$ rpki-client -vvf repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa File: 3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa (raw, json) Hash identifier: HwU0+K4pKIjqZ0rwzIAxU1cLuPfwooIJjDIs7VIOPKk= Subject key identifier: BA:F0:65:B9:A1:2D:F9:62:E2:5A:77:EE:80:22:1E:73:B7:5B:44:F3 Certificate issuer: /CN=B1F0A7585ED1882783C6AF802B826607ABB92671 Certificate serial: 3FA0B8EDBAC8EDADC80174487A45ED22FA914592 Authority key identifier: B1:F0:A7:58:5E:D1:88:27:83:C6:AF:80:2B:82:66:07:AB:B9:26:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa Signing time: Mon 08 Sep 2025 03:00:00 +0000 ROA not before: Mon 08 Sep 2025 02:55:00 +0000 ROA not after: Mon 07 Sep 2026 03:00:00 +0000 asID: 153327 IP address blocks: 160.187.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.crl rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:a0:b8:ed:ba:c8:ed:ad:c8:01:74:48:7a:45:ed:22:fa:91:45:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1F0A7585ED1882783C6AF802B826607ABB92671 Validity Not Before: Sep 8 02:55:00 2025 GMT Not After : Sep 7 03:00:00 2026 GMT Subject: CN=BAF065B9A12DF962E25A77EE80221E73B75B44F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3a:db:db:28:4e:b7:bc:03:90:1a:40:f1:c5: b7:e0:9b:7c:4f:69:5a:0f:a9:f7:d4:c9:25:9c:f9: 2e:1d:58:27:80:6a:4b:6d:f6:fe:8f:37:ca:2c:60: 99:75:0e:19:b6:8b:8a:0f:ac:a2:92:d4:57:a1:bb: fd:4b:d4:33:24:64:c9:3d:ec:f3:b6:12:70:77:a5: 9b:a8:3a:16:de:90:df:94:c9:ce:53:5b:a5:1d:6f: c5:ed:cd:e3:a0:36:8b:88:b9:9e:5d:18:12:83:c9: ec:53:cd:99:1b:e9:58:09:60:6a:2a:87:f6:f1:5c: 71:a7:71:23:78:cc:c0:5e:3a:a2:cc:f3:a8:ca:d7: c2:f4:30:5c:61:1f:f6:19:75:53:6b:a7:56:bd:90: 8a:0d:66:db:26:3d:e8:fc:59:50:f6:01:b4:25:5d: 3b:84:be:ac:29:63:ec:99:9d:36:97:36:bd:74:72: 07:59:1b:77:8f:e6:ad:b7:6f:5e:2b:dc:98:45:20: e5:6a:47:57:5a:58:c9:2c:e1:4e:75:f9:46:56:af: 29:15:50:ff:8e:23:7c:c2:ed:ce:a4:44:c5:73:39: 38:ed:0e:dc:c5:14:c9:37:d5:df:27:50:ac:3b:6c: 39:6e:eb:12:73:fb:a7:c4:4d:31:b0:93:6d:fe:ae: d1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F0:65:B9:A1:2D:F9:62:E2:5A:77:EE:80:22:1E:73:B7:5B:44:F3 X509v3 Authority Key Identifier: keyid:B1:F0:A7:58:5E:D1:88:27:83:C6:AF:80:2B:82:66:07:AB:B9:26:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/B1F0A7585ED1882783C6AF802B826607ABB92671.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B1F0A7585ED1882783C6AF802B826607ABB92671.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.37.0/24 Signature Algorithm: sha256WithRSAEncryption 90:1f:34:0a:ab:f5:9e:45:4d:fe:a9:5c:6f:84:29:77:e8:06: 5d:67:9c:f9:04:df:ec:38:4a:af:ae:61:64:8a:db:bc:96:85: 81:e6:e0:2b:f3:e3:a1:1f:5a:4d:bd:27:ef:2f:d6:b4:86:8d: d3:68:67:75:1a:e4:09:3a:43:a1:a3:66:23:db:05:c1:a6:e8: f8:11:c2:81:74:73:4b:21:b9:e6:1c:16:4e:bf:60:d6:00:27: 38:c1:9e:04:c6:49:6a:58:1f:15:44:1b:45:af:40:69:9f:c9: 70:53:0c:87:06:66:d4:d9:7a:f8:2b:83:7e:19:76:18:10:b4: d8:5d:72:66:7f:9b:ca:9b:23:5d:85:62:8d:aa:02:ec:eb:ab: ac:e0:69:e5:5b:74:aa:d0:7c:42:6c:f4:aa:fc:78:3a:53:7d: 46:e3:48:7b:39:c2:3e:3e:3d:ca:0a:ae:f6:d8:e1:8f:96:4b: b5:34:3a:80:43:47:13:c6:2d:e4:e1:a3:bd:d5:ae:04:8c:6a: d6:5c:a7:90:cf:f3:c2:b9:37:46:5b:5d:89:cd:21:d0:ca:b0: 52:a0:81:bc:b3:2e:20:5e:ec:56:f5:fe:e4:b8:68:54:f4:3f: 3a:6d:b6:b0:f8:61:7b:47:01:3f:28:77:56:fb:b4:1d:dd:16: a9:2f:11:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP6C47brI7a3IAXRIekXtIvqRRZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFGMEE3NTg1RUQxODgyNzgzQzZBRjgwMkI4MjY2MDdB QkI5MjY3MTAeFw0yNTA5MDgwMjU1MDBaFw0yNjA5MDcwMzAwMDBaMDMxMTAvBgNV BAMTKEJBRjA2NUI5QTEyREY5NjJFMjVBNzdFRTgwMjIxRTczQjc1QjQ0RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+OtvbKE63vAOQGkDxxbfgm3xP aVoPqffUySWc+S4dWCeAaktt9v6PN8osYJl1Dhm2i4oPrKKS1Fehu/1L1DMkZMk9 7PO2EnB3pZuoOhbekN+Uyc5TW6Udb8XtzeOgNouIuZ5dGBKDyexTzZkb6VgJYGoq h/bxXHGncSN4zMBeOqLM86jK18L0MFxhH/YZdVNrp1a9kIoNZtsmPej8WVD2AbQl XTuEvqwpY+yZnTaXNr10cgdZG3eP5q23b14r3JhFIOVqR1daWMks4U51+UZWrykV UP+OI3zC7c6kRMVzOTjtDtzFFMk31d8nUKw7bDlu6xJz+6fETTGwk23+rtEVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuvBluaEt+WLiWnfugCIec7dbRPMwHwYDVR0j BBgwFoAUsfCnWF7RiCeDxq+AK4JmB6u5JnEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODkxMzg5My01ZjY0LTRhNWUtYThkMi01ZDUxZWJkZTQ3M2YvMC9CMUYwQTc1ODVF RDE4ODI3ODNDNkFGODAyQjgyNjYwN0FCQjkyNjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjFGMEE3NTg1RUQxODgyNzgzQzZBRjgwMkI4MjY2MDdBQkI5 MjY3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4OTEzODkzLTVmNjQtNGE1ZS1h OGQyLTVkNTFlYmRlNDczZi8wLzMxMzYzMDJlMzEzODM3MmUzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoLslMA0GCSqG SIb3DQEBCwUAA4IBAQCQHzQKq/WeRU3+qVxvhCl36AZdZ5z5BN/sOEqvrmFkitu8 loWB5uAr8+OhH1pNvSfvL9a0ho3TaGd1GuQJOkOho2Yj2wXBpuj4EcKBdHNLIbnm HBZOv2DWACc4wZ4ExklqWB8VRBtFr0Bpn8lwUwyHBmbU2Xr4K4N+GXYYELTYXXJm f5vKmyNdhWKNqgLs66us4GnlW3Sq0HxCbPSq/Hg6U31G40h7OcI+Pj3KCq722OGP lku1NDqAQ0cTxi3k4aO91a4EjGrWXKeQz/PCuTdGW12JzSHQyrBSoIG8sy4gXuxW 9f7kuGhU9D86bbaw+GF7RwE/KHdW+7Qd3RapLxEb -----END CERTIFICATE-----Generated at Mon Oct 20 21:15:05 2025 by rpki-client