$ rpki-client -vvf repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35352e302f32342d3234203d3e20313533303630.roa File: 3136302e32352e35352e302f32342d3234203d3e20313533303630.roa (raw, json) Hash identifier: MP77i5+UkMfE9Efc/VCdIpK7dS6PJg0LKmWtQikmXHg= Subject key identifier: 09:EE:00:A2:1D:BF:6D:7E:18:D3:AF:F3:DD:65:92:C7:48:EF:31:25 Certificate issuer: /CN=020EA2304929066809CA6F723574798639D77438 Certificate serial: 2CD1C67D0B4254446A22A9067523455FDA710756 Authority key identifier: 02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35352e302f32342d3234203d3e20313533303630.roa Signing time: Mon 23 Jun 2025 14:00:00 +0000 ROA not before: Mon 23 Jun 2025 13:55:00 +0000 ROA not after: Mon 22 Jun 2026 14:00:00 +0000 asID: 153060 IP address blocks: 160.25.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.crl rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 16:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d1:c6:7d:0b:42:54:44:6a:22:a9:06:75:23:45:5f:da:71:07:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020EA2304929066809CA6F723574798639D77438 Validity Not Before: Jun 23 13:55:00 2025 GMT Not After : Jun 22 14:00:00 2026 GMT Subject: CN=09EE00A21DBF6D7E18D3AFF3DD6592C748EF3125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0f:62:b7:0b:fc:de:79:f7:7e:2d:0c:e9:92: 47:fd:03:63:f8:7b:d3:02:3e:74:c6:08:46:22:b6: fe:5d:1a:23:39:02:c6:af:58:a0:8b:5e:b5:0f:ea: 5a:42:ad:9c:1c:a0:45:0d:c3:13:6c:c4:c6:ea:dd: 13:8f:c7:70:9f:6d:b6:b6:ea:97:4d:cf:89:e4:d7: b0:71:20:4e:87:c2:53:1f:4b:14:07:df:9e:07:1e: 35:24:df:59:bc:68:e2:c3:e6:a3:32:87:33:24:d9: 20:16:5f:8a:1b:e4:0c:8f:26:27:5d:14:69:77:bc: 20:cb:d2:fa:da:ef:ff:ed:46:a0:9a:e2:20:ae:89: 8b:f5:6e:5c:3e:fd:4e:d3:c7:84:67:9d:09:75:b1: 5c:bd:e0:d4:01:36:21:a5:49:34:14:c0:6d:1e:75: 01:e0:1d:64:23:d1:d4:a7:ef:68:ee:68:78:33:58: 01:16:b8:f0:61:68:ca:6a:56:9c:0e:aa:d6:94:a7: 9a:3c:5e:3c:2d:61:3f:99:0a:2e:ce:34:05:1f:f6: fc:4c:3b:90:bf:62:16:1e:dc:9e:3f:8b:98:f2:ca: 68:da:05:46:9a:79:ef:69:80:ef:fb:4d:f2:f0:1c: 05:c0:1c:f2:57:a0:34:15:c2:e9:2e:e6:90:61:f9: b6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EE:00:A2:1D:BF:6D:7E:18:D3:AF:F3:DD:65:92:C7:48:EF:31:25 X509v3 Authority Key Identifier: keyid:02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/3136302e32352e35352e302f32342d3234203d3e20313533303630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.55.0/24 Signature Algorithm: sha256WithRSAEncryption 16:d4:be:8c:ae:8f:81:39:d8:dd:3d:0e:83:be:1a:b5:2a:15: 28:4e:cc:29:1f:2c:fb:34:c3:a3:88:09:3a:23:50:9f:e9:91: 77:1b:5b:a3:5b:c1:f5:05:58:f0:32:0c:92:00:cd:59:34:9e: a6:2c:39:ed:5d:48:bd:5a:9f:47:27:ec:94:06:81:e9:e8:43: 14:89:33:f0:67:7f:a1:e9:6c:14:ed:a7:6a:cd:e9:79:83:51: 42:da:6c:17:d7:da:ff:35:06:5f:f1:d4:20:ad:04:19:aa:be: d3:93:2e:35:f5:78:6b:73:d7:41:67:c9:3b:c5:d5:40:41:a1: 83:2c:91:29:3c:74:ab:fb:a2:52:42:0e:c6:2b:cc:1e:35:16: 32:7e:c1:09:3a:8b:4a:e7:b5:0a:f7:88:8d:b6:f5:57:33:79: 6f:73:53:a4:00:fd:41:9c:b7:ca:c8:21:7d:1c:85:c8:bf:fb: 1b:6a:35:6f:ac:c1:60:38:cb:da:0e:ca:3a:8a:09:d5:4d:ae: 5b:d3:34:5a:b7:36:ff:d3:d8:f2:4d:69:3e:2d:07:66:69:04: ed:94:e5:a5:0c:8b:ce:92:c2:dc:af:eb:f0:11:46:df:7b:8f: c2:b0:51:58:27:b2:2f:f1:ce:9f:13:a6:be:2b:e1:c8:bd:59: 24:b2:4a:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULNHGfQtCVERqIqkGdSNFX9pxB1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwRUEyMzA0OTI5MDY2ODA5Q0E2RjcyMzU3NDc5ODYz OUQ3NzQzODAeFw0yNTA2MjMxMzU1MDBaFw0yNjA2MjIxNDAwMDBaMDMxMTAvBgNV BAMTKDA5RUUwMEEyMURCRjZEN0UxOEQzQUZGM0RENjU5MkM3NDhFRjMxMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkD2K3C/zeefd+LQzpkkf9A2P4 e9MCPnTGCEYitv5dGiM5AsavWKCLXrUP6lpCrZwcoEUNwxNsxMbq3ROPx3Cfbba2 6pdNz4nk17BxIE6HwlMfSxQH354HHjUk31m8aOLD5qMyhzMk2SAWX4ob5AyPJidd FGl3vCDL0vra7//tRqCa4iCuiYv1blw+/U7Tx4RnnQl1sVy94NQBNiGlSTQUwG0e dQHgHWQj0dSn72juaHgzWAEWuPBhaMpqVpwOqtaUp5o8XjwtYT+ZCi7ONAUf9vxM O5C/YhYe3J4/i5jyymjaBUaaee9pgO/7TfLwHAXAHPJXoDQVwuku5pBh+bb9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCe4Aoh2/bX4Y06/z3WWSx0jvMSUwHwYDVR0j BBgwFoAUAg6iMEkpBmgJym9yNXR5hjnXdDgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWEyNmExMC01OGU4LTQzYzctOTQ3ZS03MjIxNzNkNjY2MTQvMC8wMjBFQTIzMDQ5 MjkwNjY4MDlDQTZGNzIzNTc0Nzk4NjM5RDc3NDM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDIwRUEyMzA0OTI5MDY2ODA5Q0E2RjcyMzU3NDc5ODYzOUQ3 NzQzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTI2YTEwLTU4ZTgtNDNjNy05 NDdlLTcyMjE3M2Q2NjYxNC8wLzMxMzYzMDJlMzIzNTJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZNzANBgkqhkiG 9w0BAQsFAAOCAQEAFtS+jK6PgTnY3T0Og74atSoVKE7MKR8s+zTDo4gJOiNQn+mR dxtbo1vB9QVY8DIMkgDNWTSepiw57V1IvVqfRyfslAaB6ehDFIkz8Gd/oelsFO2n as3peYNRQtpsF9fa/zUGX/HUIK0EGaq+05MuNfV4a3PXQWfJO8XVQEGhgyyRKTx0 q/uiUkIOxivMHjUWMn7BCTqLSue1CveIjbb1VzN5b3NTpAD9QZy3ysghfRyFyL/7 G2o1b6zBYDjL2g7KOooJ1U2uW9M0Wrc2/9PY8k1pPi0HZmkE7ZTlpQyLzpLC3K/r 8BFG33uPwrBRWCeyL/HOnxOmvivhyL1ZJLJKww== -----END CERTIFICATE-----Generated at Tue Jul 1 23:27:54 2025 by rpki-client