$ rpki-client -vvf repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa File: 3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa (raw, json) Hash identifier: UX4GTYxgh3sTP6mJveFmG7hH/tpmW/UH4U2z8tOQWto= Subject key identifier: 18:C5:3F:58:61:F3:E8:C4:49:BC:D1:1F:09:41:13:A9:28:DA:FB:65 Certificate issuer: /CN=31C2F0F25531E3524E0E0E901310435F2F406AC6 Certificate serial: 5E19447FF3FAA3BC0EA8BDB7FDCCC64296E843ED Authority key identifier: 31:C2:F0:F2:55:31:E3:52:4E:0E:0E:90:13:10:43:5F:2F:40:6A:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/31C2F0F25531E3524E0E0E901310435F2F406AC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa Signing time: Tue 30 Sep 2025 08:00:02 +0000 ROA not before: Tue 30 Sep 2025 07:55:02 +0000 ROA not after: Tue 29 Sep 2026 08:00:02 +0000 asID: 153121 IP address blocks: 160.187.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.crl rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/31C2F0F25531E3524E0E0E901310435F2F406AC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:19:44:7f:f3:fa:a3:bc:0e:a8:bd:b7:fd:cc:c6:42:96:e8:43:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31C2F0F25531E3524E0E0E901310435F2F406AC6 Validity Not Before: Sep 30 07:55:02 2025 GMT Not After : Sep 29 08:00:02 2026 GMT Subject: CN=18C53F5861F3E8C449BCD11F094113A928DAFB65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:e6:34:f7:21:14:28:87:8d:b8:aa:54:58: 18:16:02:d3:4b:69:84:85:b0:71:6d:fc:b4:21:b3: 86:46:22:ce:2e:4f:c2:7c:bd:e6:6a:97:cf:06:83: 2d:d7:23:bd:70:52:ca:2e:c9:d0:3f:b3:3f:3a:0c: 31:94:88:af:81:23:86:b3:82:a9:9c:a1:c5:5b:45: 1e:8f:2e:d7:ad:87:42:87:1c:12:29:31:a9:ed:59: 94:f4:9a:17:c8:9a:d0:4c:0d:7a:a9:dd:40:0d:e8: 76:c3:aa:e7:79:54:7f:b9:b6:94:90:6e:39:ce:5c: 2c:01:f5:fd:bc:04:ed:84:99:1c:88:aa:9c:02:a4: f8:1c:71:5f:5e:eb:ab:a1:bf:5c:49:88:15:cb:e7: e4:f9:6e:da:12:ca:9e:72:27:ee:64:d1:eb:9b:84: 0b:d8:a2:d4:b1:39:cf:41:4f:a4:41:94:f7:08:22: 3e:4b:65:db:bc:1c:67:b4:83:9f:80:28:58:c8:a5: 9a:c6:68:6f:c1:b1:1b:ad:2a:aa:94:12:48:29:0f: b2:92:e5:d5:6f:93:b9:c5:cb:88:41:e1:95:4a:e9: 81:d2:92:c7:33:5c:10:12:e9:9e:0c:6f:40:29:72: c8:e7:e6:be:52:a4:9a:f6:0d:df:9c:46:82:4b:0b: d8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C5:3F:58:61:F3:E8:C4:49:BC:D1:1F:09:41:13:A9:28:DA:FB:65 X509v3 Authority Key Identifier: keyid:31:C2:F0:F2:55:31:E3:52:4E:0E:0E:90:13:10:43:5F:2F:40:6A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/31C2F0F25531E3524E0E0E901310435F2F406AC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.144.0/23 Signature Algorithm: sha256WithRSAEncryption 26:d5:20:45:13:b6:4f:9e:61:f0:ad:a3:e3:a4:af:c1:39:9c: a8:d1:88:31:c2:38:5d:97:01:1a:e6:0f:27:f6:09:60:e8:9e: 6a:02:8a:d0:04:68:2e:10:bf:51:91:13:50:e3:b1:c1:1d:01: 96:48:0f:3f:aa:0b:97:99:ba:5f:30:ee:91:36:24:3a:94:66: 0d:0e:93:94:64:18:5a:81:1b:8e:d8:a0:bb:5b:b5:d6:a4:97: 4e:a1:30:b3:9d:ee:03:06:1f:74:a9:02:3a:33:3f:9d:a1:5c: de:a5:a4:29:02:24:3a:4b:d4:59:67:59:d1:61:3b:dc:6b:4d: 63:5e:26:80:81:1b:10:bc:8b:a7:98:e3:61:ac:dd:a7:4d:92: 7a:2d:f8:c5:cb:2f:c0:13:d0:b4:76:d0:ba:07:f5:fc:c1:6e: f6:34:7e:3b:a7:46:29:4c:01:b8:15:45:2d:1e:d7:3e:9c:f9: cb:27:87:19:19:8e:f2:ca:0e:37:dc:98:18:04:84:33:c7:e8: 09:5f:52:e3:a0:3c:dc:86:98:b8:d5:5c:4b:97:8f:6a:ea:41: b9:80:09:c2:5e:74:ca:9f:60:fa:5e:ee:d1:8a:21:a8:97:c8: b4:4a:ab:f7:d7:cb:41:09:5f:4c:73:e3:2c:72:98:dd:e3:86: 34:de:59:87 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXhlEf/P6o7wOqL23/czGQpboQ+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzFDMkYwRjI1NTMxRTM1MjRFMEUwRTkwMTMxMDQzNUYy RjQwNkFDNjAeFw0yNTA5MzAwNzU1MDJaFw0yNjA5MjkwODAwMDJaMDMxMTAvBgNV BAMTKDE4QzUzRjU4NjFGM0U4QzQ0OUJDRDExRjA5NDExM0E5MjhEQUZCNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNZuY09yEUKIeNuKpUWBgWAtNL aYSFsHFt/LQhs4ZGIs4uT8J8veZql88Ggy3XI71wUsouydA/sz86DDGUiK+BI4az gqmcocVbRR6PLteth0KHHBIpMantWZT0mhfImtBMDXqp3UAN6HbDqud5VH+5tpSQ bjnOXCwB9f28BO2EmRyIqpwCpPgccV9e66uhv1xJiBXL5+T5btoSyp5yJ+5k0eub hAvYotSxOc9BT6RBlPcIIj5LZdu8HGe0g5+AKFjIpZrGaG/BsRutKqqUEkgpD7KS 5dVvk7nFy4hB4ZVK6YHSksczXBAS6Z4Mb0Apcsjn5r5SpJr2Dd+cRoJLC9hRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGMU/WGHz6MRJvNEfCUETqSja+2UwHwYDVR0j BBgwFoAUMcLw8lUx41JODg6QExBDXy9AasYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTg5YjdkZC05OWE3LTQ1MGUtYmU4NC1iM2JmYzczNDBmMWYvMC8zMUMyRjBGMjU1 MzFFMzUyNEUwRTBFOTAxMzEwNDM1RjJGNDA2QUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzFDMkYwRjI1NTMxRTM1MjRFMEUwRTkwMTMxMDQzNUYyRjQw NkFDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhODliN2RkLTk5YTctNDUwZS1i ZTg0LWIzYmZjNzM0MGYxZi8wLzMxMzYzMDJlMzEzODM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzMzMTMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu5AwDQYJ KoZIhvcNAQELBQADggEBACbVIEUTtk+eYfCto+Okr8E5nKjRiDHCOF2XARrmDyf2 CWDonmoCitAEaC4Qv1GRE1DjscEdAZZIDz+qC5eZul8w7pE2JDqUZg0Ok5RkGFqB G47YoLtbtdakl06hMLOd7gMGH3SpAjozP52hXN6lpCkCJDpL1FlnWdFhO9xrTWNe JoCBGxC8i6eY42Gs3adNknot+MXLL8AT0LR20LoH9fzBbvY0fjunRilMAbgVRS0e 1z6c+csnhxkZjvLKDjfcmBgEhDPH6AlfUuOgPNyGmLjVXEuXj2rqQbmACcJedMqf YPpe7tGKIaiXyLRKq/fXy0EJX0xz4yxymN3jhjTeWYc= -----END CERTIFICATE-----Generated at Tue Oct 21 13:21:11 2025 by rpki-client