$ rpki-client -vvf repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa File: 3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa (raw, json) Hash identifier: A2Vq9Yncnmn+HCdrfAMlHCZ48WUhBd0oYQDCWKly81I= Subject key identifier: 40:03:0D:22:B1:63:71:09:10:76:81:4E:33:08:84:61:FC:46:54:BD Certificate issuer: /CN=6A755F0ECD114936B4C154BE153030E6BFE42025 Certificate serial: 0ADBC3D3CAACE474B91026B1130B6B50DABF2A0F Authority key identifier: 6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa Signing time: Wed 01 Oct 2025 13:00:01 +0000 ROA not before: Wed 01 Oct 2025 12:55:01 +0000 ROA not after: Wed 30 Sep 2026 13:00:01 +0000 asID: 153111 IP address blocks: 160.25.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.crl rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 22:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:db:c3:d3:ca:ac:e4:74:b9:10:26:b1:13:0b:6b:50:da:bf:2a:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A755F0ECD114936B4C154BE153030E6BFE42025 Validity Not Before: Oct 1 12:55:01 2025 GMT Not After : Sep 30 13:00:01 2026 GMT Subject: CN=40030D22B16371091076814E33088461FC4654BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:03:ee:0d:67:cd:24:14:86:d6:34:b7:a8:fb: 5e:e9:9c:a4:ad:34:2f:38:b8:ed:61:23:56:7e:aa: 6c:df:1c:5f:f7:e9:6d:ca:69:c8:3e:ee:ec:43:34: 06:d8:8f:f2:9f:4a:55:8c:7e:86:f6:2b:45:3d:d3: f3:1d:b9:82:76:68:f0:43:91:a9:9e:e3:cf:ea:fe: e7:20:71:ed:0d:4f:e9:64:56:32:b2:13:37:24:cf: db:b8:c8:0c:e8:6a:88:b4:8a:f5:6f:41:d3:f6:a2: 1f:f9:96:40:24:4f:f0:24:24:ac:b2:e7:f4:5e:24: 37:da:93:4a:f2:03:3f:5a:ad:ed:25:c5:71:a4:8a: 44:48:97:74:d3:8e:99:30:3d:a0:a7:f4:46:11:99: 2e:0c:a5:46:c7:4c:72:42:0f:50:b4:dc:2b:99:ef: ff:38:42:56:9b:1a:e3:ac:69:1e:86:3b:75:f3:2e: 44:0d:d3:ef:65:5e:dc:0a:79:ab:d8:8c:0a:4d:6d: 07:34:39:32:ac:59:a0:01:36:01:dc:f4:f7:3a:10: bd:1e:e8:4e:a6:b1:72:e5:cd:8b:f3:94:70:8c:ac: 26:32:91:b0:7f:d2:df:4d:bf:75:88:4a:03:6c:7f: 41:66:52:19:cf:e7:12:29:dc:0c:f0:8a:19:23:79: de:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:03:0D:22:B1:63:71:09:10:76:81:4E:33:08:84:61:FC:46:54:BD X509v3 Authority Key Identifier: keyid:6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32342d3234203d3e20313533313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.244.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:b4:57:a4:31:d7:3f:99:76:d9:ae:ab:68:41:1d:ad:30:e7: e4:9e:37:82:c8:f0:01:50:37:fc:29:16:70:6f:61:e7:78:a1: 7d:44:82:56:7c:90:ac:09:5f:5f:61:1b:0a:9b:15:72:cc:87: 35:17:f2:88:18:df:6f:1f:a4:6f:21:d5:95:94:ca:a4:c6:e3: 56:b5:1a:c8:5e:5c:b3:b0:ab:21:be:4a:b5:54:b3:1b:fd:e4: 49:c1:c5:09:c1:cb:52:f6:3f:fb:0a:28:fe:57:88:bc:29:a6: 33:a2:09:d6:dc:1e:f3:9c:12:27:0a:77:ba:22:7d:a3:b2:6c: 3c:90:26:79:a0:7f:cf:42:04:5b:91:f6:85:fd:7d:e7:89:ac: 7f:ef:19:08:48:7c:32:6a:fb:ae:c3:10:2c:6e:6d:f9:90:44: 08:ce:88:9f:bd:41:1b:a5:ad:5c:31:99:45:94:a7:6e:61:f1: 76:e1:f6:43:4a:19:b0:a8:2d:f3:1a:26:53:d9:a8:ad:db:79: 8c:24:40:85:80:72:a8:2f:84:31:1c:dd:38:03:78:c3:60:e5: d5:83:8a:aa:35:7e:b2:39:ed:75:ce:76:e2:bb:c5:23:26:42: fa:8f:db:e8:d9:e7:7c:6b:81:2f:4b:51:7f:15:eb:b0:17:a2: 45:68:d7:6e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCtvD08qs5HS5ECaxEwtrUNq/Kg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NTVGMEVDRDExNDkzNkI0QzE1NEJFMTUzMDMwRTZC RkU0MjAyNTAeFw0yNTEwMDExMjU1MDFaFw0yNjA5MzAxMzAwMDFaMDMxMTAvBgNV BAMTKDQwMDMwRDIyQjE2MzcxMDkxMDc2ODE0RTMzMDg4NDYxRkM0NjU0QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0A+4NZ80kFIbWNLeo+17pnKSt NC84uO1hI1Z+qmzfHF/36W3Kacg+7uxDNAbYj/KfSlWMfob2K0U90/MduYJ2aPBD kame48/q/ucgce0NT+lkVjKyEzckz9u4yAzoaoi0ivVvQdP2oh/5lkAkT/AkJKyy 5/ReJDfak0ryAz9are0lxXGkikRIl3TTjpkwPaCn9EYRmS4MpUbHTHJCD1C03CuZ 7/84QlabGuOsaR6GO3XzLkQN0+9lXtwKeavYjApNbQc0OTKsWaABNgHc9Pc6EL0e 6E6msXLlzYvzlHCMrCYykbB/0t9Nv3WISgNsf0FmUhnP5xIp3Azwihkjed4xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQAMNIrFjcQkQdoFOMwiEYfxGVL0wHwYDVR0j BBgwFoAUanVfDs0RSTa0wVS+FTAw5r/kICUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGNjMWM3ZS1kYTc0LTRiMTEtYjY3YS1kNWYyN2Q5ODE3NTcvMC82QTc1NUYwRUNE MTE0OTM2QjRDMTU0QkUxNTMwMzBFNkJGRTQyMDI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNkE3NTVGMEVDRDExNDkzNkI0QzE1NEJFMTUzMDMwRTZCRkU0 MjAyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4Y2MxYzdlLWRhNzQtNGIxMS1i NjdhLWQ1ZjI3ZDk4MTc1Ny8wLzMxMzYzMDJlMzIzNTJlMzIzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn0MA0GCSqG SIb3DQEBCwUAA4IBAQBatFekMdc/mXbZrqtoQR2tMOfknjeCyPABUDf8KRZwb2Hn eKF9RIJWfJCsCV9fYRsKmxVyzIc1F/KIGN9vH6RvIdWVlMqkxuNWtRrIXlyzsKsh vkq1VLMb/eRJwcUJwctS9j/7Cij+V4i8KaYzognW3B7znBInCne6In2jsmw8kCZ5 oH/PQgRbkfaF/X3niax/7xkISHwyavuuwxAsbm35kEQIzoifvUEbpa1cMZlFlKdu YfF24fZDShmwqC3zGiZT2ait23mMJECFgHKoL4QxHN04A3jDYOXVg4qqNX6yOe11 znbiu8UjJkL6j9vo2ed8a4EvS1F/FeuwF6JFaNdu -----END CERTIFICATE-----Generated at Tue Oct 21 05:07:59 2025 by rpki-client