$ rpki-client -vvf repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134352e302f32342d3234203d3e203435333035.roa File: 3136302e31392e3134352e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: b0d54b5VfP0y4Y/gj0JeZ9te1p1dA7COr+bHtkAFBE4= Subject key identifier: A7:24:D2:AF:C8:FA:E2:01:8F:3E:D0:07:DF:46:EA:3C:5A:0C:D1:C0 Certificate issuer: /CN=A8CDD576A9B5E448A869BEA4D516BAFC5A879503 Certificate serial: 0D67E459F7793CD9768290B905A729A2A61F9121 Authority key identifier: A8:CD:D5:76:A9:B5:E4:48:A8:69:BE:A4:D5:16:BA:FC:5A:87:95:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134352e302f32342d3234203d3e203435333035.roa Signing time: Fri 29 Aug 2025 08:04:07 +0000 ROA not before: Fri 29 Aug 2025 07:59:07 +0000 ROA not after: Fri 28 Aug 2026 08:04:07 +0000 asID: 45305 IP address blocks: 160.19.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.crl rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 11:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:67:e4:59:f7:79:3c:d9:76:82:90:b9:05:a7:29:a2:a6:1f:91:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8CDD576A9B5E448A869BEA4D516BAFC5A879503 Validity Not Before: Aug 29 07:59:07 2025 GMT Not After : Aug 28 08:04:07 2026 GMT Subject: CN=A724D2AFC8FAE2018F3ED007DF46EA3C5A0CD1C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:a4:cf:a3:c2:b7:44:6a:89:d3:e1:b8:f6: 38:b6:e2:13:dc:67:67:01:54:15:32:8f:ff:ac:fc: 6c:14:31:3c:9b:ce:49:09:b4:d2:dd:3f:43:56:be: 94:97:a8:64:7c:17:6f:d8:ca:a5:ab:d5:98:a5:d1: e2:6c:c1:ea:95:08:07:3b:b2:a1:d6:e2:c4:17:0e: 63:02:13:28:a9:53:8e:c7:9b:4b:38:d7:51:c4:3b: 49:79:77:00:9d:4f:4e:bb:92:45:85:5f:81:8e:a2: bc:0b:9c:23:4b:5d:6a:1d:60:ac:b9:c6:74:90:38: 2b:86:5e:5a:4f:cf:88:de:bc:c9:e8:72:7a:15:50: 98:18:0c:9e:96:96:a3:36:61:08:95:aa:a3:75:96: 57:68:56:b2:c9:5c:d1:09:23:ff:7b:3f:90:c2:43: d6:49:c4:ae:02:82:dc:62:f3:2b:6e:dc:44:cb:28: c9:84:ea:bc:dc:e9:93:06:d9:05:ee:85:38:bc:90: 45:ac:df:5e:28:d4:f8:ab:c2:5e:41:2b:28:10:21: 49:30:7e:79:ce:c4:53:46:12:6e:3b:ae:f4:a3:1a: 16:40:cf:0c:f8:78:e3:8d:dc:d2:58:e4:4b:7d:d9: 8c:c3:da:f1:14:2d:6f:fa:06:e4:f4:e6:b8:4f:39: 2e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:24:D2:AF:C8:FA:E2:01:8F:3E:D0:07:DF:46:EA:3C:5A:0C:D1:C0 X509v3 Authority Key Identifier: keyid:A8:CD:D5:76:A9:B5:E4:48:A8:69:BE:A4:D5:16:BA:FC:5A:87:95:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A8CDD576A9B5E448A869BEA4D516BAFC5A879503.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134352e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.145.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:9c:8e:4a:d6:6c:97:b0:15:91:2a:c2:c2:13:1b:d3:dd:85: 9e:5b:84:47:c3:1d:52:04:1e:4a:83:53:90:c9:97:c9:3f:f3: 0f:b7:cb:ca:d9:2c:e5:1d:f4:1c:ab:a0:b0:ec:b5:ac:08:0f: 3b:78:9c:43:28:87:e8:a0:f4:f0:5c:84:52:8d:d8:ac:4f:df: 1b:0e:c0:7d:9e:5f:93:19:8a:b2:29:a9:00:4a:ee:b8:dc:c9: 35:38:63:d8:60:2d:7f:45:0e:72:2b:10:d7:56:92:ee:a3:31: 8a:b3:72:2f:ce:8e:6a:01:49:aa:59:1b:00:00:cf:01:4f:33: 36:0e:23:e6:65:53:96:72:b5:b6:db:31:e8:a8:e2:cb:49:23: fa:b6:75:2c:f6:b9:af:c9:17:22:c5:d4:f0:c9:f3:61:f8:f6: cd:e7:f8:0d:54:1a:4f:1b:b0:c2:0c:56:34:2a:63:f9:27:8f: c8:fd:a9:87:3c:eb:7e:22:5a:11:6f:46:eb:3c:c7:8b:0d:02: af:4f:1d:69:c7:80:f2:4a:96:6a:5f:cd:ec:e1:09:d9:12:15: d9:06:f7:0d:de:22:cb:b7:f7:39:e3:8b:4f:26:62:2b:13:c4: d4:18:26:bb:b7:e2:b5:dd:a7:aa:52:72:00:21:57:7a:6b:77: 34:cb:47:59 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDWfkWfd5PNl2gpC5BacpoqYfkSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThDREQ1NzZBOUI1RTQ0OEE4NjlCRUE0RDUxNkJBRkM1 QTg3OTUwMzAeFw0yNTA4MjkwNzU5MDdaFw0yNjA4MjgwODA0MDdaMDMxMTAvBgNV BAMTKEE3MjREMkFGQzhGQUUyMDE4RjNFRDAwN0RGNDZFQTNDNUEwQ0QxQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHFqTPo8K3RGqJ0+G49ji24hPc Z2cBVBUyj/+s/GwUMTybzkkJtNLdP0NWvpSXqGR8F2/YyqWr1Zil0eJsweqVCAc7 sqHW4sQXDmMCEyipU47Hm0s411HEO0l5dwCdT067kkWFX4GOorwLnCNLXWodYKy5 xnSQOCuGXlpPz4jevMnocnoVUJgYDJ6WlqM2YQiVqqN1lldoVrLJXNEJI/97P5DC Q9ZJxK4Cgtxi8ytu3ETLKMmE6rzc6ZMG2QXuhTi8kEWs314o1Pirwl5BKygQIUkw fnnOxFNGEm47rvSjGhZAzwz4eOON3NJY5Et92YzD2vEULW/6BuT05rhPOS5/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpyTSr8j64gGPPtAH30bqPFoM0cAwHwYDVR0j BBgwFoAUqM3Vdqm15Eioab6k1Ra6/FqHlQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmU1ZmY4MS1iMDgyLTQzMzQtYWQyOS01NWRjOGQxZTUzYjkvMC9BOENERDU3NkE5 QjVFNDQ4QTg2OUJFQTRENTE2QkFGQzVBODc5NTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQThDREQ1NzZBOUI1RTQ0OEE4NjlCRUE0RDUxNkJBRkM1QTg3 OTUwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyZTVmZjgxLWIwODItNDMzNC1h ZDI5LTU1ZGM4ZDFlNTNiOS8wLzMxMzYzMDJlMzEzOTJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATkTANBgkqhkiG 9w0BAQsFAAOCAQEAjZyOStZsl7AVkSrCwhMb092FnluER8MdUgQeSoNTkMmXyT/z D7fLytks5R30HKugsOy1rAgPO3icQyiH6KD08FyEUo3YrE/fGw7AfZ5fkxmKsimp AEruuNzJNThj2GAtf0UOcisQ11aS7qMxirNyL86OagFJqlkbAADPAU8zNg4j5mVT lnK1ttsx6Kjiy0kj+rZ1LPa5r8kXIsXU8MnzYfj2zef4DVQaTxuwwgxWNCpj+SeP yP2phzzrfiJaEW9G6zzHiw0Cr08daceA8kqWal/N7OEJ2RIV2Qb3Dd4iy7f3OeOL TyZiKxPE1Bgmu7fitd2nqlJyACFXemt3NMtHWQ== -----END CERTIFICATE-----Generated at Thu Sep 4 19:35:49 2025 by rpki-client