$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa File: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: NLnyyxEhnshl8M0vZmmh6y422VBLzdBQzG682UNLOQc= Subject key identifier: 61:88:75:0D:F1:2D:AF:B3:83:0E:21:8C:DD:C7:3D:45:38:16:70:77 Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Certificate serial: 652552DCE7B706127B002CA1F9C8B4640E4A5060 Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa Signing time: Fri 03 Oct 2025 07:02:58 +0000 ROA not before: Fri 03 Oct 2025 06:57:58 +0000 ROA not after: Fri 02 Oct 2026 07:02:58 +0000 asID: 140456 IP address blocks: 160.22.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 05:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:25:52:dc:e7:b7:06:12:7b:00:2c:a1:f9:c8:b4:64:0e:4a:50:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Validity Not Before: Oct 3 06:57:58 2025 GMT Not After : Oct 2 07:02:58 2026 GMT Subject: CN=6188750DF12DAFB3830E218CDDC73D4538167077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:09:b5:e8:20:8c:ce:aa:cd:70:92:76:ea:2d: e9:60:81:56:f9:cb:14:c8:79:fa:b5:55:5d:82:2a: a1:fe:2d:86:a9:57:b5:da:3e:ac:64:e3:c2:5c:fb: 6d:af:eb:3d:61:81:f1:9a:5f:e4:88:36:c4:68:18: 49:78:b6:63:08:a8:95:64:4a:a1:51:8c:76:78:4b: f4:e2:95:1f:4b:16:82:72:b9:f6:6b:17:f7:a0:ea: 32:77:f8:f5:b4:17:47:09:d3:fb:d3:bd:31:90:63: 21:e0:3c:7a:bb:0d:54:ed:96:31:f5:38:a3:94:d5: 0e:91:47:ad:ce:66:95:b0:13:89:2a:87:cf:78:8f: 0d:d4:b7:db:f5:72:fc:dd:12:ce:e3:32:f5:ba:d6: 34:92:8e:98:23:2b:c5:20:d7:67:34:ad:f7:b3:11: ea:be:08:20:bc:88:89:6a:63:8a:45:60:fa:c7:e3: 53:38:38:a4:e0:56:37:2a:1c:fc:c3:22:f8:da:f2: a0:a8:51:75:7e:9e:91:fa:c8:95:d7:de:35:90:76: f1:60:c8:ec:ce:1e:33:25:53:06:4a:17:c2:09:af: 0c:cd:7b:60:8d:3c:a4:ff:02:b3:72:26:7e:f7:37: c5:38:b4:b8:93:fa:9d:c6:b5:3e:d7:48:92:bf:fc: 73:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:88:75:0D:F1:2D:AF:B3:83:0E:21:8C:DD:C7:3D:45:38:16:70:77 X509v3 Authority Key Identifier: keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.250.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:bd:a0:8a:aa:0d:ff:69:14:22:51:7e:8a:d1:e7:bd:32:05: 13:72:e0:a1:b4:50:61:bf:a9:dd:e0:67:10:b5:2f:25:48:8b: 9b:d0:39:83:c6:fb:53:0c:b1:0e:4d:0b:03:85:1b:50:90:60: 8f:79:dd:99:35:a5:e2:d5:70:11:df:f6:d9:4e:5a:b6:2e:25: 5f:52:27:f1:44:05:52:9d:76:d1:99:7b:31:cf:4b:45:cd:ce: b5:dd:6c:bf:72:cd:c2:70:98:c6:7c:d4:23:fd:c3:bf:f5:67: 7d:1d:53:2b:8a:ea:11:05:42:d9:46:44:fb:d4:d7:49:be:e2: 0a:8a:e0:06:56:47:d8:83:4d:15:04:4d:02:c1:41:ce:72:5a: 65:db:c9:1a:ef:73:8b:c7:c2:e0:15:4b:90:47:ad:cf:22:e8: 05:5b:5f:39:31:e8:45:d5:cf:a9:80:59:f0:05:50:f7:28:f9: be:e8:87:18:81:31:11:1a:f3:e2:8c:81:88:8f:9d:03:49:2b: 78:d6:ed:de:91:b0:ff:c5:10:58:7a:33:28:48:b3:e4:b0:25: 9f:29:49:39:81:24:de:bf:07:58:c3:d3:ea:56:be:9e:0f:be: f1:03:ca:d9:83:09:c0:23:4b:b6:60:07:d6:19:ad:ca:f3:97: 49:55:86:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZSVS3Oe3BhJ7ACyh+ci0ZA5KUGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBF OUIyREEzNjAeFw0yNTEwMDMwNjU3NThaFw0yNjEwMDIwNzAyNThaMDMxMTAvBgNV BAMTKDYxODg3NTBERjEyREFGQjM4MzBFMjE4Q0REQzczRDQ1MzgxNjcwNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3CbXoIIzOqs1wknbqLelggVb5 yxTIefq1VV2CKqH+LYapV7XaPqxk48Jc+22v6z1hgfGaX+SINsRoGEl4tmMIqJVk SqFRjHZ4S/TilR9LFoJyufZrF/eg6jJ3+PW0F0cJ0/vTvTGQYyHgPHq7DVTtljH1 OKOU1Q6RR63OZpWwE4kqh894jw3Ut9v1cvzdEs7jMvW61jSSjpgjK8Ug12c0rfez Eeq+CCC8iIlqY4pFYPrH41M4OKTgVjcqHPzDIvja8qCoUXV+npH6yJXX3jWQdvFg yOzOHjMlUwZKF8IJrwzNe2CNPKT/ArNyJn73N8U4tLiT+p3GtT7XSJK//HPTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYYh1DfEtr7ODDiGM3cc9RTgWcHcwHwYDVR0j BBgwFoAUjiBZstJEhYXRHtKwFD/vwOmy2jYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMC84RTIwNTlCMkQy NDQ4NTg1RDExRUQyQjAxNDNGRUZDMEU5QjJEQTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBFOUIy REEzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwOGFiMTU3LWQ4MjctNDlhOC1i Yjg2LTI4YmUxMzFjM2QyNi8wLzMxMzYzMDJlMzIzMjJlMzIzNTMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBb6MA0GCSqG SIb3DQEBCwUAA4IBAQCMvaCKqg3/aRQiUX6K0ee9MgUTcuChtFBhv6nd4GcQtS8l SIub0DmDxvtTDLEOTQsDhRtQkGCPed2ZNaXi1XAR3/bZTlq2LiVfUifxRAVSnXbR mXsxz0tFzc613Wy/cs3CcJjGfNQj/cO/9Wd9HVMriuoRBULZRkT71NdJvuIKiuAG VkfYg00VBE0CwUHOclpl28ka73OLx8LgFUuQR63PIugFW185MehF1c+pgFnwBVD3 KPm+6IcYgTERGvPijIGIj50DSSt41u3ekbD/xRBYejMoSLPksCWfKUk5gSTevwdY w9PqVr6eD77xA8rZgwnAI0u2YAfWGa3K85dJVYYc -----END CERTIFICATE-----Generated at Mon Oct 20 15:08:03 2025 by rpki-client