$ rpki-client -vvf repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa File: 3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa (raw, json) Hash identifier: 2LacJURrRGdpqkr8B8+Js6eubdkn8GpcOPwFPaGcYgA= Subject key identifier: A1:6F:63:B9:75:FF:D7:78:6F:FE:F5:AE:16:16:C3:D7:04:04:AF:29 Certificate issuer: /CN=8107B8970680BF15377E222E6093ED124116C40F Certificate serial: 058B866885097A0CCB73464832C049EB2EA041D3 Authority key identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa Signing time: Fri 29 Aug 2025 06:01:20 +0000 ROA not before: Fri 29 Aug 2025 05:56:20 +0000 ROA not after: Fri 28 Aug 2026 06:01:20 +0000 asID: 152811 IP address blocks: 160.22.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 16:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:8b:86:68:85:09:7a:0c:cb:73:46:48:32:c0:49:eb:2e:a0:41:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8107B8970680BF15377E222E6093ED124116C40F Validity Not Before: Aug 29 05:56:20 2025 GMT Not After : Aug 28 06:01:20 2026 GMT Subject: CN=A16F63B975FFD7786FFEF5AE1616C3D70404AF29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bb:ff:21:f5:9d:1a:2d:26:05:6d:79:9f:f1: f7:da:e2:c8:29:ad:6b:c6:df:1b:60:7a:9d:62:c6: ea:db:ed:c2:52:95:3b:c6:3d:83:ab:df:0d:be:f9: 84:fb:e7:4f:8d:43:d3:1b:0c:a1:15:6f:11:4b:28: 0d:56:e4:96:33:f9:8c:c0:5f:fe:88:63:87:b4:d0: 0a:12:46:fb:ce:6e:6e:5a:66:99:4f:a1:ac:bb:e5: 1d:a8:d8:b9:9e:9d:34:3b:00:1f:ae:42:0a:15:88: 6c:d7:99:67:2e:d8:19:9f:ac:cf:b6:1d:eb:a3:e1: a6:be:20:0c:61:65:c3:67:0f:df:70:84:a9:42:90: f6:43:4c:48:c3:a6:d7:e7:ae:3b:b2:67:5e:e0:1d: 94:97:9d:9f:ee:78:af:21:98:69:c5:45:f5:bf:f5: 11:ed:2e:dc:1a:c4:04:7f:9b:33:00:ab:2b:a5:c6: bf:66:6e:d5:bb:09:fa:69:10:db:51:d9:3b:38:17: a5:e6:f5:8d:24:78:df:b3:58:7b:b6:b3:58:cc:d9: 0e:d2:e1:d1:a8:2b:c0:cb:98:8a:c9:c4:0d:c4:92: 71:a4:fc:04:e5:34:6c:17:a0:90:4a:64:ae:f6:ff: 8b:27:e9:ad:10:c9:f4:2b:9b:de:6c:cd:2a:74:93: a7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6F:63:B9:75:FF:D7:78:6F:FE:F5:AE:16:16:C3:D7:04:04:AF:29 X509v3 Authority Key Identifier: keyid:81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/23 Signature Algorithm: sha256WithRSAEncryption 67:f8:b2:a2:5e:17:e8:d5:1c:4a:89:ef:7d:3f:bf:f2:42:b2: 9b:ed:6a:50:b1:99:8b:6f:66:c3:9b:c9:35:4d:8a:29:fd:ba: a3:89:9b:3a:16:0c:b0:06:b5:c4:8b:3a:07:0c:ca:05:8a:0a: ce:7a:64:ab:aa:f5:00:ee:b4:df:6b:fc:3a:de:53:2c:e7:8b: cf:89:18:15:61:b4:0f:ae:58:e1:3a:dc:79:93:fa:f3:12:26: 0b:85:77:3a:65:ba:c6:b2:74:04:49:d7:1d:d9:e9:91:4c:d4: 98:4d:8d:2f:64:7f:6b:d8:40:36:fb:03:1c:79:1a:69:b6:e5: e4:21:a6:c0:bf:fe:e2:6f:16:e5:ec:06:86:ab:09:00:43:12: a8:f2:9f:f8:40:96:62:29:1b:76:f7:5e:a3:74:f0:bb:22:61: 60:ce:88:46:88:da:a3:55:2f:c8:a4:27:1b:9f:ec:cb:1b:35: e4:bb:05:d2:7f:a8:98:66:64:87:91:78:46:00:9f:3d:08:46: ad:3f:e2:9b:ad:98:9b:a8:e0:c5:d9:0d:9c:4b:29:9c:a0:0e: 89:c8:33:16:85:10:3d:d3:7d:db:19:57:27:47:c8:bc:ff:8c: 9e:d6:be:42:ce:fe:2b:3c:94:5b:26:2a:15:f5:4c:7e:f5:14: 7b:7c:37:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBYuGaIUJegzLc0ZIMsBJ6y6gQdMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0 MTE2QzQwRjAeFw0yNTA4MjkwNTU2MjBaFw0yNjA4MjgwNjAxMjBaMDMxMTAvBgNV BAMTKEExNkY2M0I5NzVGRkQ3Nzg2RkZFRjVBRTE2MTZDM0Q3MDQwNEFGMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcu/8h9Z0aLSYFbXmf8ffa4sgp rWvG3xtgep1ixurb7cJSlTvGPYOr3w2++YT750+NQ9MbDKEVbxFLKA1W5JYz+YzA X/6IY4e00AoSRvvObm5aZplPoay75R2o2LmenTQ7AB+uQgoViGzXmWcu2BmfrM+2 Heuj4aa+IAxhZcNnD99whKlCkPZDTEjDptfnrjuyZ17gHZSXnZ/ueK8hmGnFRfW/ 9RHtLtwaxAR/mzMAqyulxr9mbtW7CfppENtR2Ts4F6Xm9Y0keN+zWHu2s1jM2Q7S 4dGoK8DLmIrJxA3EknGk/ATlNGwXoJBKZK72/4sn6a0QyfQrm95szSp0k6eHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoW9juXX/13hv/vWuFhbD1wQErykwHwYDVR0j BBgwFoAUgQe4lwaAvxU3fiIuYJPtEkEWxA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTk1YjRiNC1iYzhhLTRjZTUtYjU1MC05YWE3YjM2ZWUxZmEvMC84MTA3Qjg5NzA2 ODBCRjE1Mzc3RTIyMkU2MDkzRUQxMjQxMTZDNDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0MTE2 QzQwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0LWJjOGEtNGNlNS1i NTUwLTlhYTdiMzZlZTFmYS8wLzMxMzYzMDJlMzIzMjJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBaIMA0GCSqG SIb3DQEBCwUAA4IBAQBn+LKiXhfo1RxKie99P7/yQrKb7WpQsZmLb2bDm8k1TYop /bqjiZs6FgywBrXEizoHDMoFigrOemSrqvUA7rTfa/w63lMs54vPiRgVYbQPrljh Otx5k/rzEiYLhXc6ZbrGsnQESdcd2emRTNSYTY0vZH9r2EA2+wMceRpptuXkIabA v/7ibxbl7AaGqwkAQxKo8p/4QJZiKRt2916jdPC7ImFgzohGiNqjVS/IpCcbn+zL GzXkuwXSf6iYZmSHkXhGAJ89CEatP+KbrZibqODF2Q2cSymcoA6JyDMWhRA9033b GVcnR8i8/4ye1r5Czv4rPJRbJioV9Ux+9RR7fDf0 -----END CERTIFICATE-----Generated at Mon Sep 8 21:52:33 2025 by rpki-client