$ rpki-client -vvf repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3234203d3e20313532383131.roa File: 3136302e32322e3133362e302f32332d3234203d3e20313532383131.roa (raw, json) Hash identifier: kYpkRKfd2gOb2ANnCxDjR63bZ6+E7J2Ez1tbEEqd2xA= Subject key identifier: 0E:2F:B6:F4:28:41:5A:3C:11:2B:65:B5:E6:A4:94:50:61:D2:8A:82 Certificate issuer: /CN=8107B8970680BF15377E222E6093ED124116C40F Certificate serial: 5CC1EE544653CC323905FFE38D409086E77C3C21 Authority key identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3234203d3e20313532383131.roa Signing time: Thu 18 Sep 2025 14:55:41 +0000 ROA not before: Thu 18 Sep 2025 14:50:41 +0000 ROA not after: Thu 17 Sep 2026 14:55:41 +0000 asID: 152811 IP address blocks: 160.22.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c1:ee:54:46:53:cc:32:39:05:ff:e3:8d:40:90:86:e7:7c:3c:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8107B8970680BF15377E222E6093ED124116C40F Validity Not Before: Sep 18 14:50:41 2025 GMT Not After : Sep 17 14:55:41 2026 GMT Subject: CN=0E2FB6F428415A3C112B65B5E6A4945061D28A82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2a:f3:c6:32:3d:7a:0f:b9:73:90:07:1e:73: 48:51:0a:8b:00:e0:02:00:84:09:b7:b0:b1:ad:89: 54:ef:e3:6d:c8:95:59:2c:86:63:9b:36:14:f1:d1: 50:b5:52:0a:77:2d:18:89:e2:53:5b:83:24:7e:a1: 88:39:6e:40:15:92:f5:25:5b:4b:4c:36:c9:61:ce: d4:ac:6b:91:d1:02:d2:0f:a6:b9:d9:17:a6:6b:de: 07:b5:af:25:2f:28:cb:4d:36:61:1d:66:8a:ce:42: 1e:14:b7:23:16:01:85:a7:f4:77:8a:bb:b0:dc:2b: 05:5a:0b:aa:36:d5:ea:66:f0:dc:5e:47:c5:d9:50: 10:59:95:9f:cc:fb:0b:3f:52:6d:7c:e9:4b:84:86: fc:1b:42:da:ca:55:be:61:b1:5f:6e:ed:87:37:f5: 00:95:ce:12:e2:5a:4c:b8:72:c0:de:8a:ac:d3:20: 3a:a4:f5:fa:6b:c0:04:92:36:b3:b2:f4:56:74:a4: 87:51:a3:cc:ff:fa:eb:bf:78:f7:13:41:a6:fc:9c: 79:fb:f2:33:7f:d8:1e:8c:77:5d:22:9f:81:3f:30: 70:04:82:29:7e:eb:2b:29:88:82:cc:cb:5b:ea:0b: f5:42:13:c6:ce:09:56:5d:4e:59:16:46:18:4c:ff: 53:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2F:B6:F4:28:41:5A:3C:11:2B:65:B5:E6:A4:94:50:61:D2:8A:82 X509v3 Authority Key Identifier: keyid:81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3234203d3e20313532383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/23 Signature Algorithm: sha256WithRSAEncryption 58:96:b8:ca:bd:fd:09:b8:4a:94:52:7e:ed:d9:1e:1f:69:56: e9:49:f5:fa:b8:f9:65:1e:79:6e:5d:1c:88:5f:be:a8:9e:7c: ba:d2:c8:dd:72:18:9e:8d:b8:de:cf:53:8a:41:88:51:a6:e5: 65:62:be:ad:ef:71:51:b2:1b:f5:e3:6a:e1:42:a8:fe:bc:96: 3b:e8:37:ee:da:a2:60:a1:c6:0a:e4:60:e2:63:32:07:86:6a: 48:f9:9a:ee:4b:ce:f8:bd:0c:ce:a4:8a:10:d0:3b:26:b5:06: 3a:3b:50:92:f2:1c:ab:26:5e:a8:31:91:ff:59:c3:85:7e:f5: e6:40:69:b9:2c:93:1c:d0:1e:74:35:b9:24:ea:14:33:d5:b8: de:c6:ba:f8:e0:23:d0:88:71:25:47:35:9a:3f:f5:5b:51:8f: 46:04:e9:09:83:8b:21:55:b1:70:d4:d2:25:87:0a:4b:96:68: 51:67:a3:c3:f2:1d:da:2b:e7:d1:cc:0b:ca:bb:aa:f3:24:4b: 6c:11:96:0c:27:9e:45:48:4d:9d:88:e4:3d:55:3f:8d:f7:d7: e3:3b:ea:51:a0:4c:fd:b6:35:67:01:12:d3:9f:8d:e1:f4:c4: a0:6d:0b:39:fb:86:d8:2a:46:44:41:c3:ef:83:fb:13:ab:1c: 7f:92:82:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXMHuVEZTzDI5Bf/jjUCQhud8PCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0 MTE2QzQwRjAeFw0yNTA5MTgxNDUwNDFaFw0yNjA5MTcxNDU1NDFaMDMxMTAvBgNV BAMTKDBFMkZCNkY0Mjg0MTVBM0MxMTJCNjVCNUU2QTQ5NDUwNjFEMjhBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuKvPGMj16D7lzkAcec0hRCosA 4AIAhAm3sLGtiVTv423IlVkshmObNhTx0VC1Ugp3LRiJ4lNbgyR+oYg5bkAVkvUl W0tMNslhztSsa5HRAtIPprnZF6Zr3ge1ryUvKMtNNmEdZorOQh4UtyMWAYWn9HeK u7DcKwVaC6o21epm8NxeR8XZUBBZlZ/M+ws/Um186UuEhvwbQtrKVb5hsV9u7Yc3 9QCVzhLiWky4csDeiqzTIDqk9fprwASSNrOy9FZ0pIdRo8z/+uu/ePcTQab8nHn7 8jN/2B6Md10in4E/MHAEgil+6yspiILMy1vqC/VCE8bOCVZdTlkWRhhM/1PZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDi+29ChBWjwRK2W15qSUUGHSioIwHwYDVR0j BBgwFoAUgQe4lwaAvxU3fiIuYJPtEkEWxA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTk1YjRiNC1iYzhhLTRjZTUtYjU1MC05YWE3YjM2ZWUxZmEvMC84MTA3Qjg5NzA2 ODBCRjE1Mzc3RTIyMkU2MDkzRUQxMjQxMTZDNDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODEwN0I4OTcwNjgwQkYxNTM3N0UyMjJFNjA5M0VEMTI0MTE2 QzQwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0LWJjOGEtNGNlNS1i NTUwLTlhYTdiMzZlZTFmYS8wLzMxMzYzMDJlMzIzMjJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBaIMA0GCSqG SIb3DQEBCwUAA4IBAQBYlrjKvf0JuEqUUn7t2R4faVbpSfX6uPllHnluXRyIX76o nny60sjdchiejbjez1OKQYhRpuVlYr6t73FRshv142rhQqj+vJY76Dfu2qJgocYK 5GDiYzIHhmpI+ZruS874vQzOpIoQ0DsmtQY6O1CS8hyrJl6oMZH/WcOFfvXmQGm5 LJMc0B50Nbkk6hQz1bjexrr44CPQiHElRzWaP/VbUY9GBOkJg4shVbFw1NIlhwpL lmhRZ6PD8h3aK+fRzAvKu6rzJEtsEZYMJ55FSE2diOQ9VT+N99fjO+pRoEz9tjVn ARLTn43h9MSgbQs5+4bYKkZEQcPvg/sTqxx/koJc -----END CERTIFICATE-----Generated at Mon Oct 20 22:16:41 2025 by rpki-client