$ rpki-client -vvf repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35342e302f32332d3233203d3e20313533303630.roa File: 3136302e32352e35342e302f32332d3233203d3e20313533303630.roa (raw, json) Hash identifier: uy4GZwLcX8h4qJ/41Iyyu5hW7OpcKZdliUQdGRiHTnc= Subject key identifier: E7:8A:13:BD:1D:7A:73:F8:60:67:54:3C:4B:E3:24:FD:5D:3C:BB:85 Certificate issuer: /CN=020EA2304929066809CA6F723574798639D77438 Certificate serial: 7A611CF1938D59D91C1302401D55465219D4516C Authority key identifier: 02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35342e302f32332d3233203d3e20313533303630.roa Signing time: Sat 21 Jun 2025 09:00:00 +0000 ROA not before: Sat 21 Jun 2025 08:55:00 +0000 ROA not after: Sat 20 Jun 2026 09:00:00 +0000 asID: 153060 IP address blocks: 160.25.54.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.crl rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 16:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:61:1c:f1:93:8d:59:d9:1c:13:02:40:1d:55:46:52:19:d4:51:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020EA2304929066809CA6F723574798639D77438 Validity Not Before: Jun 21 08:55:00 2025 GMT Not After : Jun 20 09:00:00 2026 GMT Subject: CN=E78A13BD1D7A73F86067543C4BE324FD5D3CBB85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4f:47:45:15:b8:7b:62:8d:74:db:e0:a0:60: 53:85:a4:a4:68:82:ab:26:66:9d:3a:78:0c:86:52: 38:b5:d3:d1:1a:b4:ba:48:c7:64:5e:23:a1:d5:32: 83:35:ce:fc:e4:e6:d9:7d:ee:cb:ee:ca:61:87:9d: d4:99:53:b3:f3:f6:19:23:03:97:3a:85:71:b4:a7: b8:4f:43:97:b3:69:96:3e:38:70:79:78:a5:a5:67: 18:e9:99:04:1f:b8:c2:5c:b5:d7:ab:d9:8d:8f:bf: 60:84:bf:ca:05:39:8d:d2:dd:c0:e5:ec:c9:1b:37: 83:4f:dc:be:65:c0:e2:b5:c6:d3:36:d3:23:5f:ef: 45:b4:d9:e0:87:a6:c1:68:5c:37:56:af:99:d2:1d: 83:bb:36:87:62:6a:9e:fd:a3:e6:c4:ef:68:be:a6: 5a:28:1d:93:67:7a:9f:11:ce:cf:de:c3:06:7c:19: ed:dc:41:55:a4:2f:9f:05:e5:c3:21:a3:cd:73:18: d6:34:e3:c1:4c:28:f4:ff:49:a7:18:b3:c8:c9:40: 02:61:91:32:da:3a:bd:46:2b:23:83:36:8f:21:ad: 50:b9:af:ff:98:1c:9b:70:b6:ae:e7:cc:b7:ec:1d: ca:5c:b2:d1:e8:bf:36:01:b7:4d:d0:b6:32:f8:8e: 63:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:8A:13:BD:1D:7A:73:F8:60:67:54:3C:4B:E3:24:FD:5D:3C:BB:85 X509v3 Authority Key Identifier: keyid:02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35342e302f32332d3233203d3e20313533303630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.54.0/23 Signature Algorithm: sha256WithRSAEncryption 39:42:1b:41:01:82:5c:f7:4a:ea:c1:68:f6:31:b4:72:8d:8d: dd:c8:3a:b7:b2:67:af:d0:7b:73:04:c4:6d:81:8f:1d:12:8a: 69:77:52:9f:30:fe:b4:0d:78:3b:26:f8:d3:78:c5:d8:87:62: 98:48:5d:8b:5f:df:9b:4d:b4:6c:03:3e:4f:6c:76:0b:03:47: 21:e0:2f:c6:64:ee:20:e0:2e:06:e6:5c:7e:f7:4b:12:06:b1: 22:8d:08:0f:d4:f2:d1:85:92:23:1e:eb:05:75:95:06:28:2e: 49:ad:1b:a6:cd:86:3f:9e:9a:c9:bc:7e:c0:04:f7:8d:32:86: a0:30:74:dd:cb:9d:b8:64:ab:67:33:76:b4:e7:8e:c1:b9:4a: ad:14:e7:1a:e7:b3:55:be:cb:d2:54:e4:0d:8c:b8:7e:8a:6e: 2c:52:a5:42:91:e8:74:47:65:d4:dd:e4:d1:8f:a2:f8:c3:1f: d1:00:96:7a:8c:14:9b:87:e8:a0:a5:dc:d7:4a:36:38:1b:c8: ba:6a:63:1c:9c:e3:2b:7f:7f:c8:97:b0:b1:ad:cd:30:b9:53: 59:48:7d:89:a4:1b:6d:e5:a9:81:0d:18:99:0e:d1:16:8f:d4: a6:e6:7e:69:06:35:c5:94:ab:4b:e5:4b:6a:e8:1e:24:6d:3f: 41:f0:d0:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUemEc8ZONWdkcEwJAHVVGUhnUUWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwRUEyMzA0OTI5MDY2ODA5Q0E2RjcyMzU3NDc5ODYz OUQ3NzQzODAeFw0yNTA2MjEwODU1MDBaFw0yNjA2MjAwOTAwMDBaMDMxMTAvBgNV BAMTKEU3OEExM0JEMUQ3QTczRjg2MDY3NTQzQzRCRTMyNEZENUQzQ0JCODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6T0dFFbh7Yo102+CgYFOFpKRo gqsmZp06eAyGUji109EatLpIx2ReI6HVMoM1zvzk5tl97svuymGHndSZU7Pz9hkj A5c6hXG0p7hPQ5ezaZY+OHB5eKWlZxjpmQQfuMJctder2Y2Pv2CEv8oFOY3S3cDl 7MkbN4NP3L5lwOK1xtM20yNf70W02eCHpsFoXDdWr5nSHYO7Nodiap79o+bE72i+ plooHZNnep8Rzs/ewwZ8Ge3cQVWkL58F5cMho81zGNY048FMKPT/SacYs8jJQAJh kTLaOr1GKyODNo8hrVC5r/+YHJtwtq7nzLfsHcpcstHovzYBt03QtjL4jmNHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU54oTvR16c/hgZ1Q8S+Mk/V08u4UwHwYDVR0j BBgwFoAUAg6iMEkpBmgJym9yNXR5hjnXdDgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWEyNmExMC01OGU4LTQzYzctOTQ3ZS03MjIxNzNkNjY2MTQvMC8wMjBFQTIzMDQ5 MjkwNjY4MDlDQTZGNzIzNTc0Nzk4NjM5RDc3NDM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDIwRUEyMzA0OTI5MDY2ODA5Q0E2RjcyMzU3NDc5ODYzOUQ3 NzQzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTI2YTEwLTU4ZTgtNDNjNy05 NDdlLTcyMjE3M2Q2NjYxNC8wLzMxMzYzMDJlMzIzNTJlMzUzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMzMwMzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZNjANBgkqhkiG 9w0BAQsFAAOCAQEAOUIbQQGCXPdK6sFo9jG0co2N3cg6t7Jnr9B7cwTEbYGPHRKK aXdSnzD+tA14Oyb403jF2IdimEhdi1/fm020bAM+T2x2CwNHIeAvxmTuIOAuBuZc fvdLEgaxIo0ID9Ty0YWSIx7rBXWVBiguSa0bps2GP56aybx+wAT3jTKGoDB03cud uGSrZzN2tOeOwblKrRTnGuezVb7L0lTkDYy4fopuLFKlQpHodEdl1N3k0Y+i+MMf 0QCWeowUm4fooKXc10o2OBvIumpjHJzjK39/yJewsa3NMLlTWUh9iaQbbeWpgQ0Y mQ7RFo/UpuZ+aQY1xZSrS+VLaugeJG0/QfDQYQ== -----END CERTIFICATE-----Generated at Tue Jul 1 23:26:04 2025 by rpki-client