$ rpki-client -vvf repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35332e302f32342d3234203d3e20313533303738.roa File: 3136302e32352e35332e302f32342d3234203d3e20313533303738.roa (raw, json) Hash identifier: idjxpfeAxHssuGIMoqlSNQnvrimnNEAu/Mw7vVOi7mA= Subject key identifier: 22:FF:BF:FB:FA:4A:97:62:B7:23:C2:27:90:C9:E9:1D:E9:96:F7:87 Certificate issuer: /CN=DB6A8980C50F210C8041A21010E6DBF10FC7C0DF Certificate serial: 5735F7F352EDCC6D1054333E6AED5B56DAC74B93 Authority key identifier: DB:6A:89:80:C5:0F:21:0C:80:41:A2:10:10:E6:DB:F1:0F:C7:C0:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35332e302f32342d3234203d3e20313533303738.roa Signing time: Tue 23 Sep 2025 11:00:01 +0000 ROA not before: Tue 23 Sep 2025 10:55:01 +0000 ROA not after: Tue 22 Sep 2026 11:00:01 +0000 asID: 153078 IP address blocks: 160.25.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.crl rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 22:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:35:f7:f3:52:ed:cc:6d:10:54:33:3e:6a:ed:5b:56:da:c7:4b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB6A8980C50F210C8041A21010E6DBF10FC7C0DF Validity Not Before: Sep 23 10:55:01 2025 GMT Not After : Sep 22 11:00:01 2026 GMT Subject: CN=22FFBFFBFA4A9762B723C22790C9E91DE996F787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ec:8a:5e:ef:db:1e:18:6d:e4:54:b5:44:63: 4d:7d:6b:b3:83:ec:9f:89:fd:b0:d7:11:b6:ba:ae: e0:77:24:1e:e5:6d:22:24:ed:71:4a:e7:57:e8:9f: eb:59:f5:51:1b:f2:ed:b0:a1:16:72:f9:9e:ee:bd: 61:00:84:d6:be:2d:45:b3:e0:88:34:e2:51:73:9a: 91:03:1d:63:43:f9:d8:d7:46:2d:67:0c:ff:8c:54: f7:f6:35:31:44:90:0d:f5:90:56:78:76:2c:7f:11: e1:bc:9d:9a:c2:6c:69:25:f9:2c:40:c9:9f:6a:54: 89:7d:94:9d:0b:b6:4e:c5:d1:6e:52:ca:dd:9c:fb: dd:57:d3:45:f7:ba:18:1d:8c:87:90:10:da:a8:d6: 18:64:bd:2c:b6:08:0a:3f:d2:c9:df:25:98:f2:4d: cc:5a:d4:a3:5c:8f:5f:c8:10:28:57:0b:b2:8e:1a: 52:22:6f:31:e4:21:e9:97:42:82:44:1e:5e:47:c7: 0e:4a:e5:2d:b3:08:17:58:4e:82:78:c2:7b:99:a6: c5:f4:6c:30:57:c4:fd:19:bc:c3:6e:a9:73:dc:6f: bb:c9:0d:02:cd:c1:07:4a:98:ea:36:c8:1f:b5:71: fd:28:11:75:58:33:5e:20:6a:dc:d0:48:df:98:f0: 77:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FF:BF:FB:FA:4A:97:62:B7:23:C2:27:90:C9:E9:1D:E9:96:F7:87 X509v3 Authority Key Identifier: keyid:DB:6A:89:80:C5:0F:21:0C:80:41:A2:10:10:E6:DB:F1:0F:C7:C0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DB6A8980C50F210C8041A21010E6DBF10FC7C0DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63b17857-be3d-4132-8f19-10836f408546/0/3136302e32352e35332e302f32342d3234203d3e20313533303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.53.0/24 Signature Algorithm: sha256WithRSAEncryption 27:4a:19:cf:83:72:db:59:f2:81:86:c4:8b:27:0d:c3:93:98: 6f:1e:97:2c:26:56:b4:8e:97:3d:e6:82:27:f5:23:f5:90:f0: 91:3c:d7:d2:b1:21:86:3a:97:37:c8:fc:21:74:cd:67:a7:42: 4e:d8:46:f7:6a:bc:7e:da:c8:86:c3:15:e6:26:46:d1:77:8f: fb:6a:d4:ab:38:ef:78:43:e1:37:15:b1:d5:ff:dd:82:cb:e5: b4:01:3b:82:51:a4:ed:d1:bd:74:ad:54:d7:9e:2f:33:0f:d1: a2:1b:68:55:b8:2f:82:7d:42:cb:ce:6b:da:f5:d1:56:24:31: 28:95:ca:53:e2:15:19:4d:22:bd:e0:30:bd:07:6d:8e:fb:b7: c2:60:2d:20:cf:d9:e9:df:4d:af:23:44:20:6e:f4:55:a2:55: 82:37:2b:4f:fe:47:77:94:87:fd:0c:a4:a4:be:5d:d1:cd:fd: 99:42:6f:b8:53:a9:1e:3c:6b:85:cf:b5:c3:71:03:9e:28:1e: 63:94:70:4e:65:36:31:01:81:82:fa:93:59:9f:c8:21:0e:02: 3d:4a:58:79:e8:07:89:f1:49:ae:3e:d7:fe:c8:42:42:33:48: 95:6c:86:1e:b4:6b:7d:ad:ab:ea:b6:a6:c1:21:ba:6f:6b:15: 4e:a7:28:9d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVzX381LtzG0QVDM+au1bVtrHS5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI2QTg5ODBDNTBGMjEwQzgwNDFBMjEwMTBFNkRCRjEw RkM3QzBERjAeFw0yNTA5MjMxMDU1MDFaFw0yNjA5MjIxMTAwMDFaMDMxMTAvBgNV BAMTKDIyRkZCRkZCRkE0QTk3NjJCNzIzQzIyNzkwQzlFOTFERTk5NkY3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm7Ipe79seGG3kVLVEY019a7OD 7J+J/bDXEba6ruB3JB7lbSIk7XFK51fon+tZ9VEb8u2woRZy+Z7uvWEAhNa+LUWz 4Ig04lFzmpEDHWND+djXRi1nDP+MVPf2NTFEkA31kFZ4dix/EeG8nZrCbGkl+SxA yZ9qVIl9lJ0Ltk7F0W5Syt2c+91X00X3uhgdjIeQENqo1hhkvSy2CAo/0snfJZjy Tcxa1KNcj1/IEChXC7KOGlIibzHkIemXQoJEHl5Hxw5K5S2zCBdYToJ4wnuZpsX0 bDBXxP0ZvMNuqXPcb7vJDQLNwQdKmOo2yB+1cf0oEXVYM14gatzQSN+Y8HfLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIv+/+/pKl2K3I8InkMnpHemW94cwHwYDVR0j BBgwFoAU22qJgMUPIQyAQaIQEObb8Q/HwN8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 M2IxNzg1Ny1iZTNkLTQxMzItOGYxOS0xMDgzNmY0MDg1NDYvMC9EQjZBODk4MEM1 MEYyMTBDODA0MUEyMTAxMEU2REJGMTBGQzdDMERGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvREI2QTg5ODBDNTBGMjEwQzgwNDFBMjEwMTBFNkRCRjEwRkM3 QzBERi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzYjE3ODU3LWJlM2QtNDEzMi04 ZjE5LTEwODM2ZjQwODU0Ni8wLzMxMzYzMDJlMzIzNTJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZNTANBgkqhkiG 9w0BAQsFAAOCAQEAJ0oZz4Ny21nygYbEiycNw5OYbx6XLCZWtI6XPeaCJ/Uj9ZDw kTzX0rEhhjqXN8j8IXTNZ6dCTthG92q8ftrIhsMV5iZG0XeP+2rUqzjveEPhNxWx 1f/dgsvltAE7glGk7dG9dK1U154vMw/RohtoVbgvgn1Cy85r2vXRViQxKJXKU+IV GU0iveAwvQdtjvu3wmAtIM/Z6d9NryNEIG70VaJVgjcrT/5Hd5SH/QykpL5d0c39 mUJvuFOpHjxrhc+1w3EDnigeY5RwTmU2MQGBgvqTWZ/IIQ4CPUpYeegHifFJrj7X /shCQjNIlWyGHrRrfa2r6ramwSG6b2sVTqconQ== -----END CERTIFICATE-----Generated at Mon Oct 20 22:06:03 2025 by rpki-client