$ rpki-client -vvf repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa File: 3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa (raw, json) Hash identifier: MrtKeNjFNhl14mhfxKI/GhEb/0ohG0B8bmQ7SLXWttE= Subject key identifier: EF:06:C2:8A:1E:F7:E3:2B:2F:4E:29:DC:5F:82:AF:A5:37:D7:70:1D Certificate issuer: /CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Certificate serial: 5A4B815A27B7302F4C7913D632246CE350E09927 Authority key identifier: FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa Signing time: Mon 11 Aug 2025 07:00:37 +0000 ROA not before: Mon 11 Aug 2025 06:55:37 +0000 ROA not after: Mon 10 Aug 2026 07:00:37 +0000 asID: 153098 IP address blocks: 160.25.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 15:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4b:81:5a:27:b7:30:2f:4c:79:13:d6:32:24:6c:e3:50:e0:99:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Validity Not Before: Aug 11 06:55:37 2025 GMT Not After : Aug 10 07:00:37 2026 GMT Subject: CN=EF06C28A1EF7E32B2F4E29DC5F82AFA537D7701D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:14:66:53:49:b4:a9:3e:20:b7:7d:26:4c:ca: 0e:59:a1:38:fd:0b:2a:81:65:46:4c:56:f3:15:19: 09:da:41:f9:e0:ea:6e:94:bb:78:4f:e4:49:62:23: 27:f7:3a:7a:fb:83:30:50:42:f6:2c:74:3f:df:26: 35:5f:a2:ac:fd:db:7f:ee:e7:76:4f:51:d7:b4:3e: 79:4c:df:22:50:c6:df:f4:ac:32:62:aa:24:8f:33: 01:ea:f0:c1:42:94:4a:b8:1b:22:20:c5:89:98:6c: a4:17:d8:6e:2f:4b:21:d9:40:09:1c:6a:43:d6:8c: 4d:31:3f:b3:2b:89:4b:84:56:60:c1:85:4a:50:2e: 97:34:80:81:b4:4b:f4:11:08:51:59:3b:08:c7:75: 35:b4:78:b9:94:19:ac:32:61:4d:4a:bf:69:cc:7b: ec:13:55:8b:38:5b:5a:00:9d:78:5c:ce:a8:1f:5b: a2:51:3d:05:93:26:d0:80:69:4d:ce:d1:3a:db:70: f5:5b:e4:8c:71:22:b9:cf:8b:ff:fc:44:c8:84:16: 82:da:7d:10:09:f5:77:d4:8f:f2:a5:2b:1b:07:3e: 47:6d:a7:0b:43:2c:35:7b:dd:13:0b:b7:e5:35:10: 00:df:99:c8:72:33:92:61:c1:29:6d:7d:7d:69:56: 3d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:06:C2:8A:1E:F7:E3:2B:2F:4E:29:DC:5F:82:AF:A5:37:D7:70:1D X509v3 Authority Key Identifier: keyid:FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235302e302f32342d3234203d3e20313533303938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.250.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:a7:b7:9c:a1:92:cd:da:6a:d0:fe:f0:6c:43:bc:31:d3:b9: cf:48:7c:22:1b:88:a2:43:d8:b3:1d:01:19:a3:42:d6:37:13: 73:a3:9b:64:f8:6f:6d:1b:90:6f:68:2c:d6:6a:7b:b0:60:63: 97:46:94:2b:f8:0b:7e:c3:34:5c:1e:84:00:28:54:75:9d:f1: 0a:e8:72:20:31:47:d0:09:84:36:da:ba:31:7d:ce:22:23:73: 9e:76:24:8e:ae:14:3b:25:df:03:77:10:ad:b9:a0:63:3b:9a: 7c:3b:28:0a:e2:15:52:7f:da:92:de:c2:f3:d5:a8:d1:53:23: 08:26:55:a0:cc:85:e1:db:46:27:c2:fd:89:2d:04:b0:a4:87: 2b:41:15:be:23:73:4b:cb:79:62:fe:f6:b3:d4:e5:e9:a9:a6: 55:ce:5b:45:ff:f5:99:7f:78:8a:58:03:4c:32:73:c0:3a:e9: 50:f3:1c:93:02:16:d0:fd:79:e8:e9:6e:b7:25:f7:97:c4:ac: 90:d7:eb:45:96:ef:04:ca:63:0d:3d:44:0a:5a:33:72:a4:31: 08:b2:eb:ab:de:a4:05:6e:0b:89:e1:e4:b1:0c:ad:50:9f:60: de:4d:94:45:8a:14:ad:c4:48:1a:17:32:8f:c9:7f:dc:7d:dc: 5b:bd:26:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWkuBWie3MC9MeRPWMiRs41DgmScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3 NEMwN0U4MTAeFw0yNTA4MTEwNjU1MzdaFw0yNjA4MTAwNzAwMzdaMDMxMTAvBgNV BAMTKEVGMDZDMjhBMUVGN0UzMkIyRjRFMjlEQzVGODJBRkE1MzdENzcwMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTFGZTSbSpPiC3fSZMyg5ZoTj9 CyqBZUZMVvMVGQnaQfng6m6Uu3hP5EliIyf3Onr7gzBQQvYsdD/fJjVfoqz923/u 53ZPUde0PnlM3yJQxt/0rDJiqiSPMwHq8MFClEq4GyIgxYmYbKQX2G4vSyHZQAkc akPWjE0xP7MriUuEVmDBhUpQLpc0gIG0S/QRCFFZOwjHdTW0eLmUGawyYU1Kv2nM e+wTVYs4W1oAnXhczqgfW6JRPQWTJtCAaU3O0TrbcPVb5IxxIrnPi//8RMiEFoLa fRAJ9XfUj/KlKxsHPkdtpwtDLDV73RMLt+U1EADfmchyM5JhwSltfX1pVj3VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7wbCih734ysvTincX4KvpTfXcB0wHwYDVR0j BBgwFoAU+8Oabhd/jde6XiV9RInFdXTAfoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 N2FkMGEzYS0yNmI4LTQ0OWEtODhlYy1iZjAzOThlYTUzYTYvMC9GQkMzOUE2RTE3 N0Y4REQ3QkE1RTI1N0Q0NDg5QzU3NTc0QzA3RTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3NEMw N0U4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3YWQwYTNhLTI2YjgtNDQ5YS04 OGVjLWJmMDM5OGVhNTNhNi8wLzMxMzYzMDJlMzIzNTJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn6MA0GCSqG SIb3DQEBCwUAA4IBAQA8p7ecoZLN2mrQ/vBsQ7wx07nPSHwiG4iiQ9izHQEZo0LW NxNzo5tk+G9tG5BvaCzWanuwYGOXRpQr+At+wzRcHoQAKFR1nfEK6HIgMUfQCYQ2 2roxfc4iI3OediSOrhQ7Jd8DdxCtuaBjO5p8OygK4hVSf9qS3sLz1ajRUyMIJlWg zIXh20Ynwv2JLQSwpIcrQRW+I3NLy3li/vaz1OXpqaZVzltF//WZf3iKWANMMnPA OulQ8xyTAhbQ/Xno6W63JfeXxKyQ1+tFlu8EymMNPUQKWjNypDEIsuur3qQFbguJ 4eSxDK1Qn2DeTZRFihStxEgaFzKPyX/cfdxbvSbu -----END CERTIFICATE-----Generated at Sun Aug 24 07:22:18 2025 by rpki-client