$ rpki-client -vvf repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3234203d3e20313533303831.roa File: 3136302e32352e35302e302f32332d3234203d3e20313533303831.roa (raw, json) Hash identifier: Jp+xzrLLFcNcdbgFIyqYkAF5UwOiimjyD2ApcObjIzI= Subject key identifier: 0C:1F:30:0B:2B:D0:3D:27:57:0A:C0:47:CD:9B:40:FB:26:3C:5D:26 Certificate issuer: /CN=295131167768CC78482F796BB58CF5A01A014393 Certificate serial: 4CD24712AAF2ACBE9239DA9B5197F28931EEFA8A Authority key identifier: 29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3234203d3e20313533303831.roa Signing time: Thu 26 Jun 2025 09:00:00 +0000 ROA not before: Thu 26 Jun 2025 08:55:00 +0000 ROA not after: Thu 25 Jun 2026 09:00:00 +0000 asID: 153081 IP address blocks: 160.25.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d2:47:12:aa:f2:ac:be:92:39:da:9b:51:97:f2:89:31:ee:fa:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295131167768CC78482F796BB58CF5A01A014393 Validity Not Before: Jun 26 08:55:00 2025 GMT Not After : Jun 25 09:00:00 2026 GMT Subject: CN=0C1F300B2BD03D27570AC047CD9B40FB263C5D26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:41:57:ec:34:47:7d:d7:fb:0d:90:33:d4:1b: f5:d4:9b:ab:b9:76:3f:ea:eb:21:95:c3:f7:48:f1: 03:fb:a2:00:cb:ce:46:83:74:d3:12:62:6b:3e:94: 92:5a:11:90:75:30:d6:57:c2:19:c4:ac:42:74:4f: 8a:55:57:59:a2:e6:6b:d9:83:08:ce:a3:4b:cb:00: e2:d2:3d:f8:52:65:73:d2:df:bc:4a:6e:e5:57:dc: 67:cf:7e:7c:13:44:3f:0d:03:07:b3:5f:87:e1:e9: d2:d3:6f:8b:5f:9e:c9:d0:ab:e1:75:59:de:1c:b2: b5:94:7c:8a:c2:68:b8:3c:6a:91:8f:8f:52:f5:e4: 7e:9e:57:3c:a9:43:1d:f1:54:07:5c:c5:c3:59:db: 4d:1b:58:0f:6a:92:26:b2:5c:4e:1b:d7:63:c4:3d: a0:bd:54:fe:5a:c2:ee:c7:81:30:a4:06:71:db:54: 47:2a:4c:23:5f:e7:96:df:1b:e7:18:40:5b:72:04: 69:ac:3e:35:cc:1a:17:dd:43:23:ec:76:0c:49:98: cc:af:6f:66:74:ef:55:d4:99:14:cb:59:af:78:73: 40:94:00:58:aa:7e:46:0e:1c:18:6e:5e:eb:c6:18: ab:77:60:07:a0:1a:16:bb:90:06:d8:a6:7a:3f:2f: 72:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1F:30:0B:2B:D0:3D:27:57:0A:C0:47:CD:9B:40:FB:26:3C:5D:26 X509v3 Authority Key Identifier: keyid:29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32332d3234203d3e20313533303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.50.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:b9:51:b0:7f:35:f5:c5:b1:80:0e:11:42:74:eb:d6:0f:cd: 41:66:60:a8:25:51:8c:22:50:ce:a6:ca:d3:18:50:c3:c7:bb: de:8d:fe:10:c0:f0:6b:4d:0a:7f:a7:b0:78:11:f4:0a:8d:e4: 80:51:8f:8d:89:1a:9f:0f:61:b3:4e:dd:39:1b:83:d6:43:06: 47:22:0f:11:eb:4f:74:64:7a:a1:b8:1b:6b:eb:63:32:48:b0: e4:62:e8:2a:88:d9:42:a5:43:9a:fc:6c:06:9f:3c:39:a2:6f: 65:6a:75:cd:1e:15:bf:76:61:d5:04:04:66:b8:5c:db:ad:fb: 58:cb:94:aa:94:52:3c:40:b7:85:b9:0b:7a:ce:35:3d:d9:4f: 99:c7:33:86:06:c1:f4:e1:e5:55:86:00:c9:72:48:c1:f8:99: 06:bb:29:3a:1f:de:b7:ca:87:b0:95:50:38:e5:4f:c1:f9:61: 34:3b:e7:f3:24:47:40:9d:0b:bc:4b:a7:7d:9b:21:e1:e1:ef: 5c:4f:bf:27:92:a1:7b:6f:59:87:97:48:6b:ed:0e:7c:58:c9: aa:92:e4:45:50:9a:8d:f6:1e:96:2d:92:44:66:1e:2f:1d:11: 3a:1c:7e:b3:8b:c3:ad:00:2d:a5:fb:13:1c:90:97:f7:2b:3c: 98:81:a6:19 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTNJHEqryrL6SOdqbUZfyiTHu+oowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAx QTAxNDM5MzAeFw0yNTA2MjYwODU1MDBaFw0yNjA2MjUwOTAwMDBaMDMxMTAvBgNV BAMTKDBDMUYzMDBCMkJEMDNEMjc1NzBBQzA0N0NEOUI0MEZCMjYzQzVEMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFQVfsNEd91/sNkDPUG/XUm6u5 dj/q6yGVw/dI8QP7ogDLzkaDdNMSYms+lJJaEZB1MNZXwhnErEJ0T4pVV1mi5mvZ gwjOo0vLAOLSPfhSZXPS37xKbuVX3GfPfnwTRD8NAwezX4fh6dLTb4tfnsnQq+F1 Wd4csrWUfIrCaLg8apGPj1L15H6eVzypQx3xVAdcxcNZ200bWA9qkiayXE4b12PE PaC9VP5awu7HgTCkBnHbVEcqTCNf55bfG+cYQFtyBGmsPjXMGhfdQyPsdgxJmMyv b2Z071XUmRTLWa94c0CUAFiqfkYOHBhuXuvGGKt3YAegGha7kAbYpno/L3JnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDB8wCyvQPSdXCsBHzZtA+yY8XSYwHwYDVR0j BBgwFoAUKVExFndozHhIL3lrtYz1oBoBQ5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWVjYTUwYi01NzIyLTQ5MTgtODMxNC04NTlkM2MxZjU1YTIvMC8yOTUxMzExNjc3 NjhDQzc4NDgyRjc5NkJCNThDRjVBMDFBMDE0MzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAxQTAx NDM5My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZWNhNTBiLTU3MjItNDkxOC04 MzE0LTg1OWQzYzFmNTVhMi8wLzMxMzYzMDJlMzIzNTJlMzUzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZMjANBgkqhkiG 9w0BAQsFAAOCAQEALLlRsH819cWxgA4RQnTr1g/NQWZgqCVRjCJQzqbK0xhQw8e7 3o3+EMDwa00Kf6eweBH0Co3kgFGPjYkanw9hs07dORuD1kMGRyIPEetPdGR6obgb a+tjMkiw5GLoKojZQqVDmvxsBp88OaJvZWp1zR4Vv3Zh1QQEZrhc2637WMuUqpRS PEC3hbkLes41PdlPmcczhgbB9OHlVYYAyXJIwfiZBrspOh/et8qHsJVQOOVPwflh NDvn8yRHQJ0LvEunfZsh4eHvXE+/J5Khe29Zh5dIa+0OfFjJqpLkRVCajfYeli2S RGYeLx0ROhx+s4vDrQAtpfsTHJCX9ys8mIGmGQ== -----END CERTIFICATE-----Generated at Mon Oct 20 20:32:23 2025 by rpki-client