$ rpki-client -vvf repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa File: 3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa (raw, json) Hash identifier: RLs7YWOLxdLtlrs9K05DQU0Ui1dbjVBI2I7ZQMJjIGM= Subject key identifier: F7:E7:4F:8F:CA:F5:5F:DC:00:71:34:7E:4B:83:E1:E2:69:83:F8:92 Certificate issuer: /CN=353E665549A5A245D363BD0DCEA20282E562E909 Certificate serial: 2CDA7B7E7DFC129B3DB815E19E7A05144A270B9F Authority key identifier: 35:3E:66:55:49:A5:A2:45:D3:63:BD:0D:CE:A2:02:82:E5:62:E9:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/353E665549A5A245D363BD0DCEA20282E562E909.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa Signing time: Mon 22 Sep 2025 10:00:00 +0000 ROA not before: Mon 22 Sep 2025 09:55:00 +0000 ROA not after: Mon 21 Sep 2026 10:00:00 +0000 asID: 153089 IP address blocks: 160.25.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.crl rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/353E665549A5A245D363BD0DCEA20282E562E909.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:da:7b:7e:7d:fc:12:9b:3d:b8:15:e1:9e:7a:05:14:4a:27:0b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=353E665549A5A245D363BD0DCEA20282E562E909 Validity Not Before: Sep 22 09:55:00 2025 GMT Not After : Sep 21 10:00:00 2026 GMT Subject: CN=F7E74F8FCAF55FDC0071347E4B83E1E26983F892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ef:2c:bd:67:ed:21:83:d1:17:d4:bf:72:ed: 4e:1c:1e:6f:ec:ca:01:dc:51:cc:20:82:7c:e6:17: 14:42:ed:cd:fc:4a:97:d4:70:da:5f:0a:d5:e1:aa: 97:b1:7a:94:34:98:94:c1:ed:ef:2f:2b:ae:58:32: fd:d7:4d:0c:44:6b:34:48:24:3e:31:8e:99:ee:49: b0:0d:e8:4b:41:fc:99:15:ed:5c:ef:95:31:d8:2e: a3:ef:46:b3:93:61:8c:65:db:d3:46:9d:2e:e1:85: 99:99:c1:26:52:18:ef:4b:98:a5:77:2d:76:20:f1: 36:06:f7:26:64:7b:2c:d2:00:7e:3b:7e:84:3d:df: 36:33:22:97:24:81:8a:ef:eb:60:88:23:ec:68:a8: 87:fc:95:0d:e5:81:fb:81:e2:e9:c6:eb:5a:de:10: 31:e6:00:41:58:88:f8:cf:d9:26:5f:ec:22:c7:7d: d2:66:4c:39:71:20:84:22:41:df:d3:f5:cb:54:6f: c4:22:f3:66:2b:7e:4e:db:04:5d:e3:02:d5:46:99: 8c:4c:7c:91:51:47:e1:0a:b1:84:f1:82:bc:e5:bc: 7e:3b:cc:b4:e3:5d:c1:21:49:bd:c8:05:f5:fc:1a: 60:bb:7d:37:92:05:b0:1f:75:e9:31:34:5a:1f:c2: 15:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E7:4F:8F:CA:F5:5F:DC:00:71:34:7E:4B:83:E1:E2:69:83:F8:92 X509v3 Authority Key Identifier: keyid:35:3E:66:55:49:A5:A2:45:D3:63:BD:0D:CE:A2:02:82:E5:62:E9:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/353E665549A5A245D363BD0DCEA20282E562E909.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/3136302e32352e3135332e302f32342d3234203d3e20313533303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.153.0/24 Signature Algorithm: sha256WithRSAEncryption 35:62:7f:a8:3e:6d:7f:1a:a5:e6:a6:d9:cc:32:02:5f:cb:bf: b6:0e:d5:25:82:9e:df:98:1d:e8:58:df:16:3d:21:23:f5:55: e5:4b:b8:c2:01:96:82:0b:ba:0e:65:e4:f4:78:b9:01:00:60: 05:76:1d:d1:51:b0:26:18:68:86:9c:0b:58:f2:60:9c:ac:37: 3c:f3:cb:7e:56:74:87:6f:2a:69:5c:56:b0:a4:aa:59:f4:06: 1e:ec:2c:c6:c0:36:a1:1b:fe:d3:ec:9b:8f:86:eb:59:f0:37: 90:b4:0c:a1:b3:6c:fe:55:e5:bf:ba:81:3a:1e:42:63:4b:75: 22:71:af:c9:9f:ea:60:ab:d6:8f:03:1b:cb:3b:be:bc:f0:1e: b4:c8:2f:88:fc:f6:f3:e1:a3:63:86:9b:1d:b6:f5:77:2c:73: de:1c:3a:4f:1c:f8:f9:31:72:39:fa:18:f0:7c:6b:d5:46:c7: 7a:93:e0:fc:5a:b2:3e:30:62:31:fb:a7:c9:ae:32:49:48:f4: 00:d6:ac:24:b3:72:13:50:9f:8d:0f:5a:9f:dd:d8:d8:63:57: f0:1a:05:00:7a:b5:51:eb:d3:02:a0:b6:44:d0:30:aa:1a:fd: 1b:a0:89:ee:3e:e4:e8:40:43:93:59:37:dd:f9:1b:5e:c4:78: 59:73:59:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULNp7fn38Eps9uBXhnnoFFEonC58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUzRTY2NTU0OUE1QTI0NUQzNjNCRDBEQ0VBMjAyODJF NTYyRTkwOTAeFw0yNTA5MjIwOTU1MDBaFw0yNjA5MjExMDAwMDBaMDMxMTAvBgNV BAMTKEY3RTc0RjhGQ0FGNTVGREMwMDcxMzQ3RTRCODNFMUUyNjk4M0Y4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS7yy9Z+0hg9EX1L9y7U4cHm/s ygHcUcwggnzmFxRC7c38SpfUcNpfCtXhqpexepQ0mJTB7e8vK65YMv3XTQxEazRI JD4xjpnuSbAN6EtB/JkV7VzvlTHYLqPvRrOTYYxl29NGnS7hhZmZwSZSGO9LmKV3 LXYg8TYG9yZkeyzSAH47foQ93zYzIpckgYrv62CII+xoqIf8lQ3lgfuB4unG61re EDHmAEFYiPjP2SZf7CLHfdJmTDlxIIQiQd/T9ctUb8Qi82Yrfk7bBF3jAtVGmYxM fJFRR+EKsYTxgrzlvH47zLTjXcEhSb3IBfX8GmC7fTeSBbAfdekxNFofwhWnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9+dPj8r1X9wAcTR+S4Ph4mmD+JIwHwYDVR0j BBgwFoAUNT5mVUmlokXTY70NzqICguVi6QkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjQxMWIwNS1jNThhLTQyMDYtYjdhYi1jMjUwYzE0NjU1NTAvMC8zNTNFNjY1NTQ5 QTVBMjQ1RDM2M0JEMERDRUEyMDI4MkU1NjJFOTA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzUzRTY2NTU0OUE1QTI0NUQzNjNCRDBEQ0VBMjAyODJFNTYy RTkwOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNDExYjA1LWM1OGEtNDIwNi1i N2FiLWMyNTBjMTQ2NTU1MC8wLzMxMzYzMDJlMzIzNTJlMzEzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmZMA0GCSqG SIb3DQEBCwUAA4IBAQA1Yn+oPm1/GqXmptnMMgJfy7+2DtUlgp7fmB3oWN8WPSEj 9VXlS7jCAZaCC7oOZeT0eLkBAGAFdh3RUbAmGGiGnAtY8mCcrDc888t+VnSHbypp XFawpKpZ9AYe7CzGwDahG/7T7JuPhutZ8DeQtAyhs2z+VeW/uoE6HkJjS3Uica/J n+pgq9aPAxvLO7688B60yC+I/Pbz4aNjhpsdtvV3LHPeHDpPHPj5MXI5+hjwfGvV Rsd6k+D8WrI+MGIx+6fJrjJJSPQA1qwks3ITUJ+ND1qf3djYY1fwGgUAerVR69MC oLZE0DCqGv0boInuPuToQEOTWTfd+RtexHhZc1l0 -----END CERTIFICATE-----Generated at Tue Oct 21 14:29:14 2025 by rpki-client