$ rpki-client -vvf repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/3136302e32322e33302e302f32342d3234203d3e20313532373938.roa File: 3136302e32322e33302e302f32342d3234203d3e20313532373938.roa (raw, json) Hash identifier: /K4mylpcHmr+sO+7dTgSimoSvEZOrC1jLffnv1dbPQ8= Subject key identifier: 91:AB:A8:FE:6C:E8:D0:15:AC:9C:F9:87:8A:9B:67:26:B9:0D:81:71 Certificate issuer: /CN=23475A86BB5C515DDD7753B6555E267A3F5C28F4 Certificate serial: 6A794C13DB7AA9E1F7285C4514576B2977FF15DE Authority key identifier: 23:47:5A:86:BB:5C:51:5D:DD:77:53:B6:55:5E:26:7A:3F:5C:28:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/23475A86BB5C515DDD7753B6555E267A3F5C28F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/3136302e32322e33302e302f32342d3234203d3e20313532373938.roa Signing time: Thu 18 Sep 2025 09:02:55 +0000 ROA not before: Thu 18 Sep 2025 08:57:55 +0000 ROA not after: Thu 17 Sep 2026 09:02:55 +0000 asID: 152798 IP address blocks: 160.22.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/23475A86BB5C515DDD7753B6555E267A3F5C28F4.crl rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/23475A86BB5C515DDD7753B6555E267A3F5C28F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/23475A86BB5C515DDD7753B6555E267A3F5C28F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:79:4c:13:db:7a:a9:e1:f7:28:5c:45:14:57:6b:29:77:ff:15:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23475A86BB5C515DDD7753B6555E267A3F5C28F4 Validity Not Before: Sep 18 08:57:55 2025 GMT Not After : Sep 17 09:02:55 2026 GMT Subject: CN=91ABA8FE6CE8D015AC9CF9878A9B6726B90D8171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:03:2a:e5:71:a2:50:ce:19:45:c3:ec:0f:e1: d8:2f:1f:92:61:e8:92:cd:c1:c0:46:de:1a:9d:ca: 00:bd:46:86:3d:49:9c:8b:20:43:d8:f7:ac:ce:e0: 02:cc:a0:3d:ad:90:44:68:30:75:72:00:44:9f:d0: 27:79:7d:a5:56:85:2b:2f:c1:67:70:e6:de:c7:ee: 68:6e:61:00:25:a1:d5:ce:06:71:2a:a2:f7:f5:30: 62:d6:24:70:70:9b:80:2e:4b:38:38:41:f1:b5:b8: d9:f1:84:8a:70:aa:6d:ea:b8:34:30:5b:fa:6d:fe: a3:b2:5d:15:0b:e4:19:4e:ee:7b:42:f1:93:40:c2: 69:2c:86:89:79:10:bb:4b:73:78:da:ff:22:4e:3f: 63:07:95:40:06:59:8c:7e:a2:43:26:5c:73:f6:a6: 0e:92:9c:55:c0:bd:0f:60:bf:87:47:cf:a7:ca:8a: 6e:68:39:ad:4e:4b:9f:5e:c5:78:fe:0f:00:3c:6a: 73:58:ce:51:6d:fa:c2:03:f1:b1:29:9b:6c:4e:1f: a5:e2:ad:c7:46:fe:50:e5:2d:f7:bb:77:47:0e:75: 66:2c:34:23:5d:16:9d:9a:60:f6:fe:ff:97:29:f6: 33:2d:6a:32:8d:3d:2c:8b:6e:fd:e6:62:2f:a9:ac: e7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:AB:A8:FE:6C:E8:D0:15:AC:9C:F9:87:8A:9B:67:26:B9:0D:81:71 X509v3 Authority Key Identifier: keyid:23:47:5A:86:BB:5C:51:5D:DD:77:53:B6:55:5E:26:7A:3F:5C:28:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/23475A86BB5C515DDD7753B6555E267A3F5C28F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/23475A86BB5C515DDD7753B6555E267A3F5C28F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/3136302e32322e33302e302f32342d3234203d3e20313532373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.30.0/24 Signature Algorithm: sha256WithRSAEncryption a8:94:ab:2b:bd:e2:68:f2:80:c3:0c:5b:45:81:21:77:d1:b2: 4d:d8:f7:f6:9c:35:26:20:f6:ac:2d:ef:e6:3c:7d:ab:34:aa: 38:6e:57:b3:9a:1a:cb:36:03:61:35:a3:68:99:96:23:c7:94: aa:e5:c8:e2:47:19:3e:09:02:55:77:0b:3e:24:6f:23:1a:9c: 0d:2b:36:65:59:a3:a9:a0:fa:7b:f1:e1:24:76:23:49:dd:ca: 0c:7f:ea:27:a2:7f:0e:d3:75:a4:0f:16:14:6e:9d:ed:e7:b4: 2a:dc:37:1e:bf:c7:dc:c9:2f:56:d3:40:f3:db:a7:4d:22:83: 34:43:5e:d1:6e:46:e2:a1:a6:52:59:8f:bd:8a:dd:af:b5:77: b1:66:eb:95:0b:54:3a:f0:4a:05:c3:d4:3a:76:84:61:b7:ac: 70:76:55:e3:a8:ef:a4:f2:ae:ed:ab:ea:25:d6:b0:cd:e3:04: 33:b4:e6:c8:7e:eb:1b:cc:be:7b:5c:cb:ed:a4:60:3b:21:34: 4a:ef:b3:0a:fc:51:e0:07:ce:01:42:67:fd:b3:2c:17:ff:b6: 64:54:e4:af:1e:d8:e4:ee:20:e1:d1:32:d2:df:6f:fa:60:dc: 1f:fa:fa:06:9d:89:2a:7c:3c:16:ee:05:a0:63:84:22:33:b9: 17:3e:3f:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUanlME9t6qeH3KFxFFFdrKXf/Fd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjM0NzVBODZCQjVDNTE1RERENzc1M0I2NTU1RTI2N0Ez RjVDMjhGNDAeFw0yNTA5MTgwODU3NTVaFw0yNjA5MTcwOTAyNTVaMDMxMTAvBgNV BAMTKDkxQUJBOEZFNkNFOEQwMTVBQzlDRjk4NzhBOUI2NzI2QjkwRDgxNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjAyrlcaJQzhlFw+wP4dgvH5Jh 6JLNwcBG3hqdygC9RoY9SZyLIEPY96zO4ALMoD2tkERoMHVyAESf0Cd5faVWhSsv wWdw5t7H7mhuYQAlodXOBnEqovf1MGLWJHBwm4AuSzg4QfG1uNnxhIpwqm3quDQw W/pt/qOyXRUL5BlO7ntC8ZNAwmkshol5ELtLc3ja/yJOP2MHlUAGWYx+okMmXHP2 pg6SnFXAvQ9gv4dHz6fKim5oOa1OS59exXj+DwA8anNYzlFt+sID8bEpm2xOH6Xi rcdG/lDlLfe7d0cOdWYsNCNdFp2aYPb+/5cp9jMtajKNPSyLbv3mYi+prOdJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkauo/mzo0BWsnPmHiptnJrkNgXEwHwYDVR0j BBgwFoAUI0dahrtcUV3dd1O2VV4mej9cKPQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NWVmYzQxMy0yNzA5LTQ4M2UtYTMxNC1jNWQwNjYzZGY5MzIvMC8yMzQ3NUE4NkJC NUM1MTVEREQ3NzUzQjY1NTVFMjY3QTNGNUMyOEY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjM0NzVBODZCQjVDNTE1RERENzc1M0I2NTU1RTI2N0EzRjVD MjhGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1ZWZjNDEzLTI3MDktNDgzZS1h MzE0LWM1ZDA2NjNkZjkzMi8wLzMxMzYzMDJlMzIzMjJlMzMzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWHjANBgkqhkiG 9w0BAQsFAAOCAQEAqJSrK73iaPKAwwxbRYEhd9GyTdj39pw1JiD2rC3v5jx9qzSq OG5Xs5oayzYDYTWjaJmWI8eUquXI4kcZPgkCVXcLPiRvIxqcDSs2ZVmjqaD6e/Hh JHYjSd3KDH/qJ6J/DtN1pA8WFG6d7ee0Ktw3Hr/H3MkvVtNA89unTSKDNENe0W5G 4qGmUlmPvYrdr7V3sWbrlQtUOvBKBcPUOnaEYbescHZV46jvpPKu7avqJdawzeME M7TmyH7rG8y+e1zL7aRgOyE0Su+zCvxR4AfOAUJn/bMsF/+2ZFTkrx7Y5O4g4dEy 0t9v+mDcH/r6Bp2JKnw8Fu4FoGOEIjO5Fz4/Jw== -----END CERTIFICATE-----Generated at Tue Oct 21 12:01:05 2025 by rpki-client