$ rpki-client -vvf repo-rpki.idnic.net/repo/be954f42-9452-4247-99a5-31a53e56a9f8/0/3136302e32352e3135372e302f32342d3234203d3e20313533303835.roa File: 3136302e32352e3135372e302f32342d3234203d3e20313533303835.roa (raw, json) Hash identifier: EWnjtErVMnBbrrbwTFVBXyhULkzmfdybYpW9vhB6Px8= Subject key identifier: 53:37:63:62:BE:51:2E:B2:55:A2:CF:3F:97:89:13:EE:2F:CA:1D:33 Certificate issuer: /CN=ACFB1A5D9938A64B3B54A832D5B79C032486A759 Certificate serial: 7ABCF917461C719ED0EE85BE6052A9CD5726811D Authority key identifier: AC:FB:1A:5D:99:38:A6:4B:3B:54:A8:32:D5:B7:9C:03:24:86:A7:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ACFB1A5D9938A64B3B54A832D5B79C032486A759.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be954f42-9452-4247-99a5-31a53e56a9f8/0/3136302e32352e3135372e302f32342d3234203d3e20313533303835.roa Signing time: Mon 14 Jul 2025 14:00:01 +0000 ROA not before: Mon 14 Jul 2025 13:55:01 +0000 ROA not after: Mon 13 Jul 2026 14:00:01 +0000 asID: 153085 IP address blocks: 160.25.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be954f42-9452-4247-99a5-31a53e56a9f8/0/ACFB1A5D9938A64B3B54A832D5B79C032486A759.crl rsync://repo-rpki.idnic.net/repo/be954f42-9452-4247-99a5-31a53e56a9f8/0/ACFB1A5D9938A64B3B54A832D5B79C032486A759.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ACFB1A5D9938A64B3B54A832D5B79C032486A759.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:bc:f9:17:46:1c:71:9e:d0:ee:85:be:60:52:a9:cd:57:26:81:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACFB1A5D9938A64B3B54A832D5B79C032486A759 Validity Not Before: Jul 14 13:55:01 2025 GMT Not After : Jul 13 14:00:01 2026 GMT Subject: CN=53376362BE512EB255A2CF3F978913EE2FCA1D33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:73:fd:a0:93:1b:e5:66:03:0e:d6:df:97: fe:bf:3b:76:c7:e2:b1:60:c8:09:4a:27:f2:03:99: 04:d5:d5:b7:17:ad:9f:42:6a:41:d7:9c:73:9a:62: a5:f8:01:b3:b4:ee:31:a2:0a:58:3d:2a:bc:4b:3b: 91:d2:bf:0a:f3:38:db:93:6f:b4:85:74:b2:a6:0e: e3:ed:c9:db:ae:59:e2:a5:ca:6f:c0:a7:67:32:67: 4b:0b:07:38:4f:f0:8d:0d:50:6f:b4:28:1e:cf:8c: 62:fc:79:9d:5d:c7:7c:89:0d:c8:24:ec:55:a0:02: 42:c4:40:23:99:e2:51:6d:16:75:95:87:87:01:85: 01:75:7a:b2:87:68:d9:d2:cc:0c:5b:a5:8c:0d:ef: e9:11:b7:88:d2:d7:13:42:df:ba:d3:0b:d2:a7:76: 05:a7:38:78:46:72:61:d2:f4:52:02:a6:fd:7a:86: 14:c3:46:0c:42:0b:3e:e4:a7:a0:2e:c1:bb:ca:01: 81:e9:c1:ab:4f:6a:80:f6:fd:92:f6:1e:88:f5:f2: d1:7d:ee:1c:ff:c2:a4:42:62:72:62:cf:8d:c8:1b: dc:9d:54:38:f4:ba:63:b8:98:ea:37:79:36:e2:3b: 0b:23:fb:0d:7d:21:18:fd:85:8a:b1:0f:8c:14:66: 43:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:37:63:62:BE:51:2E:B2:55:A2:CF:3F:97:89:13:EE:2F:CA:1D:33 X509v3 Authority Key Identifier: keyid:AC:FB:1A:5D:99:38:A6:4B:3B:54:A8:32:D5:B7:9C:03:24:86:A7:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be954f42-9452-4247-99a5-31a53e56a9f8/0/ACFB1A5D9938A64B3B54A832D5B79C032486A759.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/ACFB1A5D9938A64B3B54A832D5B79C032486A759.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be954f42-9452-4247-99a5-31a53e56a9f8/0/3136302e32352e3135372e302f32342d3234203d3e20313533303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.157.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:a3:3d:79:b3:08:9c:0b:90:63:31:15:a1:14:44:62:76:b6: fc:1c:96:fc:55:69:fa:8c:25:e3:b4:29:32:61:a0:56:bc:90: f7:94:5f:b8:96:67:3a:08:93:f2:b0:1e:d6:5b:91:f7:46:6c: 51:42:4b:ef:e5:40:90:3f:02:f3:d3:00:5d:b7:95:6f:95:46: 14:3c:a4:09:91:a0:b5:b9:8c:b9:a9:80:43:70:86:c9:c1:c2: 8f:e1:fa:73:07:6e:34:59:99:89:8b:15:06:6f:ae:d2:04:5c: 62:90:da:39:90:e3:83:8e:03:6a:66:6b:a1:99:2c:f0:1e:60: f9:9b:6d:1d:52:53:a4:ad:a5:c3:60:4e:53:5d:34:d0:75:1f: 20:34:c4:c8:d7:97:47:96:be:22:2d:80:04:fd:8a:a1:c7:de: 16:34:4c:e4:5d:72:50:db:b1:90:54:e1:88:f3:23:cd:3c:70: 29:bd:9e:5d:53:95:f1:7d:61:56:e8:f7:13:46:65:d2:e9:b1: ad:0b:dc:e2:9e:43:34:3c:87:fc:03:9f:ea:0c:1a:9f:f5:9e: 97:5b:5d:3d:7e:1d:ae:34:73:44:95:b8:aa:16:75:b1:86:f1: cb:d2:13:17:47:11:3d:68:37:72:c8:ef:f0:98:11:ef:b0:76: 10:43:bd:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUerz5F0YccZ7Q7oW+YFKpzVcmgR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNGQjFBNUQ5OTM4QTY0QjNCNTRBODMyRDVCNzlDMDMy NDg2QTc1OTAeFw0yNTA3MTQxMzU1MDFaFw0yNjA3MTMxNDAwMDFaMDMxMTAvBgNV BAMTKDUzMzc2MzYyQkU1MTJFQjI1NUEyQ0YzRjk3ODkxM0VFMkZDQTFEMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEr3P9oJMb5WYDDtbfl/6/O3bH 4rFgyAlKJ/IDmQTV1bcXrZ9CakHXnHOaYqX4AbO07jGiClg9KrxLO5HSvwrzONuT b7SFdLKmDuPtyduuWeKlym/Ap2cyZ0sLBzhP8I0NUG+0KB7PjGL8eZ1dx3yJDcgk 7FWgAkLEQCOZ4lFtFnWVh4cBhQF1erKHaNnSzAxbpYwN7+kRt4jS1xNC37rTC9Kn dgWnOHhGcmHS9FICpv16hhTDRgxCCz7kp6AuwbvKAYHpwatPaoD2/ZL2Hoj18tF9 7hz/wqRCYnJiz43IG9ydVDj0umO4mOo3eTbiOwsj+w19IRj9hYqxD4wUZkM9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUzdjYr5RLrJVos8/l4kT7i/KHTMwHwYDVR0j BBgwFoAUrPsaXZk4pks7VKgy1becAySGp1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTk1NGY0Mi05NDUyLTQyNDctOTlhNS0zMWE1M2U1NmE5ZjgvMC9BQ0ZCMUE1RDk5 MzhBNjRCM0I1NEE4MzJENUI3OUMwMzI0ODZBNzU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUNGQjFBNUQ5OTM4QTY0QjNCNTRBODMyRDVCNzlDMDMyNDg2 QTc1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlOTU0ZjQyLTk0NTItNDI0Ny05 OWE1LTMxYTUzZTU2YTlmOC8wLzMxMzYzMDJlMzIzNTJlMzEzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmdMA0GCSqG SIb3DQEBCwUAA4IBAQBroz15swicC5BjMRWhFERidrb8HJb8VWn6jCXjtCkyYaBW vJD3lF+4lmc6CJPysB7WW5H3RmxRQkvv5UCQPwLz0wBdt5VvlUYUPKQJkaC1uYy5 qYBDcIbJwcKP4fpzB240WZmJixUGb67SBFxikNo5kOODjgNqZmuhmSzwHmD5m20d UlOkraXDYE5TXTTQdR8gNMTI15dHlr4iLYAE/Yqhx94WNEzkXXJQ27GQVOGI8yPN PHApvZ5dU5XxfWFW6PcTRmXS6bGtC9zinkM0PIf8A5/qDBqf9Z6XW109fh2uNHNE lbiqFnWxhvHL0hMXRxE9aDdyyO/wmBHvsHYQQ71K -----END CERTIFICATE-----Generated at Sat Jul 26 17:20:57 2025 by rpki-client