$ rpki-client -vvf repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa File: 3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa (raw, json) Hash identifier: ScxaiL96CwGpJIzmmvlPQEQDMd9l9Ma/TTIaxXOFZ/g= Subject key identifier: 93:3C:DA:83:3A:37:08:B9:91:58:E2:4D:CE:3F:38:04:0D:72:ED:50 Certificate issuer: /CN=47571F0366875B7351B244D25CB7E8258FB33E93 Certificate serial: 747B52D7DBFDC05D9EABA0F36F8459424E1E8687 Authority key identifier: 47:57:1F:03:66:87:5B:73:51:B2:44:D2:5C:B7:E8:25:8F:B3:3E:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/47571F0366875B7351B244D25CB7E8258FB33E93.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa Signing time: Thu 16 Oct 2025 11:02:58 +0000 ROA not before: Thu 16 Oct 2025 10:57:58 +0000 ROA not after: Thu 15 Oct 2026 11:02:58 +0000 asID: 153130 IP address blocks: 160.187.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/47571F0366875B7351B244D25CB7E8258FB33E93.crl rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/47571F0366875B7351B244D25CB7E8258FB33E93.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/47571F0366875B7351B244D25CB7E8258FB33E93.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 02:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:7b:52:d7:db:fd:c0:5d:9e:ab:a0:f3:6f:84:59:42:4e:1e:86:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47571F0366875B7351B244D25CB7E8258FB33E93 Validity Not Before: Oct 16 10:57:58 2025 GMT Not After : Oct 15 11:02:58 2026 GMT Subject: CN=933CDA833A3708B99158E24DCE3F38040D72ED50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:09:fa:4d:9c:4e:7d:86:5f:c9:d0:a5:67:c7: a2:32:ba:6a:e4:82:c9:8d:2f:44:40:61:c1:c1:77: 60:0b:6b:fc:8c:fb:08:9c:3f:23:4f:79:92:c7:f2: b5:66:f8:c7:86:1c:ec:45:45:ec:0d:76:d2:3a:00: e8:2f:df:7f:2d:51:38:e1:79:a8:4b:b2:d4:82:56: 64:0e:6b:4a:02:b0:62:82:cf:2b:8a:49:85:a9:70: 31:8c:68:4b:4d:6e:23:7b:6a:1e:74:91:03:62:7d: 28:25:d9:9e:54:15:88:08:b3:35:ee:ce:59:ec:86: 5f:0a:67:33:25:11:63:48:49:f0:32:14:f7:fc:ca: f4:0e:84:92:d7:29:63:cb:1d:af:e9:43:54:49:c8: 25:5c:94:19:d6:0a:af:75:7d:ea:0d:ba:7e:1d:02: 76:59:cd:70:17:12:28:c5:e5:a0:e8:f1:ac:d6:50: ed:13:09:1a:e2:e2:8c:45:14:8e:e7:25:55:e4:b6: e9:eb:31:5b:d9:b6:10:74:e7:c3:69:c9:88:8c:8f: 20:4a:03:d3:0a:04:1a:2d:6c:81:c9:3d:c2:b5:9f: 4c:77:62:f7:eb:77:f0:39:7d:3e:02:51:bd:1d:bb: 95:d2:83:38:e8:74:f6:eb:97:65:4e:65:54:2d:e2: fc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3C:DA:83:3A:37:08:B9:91:58:E2:4D:CE:3F:38:04:0D:72:ED:50 X509v3 Authority Key Identifier: keyid:47:57:1F:03:66:87:5B:73:51:B2:44:D2:5C:B7:E8:25:8F:B3:3E:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/47571F0366875B7351B244D25CB7E8258FB33E93.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/47571F0366875B7351B244D25CB7E8258FB33E93.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313533313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.164.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:10:f6:60:d4:d8:dd:20:f4:9f:bd:63:0b:b2:b4:09:61:cd: d4:7d:70:d0:dc:8b:9c:e7:0a:1a:d8:a9:c7:ea:e0:ba:70:a1: b6:96:fc:9f:52:83:2f:ea:f0:52:b0:41:a8:6b:cd:63:31:79: 55:a0:ac:c3:e1:a0:fa:dc:9a:bf:bd:c7:73:bd:12:83:f0:7a: eb:d7:8d:4a:5e:24:5f:c7:99:14:d1:f7:03:1c:ff:c2:f6:59: 17:99:22:a6:fa:22:c0:26:08:b2:19:04:84:5e:90:82:a2:5f: da:e1:44:41:c0:75:89:9c:81:dc:df:a6:74:81:4f:52:69:9a: a2:c8:51:3c:17:e0:ce:da:e5:82:d7:5a:eb:74:5f:73:d6:42: e7:fe:55:fb:95:8b:2f:0c:0f:4e:80:d3:d9:5d:a9:e4:0d:65: 0c:ac:c3:96:af:e1:00:77:6d:f8:b0:37:1b:44:30:ec:53:3b: 7e:f0:d1:54:ae:db:f4:a7:33:02:bd:fa:11:27:b5:72:a8:78: 65:3d:a4:82:dc:5b:72:20:a3:a8:14:69:24:94:77:c6:53:ed: d6:b2:ad:66:8c:4a:a0:eb:40:40:8c:9a:4b:8b:f8:df:bf:95: 8e:5d:fd:07:28:79:24:53:76:c3:5d:25:b0:bd:af:13:ca:91: 96:af:8f:13 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdHtS19v9wF2eq6Dzb4RZQk4ehocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1NzFGMDM2Njg3NUI3MzUxQjI0NEQyNUNCN0U4MjU4 RkIzM0U5MzAeFw0yNTEwMTYxMDU3NThaFw0yNjEwMTUxMTAyNThaMDMxMTAvBgNV BAMTKDkzM0NEQTgzM0EzNzA4Qjk5MTU4RTI0RENFM0YzODA0MEQ3MkVENTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVCfpNnE59hl/J0KVnx6Iyumrk gsmNL0RAYcHBd2ALa/yM+wicPyNPeZLH8rVm+MeGHOxFRewNdtI6AOgv338tUTjh eahLstSCVmQOa0oCsGKCzyuKSYWpcDGMaEtNbiN7ah50kQNifSgl2Z5UFYgIszXu zlnshl8KZzMlEWNISfAyFPf8yvQOhJLXKWPLHa/pQ1RJyCVclBnWCq91feoNun4d AnZZzXAXEijF5aDo8azWUO0TCRri4oxFFI7nJVXktunrMVvZthB058NpyYiMjyBK A9MKBBotbIHJPcK1n0x3Yvfrd/A5fT4CUb0du5XSgzjodPbrl2VOZVQt4vzNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkzzagzo3CLmRWOJNzj84BA1y7VAwHwYDVR0j BBgwFoAUR1cfA2aHW3NRskTSXLfoJY+zPpMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjI5NzVkNS1mOTkwLTQ4NGUtOTQ2MC1mMTM2YjQ1NTFmOGQvMC80NzU3MUYwMzY2 ODc1QjczNTFCMjQ0RDI1Q0I3RTgyNThGQjMzRTkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDc1NzFGMDM2Njg3NUI3MzUxQjI0NEQyNUNCN0U4MjU4RkIz M0U5My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmMjk3NWQ1LWY5OTAtNDg0ZS05 NDYwLWYxMzZiNDU1MWY4ZC8wLzMxMzYzMDJlMzEzODM3MmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu6QwDQYJ KoZIhvcNAQELBQADggEBAC8Q9mDU2N0g9J+9YwuytAlhzdR9cNDci5znChrYqcfq 4LpwobaW/J9Sgy/q8FKwQahrzWMxeVWgrMPhoPrcmr+9x3O9EoPweuvXjUpeJF/H mRTR9wMc/8L2WReZIqb6IsAmCLIZBIRekIKiX9rhREHAdYmcgdzfpnSBT1JpmqLI UTwX4M7a5YLXWut0X3PWQuf+VfuViy8MD06A09ldqeQNZQysw5av4QB3bfiwNxtE MOxTO37w0VSu2/SnMwK9+hEntXKoeGU9pILcW3Igo6gUaSSUd8ZT7dayrWaMSqDr QECMmkuL+N+/lY5d/QcoeSRTdsNdJbC9rxPKkZavjxM= -----END CERTIFICATE-----Generated at Tue Oct 21 00:06:24 2025 by rpki-client