$ rpki-client -vvf repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134342e302f32342d3234203d3e20313532373838.roa File: 3136302e31392e3134342e302f32342d3234203d3e20313532373838.roa (raw, json) Hash identifier: zcdVZSiLzuXwzNXJqyWuf4sDbiVxTodHTiD95Tvz7k8= Subject key identifier: 0E:15:37:6F:66:4C:CF:96:A0:7E:E9:C2:A0:20:8A:BA:83:B4:DC:B6 Certificate issuer: /CN=A8CDD576A9B5E448A869BEA4D516BAFC5A879503 Certificate serial: 4DB268FDA53CB84818D0D3B80970EBFF6FADEE8B Authority key identifier: A8:CD:D5:76:A9:B5:E4:48:A8:69:BE:A4:D5:16:BA:FC:5A:87:95:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134342e302f32342d3234203d3e20313532373838.roa Signing time: Fri 29 Aug 2025 08:03:53 +0000 ROA not before: Fri 29 Aug 2025 07:58:53 +0000 ROA not after: Fri 28 Aug 2026 08:03:53 +0000 asID: 152788 IP address blocks: 160.19.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.crl rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 21:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b2:68:fd:a5:3c:b8:48:18:d0:d3:b8:09:70:eb:ff:6f:ad:ee:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8CDD576A9B5E448A869BEA4D516BAFC5A879503 Validity Not Before: Aug 29 07:58:53 2025 GMT Not After : Aug 28 08:03:53 2026 GMT Subject: CN=0E15376F664CCF96A07EE9C2A0208ABA83B4DCB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:98:1c:8c:7c:00:86:7f:df:fc:41:3e:d3:82: 52:a9:b1:a5:da:1e:e9:b8:e7:41:95:d4:18:5b:20: fa:ae:99:bd:03:b4:2d:49:63:b6:f1:b8:e5:2a:7d: 42:c2:2a:40:33:29:13:4d:57:c9:c5:f4:d6:7c:00: 36:07:52:36:97:20:88:11:23:f4:40:fc:b4:70:63: 1b:3e:36:4a:38:f6:c1:ae:f3:ed:43:4f:3f:28:a6: 71:7a:87:d4:91:90:5e:6f:15:41:77:d2:12:f8:75: fb:f1:45:38:61:fb:6d:10:f8:75:73:9b:79:04:63: 06:97:25:6b:15:1f:49:55:85:98:7c:28:44:72:ae: 09:f9:6d:f8:41:91:57:8a:4f:fc:8e:2b:90:f9:de: 55:79:c2:a0:8e:be:29:c6:09:11:70:ef:fe:d4:45: 55:5e:b2:a9:75:57:5b:98:04:88:0e:35:5d:bb:82: 9e:46:c3:69:4d:b7:81:42:f0:9c:1a:83:52:8d:dc: 30:65:57:29:7c:25:c7:81:25:67:93:ab:de:aa:09: b8:87:19:1e:a2:2f:76:f6:55:4c:29:5c:0b:4e:5a: bc:27:52:ec:a1:56:0f:cf:e1:16:1e:f9:1a:06:48: a7:d3:a7:e3:f7:ad:77:72:9e:70:fb:90:4f:23:92: bc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:15:37:6F:66:4C:CF:96:A0:7E:E9:C2:A0:20:8A:BA:83:B4:DC:B6 X509v3 Authority Key Identifier: keyid:A8:CD:D5:76:A9:B5:E4:48:A8:69:BE:A4:D5:16:BA:FC:5A:87:95:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134342e302f32342d3234203d3e20313532373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.144.0/24 Signature Algorithm: sha256WithRSAEncryption 05:e3:f6:d9:af:ca:b0:85:d1:19:91:d6:5e:8a:d5:18:ac:b3: 38:58:af:78:5f:6e:7c:f2:58:e0:d4:83:4e:f3:3a:44:7d:1e: c0:92:0c:27:27:51:12:91:1e:ca:11:16:fb:b9:40:e0:e5:7b: f5:97:55:0e:2e:b8:85:f6:d0:85:f1:03:5b:1e:a1:4f:25:7a: e0:f0:c5:b7:dd:b0:95:cb:d3:c3:8d:3f:84:88:3a:ab:ba:b6: 52:73:5c:94:4d:30:a7:63:13:4e:19:ce:46:9d:27:98:e7:bb: 86:1e:92:cd:a3:5d:26:cf:1b:3c:51:d3:39:ab:87:5d:9c:c1: d6:f9:83:e7:49:f4:e5:16:b8:5c:f8:c5:ae:6a:75:76:7f:94: 50:36:3d:b7:96:cb:07:41:c2:54:7e:10:6e:13:4e:21:99:6c: 86:64:07:d7:18:bc:a5:e6:3b:d2:37:02:cf:79:17:c5:61:cc: 8a:8e:8f:99:32:0c:d8:b5:2b:34:8a:f9:48:d3:d8:5e:77:ce: 73:24:b7:e7:78:20:cb:88:a8:aa:b7:12:bc:45:30:55:4e:0d: 3d:17:c7:b7:b7:16:89:b2:90:03:1f:ec:7a:21:cd:d9:35:93: eb:80:ba:f2:69:bc:fe:e3:2a:f3:25:e5:44:2e:17:8a:5c:d2: b6:5f:50:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTbJo/aU8uEgY0NO4CXDr/2+t7oswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThDREQ1NzZBOUI1RTQ0OEE4NjlCRUE0RDUxNkJBRkM1 QTg3OTUwMzAeFw0yNTA4MjkwNzU4NTNaFw0yNjA4MjgwODAzNTNaMDMxMTAvBgNV BAMTKDBFMTUzNzZGNjY0Q0NGOTZBMDdFRTlDMkEwMjA4QUJBODNCNERDQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwmByMfACGf9/8QT7TglKpsaXa Hum450GV1BhbIPqumb0DtC1JY7bxuOUqfULCKkAzKRNNV8nF9NZ8ADYHUjaXIIgR I/RA/LRwYxs+Nko49sGu8+1DTz8opnF6h9SRkF5vFUF30hL4dfvxRThh+20Q+HVz m3kEYwaXJWsVH0lVhZh8KERyrgn5bfhBkVeKT/yOK5D53lV5wqCOvinGCRFw7/7U RVVesql1V1uYBIgONV27gp5Gw2lNt4FC8Jwag1KN3DBlVyl8JceBJWeTq96qCbiH GR6iL3b2VUwpXAtOWrwnUuyhVg/P4RYe+RoGSKfTp+P3rXdynnD7kE8jkrxjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDhU3b2ZMz5agfunCoCCKuoO03LYwHwYDVR0j BBgwFoAUqM3Vdqm15Eioab6k1Ra6/FqHlQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmU1ZmY4MS1iMDgyLTQzMzQtYWQyOS01NWRjOGQxZTUzYjkvMC9BOENERDU3NkE5 QjVFNDQ4QTg2OUJFQTRENTE2QkFGQzVBODc5NTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQThDREQ1NzZBOUI1RTQ0OEE4NjlCRUE0RDUxNkJBRkM1QTg3 OTUwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyZTVmZjgxLWIwODItNDMzNC1h ZDI5LTU1ZGM4ZDFlNTNiOS8wLzMxMzYzMDJlMzEzOTJlMzEzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOQMA0GCSqG SIb3DQEBCwUAA4IBAQAF4/bZr8qwhdEZkdZeitUYrLM4WK94X2588ljg1INO8zpE fR7AkgwnJ1ESkR7KERb7uUDg5Xv1l1UOLriF9tCF8QNbHqFPJXrg8MW33bCVy9PD jT+EiDqrurZSc1yUTTCnYxNOGc5GnSeY57uGHpLNo10mzxs8UdM5q4ddnMHW+YPn SfTlFrhc+MWuanV2f5RQNj23lssHQcJUfhBuE04hmWyGZAfXGLyl5jvSNwLPeRfF YcyKjo+ZMgzYtSs0ivlI09hed85zJLfneCDLiKiqtxK8RTBVTg09F8e3txaJspAD H+x6Ic3ZNZPrgLryabz+4yrzJeVELheKXNK2X1CP -----END CERTIFICATE-----Generated at Mon Sep 8 00:11:23 2025 by rpki-client