$ rpki-client -vvf repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa File: 3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa (raw, json) Hash identifier: ELxVGi0X39R0AE9CfsUVmNBqLXLKlWbihy40TmoFuKc= Subject key identifier: C7:F5:D6:1A:F1:86:26:94:08:2A:09:2A:5E:9B:EA:90:63:EC:4F:A3 Certificate issuer: /CN=61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063 Certificate serial: 40A2A978BC3B86C8328DDD140B52DCFB359EDCC5 Authority key identifier: 61:E9:B6:78:CD:42:DA:2A:1B:3E:F3:D8:87:9E:DF:7E:CD:2A:00:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa Signing time: Thu 29 May 2025 10:00:01 +0000 ROA not before: Thu 29 May 2025 09:55:01 +0000 ROA not after: Thu 28 May 2026 10:00:01 +0000 asID: 152820 IP address blocks: 160.22.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.crl rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 09:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a2:a9:78:bc:3b:86:c8:32:8d:dd:14:0b:52:dc:fb:35:9e:dc:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063 Validity Not Before: May 29 09:55:01 2025 GMT Not After : May 28 10:00:01 2026 GMT Subject: CN=C7F5D61AF1862694082A092A5E9BEA9063EC4FA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3b:73:14:ea:62:c4:53:ef:a5:ae:a5:13:5b: ba:e2:5e:66:67:23:5f:39:28:ff:54:1c:c9:bc:58: d8:f6:88:89:8e:f1:70:d7:c9:30:2c:3d:c0:e9:7b: 54:ba:b4:bf:ea:37:b9:98:30:2a:16:8c:c0:f5:e0: 7b:c6:b9:93:30:34:9d:df:6b:39:56:91:e2:49:65: 9c:b1:27:6a:35:04:15:d3:8a:4f:cf:52:3f:f5:b1: 6f:31:b0:bc:d2:02:5b:e9:c2:bd:b4:cf:fa:6e:65: 02:77:b9:e8:ef:72:3d:7e:83:86:31:53:31:6c:f0: 06:f6:3b:6e:da:84:1e:b2:c2:98:de:5e:be:d8:5f: 00:8a:2f:ad:91:1d:63:bf:e2:a1:24:4f:6d:a3:bf: 7f:fd:13:dd:1f:d2:ed:96:26:3e:42:93:6e:0f:94: bb:b5:c7:5d:d1:48:f4:a4:96:7e:93:d4:22:2d:f1: 42:a5:15:a2:76:82:80:81:a6:36:9e:ac:5a:46:da: a2:d1:95:a6:61:5e:74:4c:c9:42:c9:ce:f0:52:64: 1d:21:a5:f1:38:ed:4c:e3:61:e9:b5:f6:43:2b:fe: 8c:0a:69:33:fa:f9:0e:df:f4:76:bd:88:0f:7b:52: 91:72:e2:71:a8:9b:0f:6f:0e:81:cc:83:43:a5:b0: fa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F5:D6:1A:F1:86:26:94:08:2A:09:2A:5E:9B:EA:90:63:EC:4F:A3 X509v3 Authority Key Identifier: keyid:61:E9:B6:78:CD:42:DA:2A:1B:3E:F3:D8:87:9E:DF:7E:CD:2A:00:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/3136302e32322e3132362e302f32332d3234203d3e20313532383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.126.0/23 Signature Algorithm: sha256WithRSAEncryption 69:76:22:74:4a:21:ba:f1:0f:4d:f1:0a:4e:4c:95:e8:14:1c: 4c:ad:ec:34:ac:17:c8:d9:0d:1e:3d:46:7f:68:1d:d0:44:96: db:a6:95:95:4f:db:ea:91:36:21:8d:2d:c7:7e:ac:7e:c6:7f: 00:bf:80:fc:4b:20:8c:c2:27:90:56:26:d2:07:49:93:26:65: e1:7a:3e:5e:19:50:46:26:d6:36:88:7b:d1:78:09:c4:24:c1: b5:a6:37:71:23:99:7e:a6:f3:44:da:96:7a:14:3b:b0:e6:26: 16:56:22:47:cb:9f:86:fc:0b:a6:3f:7e:b3:ff:5a:e9:f7:fc: 47:30:94:ad:cb:cd:6a:08:5d:13:10:b9:5a:a1:d5:96:ab:66: d7:af:f5:19:f4:53:22:d2:71:d5:45:54:1d:79:4e:b8:ef:69: 75:fb:b6:84:ce:ed:99:1a:ee:7e:fc:41:99:fb:c3:a9:fe:d1: b9:1b:9c:c3:a8:95:a9:11:8a:5a:97:57:94:de:f6:07:66:01: 99:0a:89:d9:85:c5:34:35:f7:3b:26:fb:c0:45:44:c4:f8:d7: a6:45:72:cb:2f:4b:d6:04:57:d6:4d:00:0b:13:10:27:be:18: aa:0a:b3:88:c5:2e:f3:82:60:5b:0e:9e:39:bd:b1:d5:e4:cf: 3b:40:18:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQKKpeLw7hsgyjd0UC1Lc+zWe3MUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFFOUI2NzhDRDQyREEyQTFCM0VGM0Q4ODc5RURGN0VD RDJBMDA2MzAeFw0yNTA1MjkwOTU1MDFaFw0yNjA1MjgxMDAwMDFaMDMxMTAvBgNV BAMTKEM3RjVENjFBRjE4NjI2OTQwODJBMDkyQTVFOUJFQTkwNjNFQzRGQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXO3MU6mLEU++lrqUTW7riXmZn I185KP9UHMm8WNj2iImO8XDXyTAsPcDpe1S6tL/qN7mYMCoWjMD14HvGuZMwNJ3f azlWkeJJZZyxJ2o1BBXTik/PUj/1sW8xsLzSAlvpwr20z/puZQJ3uejvcj1+g4Yx UzFs8Ab2O27ahB6ywpjeXr7YXwCKL62RHWO/4qEkT22jv3/9E90f0u2WJj5Ck24P lLu1x13RSPSkln6T1CIt8UKlFaJ2goCBpjaerFpG2qLRlaZhXnRMyULJzvBSZB0h pfE47UzjYem19kMr/owKaTP6+Q7f9Ha9iA97UpFy4nGomw9vDoHMg0OlsPq3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx/XWGvGGJpQIKgkqXpvqkGPsT6MwHwYDVR0j BBgwFoAUYem2eM1C2iobPvPYh57ffs0qAGMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTQ2ZTA5YS1jMDA3LTRiMGMtOTQ2MC03YzQwMzQxY2EyZjcvMC82MUU5QjY3OENE NDJEQTJBMUIzRUYzRDg4NzlFREY3RUNEMkEwMDYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjFFOUI2NzhDRDQyREEyQTFCM0VGM0Q4ODc5RURGN0VDRDJB MDA2My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NDZlMDlhLWMwMDctNGIwYy05 NDYwLTdjNDAzNDFjYTJmNy8wLzMxMzYzMDJlMzIzMjJlMzEzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBZ+MA0GCSqG SIb3DQEBCwUAA4IBAQBpdiJ0SiG68Q9N8QpOTJXoFBxMrew0rBfI2Q0ePUZ/aB3Q RJbbppWVT9vqkTYhjS3Hfqx+xn8Av4D8SyCMwieQVibSB0mTJmXhej5eGVBGJtY2 iHvReAnEJMG1pjdxI5l+pvNE2pZ6FDuw5iYWViJHy5+G/AumP36z/1rp9/xHMJSt y81qCF0TELlaodWWq2bXr/UZ9FMi0nHVRVQdeU6472l1+7aEzu2ZGu5+/EGZ+8Op /tG5G5zDqJWpEYpal1eU3vYHZgGZConZhcU0Nfc7JvvARUTE+NemRXLLL0vWBFfW TQALExAnvhiqCrOIxS7zgmBbDp45vbHV5M87QBh+ -----END CERTIFICATE-----Generated at Fri Jun 6 20:31:05 2025 by rpki-client