$ rpki-client -vvf repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa File: 3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa (raw, json) Hash identifier: L103RB4M/KbtAQXK5+bCxunN2Xrasu7SEaoouWKmmF4= Subject key identifier: 9F:4F:EC:83:D1:F9:7C:DA:5D:97:C8:DF:48:37:91:FB:D3:29:A0:0B Certificate issuer: /CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Certificate serial: 4FE575E68A87CE4CA3DEBC8C762826C2DB53E447 Authority key identifier: 9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa Signing time: Wed 24 Sep 2025 05:00:00 +0000 ROA not before: Wed 24 Sep 2025 04:55:00 +0000 ROA not after: Wed 23 Sep 2026 05:00:00 +0000 asID: 153129 IP address blocks: 160.191.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e5:75:e6:8a:87:ce:4c:a3:de:bc:8c:76:28:26:c2:db:53:e4:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D01A7EAAD74D818C4071C1F4AC3284F0A018182 Validity Not Before: Sep 24 04:55:00 2025 GMT Not After : Sep 23 05:00:00 2026 GMT Subject: CN=9F4FEC83D1F97CDA5D97C8DF483791FBD329A00B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e7:78:a5:b9:2f:f3:7d:10:58:53:1a:e3:c5: 59:f5:80:c4:c1:30:c1:12:79:0a:eb:e1:3e:8e:31: 61:f5:99:61:a9:73:4c:26:bf:41:69:cf:2a:1d:54: b4:34:ba:4b:45:75:83:fd:37:0d:f2:0d:d5:d8:f1: 47:d9:6d:2a:54:6f:3e:58:5f:56:c3:9a:c3:3c:19: fb:75:38:9f:b9:e1:bd:93:6b:21:95:bc:ee:f2:c3: 16:bc:e3:20:a5:d2:42:d0:8a:2c:80:49:81:c4:c9: 58:e4:58:b5:0b:66:2b:80:fc:84:cc:fc:8a:1e:b8: 1b:a3:90:c6:37:cf:7e:1c:5d:79:a1:d7:40:5b:a8: ee:9e:b3:71:07:eb:a5:07:0d:0d:cd:75:8b:e1:1e: ca:93:32:f2:c2:96:13:82:6b:51:46:06:22:09:50: 38:a0:59:e7:33:d4:92:7b:00:a4:eb:1a:c0:52:bb: 87:a5:92:3b:16:43:87:5f:b5:bf:61:81:4d:11:0b: fe:1e:c5:2c:c4:73:20:a7:9d:a9:0f:38:80:a6:a3: 99:07:14:98:85:c4:24:0f:c8:b0:85:bc:86:65:3f: 39:71:fb:95:d2:73:f1:52:87:70:5d:1a:90:bf:2a: 83:0f:18:8b:42:f1:de:b5:ab:6d:69:f4:b5:84:3b: 1b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:4F:EC:83:D1:F9:7C:DA:5D:97:C8:DF:48:37:91:FB:D3:29:A0:0B X509v3 Authority Key Identifier: keyid:9D:01:A7:EA:AD:74:D8:18:C4:07:1C:1F:4A:C3:28:4F:0A:01:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D01A7EAAD74D818C4071C1F4AC3284F0A018182.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32372e302f32342d3234203d3e20313533313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.27.0/24 Signature Algorithm: sha256WithRSAEncryption bd:91:a3:c6:9f:f0:d9:9d:88:11:17:5e:77:47:f3:0a:dd:0d: ee:d7:91:90:42:cc:fe:04:55:6b:47:92:87:ae:30:c1:a9:c6: 3f:33:9b:40:78:dd:73:6b:b1:11:23:24:6a:6e:ce:60:fe:e6: f5:97:a7:25:44:7a:c7:64:e5:9d:3d:d3:44:63:5e:c9:d5:04: e1:2e:c2:ca:b3:27:d6:3e:c6:33:33:2f:41:f7:72:83:2f:fb: 5d:7e:ab:79:8d:43:4f:a9:e0:84:2a:5c:0e:8b:43:7a:b5:9c: 11:a1:33:14:76:e3:f3:c1:4a:6b:7f:08:b5:bb:7e:2e:25:e6: 95:4f:6c:e9:87:11:2d:7b:1f:94:ef:b7:89:c6:ae:71:bb:e4: ba:9d:a5:bf:aa:d1:e8:f1:60:ff:e7:7c:8e:51:5a:3a:7d:fd: b0:a5:50:0a:9a:1e:f9:d7:0b:db:f0:ce:29:de:da:d4:41:c9: 70:91:b5:a3:0a:2e:c8:7d:d6:b8:82:c1:17:b6:d3:35:71:2b: 28:b7:2c:0b:3f:f4:72:75:80:58:ce:54:29:16:42:c2:49:41: 1f:4b:eb:3c:bd:3f:b8:05:7a:3f:7a:ce:3a:6d:64:b4:7d:1d: 6e:f8:ff:07:83:a5:f4:17:47:a7:18:9c:14:30:35:0a:ad:d1: 55:81:e3:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT+V15oqHzkyj3ryMdigmwttT5EcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYw QTAxODE4MjAeFw0yNTA5MjQwNDU1MDBaFw0yNjA5MjMwNTAwMDBaMDMxMTAvBgNV BAMTKDlGNEZFQzgzRDFGOTdDREE1RDk3QzhERjQ4Mzc5MUZCRDMyOUEwMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk53iluS/zfRBYUxrjxVn1gMTB MMESeQrr4T6OMWH1mWGpc0wmv0FpzyodVLQ0uktFdYP9Nw3yDdXY8UfZbSpUbz5Y X1bDmsM8Gft1OJ+54b2TayGVvO7ywxa84yCl0kLQiiyASYHEyVjkWLULZiuA/ITM /IoeuBujkMY3z34cXXmh10BbqO6es3EH66UHDQ3NdYvhHsqTMvLClhOCa1FGBiIJ UDigWecz1JJ7AKTrGsBSu4elkjsWQ4dftb9hgU0RC/4exSzEcyCnnakPOICmo5kH FJiFxCQPyLCFvIZlPzlx+5XSc/FSh3BdGpC/KoMPGItC8d61q21p9LWEOxuVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn0/sg9H5fNpdl8jfSDeR+9MpoAswHwYDVR0j BBgwFoAUnQGn6q102BjEBxwfSsMoTwoBgYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDM5NjM4OC0yZDZiLTQ3NmUtOTYzZC0xY2MzODEzNzRiMWMvMC85RDAxQTdFQUFE NzREODE4QzQwNzFDMUY0QUMzMjg0RjBBMDE4MTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQwMUE3RUFBRDc0RDgxOEM0MDcxQzFGNEFDMzI4NEYwQTAx ODE4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4LTJkNmItNDc2ZS05 NjNkLTFjYzM4MTM3NGIxYy8wLzMxMzYzMDJlMzEzOTMxMmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8bMA0GCSqG SIb3DQEBCwUAA4IBAQC9kaPGn/DZnYgRF153R/MK3Q3u15GQQsz+BFVrR5KHrjDB qcY/M5tAeN1za7ERIyRqbs5g/ub1l6clRHrHZOWdPdNEY17J1QThLsLKsyfWPsYz My9B93KDL/tdfqt5jUNPqeCEKlwOi0N6tZwRoTMUduPzwUprfwi1u34uJeaVT2zp hxEtex+U77eJxq5xu+S6naW/qtHo8WD/53yOUVo6ff2wpVAKmh751wvb8M4p3trU QclwkbWjCi7Ifda4gsEXttM1cSsotywLP/RydYBYzlQpFkLCSUEfS+s8vT+4BXo/ es46bWS0fR1u+P8Hg6X0F0enGJwUMDUKrdFVgeMt -----END CERTIFICATE-----Generated at Tue Oct 21 12:01:06 2025 by rpki-client