$ rpki-client -vvf repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa File: 3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa (raw, json) Hash identifier: ykQNp9IItK5u/w96SwpnIQP3xqaGsX/ox7vrXOM5+w0= Subject key identifier: F5:C2:10:4D:F5:7E:35:A1:36:6F:60:A7:15:D8:42:4F:A5:51:D4:2E Certificate issuer: /CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Certificate serial: 43DA7136F130A65CE64BB22551C63E91F9919A1A Authority key identifier: 9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa Signing time: Wed 24 Sep 2025 05:00:00 +0000 ROA not before: Wed 24 Sep 2025 04:55:00 +0000 ROA not after: Wed 23 Sep 2026 05:00:00 +0000 asID: 153129 IP address blocks: 160.191.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:da:71:36:f1:30:a6:5c:e6:4b:b2:25:51:c6:3e:91:f9:91:9a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Validity Not Before: Sep 24 04:55:00 2025 GMT Not After : Sep 23 05:00:00 2026 GMT Subject: CN=F5C2104DF57E35A1366F60A715D8424FA551D42E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:7e:6f:77:ec:69:ca:38:db:c6:a2:44:fb: 71:63:15:7c:f9:50:37:de:82:f6:70:73:87:61:ed: 3b:3c:0a:90:1f:06:11:dc:26:05:86:5c:47:d0:36: e9:38:a9:2d:86:62:b6:6b:3d:52:85:d6:70:a5:84: 83:54:4c:72:77:44:59:b9:9d:76:03:e9:6a:2e:de: 6b:55:c0:3f:5f:b5:7d:7c:b1:ee:be:34:20:f5:dc: c9:8b:65:a1:10:0f:e0:bf:e7:4d:bd:08:20:8d:03: 6e:86:ad:9f:3d:22:be:f2:de:76:ac:54:f9:d5:cc: 60:97:15:73:dc:9e:cd:71:f7:a2:77:78:82:61:8e: ae:60:b0:8f:b5:56:55:cf:13:cb:bb:1a:bc:48:39: aa:9d:4c:04:52:c4:ed:99:e8:f7:2a:78:43:08:66: a0:c9:58:4c:95:37:5d:7c:33:5b:8d:c0:d7:d6:4f: 93:6e:01:1a:60:a3:4e:69:32:35:ad:07:de:8f:54: 8f:81:6b:aa:87:b9:80:89:b3:94:8c:69:ac:79:90: 71:f0:45:b2:56:8f:01:25:45:4e:6e:e0:40:73:6d: 36:60:bd:ed:d5:60:02:7f:9a:1c:33:42:ef:65:8a: a9:0c:05:a8:37:28:1e:76:f1:da:bf:1c:9a:74:c6: e0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C2:10:4D:F5:7E:35:A1:36:6F:60:A7:15:D8:42:4F:A5:51:D4:2E X509v3 Authority Key Identifier: keyid:9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.26.0/23 Signature Algorithm: sha256WithRSAEncryption c4:2b:ca:21:97:ed:62:9e:b5:62:9a:02:a5:f0:01:bd:47:b7: c6:cb:7f:c1:a7:0e:39:41:dd:75:67:16:b1:1e:f4:10:ff:20: c7:b3:5d:e3:e1:44:d7:f2:b5:67:a1:12:ee:b8:76:26:be:a8: e1:b3:d2:cf:0f:2d:4d:f6:e3:65:62:71:bd:16:ef:98:8b:9f: 62:ea:07:05:65:d6:e9:d7:12:e4:e0:a9:d2:01:e4:64:4b:07: ec:58:21:ad:45:16:e5:eb:e3:10:72:88:42:71:9f:73:c7:25: 16:92:67:51:aa:96:d7:f7:ad:cf:fb:b4:e4:5b:15:cd:f1:d9: a8:2e:da:f0:69:d3:90:f3:2a:bc:ae:7a:07:33:ca:c0:63:82: 52:a9:71:58:0a:2a:7d:fc:b4:bf:a7:fb:11:87:c7:86:19:c7: ff:df:1b:16:e2:a4:89:07:7c:39:64:02:2f:16:f3:b7:75:46: ac:24:f6:08:f3:79:c5:a0:56:86:0b:69:b9:4e:92:ef:cb:31: af:67:d4:92:4a:8f:c0:cd:f7:41:8d:cb:f2:e3:ca:73:a1:21: 60:db:e1:16:64:38:1e:d8:41:05:5c:1a:d1:bb:44:1a:8e:e0: 66:10:66:36:19:d7:05:4c:a1:a1:ec:e5:ac:32:fc:91:96:53: 0c:4b:bf:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ9pxNvEwplzmS7IlUcY+kfmRmhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYw QTAxODE4MjAeFw0yNTA5MjQwNDU1MDBaFw0yNjA5MjMwNTAwMDBaMDMxMTAvBgNV BAMTKEY1QzIxMDRERjU3RTM1QTEzNjZGNjBBNzE1RDg0MjRGQTU1MUQ0MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Hn5vd+xpyjjbxqJE+3FjFXz5 UDfegvZwc4dh7Ts8CpAfBhHcJgWGXEfQNuk4qS2GYrZrPVKF1nClhINUTHJ3RFm5 nXYD6Wou3mtVwD9ftX18se6+NCD13MmLZaEQD+C/5029CCCNA26GrZ89Ir7y3nas VPnVzGCXFXPcns1x96J3eIJhjq5gsI+1VlXPE8u7GrxIOaqdTARSxO2Z6PcqeEMI ZqDJWEyVN118M1uNwNfWT5NuARpgo05pMjWtB96PVI+Ba6qHuYCJs5SMaax5kHHw RbJWjwElRU5u4EBzbTZgve3VYAJ/mhwzQu9liqkMBag3KB528dq/HJp0xuCdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9cIQTfV+NaE2b2CnFdhCT6VR1C4wHwYDVR0j BBgwFoAUnQGn6q102BjEBxwfSsMoTwoBgYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDM5NjM4OC0yZDZiLTQ3NmUtOTYzZC0xY2MzODEzNzRiMWMvMC85RDAxQTdFQUFE NzREODE4QzQwNzFDMUY0QUMzMjg0RjBBMDE4MTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYwQTAx ODE4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4LTJkNmItNDc2ZS05 NjNkLTFjYzM4MTM3NGIxYy8wLzMxMzYzMDJlMzEzOTMxMmUzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoL8aMA0GCSqG SIb3DQEBCwUAA4IBAQDEK8ohl+1inrVimgKl8AG9R7fGy3/Bpw45Qd11ZxaxHvQQ /yDHs13j4UTX8rVnoRLuuHYmvqjhs9LPDy1N9uNlYnG9Fu+Yi59i6gcFZdbp1xLk 4KnSAeRkSwfsWCGtRRbl6+MQcohCcZ9zxyUWkmdRqpbX963P+7TkWxXN8dmoLtrw adOQ8yq8rnoHM8rAY4JSqXFYCip9/LS/p/sRh8eGGcf/3xsW4qSJB3w5ZAIvFvO3 dUasJPYI83nFoFaGC2m5TpLvyzGvZ9SSSo/AzfdBjcvy48pzoSFg2+EWZDge2EEF XBrRu0QajuBmEGY2GdcFTKGh7OWsMvyRllMMS7+O -----END CERTIFICATE-----Generated at Tue Oct 21 12:01:05 2025 by rpki-client