$ rpki-client -vvf repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33362e302f32342d3234203d3e20313533333237.roa File: 3136302e3138372e33362e302f32342d3234203d3e20313533333237.roa (raw, json) Hash identifier: W6x4NYRtAG+Mf6fIyPCm/XsF8bO9fqqOCjC78Il5Kyw= Subject key identifier: F6:E7:A9:95:8F:F5:8E:52:A2:3C:FF:58:47:ED:A3:FF:82:79:37:D1 Certificate issuer: /CN=B1F0A7585ED1882783C6AF802B826607ABB92671 Certificate serial: 148348749CCD1E75A6D8D2EF1A8E98A9566AA296 Authority key identifier: B1:F0:A7:58:5E:D1:88:27:83:C6:AF:80:2B:82:66:07:AB:B9:26:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33362e302f32342d3234203d3e20313533333237.roa Signing time: Mon 08 Sep 2025 03:00:01 +0000 ROA not before: Mon 08 Sep 2025 02:55:01 +0000 ROA not after: Mon 07 Sep 2026 03:00:01 +0000 asID: 153327 IP address blocks: 160.187.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.crl rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:83:48:74:9c:cd:1e:75:a6:d8:d2:ef:1a:8e:98:a9:56:6a:a2:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1F0A7585ED1882783C6AF802B826607ABB92671 Validity Not Before: Sep 8 02:55:01 2025 GMT Not After : Sep 7 03:00:01 2026 GMT Subject: CN=F6E7A9958FF58E52A23CFF5847EDA3FF827937D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e9:2d:5b:37:3b:74:cc:7a:93:81:c1:97:d8: 01:4b:4f:42:d2:45:5c:a6:69:76:ea:f6:6b:fe:d6: 27:2d:2a:28:31:c0:f1:9d:d8:a2:65:57:5a:46:7a: e6:c2:ac:ad:04:fd:08:82:df:1c:1b:0e:d8:c0:49: d5:d2:e6:e6:2c:41:a8:6b:67:bc:f9:4c:79:31:36: f5:58:82:8f:05:c7:4b:44:c5:90:1a:35:25:d0:35: 37:69:7b:87:b6:8b:89:ff:80:1a:f4:de:84:26:a4: 68:56:28:25:c5:5c:74:63:0d:90:ee:fc:be:c4:ec: 09:fe:0b:58:89:84:23:19:f6:e9:89:c7:32:da:0d: 99:89:ff:dd:51:92:56:c4:b9:a8:ce:da:f7:c9:97: e2:db:dd:72:0b:84:ea:10:be:0a:5d:44:e7:e2:79: 86:0c:e2:14:24:2c:23:72:5b:23:b0:da:66:1f:0c: e7:a0:fd:8f:59:3b:a6:ee:0d:a0:58:9f:79:de:b2: 16:84:df:9a:63:13:e1:d5:6c:7e:95:fd:32:79:58: a1:97:46:15:fd:f4:20:ef:1e:31:2e:43:d5:91:0a: ef:a5:13:65:70:f4:22:4f:21:ff:af:40:a5:6e:eb: 61:78:c7:46:74:f0:4e:0d:3d:bc:ba:52:35:ac:03: 14:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:E7:A9:95:8F:F5:8E:52:A2:3C:FF:58:47:ED:A3:FF:82:79:37:D1 X509v3 Authority Key Identifier: keyid:B1:F0:A7:58:5E:D1:88:27:83:C6:AF:80:2B:82:66:07:AB:B9:26:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33362e302f32342d3234203d3e20313533333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.36.0/24 Signature Algorithm: sha256WithRSAEncryption b7:94:dc:de:4e:79:ce:bf:8f:d2:ea:99:88:b5:d5:26:8c:bf: 83:a5:60:fb:62:91:21:33:62:f5:68:84:ed:74:e6:b7:2f:7a: c4:03:0f:87:02:2e:39:bb:b2:25:82:0e:95:90:a2:87:20:7f: 62:51:d6:ee:6e:b2:9c:90:a4:e7:0f:eb:dc:ea:34:fb:05:38: 20:aa:12:53:66:f6:bb:52:5d:77:6e:54:0e:08:2d:1f:16:b5: f8:c9:ca:5d:f4:b4:b5:3a:56:4e:c3:ff:3e:d4:5b:f3:77:66: 25:cd:6b:77:48:df:55:14:b1:be:af:10:b9:7d:69:94:5c:53: 27:13:ec:2f:4c:72:d2:14:ca:e6:87:4d:fe:4c:fc:ba:d1:b5: 34:be:75:3c:11:5f:6c:f1:e9:aa:1c:30:2a:a0:f0:dc:4a:30: 3d:ed:b1:40:58:74:ee:0d:a3:4d:b4:09:0a:de:12:39:9d:7e: 86:ed:2f:51:a7:cb:37:8e:85:a2:4d:4b:b3:2f:30:13:08:8d: 0c:75:88:e9:98:05:16:17:1c:6a:4f:15:2b:29:d7:35:f0:dd: 6a:01:72:39:0c:9f:ff:a5:b8:70:07:a4:36:d0:12:4d:dc:03: 60:4c:54:e4:55:96:ee:9b:a0:ef:9c:15:c7:68:02:d3:91:56: 49:86:5f:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFINIdJzNHnWm2NLvGo6YqVZqopYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFGMEE3NTg1RUQxODgyNzgzQzZBRjgwMkI4MjY2MDdB QkI5MjY3MTAeFw0yNTA5MDgwMjU1MDFaFw0yNjA5MDcwMzAwMDFaMDMxMTAvBgNV BAMTKEY2RTdBOTk1OEZGNThFNTJBMjNDRkY1ODQ3RURBM0ZGODI3OTM3RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ6S1bNzt0zHqTgcGX2AFLT0LS RVymaXbq9mv+1ictKigxwPGd2KJlV1pGeubCrK0E/QiC3xwbDtjASdXS5uYsQahr Z7z5THkxNvVYgo8Fx0tExZAaNSXQNTdpe4e2i4n/gBr03oQmpGhWKCXFXHRjDZDu /L7E7An+C1iJhCMZ9umJxzLaDZmJ/91RklbEuajO2vfJl+Lb3XILhOoQvgpdROfi eYYM4hQkLCNyWyOw2mYfDOeg/Y9ZO6buDaBYn3neshaE35pjE+HVbH6V/TJ5WKGX RhX99CDvHjEuQ9WRCu+lE2Vw9CJPIf+vQKVu62F4x0Z08E4NPby6UjWsAxTbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9ueplY/1jlKiPP9YR+2j/4J5N9EwHwYDVR0j BBgwFoAUsfCnWF7RiCeDxq+AK4JmB6u5JnEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODkxMzg5My01ZjY0LTRhNWUtYThkMi01ZDUxZWJkZTQ3M2YvMC9CMUYwQTc1ODVF RDE4ODI3ODNDNkFGODAyQjgyNjYwN0FCQjkyNjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjFGMEE3NTg1RUQxODgyNzgzQzZBRjgwMkI4MjY2MDdBQkI5 MjY3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4OTEzODkzLTVmNjQtNGE1ZS1h OGQyLTVkNTFlYmRlNDczZi8wLzMxMzYzMDJlMzEzODM3MmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoLskMA0GCSqG SIb3DQEBCwUAA4IBAQC3lNzeTnnOv4/S6pmItdUmjL+DpWD7YpEhM2L1aITtdOa3 L3rEAw+HAi45u7Ilgg6VkKKHIH9iUdbubrKckKTnD+vc6jT7BTggqhJTZva7Ul13 blQOCC0fFrX4ycpd9LS1OlZOw/8+1Fvzd2YlzWt3SN9VFLG+rxC5fWmUXFMnE+wv THLSFMrmh03+TPy60bU0vnU8EV9s8emqHDAqoPDcSjA97bFAWHTuDaNNtAkK3hI5 nX6G7S9Rp8s3joWiTUuzLzATCI0MdYjpmAUWFxxqTxUrKdc18N1qAXI5DJ//pbhw B6Q20BJN3ANgTFTkVZbum6DvnBXHaALTkVZJhl9N -----END CERTIFICATE-----Generated at Mon Oct 20 21:19:15 2025 by rpki-client