$ rpki-client -vvf repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3136302e32352e34352e302f32342d3234203d3e20313533303639.roa File: 3136302e32352e34352e302f32342d3234203d3e20313533303639.roa (raw, json) Hash identifier: pjrXRUj5r2IszWCXojX+FWGkandw2VMiyslpGWMGbUA= Subject key identifier: F4:E6:82:DB:10:EC:4F:62:3D:B1:B8:97:FB:87:CB:90:2D:B6:5D:1C Certificate issuer: /CN=EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB Certificate serial: 1EA1C4936638FC422D93D862B0285C96DB8A07EC Authority key identifier: EE:C1:A7:BF:2D:95:D0:BA:FE:37:10:5E:4B:B1:BB:23:60:1D:D1:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3136302e32352e34352e302f32342d3234203d3e20313533303639.roa Signing time: Thu 19 Jun 2025 05:02:48 +0000 ROA not before: Thu 19 Jun 2025 04:57:48 +0000 ROA not after: Thu 18 Jun 2026 05:02:48 +0000 asID: 153069 IP address blocks: 160.25.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB.crl rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 10:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a1:c4:93:66:38:fc:42:2d:93:d8:62:b0:28:5c:96:db:8a:07:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB Validity Not Before: Jun 19 04:57:48 2025 GMT Not After : Jun 18 05:02:48 2026 GMT Subject: CN=F4E682DB10EC4F623DB1B897FB87CB902DB65D1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8f:ac:8d:8f:5a:bd:a8:ab:d5:07:3b:2a:27: 48:ae:ae:6c:34:82:2e:72:84:4f:04:f8:ef:8c:eb: 2b:1e:f2:48:59:48:4b:ab:36:34:f3:35:71:51:92: 15:21:2b:0d:2f:74:00:98:d6:b8:37:1b:4f:cb:9d: 94:f9:2e:87:13:7f:20:25:7c:5f:a1:50:a7:a0:6a: 88:fd:42:65:f5:1f:52:99:d5:f3:34:a5:07:60:89: a0:e6:c1:55:33:31:16:a9:1b:ca:68:e2:9f:c0:73: 1f:bd:a7:82:50:15:d8:41:e8:68:0e:9d:6e:f5:15: 7f:a6:d6:70:09:d1:4c:bc:30:a9:d4:7f:72:7b:36: ed:9a:43:fa:f4:4d:89:81:e4:a2:a4:bb:b5:6a:56: 2a:01:3f:13:e8:de:7f:5a:80:83:53:39:d9:4e:4f: 54:d5:6d:76:ac:9b:69:e7:eb:c5:cf:10:f5:cb:bf: 9c:a9:cb:bd:1f:0a:6c:c0:29:fd:5d:40:3e:40:01: 97:6a:16:11:71:4a:4d:83:9a:40:1c:ea:9a:92:b4: 4b:9d:d8:dc:8b:68:f6:f5:03:34:42:d0:74:71:65: 92:29:ca:dc:ee:97:42:b6:0d:9c:71:26:3e:ce:33: 70:31:3e:f7:82:ce:7c:0b:11:9c:c9:db:96:65:be: c4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E6:82:DB:10:EC:4F:62:3D:B1:B8:97:FB:87:CB:90:2D:B6:5D:1C X509v3 Authority Key Identifier: keyid:EE:C1:A7:BF:2D:95:D0:BA:FE:37:10:5E:4B:B1:BB:23:60:1D:D1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EEC1A7BF2D95D0BAFE37105E4BB1BB23601DD1DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3136302e32352e34352e302f32342d3234203d3e20313533303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.45.0/24 Signature Algorithm: sha256WithRSAEncryption af:9d:81:a0:7a:3b:3e:65:83:f0:60:eb:89:da:bb:f9:a4:0d: c2:1d:b4:ed:a3:6f:6f:7c:7f:7d:06:8f:76:9c:62:ab:b2:b0: 19:1a:93:09:f4:87:e8:ca:51:87:5b:d7:ae:fa:a3:87:7d:25: 28:6d:17:e0:48:91:33:35:17:a9:44:e8:b3:37:39:f9:6e:f5: 2f:40:7f:05:4a:e3:d9:0c:63:3d:08:39:2e:13:35:37:77:af: 1d:a0:e3:a2:7c:bc:2c:3e:23:7f:20:22:3f:20:e2:96:e5:20: b9:e3:03:92:6a:f0:97:41:f6:ab:7a:3a:e4:b2:ec:07:dc:f4: 54:91:3d:88:bf:1d:07:70:11:f7:22:85:fa:5b:41:d0:6f:49: 96:0d:9b:7a:11:cd:99:2c:b6:e2:7c:52:c2:a1:28:ce:66:62: dd:0b:83:b5:5f:8f:17:5f:3d:26:0b:db:b2:51:79:35:2f:35: 69:85:2c:45:a7:d4:6d:13:9c:c7:3c:f9:d7:d5:c2:6c:d5:c0: 05:b2:07:a4:7e:e0:d5:b2:55:c1:56:03:80:23:90:70:5d:43: 74:80:c8:d2:e1:d5:68:f9:d7:ea:c6:4c:a7:6b:8d:3d:9d:25: 80:bb:cf:18:2d:40:44:f6:a4:cf:56:62:da:54:b5:87:85:58: 53:00:e8:2a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHqHEk2Y4/EItk9hisChcltuKB+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVDMUE3QkYyRDk1RDBCQUZFMzcxMDVFNEJCMUJCMjM2 MDFERDFEQjAeFw0yNTA2MTkwNDU3NDhaFw0yNjA2MTgwNTAyNDhaMDMxMTAvBgNV BAMTKEY0RTY4MkRCMTBFQzRGNjIzREIxQjg5N0ZCODdDQjkwMkRCNjVEMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTj6yNj1q9qKvVBzsqJ0iurmw0 gi5yhE8E+O+M6yse8khZSEurNjTzNXFRkhUhKw0vdACY1rg3G0/LnZT5LocTfyAl fF+hUKegaoj9QmX1H1KZ1fM0pQdgiaDmwVUzMRapG8po4p/Acx+9p4JQFdhB6GgO nW71FX+m1nAJ0Uy8MKnUf3J7Nu2aQ/r0TYmB5KKku7VqVioBPxPo3n9agINTOdlO T1TVbXasm2nn68XPEPXLv5ypy70fCmzAKf1dQD5AAZdqFhFxSk2DmkAc6pqStEud 2NyLaPb1AzRC0HRxZZIpytzul0K2DZxxJj7OM3AxPveCznwLEZzJ25ZlvsQtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9OaC2xDsT2I9sbiX+4fLkC22XRwwHwYDVR0j BBgwFoAU7sGnvy2V0Lr+NxBeS7G7I2Ad0dswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MzY1NjFkNC0yM2M4LTRjOWItODkwZS00ZjI2MzJlNTJjOTcvMC9FRUMxQTdCRjJE OTVEMEJBRkUzNzEwNUU0QkIxQkIyMzYwMUREMURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUVDMUE3QkYyRDk1RDBCQUZFMzcxMDVFNEJCMUJCMjM2MDFE RDFEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIzNjU2MWQ0LTIzYzgtNGM5Yi04 OTBlLTRmMjYzMmU1MmM5Ny8wLzMxMzYzMDJlMzIzNTJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZLTANBgkqhkiG 9w0BAQsFAAOCAQEAr52BoHo7PmWD8GDridq7+aQNwh207aNvb3x/fQaPdpxiq7Kw GRqTCfSH6MpRh1vXrvqjh30lKG0X4EiRMzUXqUToszc5+W71L0B/BUrj2QxjPQg5 LhM1N3evHaDjony8LD4jfyAiPyDiluUgueMDkmrwl0H2q3o65LLsB9z0VJE9iL8d B3AR9yKF+ltB0G9Jlg2behHNmSy24nxSwqEozmZi3QuDtV+PF189JgvbslF5NS81 aYUsRafUbROcxzz519XCbNXABbIHpH7g1bJVwVYDgCOQcF1DdIDI0uHVaPnX6sZM p2uNPZ0lgLvPGC1ARPakz1Zi2lS1h4VYUwDoKg== -----END CERTIFICATE-----Generated at Mon Jun 30 10:22:31 2025 by rpki-client