$ rpki-client -vvf repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa File: 3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa (raw, json) Hash identifier: I98r/YvoKJnqIbKebXKfBKywu1BzE/FQD60HTUreMMU= Subject key identifier: 98:03:A7:82:3C:1D:89:C0:85:6D:A5:C0:A4:4A:F1:8C:9A:D8:32:B9 Certificate issuer: /CN=CAFC8825F98002AF2A3CB54EF279D59CD2E5043C Certificate serial: 3738582697F9DC1626B7A68849DD10AF4D43B506 Authority key identifier: CA:FC:88:25:F9:80:02:AF:2A:3C:B5:4E:F2:79:D5:9C:D2:E5:04:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa Signing time: Tue 16 Sep 2025 06:00:01 +0000 ROA not before: Tue 16 Sep 2025 05:55:01 +0000 ROA not after: Tue 15 Sep 2026 06:00:01 +0000 asID: 153127 IP address blocks: 160.187.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.crl rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:38:58:26:97:f9:dc:16:26:b7:a6:88:49:dd:10:af:4d:43:b5:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFC8825F98002AF2A3CB54EF279D59CD2E5043C Validity Not Before: Sep 16 05:55:01 2025 GMT Not After : Sep 15 06:00:01 2026 GMT Subject: CN=9803A7823C1D89C0856DA5C0A44AF18C9AD832B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:b0:6c:7c:bb:47:aa:69:a4:f3:19:20:26: 16:71:fe:4a:19:08:55:68:fe:09:55:c7:0b:ca:2c: 22:94:69:ea:31:7b:f9:04:d8:81:c7:bc:fd:0a:85: 1c:85:10:84:f9:b8:1a:11:db:6d:83:fe:c4:08:57: 76:40:55:45:f0:19:34:f4:b5:97:ec:4e:8b:2d:86: c9:70:85:d6:67:90:63:85:3a:38:ff:cb:a5:bf:da: 4e:45:b1:22:a9:50:71:e8:98:4e:a0:66:2f:1e:8c: af:72:a9:41:13:5c:0b:4b:16:cb:75:1f:ee:7a:d2: 70:96:df:37:7c:98:1b:ec:03:07:d7:e7:e2:34:35: 07:4a:de:4b:e3:dd:40:82:26:54:99:23:af:3d:20: 3b:26:07:de:b5:e0:bd:3e:fe:97:bc:df:4b:23:3d: af:e3:5d:d8:0f:14:a6:1f:e2:58:56:ab:30:5d:e6: 9f:00:88:8f:6e:27:c4:c5:ae:ef:11:4c:a5:8a:b8: 7d:fd:7a:e1:e3:3e:7d:2b:b8:6a:13:67:96:05:e5: 8c:55:62:5c:4f:c2:5b:e7:0e:59:55:1d:ae:1a:43: cc:b3:4d:33:22:4a:df:60:f2:5d:28:51:0c:10:76: 96:9c:88:f1:9f:54:07:cb:ed:de:57:8d:70:ab:b4: dc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:03:A7:82:3C:1D:89:C0:85:6D:A5:C0:A4:4A:F1:8C:9A:D8:32:B9 X509v3 Authority Key Identifier: keyid:CA:FC:88:25:F9:80:02:AF:2A:3C:B5:4E:F2:79:D5:9C:D2:E5:04:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.150.0/23 Signature Algorithm: sha256WithRSAEncryption 41:f0:14:a3:a1:d6:29:c5:21:bb:0c:b2:1d:2d:1b:9a:86:b9: 13:88:c5:d9:1c:97:f6:74:56:06:16:88:a4:3b:79:b9:68:68: 54:f2:c0:47:61:c0:f8:20:fc:b8:07:52:19:2c:e4:97:ea:c3: 48:95:08:96:38:c9:a4:d3:21:b2:08:59:40:1c:fc:7a:94:b6: 34:6a:fe:dc:8b:2c:cc:7f:a2:c8:de:1d:8e:4d:79:ce:71:a1: fd:90:72:3a:84:62:c6:3b:42:95:d2:b1:21:c3:a1:fa:22:83: b5:d2:27:9f:e9:1e:76:0a:17:1b:a9:59:ad:d2:09:0b:ee:04: f6:56:d3:44:aa:d6:00:f5:fa:58:2c:6c:5a:88:73:96:d9:cb: 9b:a0:b9:f7:93:33:21:a1:8f:8e:cd:62:b7:e4:28:73:5a:ac: 87:61:5f:82:93:20:fb:6c:4b:80:04:3f:e4:4b:ce:47:e1:ae: 76:10:53:cc:d0:9b:54:92:cb:12:ba:46:f2:a9:9e:98:73:e6: 1c:f5:69:55:54:ae:bc:84:c0:45:62:f4:b0:f5:b0:95:a5:93: bc:cf:95:d8:9a:97:97:c0:5d:8f:0a:db:b0:a4:d4:2f:0a:ae: 08:f2:be:88:65:e7:e8:5e:ae:fe:00:c8:47:a2:7a:d8:ab:e0: 76:58:45:1b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNzhYJpf53BYmt6aISd0Qr01DtQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGQzg4MjVGOTgwMDJBRjJBM0NCNTRFRjI3OUQ1OUNE MkU1MDQzQzAeFw0yNTA5MTYwNTU1MDFaFw0yNjA5MTUwNjAwMDFaMDMxMTAvBgNV BAMTKDk4MDNBNzgyM0MxRDg5QzA4NTZEQTVDMEE0NEFGMThDOUFEODMyQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgVLBsfLtHqmmk8xkgJhZx/koZ CFVo/glVxwvKLCKUaeoxe/kE2IHHvP0KhRyFEIT5uBoR222D/sQIV3ZAVUXwGTT0 tZfsTosthslwhdZnkGOFOjj/y6W/2k5FsSKpUHHomE6gZi8ejK9yqUETXAtLFst1 H+560nCW3zd8mBvsAwfX5+I0NQdK3kvj3UCCJlSZI689IDsmB9614L0+/pe830sj Pa/jXdgPFKYf4lhWqzBd5p8AiI9uJ8TFru8RTKWKuH39euHjPn0ruGoTZ5YF5YxV YlxPwlvnDllVHa4aQ8yzTTMiSt9g8l0oUQwQdpaciPGfVAfL7d5XjXCrtNz5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmAOngjwdicCFbaXApErxjJrYMrkwHwYDVR0j BBgwFoAUyvyIJfmAAq8qPLVO8nnVnNLlBDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWQ5N2I0MC1jMDMxLTRlNWItOWI0Mi1kMmFlMWM5Y2Y5ODcvMC9DQUZDODgyNUY5 ODAwMkFGMkEzQ0I1NEVGMjc5RDU5Q0QyRTUwNDNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0FGQzg4MjVGOTgwMDJBRjJBM0NCNTRFRjI3OUQ1OUNEMkU1 MDQzQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZDk3YjQwLWMwMzEtNGU1Yi05 YjQyLWQyYWUxYzljZjk4Ny8wLzMxMzYzMDJlMzEzODM3MmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu5YwDQYJ KoZIhvcNAQELBQADggEBAEHwFKOh1inFIbsMsh0tG5qGuROIxdkcl/Z0VgYWiKQ7 ebloaFTywEdhwPgg/LgHUhks5Jfqw0iVCJY4yaTTIbIIWUAc/HqUtjRq/tyLLMx/ osjeHY5Nec5xof2QcjqEYsY7QpXSsSHDofoig7XSJ5/pHnYKFxupWa3SCQvuBPZW 00Sq1gD1+lgsbFqIc5bZy5ugufeTMyGhj47NYrfkKHNarIdhX4KTIPtsS4AEP+RL zkfhrnYQU8zQm1SSyxK6RvKpnphz5hz1aVVUrryEwEVi9LD1sJWlk7zPldial5fA XY8K27Ck1C8Krgjyvohl5+herv4AyEeietir4HZYRRs= -----END CERTIFICATE-----Generated at Mon Oct 20 16:53:39 2025 by rpki-client