$ rpki-client -vvf repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa File: 3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa (raw, json) Hash identifier: ztmYbNJoFZ6N5sFqQdTZmBxa2LX8TH2rkXJjnkiW1fo= Subject key identifier: 0A:22:B0:6B:79:68:FA:47:AD:91:6E:9B:C3:8B:16:BE:D7:81:87:C4 Certificate issuer: /CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Certificate serial: 042BFC305CFDDB3526012E505B3F5FC283B7F5F3 Authority key identifier: 9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa Signing time: Wed 24 Sep 2025 05:00:00 +0000 ROA not before: Wed 24 Sep 2025 04:55:00 +0000 ROA not after: Wed 23 Sep 2026 05:00:00 +0000 asID: 153129 IP address blocks: 160.191.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:2b:fc:30:5c:fd:db:35:26:01:2e:50:5b:3f:5f:c2:83:b7:f5:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Validity Not Before: Sep 24 04:55:00 2025 GMT Not After : Sep 23 05:00:00 2026 GMT Subject: CN=0A22B06B7968FA47AD916E9BC38B16BED78187C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:24:c6:27:00:16:42:df:82:2e:14:16:51:17: 1b:09:af:3a:59:a3:5c:af:8f:cf:15:43:f4:e9:d1: ed:e5:83:38:86:a1:0a:9f:78:6e:38:8a:f1:8a:e2: 9c:4a:89:0c:2d:e1:75:a9:39:c5:7f:cd:0d:d5:cb: d7:c3:60:c2:e6:78:cf:4e:47:7e:e5:6d:6f:fb:aa: 6b:f7:cc:af:70:6c:1a:df:e4:87:b7:03:f5:60:dd: 24:97:dd:04:93:57:79:a5:0a:d7:78:c2:ac:50:a7: bb:78:7d:c9:08:68:03:bd:dc:6a:e3:0a:b2:49:23: 2e:5c:bf:70:0d:a0:7e:bc:3c:c5:1b:ba:83:5f:5e: f1:99:4c:c2:f9:e8:79:d6:5b:75:90:8c:88:40:de: 2c:07:ce:50:1c:d9:27:e0:7c:e1:07:d8:13:ff:98: 3a:53:48:c5:a8:59:e8:7d:4f:10:0d:dd:71:b7:55: 56:97:70:bf:83:03:a0:9f:af:45:65:ee:d6:3b:dc: af:d5:0f:f0:ab:db:e5:20:e0:48:14:43:aa:08:74: 9f:2b:8f:c8:8a:ec:51:03:b8:cf:fb:93:15:73:e9: ff:28:4a:65:f9:8c:54:4f:37:4f:ff:0b:97:d8:2d: 20:ef:60:c4:9e:10:42:a9:9f:e7:07:75:00:d1:d5: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:22:B0:6B:79:68:FA:47:AD:91:6E:9B:C3:8B:16:BE:D7:81:87:C4 X509v3 Authority Key Identifier: keyid:9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32342d3234203d3e20313533313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.26.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:f2:67:4d:6f:1c:1e:23:e2:b1:5b:c8:9c:2f:e2:0c:d7:4f: cc:ad:0c:6b:ad:5b:1a:dc:83:ad:9c:da:6d:27:60:04:6d:7f: 68:3f:04:ee:0c:84:02:93:07:2e:52:fe:ef:0b:52:45:b3:0b: ce:fd:80:f8:ca:27:9a:0c:ec:e6:fd:ac:d1:db:9b:dd:61:3d: d4:21:2d:19:c3:6b:e3:35:e0:b7:dc:c9:08:74:45:b9:12:17: c0:cf:34:1a:49:2f:54:4e:57:c5:0b:a4:d1:91:ab:89:d5:2d: 76:4b:d4:ee:eb:6e:68:d4:5d:aa:f6:d9:f2:ea:5b:2d:ae:7f: b5:d2:35:0b:d8:2c:a1:d9:45:87:54:5b:61:bc:f0:92:26:76: 54:26:29:be:4d:e4:18:51:ab:bd:99:65:86:f3:eb:e6:58:65: df:70:97:f6:62:af:03:70:e2:29:20:4e:ad:53:24:f6:fb:e6: 05:61:10:71:2d:db:65:1c:4d:1a:d5:5f:81:99:ca:c5:64:d3: bf:6b:10:a7:7d:2e:68:1c:e6:bf:95:08:35:cf:6e:04:d4:f1: 9d:0a:a8:ae:e0:f2:98:8a:08:2c:8d:37:65:ca:9f:83:75:34: 7d:24:eb:90:3b:64:6a:81:b7:90:fa:ca:80:40:66:01:3a:b9: e0:6f:8e:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBCv8MFz92zUmAS5QWz9fwoO39fMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYw QTAxODE4MjAeFw0yNTA5MjQwNDU1MDBaFw0yNjA5MjMwNTAwMDBaMDMxMTAvBgNV BAMTKDBBMjJCMDZCNzk2OEZBNDdBRDkxNkU5QkMzOEIxNkJFRDc4MTg3QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2JMYnABZC34IuFBZRFxsJrzpZ o1yvj88VQ/Tp0e3lgziGoQqfeG44ivGK4pxKiQwt4XWpOcV/zQ3Vy9fDYMLmeM9O R37lbW/7qmv3zK9wbBrf5Ie3A/Vg3SSX3QSTV3mlCtd4wqxQp7t4fckIaAO93Grj CrJJIy5cv3ANoH68PMUbuoNfXvGZTML56HnWW3WQjIhA3iwHzlAc2SfgfOEH2BP/ mDpTSMWoWeh9TxAN3XG3VVaXcL+DA6Cfr0Vl7tY73K/VD/Cr2+Ug4EgUQ6oIdJ8r j8iK7FEDuM/7kxVz6f8oSmX5jFRPN0//C5fYLSDvYMSeEEKpn+cHdQDR1XwzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCiKwa3lo+ketkW6bw4sWvteBh8QwHwYDVR0j BBgwFoAUnQGn6q102BjEBxwfSsMoTwoBgYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDM5NjM4OC0yZDZiLTQ3NmUtOTYzZC0xY2MzODEzNzRiMWMvMC85RDAxQTdFQUFE NzREODE4QzQwNzFDMUY0QUMzMjg0RjBBMDE4MTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYwQTAx ODE4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4LTJkNmItNDc2ZS05 NjNkLTFjYzM4MTM3NGIxYy8wLzMxMzYzMDJlMzEzOTMxMmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8aMA0GCSqG SIb3DQEBCwUAA4IBAQAs8mdNbxweI+KxW8icL+IM10/MrQxrrVsa3IOtnNptJ2AE bX9oPwTuDIQCkwcuUv7vC1JFswvO/YD4yieaDOzm/azR25vdYT3UIS0Zw2vjNeC3 3MkIdEW5EhfAzzQaSS9UTlfFC6TRkauJ1S12S9Tu625o1F2q9tny6lstrn+10jUL 2Cyh2UWHVFthvPCSJnZUJim+TeQYUau9mWWG8+vmWGXfcJf2Yq8DcOIpIE6tUyT2 ++YFYRBxLdtlHE0a1V+BmcrFZNO/axCnfS5oHOa/lQg1z24E1PGdCqiu4PKYiggs jTdlyp+DdTR9JOuQO2RqgbeQ+sqAQGYBOrngb458 -----END CERTIFICATE-----Generated at Tue Oct 21 12:01:06 2025 by rpki-client