$ rpki-client -vvf repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33372e302f32342d3234203d3e20313532383332.roa File: 3136302e32352e33372e302f32342d3234203d3e20313532383332.roa (raw, json) Hash identifier: 2EK7G4yp/ra7lqC0aFCR3YZxswSuxrQQ2ZJJKEPHMZg= Subject key identifier: 49:C7:05:47:7A:C7:D7:6D:82:4E:C8:A8:66:DB:94:CE:AD:A1:1F:7D Certificate issuer: /CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Certificate serial: 4E68D7D0CC987E6B5E67229A58E3D86C41AA6DAF Authority key identifier: B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33372e302f32342d3234203d3e20313532383332.roa Signing time: Tue 17 Jun 2025 08:00:00 +0000 ROA not before: Tue 17 Jun 2025 07:55:00 +0000 ROA not after: Tue 16 Jun 2026 08:00:00 +0000 asID: 152832 IP address blocks: 160.25.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 00:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:68:d7:d0:cc:98:7e:6b:5e:67:22:9a:58:e3:d8:6c:41:aa:6d:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Validity Not Before: Jun 17 07:55:00 2025 GMT Not After : Jun 16 08:00:00 2026 GMT Subject: CN=49C705477AC7D76D824EC8A866DB94CEADA11F7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fe:5d:53:20:b6:95:00:2d:b9:17:2b:9f:23: 62:d0:cc:96:67:a4:ae:dc:c6:5c:b9:64:7e:f1:a0: e7:c5:59:49:79:67:1f:2e:1f:f6:b9:e4:a0:99:c0: 45:4d:63:4e:b3:c1:99:81:fd:e6:95:21:e5:8b:f3: 75:39:b6:a8:8f:ac:2b:37:5d:be:fd:a9:e3:c3:ac: 20:22:12:fb:a2:8a:46:96:ad:ff:1a:9c:85:47:02: ef:1d:72:01:45:02:54:90:c5:42:8a:c2:7e:77:90: 98:6e:72:83:96:96:85:bb:76:14:d3:d1:77:f7:f7: df:da:f1:96:8c:20:a0:93:0f:bf:13:4b:78:0c:d8: 81:b8:fc:e5:25:32:30:47:ff:3f:0b:5a:a4:d1:7d: d0:76:0e:69:4b:d5:46:e2:11:d4:4d:c6:01:af:7c: 2b:33:a2:b5:53:fc:db:ef:0b:5d:13:7c:3c:e1:4e: e1:66:84:60:24:9e:87:05:89:5a:40:c0:f9:7d:dd: ff:0b:88:9f:41:73:7f:ab:cb:67:90:7d:1c:21:ec: c6:ae:ec:ca:cc:3e:a8:52:7e:70:7e:e8:b4:4e:11: e2:0e:3e:70:80:12:49:e7:52:85:96:17:74:bb:fe: 5a:97:57:b8:90:41:08:47:09:75:c7:8f:2e:ea:bd: 57:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C7:05:47:7A:C7:D7:6D:82:4E:C8:A8:66:DB:94:CE:AD:A1:1F:7D X509v3 Authority Key Identifier: keyid:B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33372e302f32342d3234203d3e20313532383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.37.0/24 Signature Algorithm: sha256WithRSAEncryption 89:6b:45:f6:e5:c2:03:f3:b9:b6:b1:ad:9f:1e:54:bc:21:95: 8a:d0:31:62:b5:79:c0:09:ff:f2:5a:54:53:6f:3b:f0:56:a0: 35:ae:c5:93:89:88:7d:83:31:fc:bc:23:ab:a0:81:93:db:a2: 1c:f6:bd:ca:b8:e4:d6:48:3c:59:bf:79:7b:80:39:1d:6f:b4: dd:37:a5:bd:ec:5c:65:a8:7b:05:fb:71:b2:c6:3c:49:f6:b7: 84:f6:d3:cf:c8:93:c8:d7:ef:29:fc:3d:60:c9:4b:38:4b:1e: eb:d2:fc:a7:7d:d8:38:c6:41:d6:eb:5f:b6:c4:f3:e0:d9:09: ed:41:7d:41:c4:91:1e:53:1a:03:56:4e:30:ed:4e:d3:d9:25: c4:a2:ee:16:ba:9f:d6:14:2e:fd:61:56:0e:16:cd:4c:3e:bd: e9:a3:f4:21:69:e8:7d:1c:47:4a:fb:9e:0a:40:83:97:4b:c0: e6:b7:71:9f:e0:a9:5f:f0:dd:7a:26:e4:c3:a1:7f:7e:2b:53: bb:fd:36:3a:b1:9c:90:61:ce:fd:fb:3f:73:1b:5d:4e:e4:d6: 0f:a5:2d:85:36:e3:f5:9f:08:ce:79:dc:72:b7:84:af:f9:fe: 51:4a:1f:fb:dc:ac:21:ee:73:04:d1:ee:76:f6:85:93:2e:09: 5a:ce:18:42 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTmjX0MyYfmteZyKaWOPYbEGqba8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0 RTE5RUFDQjAeFw0yNTA2MTcwNzU1MDBaFw0yNjA2MTYwODAwMDBaMDMxMTAvBgNV BAMTKDQ5QzcwNTQ3N0FDN0Q3NkQ4MjRFQzhBODY2REI5NENFQURBMTFGN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD/l1TILaVAC25FyufI2LQzJZn pK7cxly5ZH7xoOfFWUl5Zx8uH/a55KCZwEVNY06zwZmB/eaVIeWL83U5tqiPrCs3 Xb79qePDrCAiEvuiikaWrf8anIVHAu8dcgFFAlSQxUKKwn53kJhucoOWloW7dhTT 0Xf399/a8ZaMIKCTD78TS3gM2IG4/OUlMjBH/z8LWqTRfdB2DmlL1UbiEdRNxgGv fCszorVT/NvvC10TfDzhTuFmhGAknocFiVpAwPl93f8LiJ9Bc3+ry2eQfRwh7Mau 7MrMPqhSfnB+6LROEeIOPnCAEknnUoWWF3S7/lqXV7iQQQhHCXXHjy7qvVdxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSccFR3rH122CTsioZtuUzq2hH30wHwYDVR0j BBgwFoAUuNRExbMYSk+MjxmaQyJCxE4Z6sswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjRiNTNkOC1iMmZmLTQ5NzMtYjFhYy02Zjg1ZmFlYWRiZTUvMC9COEQ0NDRDNUIz MTg0QTRGOEM4RjE5OUE0MzIyNDJDNDRFMTlFQUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjhENDQ0QzVCMzE4NEE0RjhDOEYxOTlBNDMyMjQyQzQ0RTE5 RUFDQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNGI1M2Q4LWIyZmYtNDk3My1i MWFjLTZmODVmYWVhZGJlNS8wLzMxMzYzMDJlMzIzNTJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZJTANBgkqhkiG 9w0BAQsFAAOCAQEAiWtF9uXCA/O5trGtnx5UvCGVitAxYrV5wAn/8lpUU2878Fag Na7Fk4mIfYMx/Lwjq6CBk9uiHPa9yrjk1kg8Wb95e4A5HW+03TelvexcZah7Bftx ssY8Sfa3hPbTz8iTyNfvKfw9YMlLOEse69L8p33YOMZB1utftsTz4NkJ7UF9QcSR HlMaA1ZOMO1O09klxKLuFrqf1hQu/WFWDhbNTD696aP0IWnofRxHSvueCkCDl0vA 5rdxn+CpX/Ddeibkw6F/fitTu/02OrGckGHO/fs/cxtdTuTWD6UthTbj9Z8Iznnc creEr/n+UUof+9ysIe5zBNHudvaFky4JWs4YQg== -----END CERTIFICATE-----Generated at Mon Jun 30 08:02:35 2025 by rpki-client