$ rpki-client -vvf repo-rpki.idnic.net/repo/9bcc62ae-20c8-4974-aae9-b108df8e2f59/0/3136302e3139312e3233342e302f32342d3234203d3e20313533343932.roa File: 3136302e3139312e3233342e302f32342d3234203d3e20313533343932.roa (raw, json) Hash identifier: UIZ03usfq2XFdSk/q+e6qEltdDYNXrFthkIDpbSov1g= Subject key identifier: E2:D2:D9:8D:33:FA:43:06:44:1D:30:A3:09:BA:E6:13:48:31:8A:E5 Certificate issuer: /CN=0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF Certificate serial: 6493936156A540C632192E4FF3E8DA6036AD6D3B Authority key identifier: 0A:8C:0B:B4:5F:84:12:F7:F2:DC:2F:44:2F:5F:CE:B7:92:A2:DB:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9bcc62ae-20c8-4974-aae9-b108df8e2f59/0/3136302e3139312e3233342e302f32342d3234203d3e20313533343932.roa Signing time: Sat 06 Sep 2025 13:18:00 +0000 ROA not before: Sat 06 Sep 2025 13:13:00 +0000 ROA not after: Sat 05 Sep 2026 13:18:00 +0000 asID: 153492 IP address blocks: 160.191.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9bcc62ae-20c8-4974-aae9-b108df8e2f59/0/0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF.crl rsync://repo-rpki.idnic.net/repo/9bcc62ae-20c8-4974-aae9-b108df8e2f59/0/0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:93:93:61:56:a5:40:c6:32:19:2e:4f:f3:e8:da:60:36:ad:6d:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF Validity Not Before: Sep 6 13:13:00 2025 GMT Not After : Sep 5 13:18:00 2026 GMT Subject: CN=E2D2D98D33FA4306441D30A309BAE61348318AE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fb:b5:1f:42:1e:0e:d4:24:98:f5:e8:f2:03: 67:d9:c7:22:36:bc:61:e6:ae:3e:2d:89:28:4f:c1: 24:f3:82:ee:69:36:9c:18:66:f6:d6:e0:16:e9:39: b6:04:8f:ed:cc:15:0e:f2:49:5e:56:c5:9e:de:43: 29:20:cd:a8:e2:91:19:7f:68:ef:f8:5e:85:c2:90: 7e:d2:00:a3:0e:8a:27:3a:e9:9d:4e:20:ad:3e:b1: 8d:c7:73:dc:0d:ea:0a:1b:77:78:5a:b7:13:02:9c: da:df:2b:2e:eb:18:c5:60:3c:8f:be:ff:6f:b1:2d: d5:75:c7:07:27:45:56:57:21:ca:85:d7:5c:ad:bc: 3a:48:c2:aa:19:fc:c3:ef:5e:40:e3:ed:73:bb:e0: 72:70:c1:24:16:68:5d:56:dd:aa:5f:f7:9a:a5:99: 43:29:af:3b:20:b2:3d:dd:59:53:a3:f6:cf:b7:18: e7:da:cc:66:cf:70:5c:ef:a1:9f:61:11:e3:c9:79: f5:e4:5a:c7:27:f4:8d:1c:7a:17:73:3f:a9:ba:77: cb:af:d9:27:72:2b:38:9c:0a:f2:be:19:bc:4e:07: b6:df:66:6e:69:a1:02:72:78:a3:99:85:61:3b:f9: f2:df:3e:13:b8:62:f3:23:53:d1:b6:ee:3d:63:2a: d1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D2:D9:8D:33:FA:43:06:44:1D:30:A3:09:BA:E6:13:48:31:8A:E5 X509v3 Authority Key Identifier: keyid:0A:8C:0B:B4:5F:84:12:F7:F2:DC:2F:44:2F:5F:CE:B7:92:A2:DB:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9bcc62ae-20c8-4974-aae9-b108df8e2f59/0/0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A8C0BB45F8412F7F2DC2F442F5FCEB792A2DBFF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9bcc62ae-20c8-4974-aae9-b108df8e2f59/0/3136302e3139312e3233342e302f32342d3234203d3e20313533343932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.234.0/24 Signature Algorithm: sha256WithRSAEncryption 67:c1:a9:7f:6b:0f:6b:c6:87:cd:d4:c7:04:17:d8:e1:cb:ca: 47:de:35:43:47:57:bc:2f:a7:95:1c:a6:71:c5:70:44:94:7a: 09:a7:36:0b:5d:d7:5d:42:6f:f4:a1:72:f9:e5:7b:99:7f:74: 12:90:36:08:52:22:74:e1:e9:01:5e:0a:6d:69:2c:d9:39:e0: 05:11:11:aa:b9:e2:e6:28:dd:bf:1a:d4:a4:71:9c:ca:60:82: 49:57:c3:82:84:1f:6a:3e:1e:d3:ce:23:cb:a9:9f:f7:82:17: c3:9b:42:4b:0f:a5:ca:6a:a4:de:cf:7f:80:1e:73:f5:14:c2: db:33:2f:7e:52:6b:97:fe:49:c2:7a:3c:41:a6:1e:a5:64:1d: 58:0c:8c:72:f9:dc:a8:c0:a3:9d:e1:ce:4b:2a:33:2f:6d:04: 36:15:b2:9f:de:4c:92:72:78:97:81:19:99:6b:8c:f7:66:fb: 99:81:37:ee:a1:7b:2e:d7:5a:9b:e3:6c:fe:39:65:b5:5d:00: 1d:08:f7:9f:0d:d5:1d:6e:19:f8:c0:fb:2f:de:d1:66:8a:c2: a1:b2:d1:7d:82:f4:e7:40:c0:a2:c7:8d:dd:e2:12:7f:09:36: 77:c6:93:f9:52:d1:61:e6:3b:02:95:69:2e:0a:1c:3b:3d:b1: 40:55:e0:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZJOTYValQMYyGS5P8+jaYDatbTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4QzBCQjQ1Rjg0MTJGN0YyREMyRjQ0MkY1RkNFQjc5 MkEyREJGRjAeFw0yNTA5MDYxMzEzMDBaFw0yNjA5MDUxMzE4MDBaMDMxMTAvBgNV BAMTKEUyRDJEOThEMzNGQTQzMDY0NDFEMzBBMzA5QkFFNjEzNDgzMThBRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI+7UfQh4O1CSY9ejyA2fZxyI2 vGHmrj4tiShPwSTzgu5pNpwYZvbW4BbpObYEj+3MFQ7ySV5WxZ7eQykgzajikRl/ aO/4XoXCkH7SAKMOiic66Z1OIK0+sY3Hc9wN6gobd3hatxMCnNrfKy7rGMVgPI++ /2+xLdV1xwcnRVZXIcqF11ytvDpIwqoZ/MPvXkDj7XO74HJwwSQWaF1W3apf95ql mUMprzsgsj3dWVOj9s+3GOfazGbPcFzvoZ9hEePJefXkWscn9I0cehdzP6m6d8uv 2SdyKzicCvK+GbxOB7bfZm5poQJyeKOZhWE7+fLfPhO4YvMjU9G27j1jKtGFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4tLZjTP6QwZEHTCjCbrmE0gxiuUwHwYDVR0j BBgwFoAUCowLtF+EEvfy3C9EL1/Ot5Ki2/8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YmNjNjJhZS0yMGM4LTQ5NzQtYWFlOS1iMTA4ZGY4ZTJmNTkvMC8wQThDMEJCNDVG ODQxMkY3RjJEQzJGNDQyRjVGQ0VCNzkyQTJEQkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEE4QzBCQjQ1Rjg0MTJGN0YyREMyRjQ0MkY1RkNFQjc5MkEy REJGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliY2M2MmFlLTIwYzgtNDk3NC1h YWU5LWIxMDhkZjhlMmY1OS8wLzMxMzYzMDJlMzEzOTMxMmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzNDM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgv+owDQYJ KoZIhvcNAQELBQADggEBAGfBqX9rD2vGh83UxwQX2OHLykfeNUNHV7wvp5UcpnHF cESUegmnNgtd111Cb/Shcvnle5l/dBKQNghSInTh6QFeCm1pLNk54AUREaq54uYo 3b8a1KRxnMpggklXw4KEH2o+HtPOI8upn/eCF8ObQksPpcpqpN7Pf4Aec/UUwtsz L35Sa5f+ScJ6PEGmHqVkHVgMjHL53KjAo53hzksqMy9tBDYVsp/eTJJyeJeBGZlr jPdm+5mBN+6hey7XWpvjbP45ZbVdAB0I958N1R1uGfjA+y/e0WaKwqGy0X2C9OdA wKLHjd3iEn8JNnfGk/lS0WHmOwKVaS4KHDs9sUBV4PA= -----END CERTIFICATE-----Generated at Mon Oct 20 22:16:21 2025 by rpki-client