$ rpki-client -vvf repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235312e302f32342d3234203d3e20313533303938.roa File: 3136302e32352e3235312e302f32342d3234203d3e20313533303938.roa (raw, json) Hash identifier: +X50gpeSdWT/Y5d22C2/uBOgo8Xzo2+UIRSSAuVLkyI= Subject key identifier: 83:C3:88:A7:D4:6D:58:4D:CD:ED:0C:90:2D:CC:01:E3:C8:C3:0C:E8 Certificate issuer: /CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Certificate serial: 6CA57FA7FA1F545F2955F08BCD2C10D4E19E157B Authority key identifier: FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235312e302f32342d3234203d3e20313533303938.roa Signing time: Mon 11 Aug 2025 07:00:37 +0000 ROA not before: Mon 11 Aug 2025 06:55:37 +0000 ROA not after: Mon 10 Aug 2026 07:00:37 +0000 asID: 153098 IP address blocks: 160.25.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 15:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a5:7f:a7:fa:1f:54:5f:29:55:f0:8b:cd:2c:10:d4:e1:9e:15:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBC39A6E177F8DD7BA5E257D4489C57574C07E81 Validity Not Before: Aug 11 06:55:37 2025 GMT Not After : Aug 10 07:00:37 2026 GMT Subject: CN=83C388A7D46D584DCDED0C902DCC01E3C8C30CE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ed:f1:d8:c9:a4:02:c9:26:d0:47:5a:90:81: e1:eb:d9:c5:68:7e:a7:5b:01:0a:cf:38:21:43:92: d4:bd:ec:6f:ef:10:8b:fc:aa:38:26:60:65:4a:ad: 71:7a:8f:4d:0c:c9:10:70:b3:3e:be:a1:79:99:d2: 11:c6:d2:45:66:97:3a:ca:48:5b:c7:0a:72:b7:4e: fd:10:0f:5c:d0:30:d4:6a:af:d5:5c:61:66:a1:af: 0b:6f:b0:da:42:38:7a:cd:dd:3a:74:0d:50:35:78: 2c:82:f2:1b:2c:c7:79:36:60:7b:43:2a:50:e5:38: 24:dc:15:1f:a5:09:9e:bc:42:30:f2:74:6e:d5:04: ee:68:24:97:c6:70:d1:e5:a5:28:50:04:05:0a:80: 51:d0:81:39:ac:69:8a:6b:30:8f:13:91:8c:e3:9d: cd:08:21:41:c4:48:c2:17:05:ac:b3:51:6f:64:d0: 2a:f7:62:b6:87:8f:f9:2e:94:c5:08:04:f9:59:23: 07:56:64:3e:c4:01:fa:b2:23:21:72:ed:1c:e8:a7: c2:34:07:3a:c9:11:2e:bb:58:c1:da:98:80:8e:06: 11:72:26:3e:ba:4e:77:43:e4:0e:65:bd:eb:b5:97: 7c:b3:32:52:ba:13:7d:c3:63:bc:56:6e:10:c1:be: 68:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C3:88:A7:D4:6D:58:4D:CD:ED:0C:90:2D:CC:01:E3:C8:C3:0C:E8 X509v3 Authority Key Identifier: keyid:FB:C3:9A:6E:17:7F:8D:D7:BA:5E:25:7D:44:89:C5:75:74:C0:7E:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FBC39A6E177F8DD7BA5E257D4489C57574C07E81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47ad0a3a-26b8-449a-88ec-bf0398ea53a6/0/3136302e32352e3235312e302f32342d3234203d3e20313533303938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.251.0/24 Signature Algorithm: sha256WithRSAEncryption 34:0d:84:c6:af:33:d0:9d:3e:78:04:5c:17:c2:08:9e:43:20: 57:0b:e5:a5:c0:4d:e2:39:cb:c3:eb:3a:b0:02:51:95:05:f2: a0:4b:d2:90:4e:79:d1:78:4b:61:5e:62:19:30:90:2f:ff:31: df:55:29:93:80:28:8c:50:43:03:ec:32:0c:6b:a3:ba:d3:76: 56:35:c2:e0:25:ce:bb:f4:12:46:8a:d1:ed:c0:06:98:df:90: e7:04:b7:8b:1d:6d:ce:f5:02:05:fa:7f:03:73:14:e5:07:a5: 43:7b:6c:b0:61:0f:fb:1b:77:a3:8a:cb:86:09:c3:c7:17:d8: 7b:9f:c7:89:8d:35:d1:ce:89:9a:73:7c:bb:7a:b3:46:e2:47: e7:3a:de:c3:28:a6:ee:b4:71:9e:da:5c:fb:ab:7d:c6:0b:50: 2e:b9:f7:d7:cd:e4:7f:e4:39:ce:bc:31:c9:bd:ff:1e:d3:2f: 71:93:c3:71:6c:73:ce:42:1d:30:85:19:e0:a4:20:17:49:1d: 83:aa:43:a6:c6:74:9e:c9:51:d8:7d:a7:31:9b:eb:c8:5d:a9: 99:f2:1c:9c:41:41:c4:6a:63:1e:cd:bd:51:a5:8c:50:e1:81: 66:04:ff:79:19:99:30:5f:bc:e2:c4:1e:68:e6:43:70:80:af: 67:d7:0f:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbKV/p/ofVF8pVfCLzSwQ1OGeFXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3 NEMwN0U4MTAeFw0yNTA4MTEwNjU1MzdaFw0yNjA4MTAwNzAwMzdaMDMxMTAvBgNV BAMTKDgzQzM4OEE3RDQ2RDU4NERDREVEMEM5MDJEQ0MwMUUzQzhDMzBDRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC07fHYyaQCySbQR1qQgeHr2cVo fqdbAQrPOCFDktS97G/vEIv8qjgmYGVKrXF6j00MyRBwsz6+oXmZ0hHG0kVmlzrK SFvHCnK3Tv0QD1zQMNRqr9VcYWahrwtvsNpCOHrN3Tp0DVA1eCyC8hssx3k2YHtD KlDlOCTcFR+lCZ68QjDydG7VBO5oJJfGcNHlpShQBAUKgFHQgTmsaYprMI8TkYzj nc0IIUHESMIXBayzUW9k0Cr3YraHj/kulMUIBPlZIwdWZD7EAfqyIyFy7Rzop8I0 BzrJES67WMHamICOBhFyJj66TndD5A5lveu1l3yzMlK6E33DY7xWbhDBvmixAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUg8OIp9RtWE3N7QyQLcwB48jDDOgwHwYDVR0j BBgwFoAU+8Oabhd/jde6XiV9RInFdXTAfoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 N2FkMGEzYS0yNmI4LTQ0OWEtODhlYy1iZjAzOThlYTUzYTYvMC9GQkMzOUE2RTE3 N0Y4REQ3QkE1RTI1N0Q0NDg5QzU3NTc0QzA3RTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkJDMzlBNkUxNzdGOEREN0JBNUUyNTdENDQ4OUM1NzU3NEMw N0U4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3YWQwYTNhLTI2YjgtNDQ5YS04 OGVjLWJmMDM5OGVhNTNhNi8wLzMxMzYzMDJlMzIzNTJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn7MA0GCSqG SIb3DQEBCwUAA4IBAQA0DYTGrzPQnT54BFwXwgieQyBXC+WlwE3iOcvD6zqwAlGV BfKgS9KQTnnReEthXmIZMJAv/zHfVSmTgCiMUEMD7DIMa6O603ZWNcLgJc679BJG itHtwAaY35DnBLeLHW3O9QIF+n8DcxTlB6VDe2ywYQ/7G3ejisuGCcPHF9h7n8eJ jTXRzomac3y7erNG4kfnOt7DKKbutHGe2lz7q33GC1AuuffXzeR/5DnOvDHJvf8e 0y9xk8NxbHPOQh0whRngpCAXSR2DqkOmxnSeyVHYfacxm+vIXamZ8hycQUHEamMe zb1RpYxQ4YFmBP95GZkwX7zixB5o5kNwgK9n1w+E -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:49 2025 by rpki-client