$ rpki-client -vvf repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa File: 3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa (raw, json) Hash identifier: ZsjBtNoWEJx2NTRYL99sTUHqHLXTfuWH/2StZO9wGXM= Subject key identifier: 80:E0:B8:DB:0B:5E:B2:58:6C:95:1D:DA:AD:36:2F:DE:AE:AD:49:1C Certificate issuer: /CN=2098B3BD046CFFF28B48954F288A333FADDD1DE9 Certificate serial: 410412FD90F850B2EBE0F712BE8E7A140D2697BF Authority key identifier: 20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa Signing time: Fri 05 Sep 2025 10:00:02 +0000 ROA not before: Fri 05 Sep 2025 09:55:02 +0000 ROA not after: Fri 04 Sep 2026 10:00:02 +0000 asID: 153106 IP address blocks: 160.25.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.crl rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 21:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:04:12:fd:90:f8:50:b2:eb:e0:f7:12:be:8e:7a:14:0d:26:97:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2098B3BD046CFFF28B48954F288A333FADDD1DE9 Validity Not Before: Sep 5 09:55:02 2025 GMT Not After : Sep 4 10:00:02 2026 GMT Subject: CN=80E0B8DB0B5EB2586C951DDAAD362FDEAEAD491C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:54:5b:90:45:51:0e:2b:b3:40:c6:7f:f7:e2: e9:80:bd:4c:fe:ff:b2:e8:de:1d:37:64:0c:dd:99: 7f:f2:41:e3:ba:60:19:15:df:af:cb:0a:c5:e5:c1: ba:69:08:c5:a2:d7:14:23:ed:41:85:0f:7e:8c:20: 3a:66:86:fe:7a:30:65:ef:2c:d5:2e:d8:a8:26:af: 34:2f:d4:a4:de:1b:30:37:66:7c:de:08:fd:81:b1: 11:bd:a3:f5:d7:9f:96:e0:b1:3b:cb:f4:cc:02:19: 50:8c:3b:60:b1:bf:be:14:a5:98:d0:83:69:31:a3: 9b:93:80:90:ea:80:2e:dd:d5:9e:ce:ec:48:7c:1f: 58:21:be:10:0b:5c:23:6c:b6:58:9e:37:95:fb:84: 01:4e:c8:d6:66:3b:61:a5:20:2a:bf:7a:cd:33:5a: 83:67:5a:13:be:7b:70:ec:a6:d2:00:a1:98:7f:e7: 89:96:04:3e:11:44:b9:67:47:d9:6b:07:7f:c8:12: 39:4e:78:38:18:1e:97:34:dd:7a:d6:38:30:9b:10: 33:55:57:25:7a:be:76:7d:fa:20:c9:d1:cc:fc:4b: b5:24:87:f5:e1:f0:bf:71:5d:d5:81:6a:99:a1:73: 4a:a6:21:88:e0:d4:94:31:64:d6:e6:c2:7d:12:6d: 6a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E0:B8:DB:0B:5E:B2:58:6C:95:1D:DA:AD:36:2F:DE:AE:AD:49:1C X509v3 Authority Key Identifier: keyid:20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.229.0/24 Signature Algorithm: sha256WithRSAEncryption 69:b9:ca:4c:75:11:43:25:0a:9e:67:98:7c:ed:11:cb:a7:03: c3:cc:00:9f:42:c9:9b:6e:7b:25:ff:bf:7e:16:ea:bf:d7:a2: 27:02:ab:75:42:a1:0f:0d:07:12:ed:b3:73:82:d4:a3:7d:3b: d5:a8:de:ab:90:17:7b:bc:af:1c:9b:33:60:2c:ab:ec:31:ae: 94:55:00:97:b5:36:6c:23:77:b6:30:06:fb:22:79:f2:88:e9: 30:05:f3:7b:90:cd:2b:6c:67:26:00:c9:74:6f:67:22:b2:53: 8b:d6:4c:4b:94:12:16:d6:b1:c6:08:72:00:80:d0:a6:92:8c: 1f:99:2e:2a:75:2e:2d:67:9b:8e:72:07:b4:62:9f:37:be:62: a4:7b:f6:9a:6d:19:c4:13:ec:42:e1:5b:a8:8e:c0:1b:7b:b5: b6:5d:03:23:2d:49:19:c7:3c:67:d6:26:60:b8:e5:b7:43:47: c6:f7:60:ee:6c:b7:ef:ff:b3:ad:83:f3:1c:46:ee:d8:96:4a: 33:cf:9e:5a:9d:bc:7b:4c:f4:cb:25:18:09:41:ff:71:bc:51: 65:f7:32:f8:e0:d7:6f:f2:ae:3a:7a:d9:e5:23:c3:ed:54:f2: 9a:0a:88:5d:a6:a9:e3:3a:e9:20:19:01:0c:6d:90:ae:c6:40: 45:bd:a8:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQQQS/ZD4ULLr4PcSvo56FA0ml78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA5OEIzQkQwNDZDRkZGMjhCNDg5NTRGMjg4QTMzM0ZB REREMURFOTAeFw0yNTA5MDUwOTU1MDJaFw0yNjA5MDQxMDAwMDJaMDMxMTAvBgNV BAMTKDgwRTBCOERCMEI1RUIyNTg2Qzk1MUREQUFEMzYyRkRFQUVBRDQ5MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkVFuQRVEOK7NAxn/34umAvUz+ /7Lo3h03ZAzdmX/yQeO6YBkV36/LCsXlwbppCMWi1xQj7UGFD36MIDpmhv56MGXv LNUu2KgmrzQv1KTeGzA3ZnzeCP2BsRG9o/XXn5bgsTvL9MwCGVCMO2Cxv74UpZjQ g2kxo5uTgJDqgC7d1Z7O7Eh8H1ghvhALXCNstlieN5X7hAFOyNZmO2GlICq/es0z WoNnWhO+e3DsptIAoZh/54mWBD4RRLlnR9lrB3/IEjlOeDgYHpc03XrWODCbEDNV VyV6vnZ9+iDJ0cz8S7Ukh/Xh8L9xXdWBapmhc0qmIYjg1JQxZNbmwn0SbWpxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgOC42wteslhslR3arTYv3q6tSRwwHwYDVR0j BBgwFoAUIJizvQRs//KLSJVPKIozP63dHekwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTQxNzYwOC0xNmI4LTQ0OTctODFlMy05NDdkNzhkYmNmMTEvMC8yMDk4QjNCRDA0 NkNGRkYyOEI0ODk1NEYyODhBMzMzRkFEREQxREU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjA5OEIzQkQwNDZDRkZGMjhCNDg5NTRGMjg4QTMzM0ZBRERE MURFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDE3NjA4LTE2YjgtNDQ5Ny04 MWUzLTk0N2Q3OGRiY2YxMS8wLzMxMzYzMDJlMzIzNTJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnlMA0GCSqG SIb3DQEBCwUAA4IBAQBpucpMdRFDJQqeZ5h87RHLpwPDzACfQsmbbnsl/79+Fuq/ 16InAqt1QqEPDQcS7bNzgtSjfTvVqN6rkBd7vK8cmzNgLKvsMa6UVQCXtTZsI3e2 MAb7InnyiOkwBfN7kM0rbGcmAMl0b2cislOL1kxLlBIW1rHGCHIAgNCmkowfmS4q dS4tZ5uOcge0Yp83vmKke/aabRnEE+xC4VuojsAbe7W2XQMjLUkZxzxn1iZguOW3 Q0fG92DubLfv/7Otg/McRu7Ylkozz55anbx7TPTLJRgJQf9xvFFl9zL44Ndv8q46 etnlI8PtVPKaCohdpqnjOukgGQEMbZCuxkBFvagC -----END CERTIFICATE-----Generated at Mon Sep 8 20:19:35 2025 by rpki-client