$ rpki-client -vvf repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32332d3234203d3e20313533303735.roa File: 3136302e32352e3137382e302f32332d3234203d3e20313533303735.roa (raw, json) Hash identifier: FYy5UtFCXZKGCZxosr1oqFzrTkMP7sB8ytiR2n56UZs= Subject key identifier: 8B:DF:01:30:50:39:24:10:62:40:0B:9A:ED:AF:3E:EC:3B:EE:5D:0B Certificate issuer: /CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Certificate serial: 76EF2A86C19D54B17C1575748EB05852C99C59ED Authority key identifier: 29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32332d3234203d3e20313533303735.roa Signing time: Thu 26 Jun 2025 10:00:40 +0000 ROA not before: Thu 26 Jun 2025 09:55:40 +0000 ROA not after: Thu 25 Jun 2026 10:00:40 +0000 asID: 153075 IP address blocks: 160.25.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 08:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ef:2a:86:c1:9d:54:b1:7c:15:75:74:8e:b0:58:52:c9:9c:59:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Validity Not Before: Jun 26 09:55:40 2025 GMT Not After : Jun 25 10:00:40 2026 GMT Subject: CN=8BDF01305039241062400B9AEDAF3EEC3BEE5D0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:03:67:76:43:d4:2a:7d:59:14:31:7a:90:9b: 2b:ef:ae:58:11:6f:9e:26:aa:bb:b4:fd:1b:3f:20: 27:10:37:59:bf:da:9a:9c:00:50:ef:86:34:26:61: 46:61:3e:60:27:f1:16:e2:2f:7c:ad:27:e2:5c:8d: e4:0e:a6:0e:42:e3:fe:8c:df:af:2c:3c:90:08:b1: 2b:4a:ad:ef:6a:e4:6b:c0:9c:95:1e:40:59:49:a3: 27:73:1a:bc:4c:0f:ad:28:16:a1:3b:9e:a0:42:10: f2:6f:65:1b:0f:ef:60:ab:37:e8:25:a6:60:51:0d: 96:d5:13:91:43:2b:33:97:30:52:47:85:a1:0e:64: 03:c5:43:87:09:79:71:20:4a:41:f1:eb:6b:97:ed: 4c:ec:48:40:99:d1:ae:cb:41:ff:5b:75:1d:74:d7: f0:15:23:a5:ef:11:63:b7:82:56:ba:e9:6c:4f:9b: 60:dc:a0:ab:96:a5:5f:9d:c5:36:62:d4:9c:3e:b4: 44:0f:af:4a:a3:44:e7:fb:38:e6:9b:20:55:08:47: 3d:42:30:cc:4a:c0:bb:d1:7b:b1:d8:fc:bf:52:65: 11:97:0f:6b:0b:c1:bc:f2:95:f5:e5:45:25:ae:64: 42:c8:13:ea:57:72:e0:6e:d1:b5:95:d2:83:06:5e: d9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:DF:01:30:50:39:24:10:62:40:0B:9A:ED:AF:3E:EC:3B:EE:5D:0B X509v3 Authority Key Identifier: keyid:29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32332d3234203d3e20313533303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.178.0/23 Signature Algorithm: sha256WithRSAEncryption 53:99:a7:1c:dd:22:cd:87:fd:e5:01:88:68:b5:d7:06:92:7b: 30:7c:fe:57:22:9a:29:b5:eb:64:e9:2d:6a:18:c2:8f:01:b8: d6:c6:d5:5d:bf:ee:68:c7:c4:7d:9a:07:bf:16:db:14:1a:53: 41:d1:9a:42:14:5c:ac:cf:3b:79:0e:a1:6a:0a:80:98:7c:d2: d7:e9:c1:28:fb:a0:01:36:95:a1:78:ac:75:a1:fb:67:4e:53: e8:89:61:61:ec:97:5e:a4:08:a6:22:e6:ae:33:c4:13:d6:ce: 10:3c:8e:af:79:5d:9c:3c:3a:2a:1a:9e:a1:61:e2:14:75:9d: 5e:77:a4:5d:fc:e7:ff:4d:fc:83:72:7c:ba:3a:9f:51:e9:81: 3f:1a:cb:a4:55:ad:00:9d:a3:50:f8:cd:64:db:a2:df:de:e1: 2e:ab:09:70:c5:70:76:c9:52:71:06:d9:4c:86:7a:72:02:2b: ea:4b:b7:dd:0a:03:76:b5:17:a0:27:9d:79:d4:6b:3b:0a:97: 0a:c1:cc:b6:80:d6:1a:d0:ce:b7:01:b8:b2:5d:2a:11:d0:86: a4:e7:79:3b:f7:e0:e9:c6:3d:54:cb:64:ac:4b:5f:cb:1f:89: c5:cf:ac:42:4f:fa:0b:16:f5:cf:c5:57:92:0b:88:c3:e1:9e: 58:d7:bb:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdu8qhsGdVLF8FXV0jrBYUsmcWe0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBG OTVGMkI0NTAeFw0yNTA2MjYwOTU1NDBaFw0yNjA2MjUxMDAwNDBaMDMxMTAvBgNV BAMTKDhCREYwMTMwNTAzOTI0MTA2MjQwMEI5QUVEQUYzRUVDM0JFRTVEMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2A2d2Q9QqfVkUMXqQmyvvrlgR b54mqru0/Rs/ICcQN1m/2pqcAFDvhjQmYUZhPmAn8RbiL3ytJ+JcjeQOpg5C4/6M 368sPJAIsStKre9q5GvAnJUeQFlJoydzGrxMD60oFqE7nqBCEPJvZRsP72CrN+gl pmBRDZbVE5FDKzOXMFJHhaEOZAPFQ4cJeXEgSkHx62uX7UzsSECZ0a7LQf9bdR10 1/AVI6XvEWO3gla66WxPm2DcoKuWpV+dxTZi1Jw+tEQPr0qjROf7OOabIFUIRz1C MMxKwLvRe7HY/L9SZRGXD2sLwbzylfXlRSWuZELIE+pXcuBu0bWV0oMGXtl9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUi98BMFA5JBBiQAua7a8+7DvuXQswHwYDVR0j BBgwFoAUKXatx0SL8MqbV9zXiEmh4PlfK0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2M0MzJlMC1kYzNlLTQyY2MtYmNjMC02MjliMTYyMDZjOWEvMC8yOTc2QURDNzQ0 OEJGMENBOUI1N0RDRDc4ODQ5QTFFMEY5NUYyQjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjk3NkFEQzc0NDhCRjBDQTlCNTdEQ0Q3ODg0OUExRTBGOTVG MkI0NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3YzQzMmUwLWRjM2UtNDJjYy1i Y2MwLTYyOWIxNjIwNmM5YS8wLzMxMzYzMDJlMzIzNTJlMzEzNzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBmyMA0GCSqG SIb3DQEBCwUAA4IBAQBTmacc3SLNh/3lAYhotdcGknswfP5XIpoptetk6S1qGMKP AbjWxtVdv+5ox8R9mge/FtsUGlNB0ZpCFFyszzt5DqFqCoCYfNLX6cEo+6ABNpWh eKx1oftnTlPoiWFh7JdepAimIuauM8QT1s4QPI6veV2cPDoqGp6hYeIUdZ1ed6Rd /Of/TfyDcny6Op9R6YE/GsukVa0AnaNQ+M1k26Lf3uEuqwlwxXB2yVJxBtlMhnpy AivqS7fdCgN2tRegJ5151Gs7CpcKwcy2gNYa0M63AbiyXSoR0Iak53k79+Dpxj1U y2SsS1/LH4nFz6xCT/oLFvXPxVeSC4jD4Z5Y17sP -----END CERTIFICATE-----Generated at Thu Jul 3 06:55:05 2025 by rpki-client