$ rpki-client -vvf repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa File: 3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa (raw, json) Hash identifier: 8n7ggoSZj8jJnFz6/yug05Kf9QPxel8FaCv3JxdKJhk= Subject key identifier: 77:9F:1B:09:8E:94:BC:0A:CA:E8:92:1B:F5:E5:A7:E6:D3:A5:E6:42 Certificate issuer: /CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Certificate serial: 1FF45B613E537C9DC1DFE4843394FC7FBAB2DEFD Authority key identifier: 2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa Signing time: Thu 21 Aug 2025 04:00:00 +0000 ROA not before: Thu 21 Aug 2025 03:55:00 +0000 ROA not after: Thu 20 Aug 2026 04:00:00 +0000 asID: 153086 IP address blocks: 160.25.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f4:5b:61:3e:53:7c:9d:c1:df:e4:84:33:94:fc:7f:ba:b2:de:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Validity Not Before: Aug 21 03:55:00 2025 GMT Not After : Aug 20 04:00:00 2026 GMT Subject: CN=779F1B098E94BC0ACAE8921BF5E5A7E6D3A5E642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4c:3c:53:ac:b1:b3:d7:9d:a6:b3:75:a6:a2: 01:95:ef:82:1a:8d:5e:44:35:7a:08:d4:20:ec:12: da:98:cd:bf:d6:73:60:b9:f5:df:6c:00:83:04:98: 69:4f:09:c9:27:41:8e:52:95:e4:10:80:30:03:89: 3c:dc:7b:6d:83:d4:08:28:c0:17:65:25:0e:e4:1f: 7b:8e:b0:29:65:ee:5e:dd:9f:f4:23:c2:74:83:20: 2a:cc:a3:b8:11:b7:27:68:dd:15:f2:6e:95:76:63: bd:84:38:81:c1:43:21:4f:d2:cf:48:df:98:14:d6: 77:7c:ae:0e:6e:c9:1b:90:0a:b2:63:8d:be:1d:d0: 9c:63:38:e1:30:62:e8:53:be:65:a1:01:ce:e9:2d: 59:5a:3c:2d:a9:c4:ee:f5:82:e3:3a:ab:49:56:33: f5:eb:fa:0f:03:59:8c:0a:f9:85:02:36:b7:9a:b7: 19:04:06:de:05:d0:7e:10:2d:82:b1:59:1b:8e:53: 36:cc:d7:85:29:19:41:c4:ff:a7:9d:29:76:4c:b7: 5d:ae:7b:89:40:a0:18:4c:49:73:da:34:14:a2:79: c2:34:a6:9d:05:a4:96:93:a2:9e:80:b3:4e:4a:3e: fc:ef:86:fb:49:d2:58:a1:73:d3:d8:f2:42:6f:ea: 84:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9F:1B:09:8E:94:BC:0A:CA:E8:92:1B:F5:E5:A7:E6:D3:A5:E6:42 X509v3 Authority Key Identifier: keyid:2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.218.0/24 Signature Algorithm: sha256WithRSAEncryption 68:49:d6:f5:8c:1c:3f:28:75:65:5a:dc:08:8c:f2:13:c8:fa: 7a:61:47:30:fd:0e:ae:1c:82:f1:ff:f8:a2:3a:d5:cf:88:62: ec:57:24:a4:b3:b7:ff:8a:05:05:f5:01:88:6b:3c:93:56:23: 9a:2c:18:0a:89:77:dc:7b:0f:39:94:d5:76:dc:ac:13:71:4c: 53:d9:b1:d9:62:7d:bf:2a:9e:38:c6:43:76:fb:ce:bc:c5:e0: dd:03:46:4a:05:a0:e6:51:e7:fa:3b:5c:99:dd:34:66:2d:b5: c7:8b:c7:ca:a7:d9:d7:bc:ed:f4:be:10:ec:3c:31:b1:db:1b: 3c:2f:5a:92:56:ae:50:1c:e1:a9:4e:16:07:57:13:5c:b8:b4: 2c:0a:0e:f4:28:d2:f7:ce:1f:b8:4c:78:9b:74:14:cc:12:4f: 8f:0b:60:30:69:7c:94:90:15:9f:1e:ee:ba:95:13:75:fa:61: b4:ea:e2:1e:b3:21:b3:f7:d9:85:34:1a:50:a3:15:8b:8f:5d: d3:7a:a7:e7:98:31:b3:e0:fa:2f:9d:2d:42:04:97:ad:f6:9f: a7:f3:3c:43:15:e2:3e:6a:d4:2b:03:aa:d9:c6:07:23:09:b8: e1:1f:21:16:dc:47:21:f9:19:df:0b:c0:49:f5:ba:b7:16:d8: 41:40:d2:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH/RbYT5TfJ3B3+SEM5T8f7qy3v0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRG ODYxMzg1QjAeFw0yNTA4MjEwMzU1MDBaFw0yNjA4MjAwNDAwMDBaMDMxMTAvBgNV BAMTKDc3OUYxQjA5OEU5NEJDMEFDQUU4OTIxQkY1RTVBN0U2RDNBNUU2NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6TDxTrLGz152ms3WmogGV74Ia jV5ENXoI1CDsEtqYzb/Wc2C59d9sAIMEmGlPCcknQY5SleQQgDADiTzce22D1Ago wBdlJQ7kH3uOsCll7l7dn/QjwnSDICrMo7gRtydo3RXybpV2Y72EOIHBQyFP0s9I 35gU1nd8rg5uyRuQCrJjjb4d0JxjOOEwYuhTvmWhAc7pLVlaPC2pxO71guM6q0lW M/Xr+g8DWYwK+YUCNreatxkEBt4F0H4QLYKxWRuOUzbM14UpGUHE/6edKXZMt12u e4lAoBhMSXPaNBSiecI0pp0FpJaTop6As05KPvzvhvtJ0lihc9PY8kJv6oSDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd58bCY6UvArK6JIb9eWn5tOl5kIwHwYDVR0j BBgwFoAULMyFv2zNNlcB76de5BbSNPhhOFswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWYwN2YxOC01YzQ5LTQxMjktYWE1My03MDg1Y2NkNTdiNjMvMC8yQ0NDODVCRjZD Q0QzNjU3MDFFRkE3NUVFNDE2RDIzNEY4NjEzODVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRGODYx Mzg1Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZjA3ZjE4LTVjNDktNDEyOS1h YTUzLTcwODVjY2Q1N2I2My8wLzMxMzYzMDJlMzIzNTJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnaMA0GCSqG SIb3DQEBCwUAA4IBAQBoSdb1jBw/KHVlWtwIjPITyPp6YUcw/Q6uHILx//iiOtXP iGLsVySks7f/igUF9QGIazyTViOaLBgKiXfcew85lNV23KwTcUxT2bHZYn2/Kp44 xkN2+868xeDdA0ZKBaDmUef6O1yZ3TRmLbXHi8fKp9nXvO30vhDsPDGx2xs8L1qS Vq5QHOGpThYHVxNcuLQsCg70KNL3zh+4THibdBTMEk+PC2AwaXyUkBWfHu66lRN1 +mG06uIesyGz99mFNBpQoxWLj13TeqfnmDGz4PovnS1CBJet9p+n8zxDFeI+atQr A6rZxgcjCbjhHyEW3Ech+RnfC8BJ9bq3FthBQNI7 -----END CERTIFICATE-----Generated at Sun Aug 24 06:25:03 2025 by rpki-client