$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa File: 3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa (raw, json) Hash identifier: Nzl8vY9SfxTMTS+PrIiEnPNs8vGKrloce/myFfDThWk= Subject key identifier: A6:80:34:A3:2B:79:DF:FF:DE:F2:6D:F3:7A:93:EC:54:ED:DF:3E:0F Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 6563D1C5475DB0FFA1356A88F34160BE7A1465C2 Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa Signing time: Sat 19 Jul 2025 05:00:02 +0000 ROA not before: Sat 19 Jul 2025 04:55:02 +0000 ROA not after: Sat 18 Jul 2026 05:00:02 +0000 asID: 153096 IP address blocks: 160.25.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 12:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:63:d1:c5:47:5d:b0:ff:a1:35:6a:88:f3:41:60:be:7a:14:65:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: Jul 19 04:55:02 2025 GMT Not After : Jul 18 05:00:02 2026 GMT Subject: CN=A68034A32B79DFFFDEF26DF37A93EC54EDDF3E0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c6:f4:4d:44:82:cb:b7:c2:1a:7e:41:ac:f5: 90:0e:91:ab:32:e8:1f:a8:01:bd:fc:12:a7:36:f2: 2d:7e:3e:de:95:24:ae:92:9c:7e:7b:01:7e:e4:75: ce:45:d1:70:1c:e3:c7:cb:31:67:1f:33:f5:5d:21: 5b:38:4d:59:6b:68:e6:4d:5d:25:34:26:9e:f6:d8: 73:47:38:17:00:50:4e:aa:4c:b7:b2:31:0e:bd:aa: 77:fd:e9:2d:e8:f4:a3:ac:34:d3:f8:7f:6d:e8:e5: 36:3d:76:d0:34:b5:ca:43:bb:8d:5c:91:c6:20:43: 6d:39:30:f3:30:1d:7a:a1:46:40:f2:d7:79:a7:2a: 8e:f0:db:76:8e:2d:cc:5b:f2:f9:91:20:e3:c7:dd: 71:a7:71:d5:64:cb:bb:b1:4c:98:ca:10:10:e7:ca: 60:33:88:4b:dd:c7:8e:b5:80:cf:4d:e6:22:73:08: 66:65:2e:e5:17:be:4d:ae:bd:bb:27:34:1a:19:e0: 7d:b1:c4:04:e2:52:16:6e:f9:5c:3f:4f:06:96:cd: 6d:d8:82:b5:6b:47:c5:19:0e:e9:e0:5c:3d:71:8c: bd:53:a0:0b:f2:ab:1b:37:cb:e4:0d:f7:ed:1a:9d: b7:8b:ca:76:73:83:52:11:b2:20:6d:f7:db:89:43: 3c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:80:34:A3:2B:79:DF:FF:DE:F2:6D:F3:7A:93:EC:54:ED:DF:3E:0F X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.118.0/24 Signature Algorithm: sha256WithRSAEncryption 17:56:97:91:d9:59:1f:b5:8c:80:b3:6a:c9:31:b0:14:dd:31: 82:50:bf:ee:90:52:70:b2:df:ef:49:47:14:e9:53:80:f9:73: a6:52:d7:09:5f:4b:36:07:e2:4b:d1:c6:0e:e1:5c:e0:63:5c: 30:f4:7d:ad:08:6e:c1:55:1b:00:0b:9b:87:52:24:7a:1b:a6: d2:0e:45:57:c9:88:b4:00:7c:be:84:63:5f:78:c4:82:98:b5: fb:b3:3d:62:7d:c5:93:4b:41:01:cf:50:9a:d9:1b:e1:80:a4: e7:b9:a5:d0:40:02:67:48:56:7e:57:e1:5c:dc:82:29:7b:29: 27:d5:11:d3:10:30:45:39:c4:f6:f5:e8:76:4a:7d:8c:68:8d: 51:0c:bc:54:07:51:21:0a:d2:18:f2:32:36:44:2f:53:ff:cc: ff:eb:89:60:09:fe:af:8b:25:76:56:4b:53:26:31:b1:7a:7d: f4:54:5f:2b:cd:b4:2e:75:0a:c6:df:4a:e1:fd:f7:a6:ce:3d: 46:38:47:62:6d:6c:ef:0d:cb:ce:6f:a1:ef:eb:dc:7a:6b:d0: 82:d3:c2:d5:20:fb:13:d0:31:07:9b:0e:be:fd:d5:e1:db:b9: 26:8b:bb:63:73:0f:e9:65:2f:9b:81:7c:3e:db:c4:f1:04:80: 8b:e5:fc:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZWPRxUddsP+hNWqI80FgvnoUZcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNTA3MTkwNDU1MDJaFw0yNjA3MTgwNTAwMDJaMDMxMTAvBgNV BAMTKEE2ODAzNEEzMkI3OURGRkZERUYyNkRGMzdBOTNFQzU0RURERjNFMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xvRNRILLt8IafkGs9ZAOkasy 6B+oAb38Eqc28i1+Pt6VJK6SnH57AX7kdc5F0XAc48fLMWcfM/VdIVs4TVlraOZN XSU0Jp722HNHOBcAUE6qTLeyMQ69qnf96S3o9KOsNNP4f23o5TY9dtA0tcpDu41c kcYgQ205MPMwHXqhRkDy13mnKo7w23aOLcxb8vmRIOPH3XGncdVky7uxTJjKEBDn ymAziEvdx461gM9N5iJzCGZlLuUXvk2uvbsnNBoZ4H2xxATiUhZu+Vw/TwaWzW3Y grVrR8UZDungXD1xjL1ToAvyqxs3y+QN9+0anbeLynZzg1IRsiBt99uJQzwPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpoA0oyt53//e8m3zepPsVO3fPg8wHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxZTQ0NjY1LWU4NDYtNDU1Yi1h YTFhLWQ1YWIwN2RlZWRmMy8wLzMxMzYzMDJlMzIzNTJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl2MA0GCSqG SIb3DQEBCwUAA4IBAQAXVpeR2VkftYyAs2rJMbAU3TGCUL/ukFJwst/vSUcU6VOA +XOmUtcJX0s2B+JL0cYO4VzgY1ww9H2tCG7BVRsAC5uHUiR6G6bSDkVXyYi0AHy+ hGNfeMSCmLX7sz1ifcWTS0EBz1Ca2RvhgKTnuaXQQAJnSFZ+V+Fc3IIpeykn1RHT EDBFOcT29eh2Sn2MaI1RDLxUB1EhCtIY8jI2RC9T/8z/64lgCf6viyV2VktTJjGx en30VF8rzbQudQrG30rh/femzj1GOEdibWzvDcvOb6Hv69x6a9CC08LVIPsT0DEH mw6+/dXh27kmi7tjcw/pZS+bgXw+28TxBICL5fwu -----END CERTIFICATE-----Generated at Wed Jul 23 12:00:25 2025 by rpki-client