:a3:5f:1d:44: 2a:12:25:34:6d:92:4b:ce:3e:bb:a7:a2:94:09:36:42:8a:24: ae:67:22:59:4a:01:55:86:61:33:86:7d:f4:c3:16:43:51:f8: 4a:52:57:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS3wkN8Oxf4jNgfcLqHANe69pnc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNTA3MTkwNDU1MDJaFw0yNjA3MTgwNTAwMDJaMDMxMTAvBgNV BAMTKEZFM0IyOUQzNzIxRDcyMEU0MjdENzIwOTAwRDkxOTgyQjdGQjMwQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL3PuUiykPUh9+9MwBnFSSDsh/ i1LIjNehvy4Jlx8QddP3trbWtBoHsSVBY9S2IpuTTOuHuYNrKnc2nNlnpU2wkwOI n5BceV91dXL8cncxehrBlOv2WBZw6aaIwerlLFEssy9dbVudyygFadCCwr0s2oX/ pUjO9GAT5Oe4hUeUgsjStDE3ewrQ9qwGWiuWWnVjXUf0E+Em7G8hqC9Li07cvCoC qh0JFx7OJPFmLCSTI5AwsXhPtfLqRV32xzGVefH+JsZ34iWTl+il9k3UnBKSRxJE VCY+HRzjHIzPASpXtgnZhEKLX5yRWlMcmmWdmKshZ3jeN7QPOIpIOtpHDh3bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/jsp03Idcg5CfXIJANkZgrf7MM8wHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxZTQ0NjY1LWU4NDYtNDU1Yi1h YTFhLWQ1YWIwN2RlZWRmMy8wLzMxMzYzMDJlMzIzNTJlMzEzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBl2MA0GCSqG SIb3DQEBCwUAA4IBAQB3558xVT29y91Ga4rlh4Djm4pRZ01EDXloIIsqjrPzEkt7 EX3bhnKcYtgpyBK6k/zU3QhgUSZacmwCyubCWIZpEvjScsNmlWaDBaIkpmQSYf0a +5B5flFsbixP0mF7aGa99+IzXKT96RkYrhrFL0QFg/um29dHVb5DTpezE41V1FeJ zN75o7d9LuuDWvYw+Jg80g6+TjOuPRsnO3+F4FYXo/Q7WQKx0VMDG5tl7Ia74qBh OQH3iBKALTjXD7BgCqThTZYIaYGp16+YGq8szYQ6twmljqNfHUQqEiU0bZJLzj67 p6KUCTZCiiSuZyJZSgFVhmEzhn30wxZDUfhKUldK -----END CERTIFICATE-----Generated at Wed Jul 23 12:00:20 2025 by rpki-client