$ rpki-client -vvf repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32332d3233203d3e20313532383338.roa File: 3136302e32352e3132362e302f32332d3233203d3e20313532383338.roa (raw, json) Hash identifier: gVISUrC0w0h01G2FHy4AG7111ikLnz8RrJKjXJHpEPg= Subject key identifier: 92:15:65:F0:F1:A4:23:0A:66:A1:18:03:A6:AA:8A:81:F2:CE:5D:19 Certificate issuer: /CN=56302D09256688774B85DCD3BAEEB0CB17E8884D Certificate serial: 2FFFAA2B829FC60806320628C0463AAEC03CEAD6 Authority key identifier: 56:30:2D:09:25:66:88:77:4B:85:DC:D3:BA:EE:B0:CB:17:E8:88:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32332d3233203d3e20313532383338.roa Signing time: Sat 02 Aug 2025 03:01:05 +0000 ROA not before: Sat 02 Aug 2025 02:56:05 +0000 ROA not after: Sat 01 Aug 2026 03:01:05 +0000 asID: 152838 IP address blocks: 160.25.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.crl rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ff:aa:2b:82:9f:c6:08:06:32:06:28:c0:46:3a:ae:c0:3c:ea:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56302D09256688774B85DCD3BAEEB0CB17E8884D Validity Not Before: Aug 2 02:56:05 2025 GMT Not After : Aug 1 03:01:05 2026 GMT Subject: CN=921565F0F1A4230A66A11803A6AA8A81F2CE5D19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5a:fc:ed:73:82:01:60:00:ec:49:d4:09:38: 94:0b:26:a1:ca:6e:02:a6:b9:b3:d9:55:1e:af:f9: 7f:99:32:92:8d:56:10:b8:cb:6b:a8:d1:8a:60:71: 9c:b1:f3:20:78:8f:2b:36:73:28:90:48:85:5f:ed: 08:0c:f4:10:ef:7d:1e:cd:2a:17:f4:11:8a:92:d8: b3:87:2d:13:ba:28:36:1f:1c:32:68:87:9e:98:90: 45:4d:bd:91:bd:e8:b1:3c:80:f1:b4:d3:29:13:39: 48:b0:45:b6:c8:bc:a3:25:ae:06:62:55:e0:cb:81: 48:fc:76:45:c9:83:83:71:bc:3d:8c:6f:fe:35:69: 64:6e:8d:98:00:1a:78:68:44:13:0f:af:62:15:e5: 7c:e6:43:d8:d9:f8:9b:48:d7:9d:a9:c4:9f:cc:64: 8a:0d:3e:df:45:0e:07:4d:a7:03:cd:b4:b6:e1:97: 31:b1:bc:3b:4d:cf:97:02:71:53:bc:0e:bd:4e:9a: da:ca:a7:df:63:b9:ac:8d:ef:60:e3:6b:92:11:b5: f3:97:aa:d0:a7:33:dd:b1:9e:e1:54:ff:97:d1:cb: 07:b8:39:3e:e6:84:bb:c9:98:31:37:22:20:89:97: 87:26:70:7b:6e:d8:b4:27:9b:3e:97:de:bd:d9:21: 20:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:15:65:F0:F1:A4:23:0A:66:A1:18:03:A6:AA:8A:81:F2:CE:5D:19 X509v3 Authority Key Identifier: keyid:56:30:2D:09:25:66:88:77:4B:85:DC:D3:BA:EE:B0:CB:17:E8:88:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/56302D09256688774B85DCD3BAEEB0CB17E8884D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/56302D09256688774B85DCD3BAEEB0CB17E8884D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32332d3233203d3e20313532383338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.126.0/23 Signature Algorithm: sha256WithRSAEncryption 13:d7:2f:fe:09:2a:cf:d4:ed:4f:dd:d7:aa:88:80:a4:9c:bf: 3e:52:04:e2:94:a8:e8:67:01:bd:ed:2c:1d:30:6c:db:d9:67: 71:fc:27:99:15:c2:b3:e1:9d:27:e7:94:d3:2b:af:a3:bc:f4: 64:37:fa:f0:c8:23:29:63:ee:ee:d8:91:d1:7f:eb:32:27:22: de:d6:03:07:66:a3:6f:5d:66:15:03:43:34:80:e1:60:ad:3f: af:37:95:84:f6:49:d9:5f:62:2a:2a:7a:e9:cf:9d:69:e7:2c: b2:45:06:83:21:d0:ea:95:c5:5c:b2:10:d3:f5:3c:6e:d6:60: d3:72:8b:2f:dc:f9:f5:15:1a:2c:41:de:14:d1:1f:27:09:ed: af:ef:55:54:6e:dd:82:0f:fd:a1:84:d4:f5:77:61:25:b0:a4: 1c:f3:cb:fa:6b:9a:60:48:7b:3e:c5:5e:87:a4:03:22:da:33: 56:dd:4c:28:d3:b8:30:8e:70:49:b4:1d:3b:2d:61:91:62:a5: 84:b7:1f:e0:58:08:25:8a:a2:d6:32:a9:83:36:3a:8b:fa:01: 27:72:a9:0c:c8:e7:af:59:14:8b:32:1d:3d:fa:8d:10:ac:b5: 45:6c:a7:0e:33:c1:c2:75:fd:e4:9b:ca:ee:b7:03:0c:60:4d: e1:a9:f2:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL/+qK4KfxggGMgYowEY6rsA86tYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYzMDJEMDkyNTY2ODg3NzRCODVEQ0QzQkFFRUIwQ0Ix N0U4ODg0RDAeFw0yNTA4MDIwMjU2MDVaFw0yNjA4MDEwMzAxMDVaMDMxMTAvBgNV BAMTKDkyMTU2NUYwRjFBNDIzMEE2NkExMTgwM0E2QUE4QTgxRjJDRTVEMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUWvztc4IBYADsSdQJOJQLJqHK bgKmubPZVR6v+X+ZMpKNVhC4y2uo0YpgcZyx8yB4jys2cyiQSIVf7QgM9BDvfR7N Khf0EYqS2LOHLRO6KDYfHDJoh56YkEVNvZG96LE8gPG00ykTOUiwRbbIvKMlrgZi VeDLgUj8dkXJg4NxvD2Mb/41aWRujZgAGnhoRBMPr2IV5XzmQ9jZ+JtI152pxJ/M ZIoNPt9FDgdNpwPNtLbhlzGxvDtNz5cCcVO8Dr1OmtrKp99juayN72Dja5IRtfOX qtCnM92xnuFU/5fRywe4OT7mhLvJmDE3IiCJl4cmcHtu2LQnmz6X3r3ZISBBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkhVl8PGkIwpmoRgDpqqKgfLOXRkwHwYDVR0j BBgwFoAUVjAtCSVmiHdLhdzTuu6wyxfoiE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MjA2ZGVmYS1mYTQzLTRmOTMtOTNjZS0zOWZkZmY4MWMxOWEvMC81NjMwMkQwOTI1 NjY4ODc3NEI4NURDRDNCQUVFQjBDQjE3RTg4ODRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTYzMDJEMDkyNTY2ODg3NzRCODVEQ0QzQkFFRUIwQ0IxN0U4 ODg0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyMDZkZWZhLWZhNDMtNGY5My05 M2NlLTM5ZmRmZjgxYzE5YS8wLzMxMzYzMDJlMzIzNTJlMzEzMjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBl+MA0GCSqG SIb3DQEBCwUAA4IBAQAT1y/+CSrP1O1P3deqiICknL8+UgTilKjoZwG97SwdMGzb 2Wdx/CeZFcKz4Z0n55TTK6+jvPRkN/rwyCMpY+7u2JHRf+syJyLe1gMHZqNvXWYV A0M0gOFgrT+vN5WE9knZX2IqKnrpz51p5yyyRQaDIdDqlcVcshDT9Txu1mDTcosv 3Pn1FRosQd4U0R8nCe2v71VUbt2CD/2hhNT1d2ElsKQc88v6a5pgSHs+xV6HpAMi 2jNW3Uwo07gwjnBJtB07LWGRYqWEtx/gWAgliqLWMqmDNjqL+gEncqkMyOevWRSL Mh09+o0QrLVFbKcOM8HCdf3km8rutwMMYE3hqfLZ -----END CERTIFICATE-----Generated at Sat Aug 23 21:15:35 2025 by rpki-client