$ rpki-client -vvf repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32342d3234203d3e20313533303831.roa File: 3136302e32352e35302e302f32342d3234203d3e20313533303831.roa (raw, json) Hash identifier: AX0lDEH6VgInN8VNyEQZ1Bf7VJ5RuPZOiclQbBxraVk= Subject key identifier: 60:5E:33:46:26:8D:15:D0:12:2D:2F:8B:41:B6:7E:C3:B4:A4:55:1C Certificate issuer: /CN=295131167768CC78482F796BB58CF5A01A014393 Certificate serial: 08659B1B33557B6C812C947604F89D815005E6DF Authority key identifier: 29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32342d3234203d3e20313533303831.roa Signing time: Thu 26 Jun 2025 09:00:00 +0000 ROA not before: Thu 26 Jun 2025 08:55:00 +0000 ROA not after: Thu 25 Jun 2026 09:00:00 +0000 asID: 153081 IP address blocks: 160.25.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:65:9b:1b:33:55:7b:6c:81:2c:94:76:04:f8:9d:81:50:05:e6:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295131167768CC78482F796BB58CF5A01A014393 Validity Not Before: Jun 26 08:55:00 2025 GMT Not After : Jun 25 09:00:00 2026 GMT Subject: CN=605E3346268D15D0122D2F8B41B67EC3B4A4551C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:03:1f:36:d1:0f:b7:9b:4b:67:28:4b:88:8d: 56:3c:00:59:ad:f2:9c:05:05:bf:ae:2c:dc:3f:9f: c6:6f:98:fe:10:41:06:24:70:1f:71:ec:ae:e0:b1: f6:f8:0e:d7:94:64:5d:69:c6:21:2b:59:d7:4a:96: 58:b8:b4:ad:aa:61:21:f6:f0:02:d6:9d:56:91:56: 61:1b:1e:48:c9:f1:43:f0:a6:56:9a:f4:d0:4a:40: 28:24:90:87:b6:8a:82:f7:f3:e2:bf:e8:e0:29:da: 5d:df:ce:ae:03:35:a5:6c:7c:a5:f6:08:b6:77:d4: a4:07:5a:1b:34:e9:27:ad:13:b4:7f:04:21:5c:b2: 17:2d:bc:23:d5:95:54:d5:35:b8:ff:ea:79:95:ee: 80:21:77:f8:24:db:95:37:75:14:04:db:30:25:b7: 0a:3c:be:df:f7:53:79:44:55:33:85:4c:7a:b5:52: 94:4c:14:26:6b:70:27:1d:9b:1d:59:4d:84:2f:88: e1:0e:cc:50:07:e9:4e:ea:72:a0:65:0b:0f:fe:d4: 95:05:e3:b5:71:90:4f:97:fe:d0:3b:81:4f:b1:3a: 7d:31:72:73:03:3f:99:b5:9e:51:95:48:c0:fa:f6: ab:5b:48:cd:fe:30:37:7c:7b:d3:b9:dc:6d:51:12: 81:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5E:33:46:26:8D:15:D0:12:2D:2F:8B:41:B6:7E:C3:B4:A4:55:1C X509v3 Authority Key Identifier: keyid:29:51:31:16:77:68:CC:78:48:2F:79:6B:B5:8C:F5:A0:1A:01:43:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/295131167768CC78482F796BB58CF5A01A014393.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/295131167768CC78482F796BB58CF5A01A014393.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35302e302f32342d3234203d3e20313533303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.50.0/24 Signature Algorithm: sha256WithRSAEncryption 01:e5:84:34:ae:9f:af:93:55:02:d3:e9:f7:9f:da:eb:ee:2f: 78:25:65:d1:df:9b:ca:ee:83:ef:7c:ff:3f:f3:de:8a:3b:00: db:01:11:3e:3f:5c:b1:22:60:cb:02:42:72:aa:0d:1f:f6:f1: 0d:b0:78:dd:7d:c2:d7:22:4c:41:26:f0:f6:94:27:fc:8a:96: e3:66:9c:9e:66:cf:7d:77:be:7f:5f:f9:4c:b7:dc:30:43:67: 48:3d:76:ae:37:40:f8:67:05:f4:7b:a0:e3:79:b8:00:36:5f: 73:3e:41:ac:2f:26:7c:da:43:39:2a:5a:ef:26:42:df:3a:6b: 5e:54:94:48:2c:20:32:84:9f:03:57:e7:34:f7:bd:f1:ad:46: d8:16:f3:71:cd:e1:c7:bb:89:4c:94:33:9b:91:9d:dd:9d:49: 78:57:a7:4e:75:ea:6e:62:28:59:9a:09:f1:d7:c4:cb:ed:fb: d5:23:d4:97:f9:7a:c8:25:0e:53:9a:4d:04:8c:f7:e3:f7:59: 6a:38:9c:f3:30:32:eb:b0:50:f0:b8:c6:6e:24:dc:f8:55:be: 6a:f4:4f:51:82:5a:4a:da:ec:83:76:5d:cb:cb:ce:f0:58:eb: 61:a2:97:97:2d:4e:2f:c5:46:64:3c:8c:53:d1:6e:74:42:2a: ec:a5:94:0f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCGWbGzNVe2yBLJR2BPidgVAF5t8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAx QTAxNDM5MzAeFw0yNTA2MjYwODU1MDBaFw0yNjA2MjUwOTAwMDBaMDMxMTAvBgNV BAMTKDYwNUUzMzQ2MjY4RDE1RDAxMjJEMkY4QjQxQjY3RUMzQjRBNDU1MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZAx820Q+3m0tnKEuIjVY8AFmt 8pwFBb+uLNw/n8ZvmP4QQQYkcB9x7K7gsfb4DteUZF1pxiErWddKlli4tK2qYSH2 8ALWnVaRVmEbHkjJ8UPwplaa9NBKQCgkkIe2ioL38+K/6OAp2l3fzq4DNaVsfKX2 CLZ31KQHWhs06SetE7R/BCFcshctvCPVlVTVNbj/6nmV7oAhd/gk25U3dRQE2zAl two8vt/3U3lEVTOFTHq1UpRMFCZrcCcdmx1ZTYQviOEOzFAH6U7qcqBlCw/+1JUF 47VxkE+X/tA7gU+xOn0xcnMDP5m1nlGVSMD69qtbSM3+MDd8e9O53G1REoEvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYF4zRiaNFdASLS+LQbZ+w7SkVRwwHwYDVR0j BBgwFoAUKVExFndozHhIL3lrtYz1oBoBQ5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWVjYTUwYi01NzIyLTQ5MTgtODMxNC04NTlkM2MxZjU1YTIvMC8yOTUxMzExNjc3 NjhDQzc4NDgyRjc5NkJCNThDRjVBMDFBMDE0MzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk1MTMxMTY3NzY4Q0M3ODQ4MkY3OTZCQjU4Q0Y1QTAxQTAx NDM5My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZWNhNTBiLTU3MjItNDkxOC04 MzE0LTg1OWQzYzFmNTVhMi8wLzMxMzYzMDJlMzIzNTJlMzUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZMjANBgkqhkiG 9w0BAQsFAAOCAQEAAeWENK6fr5NVAtPp95/a6+4veCVl0d+byu6D73z/P/PeijsA 2wERPj9csSJgywJCcqoNH/bxDbB43X3C1yJMQSbw9pQn/IqW42acnmbPfXe+f1/5 TLfcMENnSD12rjdA+GcF9Hug43m4ADZfcz5BrC8mfNpDOSpa7yZC3zprXlSUSCwg MoSfA1fnNPe98a1G2Bbzcc3hx7uJTJQzm5Gd3Z1JeFenTnXqbmIoWZoJ8dfEy+37 1SPUl/l6yCUOU5pNBIz34/dZajic8zAy67BQ8LjGbiTc+FW+avRPUYJaStrsg3Zd y8vO8FjrYaKXly1OL8VGZDyMU9FudEIq7KWUDw== -----END CERTIFICATE-----Generated at Mon Jun 30 19:00:27 2025 by rpki-client