$ rpki-client -vvf repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa File: 3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa (raw, json) Hash identifier: eLoJQcRR7UviwY1rgXoVkCmTBMM5/WsPMnoDlvo+6Xo= Subject key identifier: 1F:C3:52:6E:FB:D0:6A:2C:59:04:D8:FD:C3:A6:53:B5:AA:E8:4C:7A Certificate issuer: /CN=F91B50B9BD34481B7AED3341ECBE67B1731B3908 Certificate serial: 68C8FC4DAC47922491D50A8D2C320B249E85CC3B Authority key identifier: F9:1B:50:B9:BD:34:48:1B:7A:ED:33:41:EC:BE:67:B1:73:1B:39:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F91B50B9BD34481B7AED3341ECBE67B1731B3908.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa Signing time: Sun 12 Oct 2025 13:00:01 +0000 ROA not before: Sun 12 Oct 2025 12:55:01 +0000 ROA not after: Sun 11 Oct 2026 13:00:01 +0000 asID: 153071 IP address blocks: 160.25.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/F91B50B9BD34481B7AED3341ECBE67B1731B3908.crl rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/F91B50B9BD34481B7AED3341ECBE67B1731B3908.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F91B50B9BD34481B7AED3341ECBE67B1731B3908.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c8:fc:4d:ac:47:92:24:91:d5:0a:8d:2c:32:0b:24:9e:85:cc:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F91B50B9BD34481B7AED3341ECBE67B1731B3908 Validity Not Before: Oct 12 12:55:01 2025 GMT Not After : Oct 11 13:00:01 2026 GMT Subject: CN=1FC3526EFBD06A2C5904D8FDC3A653B5AAE84C7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c2:41:07:57:9e:ad:42:38:aa:b8:2d:a9:a5: 61:d4:29:94:d1:39:12:61:da:b6:7e:11:fd:21:92: 5f:1d:dd:3b:e7:35:cc:08:df:8b:d6:69:f5:58:08: e6:d1:1e:f8:ed:b4:00:6e:ee:a0:53:b6:c6:7e:5c: 2e:30:43:16:cd:7d:e4:c3:de:d8:31:48:b9:c4:2a: e8:17:36:e3:15:29:b2:ef:da:87:10:d7:09:c9:aa: e3:73:3a:0f:4f:4d:dc:cb:67:7a:24:6b:c8:29:03: 81:0d:39:d2:d2:f6:9b:10:9d:81:1f:69:d9:9f:06: d7:af:cb:62:57:95:51:59:82:1a:74:cc:b8:4c:11: 6d:92:0c:28:d6:1b:8a:87:16:8d:ce:19:9c:cc:70: 86:bc:de:f6:68:4a:9d:51:90:2e:97:9f:32:db:da: 89:fa:54:3d:8e:0b:70:56:28:06:7f:f4:7e:05:3f: e9:d8:41:d7:93:98:95:3e:bd:1e:5c:d3:69:b4:f3: 3d:87:a1:8c:69:e4:8c:6d:48:ab:c8:76:72:1c:88: 9b:bf:98:be:6a:c1:42:a0:03:48:3f:5c:96:19:37: 57:20:46:06:9d:ff:41:52:d5:b2:5f:16:4c:97:fa: 10:b5:37:a5:3b:bb:aa:54:63:16:2f:5f:88:ed:8a: 37:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C3:52:6E:FB:D0:6A:2C:59:04:D8:FD:C3:A6:53:B5:AA:E8:4C:7A X509v3 Authority Key Identifier: keyid:F9:1B:50:B9:BD:34:48:1B:7A:ED:33:41:EC:BE:67:B1:73:1B:39:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/F91B50B9BD34481B7AED3341ECBE67B1731B3908.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F91B50B9BD34481B7AED3341ECBE67B1731B3908.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.114.0/24 Signature Algorithm: sha256WithRSAEncryption d0:c4:0d:9f:a2:bd:87:5e:a0:19:ec:fd:be:8c:51:c7:e2:4d: 2b:a6:22:27:28:68:0c:82:7a:64:f9:95:fd:ea:c6:6c:e9:3c: ce:4d:bd:04:0a:0b:85:e1:29:13:76:85:b0:bf:b4:b3:be:e8: d1:b7:8f:0f:6e:1a:8d:4d:16:e8:83:c7:71:2f:d7:e4:c9:25: 84:bf:d1:32:7a:0e:3b:3a:ff:e0:73:52:5a:83:75:57:13:b0: 31:92:6d:7a:9e:df:51:63:6e:69:8c:6d:45:c4:ae:58:ca:6d: 5e:07:a4:f0:6b:fe:de:26:e6:cd:ef:9e:89:a2:8f:de:c0:fb: d2:ae:54:fe:e5:2d:28:c9:d0:da:48:28:0a:72:04:e2:b2:65: c2:c5:e0:21:9c:7e:85:9b:43:78:cd:4f:59:85:96:11:50:d3: 93:d4:4b:31:44:f1:dc:21:d3:38:5b:ce:45:38:12:d3:61:f6: d1:9a:48:38:5a:7f:aa:b8:13:3b:d3:4c:be:34:e2:15:bb:e8: 89:96:80:77:69:26:0a:f2:4f:45:fb:4a:0b:63:50:ca:b3:a8: 25:84:92:39:4b:de:6a:56:27:d8:a9:23:ef:01:9d:17:0d:65: a4:91:51:ce:50:46:f9:d3:54:44:74:16:8c:49:ab:ea:a6:c2: 6d:3f:29:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaMj8TaxHkiSR1QqNLDILJJ6FzDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkxQjUwQjlCRDM0NDgxQjdBRUQzMzQxRUNCRTY3QjE3 MzFCMzkwODAeFw0yNTEwMTIxMjU1MDFaFw0yNjEwMTExMzAwMDFaMDMxMTAvBgNV BAMTKDFGQzM1MjZFRkJEMDZBMkM1OTA0RDhGREMzQTY1M0I1QUFFODRDN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBwkEHV56tQjiquC2ppWHUKZTR ORJh2rZ+Ef0hkl8d3TvnNcwI34vWafVYCObRHvjttABu7qBTtsZ+XC4wQxbNfeTD 3tgxSLnEKugXNuMVKbLv2ocQ1wnJquNzOg9PTdzLZ3oka8gpA4ENOdLS9psQnYEf admfBtevy2JXlVFZghp0zLhMEW2SDCjWG4qHFo3OGZzMcIa83vZoSp1RkC6XnzLb 2on6VD2OC3BWKAZ/9H4FP+nYQdeTmJU+vR5c02m08z2HoYxp5IxtSKvIdnIciJu/ mL5qwUKgA0g/XJYZN1cgRgad/0FS1bJfFkyX+hC1N6U7u6pUYxYvX4jtijcLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH8NSbvvQaixZBNj9w6ZTtaroTHowHwYDVR0j BBgwFoAU+RtQub00SBt67TNB7L5nsXMbOQgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Njc4NjBlMy02YWQ4LTQ3YTUtOTRjMC05M2ZmZDI0NzI4NjUvMC9GOTFCNTBCOUJE MzQ0ODFCN0FFRDMzNDFFQ0JFNjdCMTczMUIzOTA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjkxQjUwQjlCRDM0NDgxQjdBRUQzMzQxRUNCRTY3QjE3MzFC MzkwOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2Nzg2MGUzLTZhZDgtNDdhNS05 NGMwLTkzZmZkMjQ3Mjg2NS8wLzMxMzYzMDJlMzIzNTJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBlyMA0GCSqG SIb3DQEBCwUAA4IBAQDQxA2for2HXqAZ7P2+jFHH4k0rpiInKGgMgnpk+ZX96sZs 6TzOTb0ECguF4SkTdoWwv7SzvujRt48PbhqNTRbog8dxL9fkySWEv9Eyeg47Ov/g c1Jag3VXE7Axkm16nt9RY25pjG1FxK5Yym1eB6Twa/7eJubN756Joo/ewPvSrlT+ 5S0oydDaSCgKcgTismXCxeAhnH6Fm0N4zU9ZhZYRUNOT1EsxRPHcIdM4W85FOBLT YfbRmkg4Wn+quBM700y+NOIVu+iJloB3aSYK8k9F+0oLY1DKs6glhJI5S95qVifY qSPvAZ0XDWWkkVHOUEb501REdBaMSavqpsJtPykU -----END CERTIFICATE-----Generated at Tue Oct 21 09:19:10 2025 by rpki-client