$ rpki-client -vvf repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa File: 3136302e32352e33362e302f32342d3234203d3e20313532383332.roa (raw, json) Hash identifier: 1SJ9LA44FkXb29+CiOLplkV9zxTaWTCw2H5Ki5oako8= Subject key identifier: 19:09:FF:3F:E2:27:58:0B:4B:11:3A:B7:39:E6:05:95:CA:27:E7:88 Certificate issuer: /CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Certificate serial: 34444A3E50F441EB34BE19829C0BA3210A645F78 Authority key identifier: B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa Signing time: Tue 17 Jun 2025 08:00:00 +0000 ROA not before: Tue 17 Jun 2025 07:55:00 +0000 ROA not after: Tue 16 Jun 2026 08:00:00 +0000 asID: 152832 IP address blocks: 160.25.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 00:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:44:4a:3e:50:f4:41:eb:34:be:19:82:9c:0b:a3:21:0a:64:5f:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Validity Not Before: Jun 17 07:55:00 2025 GMT Not After : Jun 16 08:00:00 2026 GMT Subject: CN=1909FF3FE227580B4B113AB739E60595CA27E788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fd:a6:f2:38:10:26:73:44:28:fd:30:6e:ff: 4d:78:4d:f9:93:4e:56:ea:f6:51:91:b5:0e:4d:d5: 01:23:cd:d3:38:08:39:c0:7c:f4:f1:c5:5a:d4:b3: ca:c8:50:eb:ec:f4:ca:d4:a6:67:f0:ad:9c:ad:b6: 0d:d0:ab:f8:f3:7a:9a:98:83:bd:cb:30:4a:2a:20: d9:26:29:af:43:9e:e4:cb:98:a7:d5:fa:b5:f4:8c: 22:5c:74:43:a6:24:20:9e:ae:97:cd:f2:2b:bd:da: dc:9c:45:09:93:43:3c:d7:dc:4a:db:80:8c:13:05: 4e:ce:b3:51:4c:1c:5a:e7:03:a3:a0:4d:86:5f:ff: f9:5c:8f:0f:8b:76:39:4d:23:b6:a7:cd:4d:e5:e5: a5:a3:3d:5a:0a:f5:f8:3b:90:82:3b:d8:d3:47:b3: 87:e6:41:d5:6b:91:55:61:54:7c:ee:7c:80:dd:49: fa:d3:ab:52:3a:e7:b3:2a:0b:d3:69:01:b2:7f:8c: b8:79:d1:84:ba:5d:6f:79:ee:53:38:8e:f3:c8:b4: 4b:a4:bd:6c:b4:ac:5a:8e:6a:bc:c3:88:49:c9:19: 27:e1:e8:26:33:68:4a:13:f8:9a:48:f0:f2:44:ee: 93:fc:16:2b:35:0a:35:60:d9:ba:dc:4c:5e:eb:39: f0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:09:FF:3F:E2:27:58:0B:4B:11:3A:B7:39:E6:05:95:CA:27:E7:88 X509v3 Authority Key Identifier: keyid:B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.36.0/24 Signature Algorithm: sha256WithRSAEncryption cd:23:13:43:c0:22:d9:99:4a:32:3f:83:30:80:fd:83:75:b3: df:69:1c:2c:f7:70:ec:dc:27:50:99:83:e0:09:a2:1b:66:11: f4:5c:e1:af:c9:2d:d2:79:58:81:a5:e9:b4:18:96:35:62:6b: 67:ec:91:08:d5:36:de:d8:ad:44:5d:5a:1c:79:cd:a4:3c:6b: fc:56:63:ce:a9:88:1d:00:1b:ee:e6:69:25:a2:5f:c2:2c:19: 6e:a5:ea:c7:73:23:1b:98:97:a8:0f:9b:c8:ea:2d:5a:09:d7: a7:c3:e8:b4:43:2f:7a:9f:3c:22:e9:36:f2:50:06:63:d0:84: 20:07:5a:34:e4:b3:ea:ec:95:4e:23:f1:c1:52:b7:21:57:ad: 61:f2:d2:fe:8f:4e:67:7c:22:a3:89:f5:15:9f:09:dc:11:7d: e7:7d:31:d1:18:ca:3c:94:b1:b8:a8:7d:3e:5e:40:d7:33:55: f4:d9:fe:6d:9c:ab:4d:1d:69:fb:64:b1:d7:59:5b:cd:a4:98: 3b:83:35:08:8e:20:64:bc:3c:3f:78:a5:c2:d2:dd:32:73:0a: e0:82:99:cb:97:7b:02:64:a6:2c:63:32:2e:b4:4c:41:7c:00: a4:41:16:50:7b:01:54:6b:02:46:9f:96:46:7d:00:e2:85:77: c8:74:d5:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNERKPlD0Qes0vhmCnAujIQpkX3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0 RTE5RUFDQjAeFw0yNTA2MTcwNzU1MDBaFw0yNjA2MTYwODAwMDBaMDMxMTAvBgNV BAMTKDE5MDlGRjNGRTIyNzU4MEI0QjExM0FCNzM5RTYwNTk1Q0EyN0U3ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe/abyOBAmc0Qo/TBu/014TfmT Tlbq9lGRtQ5N1QEjzdM4CDnAfPTxxVrUs8rIUOvs9MrUpmfwrZyttg3Qq/jzepqY g73LMEoqINkmKa9DnuTLmKfV+rX0jCJcdEOmJCCerpfN8iu92tycRQmTQzzX3Erb gIwTBU7Os1FMHFrnA6OgTYZf//lcjw+LdjlNI7anzU3l5aWjPVoK9fg7kII72NNH s4fmQdVrkVVhVHzufIDdSfrTq1I657MqC9NpAbJ/jLh50YS6XW957lM4jvPItEuk vWy0rFqOarzDiEnJGSfh6CYzaEoT+JpI8PJE7pP8Fis1CjVg2brcTF7rOfCRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGQn/P+InWAtLETq3OeYFlcon54gwHwYDVR0j BBgwFoAUuNRExbMYSk+MjxmaQyJCxE4Z6sswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjRiNTNkOC1iMmZmLTQ5NzMtYjFhYy02Zjg1ZmFlYWRiZTUvMC9COEQ0NDRDNUIz MTg0QTRGOEM4RjE5OUE0MzIyNDJDNDRFMTlFQUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0RTE5 RUFDQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNGI1M2Q4LWIyZmYtNDk3My1i MWFjLTZmODVmYWVhZGJlNS8wLzMxMzYzMDJlMzIzNTJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZJDANBgkqhkiG 9w0BAQsFAAOCAQEAzSMTQ8Ai2ZlKMj+DMID9g3Wz32kcLPdw7NwnUJmD4AmiG2YR 9Fzhr8kt0nlYgaXptBiWNWJrZ+yRCNU23titRF1aHHnNpDxr/FZjzqmIHQAb7uZp JaJfwiwZbqXqx3MjG5iXqA+byOotWgnXp8PotEMvep88Iuk28lAGY9CEIAdaNOSz 6uyVTiPxwVK3IVetYfLS/o9OZ3wio4n1FZ8J3BF9530x0RjKPJSxuKh9Pl5A1zNV 9Nn+bZyrTR1p+2Sx11lbzaSYO4M1CI4gZLw8P3ilwtLdMnMK4IKZy5d7AmSmLGMy LrRMQXwApEEWUHsBVGsCRp+WRn0A4oV3yHTVzA== -----END CERTIFICATE-----Generated at Mon Jun 30 08:27:57 2025 by rpki-client