$ rpki-client -vvf repo-rpki.idnic.net/repo/505388f4-107b-44a9-9d8f-1603fecfdee9/0/3136302e32352e3234322e302f32332d3234203d3e20313432333437.roa File: 3136302e32352e3234322e302f32332d3234203d3e20313432333437.roa (raw, json) Hash identifier: qYeddWCUDVszc7mZTW90CbBoRIOyBoY1LaUrZanAxXQ= Subject key identifier: 94:F7:C3:CD:A4:FD:6D:76:AC:8E:9A:6D:EF:F5:C3:80:E3:B6:90:C9 Certificate issuer: /CN=E9C690C51E9BF1B5978332FD5BA94A850192F54C Certificate serial: 46155C8DB0A6F06E438AE876D1552AF89FE8E40D Authority key identifier: E9:C6:90:C5:1E:9B:F1:B5:97:83:32:FD:5B:A9:4A:85:01:92:F5:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E9C690C51E9BF1B5978332FD5BA94A850192F54C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/505388f4-107b-44a9-9d8f-1603fecfdee9/0/3136302e32352e3234322e302f32332d3234203d3e20313432333437.roa Signing time: Thu 26 Jun 2025 10:00:00 +0000 ROA not before: Thu 26 Jun 2025 09:55:00 +0000 ROA not after: Thu 25 Jun 2026 10:00:00 +0000 asID: 142347 IP address blocks: 160.25.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/505388f4-107b-44a9-9d8f-1603fecfdee9/0/E9C690C51E9BF1B5978332FD5BA94A850192F54C.crl rsync://repo-rpki.idnic.net/repo/505388f4-107b-44a9-9d8f-1603fecfdee9/0/E9C690C51E9BF1B5978332FD5BA94A850192F54C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E9C690C51E9BF1B5978332FD5BA94A850192F54C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 06:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:15:5c:8d:b0:a6:f0:6e:43:8a:e8:76:d1:55:2a:f8:9f:e8:e4:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9C690C51E9BF1B5978332FD5BA94A850192F54C Validity Not Before: Jun 26 09:55:00 2025 GMT Not After : Jun 25 10:00:00 2026 GMT Subject: CN=94F7C3CDA4FD6D76AC8E9A6DEFF5C380E3B690C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6d:9b:f2:10:c6:73:c4:7f:b1:5f:4a:6f:3d: 65:a1:d7:21:0b:e4:93:2f:35:d6:7c:1c:91:11:5b: f0:0d:f2:b9:79:04:21:18:5a:56:3b:67:58:9e:cf: 21:81:44:55:f2:9f:e6:fd:6f:e1:48:93:0e:3a:6d: 3c:24:d6:85:3e:10:26:5c:72:7a:6d:a1:5e:0a:cd: 0f:7c:e5:0e:4b:f3:2c:56:dd:b0:68:d7:02:15:8c: 00:18:0d:e1:87:50:91:d9:fe:f1:b8:1e:10:df:db: 1e:75:96:a1:1b:54:33:09:42:35:8b:6d:2f:9d:24: 66:c9:63:58:d0:b4:8e:22:05:9a:2b:3b:c2:87:92: 92:4d:64:5d:80:2d:de:e6:b3:8e:e8:0a:5c:d3:32: 17:ef:6e:54:34:5b:31:30:62:04:c1:7a:fa:27:07: 1f:6e:c3:6e:06:d4:52:92:0c:94:32:28:40:b2:0a: 3c:c4:41:fa:2e:f9:ec:7a:94:c5:5f:d9:57:99:fe: 50:f5:70:5f:95:98:68:7e:2c:19:e8:41:7e:ab:31: dc:0d:d3:da:a0:ec:02:2b:53:3d:ef:3b:df:30:85: 71:17:3f:b3:d0:b4:cf:8b:ca:65:bc:ec:24:88:44: be:6d:19:da:cf:ae:78:8c:37:a0:55:10:84:3d:df: 82:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F7:C3:CD:A4:FD:6D:76:AC:8E:9A:6D:EF:F5:C3:80:E3:B6:90:C9 X509v3 Authority Key Identifier: keyid:E9:C6:90:C5:1E:9B:F1:B5:97:83:32:FD:5B:A9:4A:85:01:92:F5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/505388f4-107b-44a9-9d8f-1603fecfdee9/0/E9C690C51E9BF1B5978332FD5BA94A850192F54C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E9C690C51E9BF1B5978332FD5BA94A850192F54C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/505388f4-107b-44a9-9d8f-1603fecfdee9/0/3136302e32352e3234322e302f32332d3234203d3e20313432333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.242.0/23 Signature Algorithm: sha256WithRSAEncryption 47:f1:e3:e5:ea:f9:f5:15:4c:3f:69:c4:b0:96:fa:fb:2e:9d: 54:09:f6:ba:c5:9a:49:05:bb:09:d3:84:0d:a3:e5:cb:df:5f: 0e:8c:63:b2:1a:af:0a:15:81:48:9f:7a:95:9b:70:c7:03:99: 2c:cb:cc:23:10:96:6c:63:67:df:91:6b:32:99:3b:66:f3:20: e1:be:d5:dc:8b:8b:d3:47:5e:4c:be:b3:e0:cf:66:89:30:41: 8c:84:b2:c5:4c:bd:ed:28:96:db:9a:35:f7:51:01:ac:5b:2b: 5f:a0:d2:c0:6c:e8:58:88:85:0c:70:67:37:3b:ae:fd:f6:5d: 61:d3:e4:36:e0:48:32:a3:04:40:14:70:68:19:76:d2:e4:75: 81:50:42:4d:51:9b:e5:9f:8e:ae:86:ce:06:96:3b:f2:34:39: 34:5b:db:a7:0e:ac:57:32:6b:1b:1a:d8:e6:f3:1f:40:be:b0: 39:b1:69:9a:61:ef:f5:18:3b:fa:56:ea:47:65:e3:05:49:b9: f6:03:6a:cb:a3:cf:63:e3:c5:36:69:3c:06:90:69:8e:a3:28: a0:60:cd:ff:3e:99:66:59:d4:ec:b6:46:8e:9c:79:99:d6:f7: 55:b5:db:da:60:36:ac:43:a6:cb:68:26:db:ca:14:bc:a9:68: 45:12:ca:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURhVcjbCm8G5Diuh20VUq+J/o5A0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlDNjkwQzUxRTlCRjFCNTk3ODMzMkZENUJBOTRBODUw MTkyRjU0QzAeFw0yNTA2MjYwOTU1MDBaFw0yNjA2MjUxMDAwMDBaMDMxMTAvBgNV BAMTKDk0RjdDM0NEQTRGRDZENzZBQzhFOUE2REVGRjVDMzgwRTNCNjkwQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWbZvyEMZzxH+xX0pvPWWh1yEL 5JMvNdZ8HJERW/AN8rl5BCEYWlY7Z1iezyGBRFXyn+b9b+FIkw46bTwk1oU+ECZc cnptoV4KzQ985Q5L8yxW3bBo1wIVjAAYDeGHUJHZ/vG4HhDf2x51lqEbVDMJQjWL bS+dJGbJY1jQtI4iBZorO8KHkpJNZF2ALd7ms47oClzTMhfvblQ0WzEwYgTBevon Bx9uw24G1FKSDJQyKECyCjzEQfou+ex6lMVf2VeZ/lD1cF+VmGh+LBnoQX6rMdwN 09qg7AIrUz3vO98whXEXP7PQtM+LymW87CSIRL5tGdrPrniMN6BVEIQ934IVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlPfDzaT9bXasjppt7/XDgOO2kMkwHwYDVR0j BBgwFoAU6caQxR6b8bWXgzL9W6lKhQGS9UwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MDUzODhmNC0xMDdiLTQ0YTktOWQ4Zi0xNjAzZmVjZmRlZTkvMC9FOUM2OTBDNTFF OUJGMUI1OTc4MzMyRkQ1QkE5NEE4NTAxOTJGNTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRTlDNjkwQzUxRTlCRjFCNTk3ODMzMkZENUJBOTRBODUwMTky RjU0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwNTM4OGY0LTEwN2ItNDRhOS05 ZDhmLTE2MDNmZWNmZGVlOS8wLzMxMzYzMDJlMzIzNTJlMzIzNDMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBnyMA0GCSqG SIb3DQEBCwUAA4IBAQBH8ePl6vn1FUw/acSwlvr7Lp1UCfa6xZpJBbsJ04QNo+XL 318OjGOyGq8KFYFIn3qVm3DHA5ksy8wjEJZsY2ffkWsymTtm8yDhvtXci4vTR15M vrPgz2aJMEGMhLLFTL3tKJbbmjX3UQGsWytfoNLAbOhYiIUMcGc3O6799l1h0+Q2 4EgyowRAFHBoGXbS5HWBUEJNUZvln46uhs4GljvyNDk0W9unDqxXMmsbGtjm8x9A vrA5sWmaYe/1GDv6VupHZeMFSbn2A2rLo89j48U2aTwGkGmOoyigYM3/PplmWdTs tkaOnHmZ1vdVtdvaYDasQ6bLaCbbyhS8qWhFEso1 -----END CERTIFICATE-----Generated at Tue Jul 1 20:13:31 2025 by rpki-client