$ rpki-client -vvf repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/3136302e32322e32382e302f32332d3234203d3e20313532383031.roa File: 3136302e32322e32382e302f32332d3234203d3e20313532383031.roa (raw, json) Hash identifier: k1BTnGnPNw0i2wtiBbJt3qzZFQFL5+IIGvpK+mUck6M= Subject key identifier: E1:C4:CB:7C:46:86:29:E9:B6:0B:52:C1:D2:0E:CB:7F:FD:F0:BE:78 Certificate issuer: /CN=B14E4E1C1AA1291BA83356968F8AE48E844359A9 Certificate serial: AAA0BE5C5EE959CCB64D1661F73F588252C2BF Authority key identifier: B1:4E:4E:1C:1A:A1:29:1B:A8:33:56:96:8F:8A:E4:8E:84:43:59:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B14E4E1C1AA1291BA83356968F8AE48E844359A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/3136302e32322e32382e302f32332d3234203d3e20313532383031.roa Signing time: Sun 11 May 2025 12:00:01 +0000 ROA not before: Sun 11 May 2025 11:55:01 +0000 ROA not after: Sun 10 May 2026 12:00:01 +0000 asID: 152801 IP address blocks: 160.22.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/B14E4E1C1AA1291BA83356968F8AE48E844359A9.crl rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/B14E4E1C1AA1291BA83356968F8AE48E844359A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B14E4E1C1AA1291BA83356968F8AE48E844359A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: aa:a0:be:5c:5e:e9:59:cc:b6:4d:16:61:f7:3f:58:82:52:c2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B14E4E1C1AA1291BA83356968F8AE48E844359A9 Validity Not Before: May 11 11:55:01 2025 GMT Not After : May 10 12:00:01 2026 GMT Subject: CN=E1C4CB7C468629E9B60B52C1D20ECB7FFDF0BE78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dd:23:3e:fa:47:bb:4a:63:ab:f3:8e:7a:2d: 8d:a3:3f:c4:95:24:32:af:b7:89:ba:55:43:99:54: 29:51:e7:a5:dd:24:38:55:56:3a:9d:96:71:73:f4: 71:58:69:f9:5f:7f:b3:20:7d:6a:6e:bb:83:23:1e: c7:b7:67:35:a5:55:6f:0b:ff:68:b2:ee:39:da:13: 40:12:ae:f8:d2:ee:31:bf:08:70:89:d6:ec:f8:05: 58:38:01:a6:8c:d8:7f:8c:3b:1a:f6:07:e9:69:c9: 08:2d:d5:16:a0:26:d4:ea:39:f4:f6:86:ed:ad:b5: 0b:4c:fb:9e:88:ab:41:4f:51:5f:73:36:b5:90:c7: 9f:e3:a2:f6:4b:d6:1a:a3:1a:6a:b3:db:33:7f:05: 74:2b:c1:a9:96:b8:21:17:ed:81:a2:c0:16:55:ca: fd:ac:ea:9d:f2:1e:e9:55:84:cf:4d:cf:00:17:ee: 66:17:54:99:aa:b5:bb:bd:08:55:44:f3:b6:65:5c: e8:cc:45:62:1e:33:04:e2:6d:c1:1c:a1:fb:b8:ac: 73:7d:47:41:c2:23:00:de:97:d7:fc:6c:19:6e:b5: 1c:46:51:ae:87:33:34:a4:7b:b7:2d:21:f0:91:0b: c7:21:05:e4:a0:92:fa:1a:18:ae:de:64:74:c1:24: 69:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C4:CB:7C:46:86:29:E9:B6:0B:52:C1:D2:0E:CB:7F:FD:F0:BE:78 X509v3 Authority Key Identifier: keyid:B1:4E:4E:1C:1A:A1:29:1B:A8:33:56:96:8F:8A:E4:8E:84:43:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/B14E4E1C1AA1291BA83356968F8AE48E844359A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B14E4E1C1AA1291BA83356968F8AE48E844359A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/3136302e32322e32382e302f32332d3234203d3e20313532383031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.28.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:f7:70:dc:dc:29:44:19:16:45:18:b0:53:d0:a8:7c:54:d7: ad:2f:5b:62:2a:49:e4:13:03:6c:60:ab:61:6e:e2:02:0c:8b: 84:45:2f:25:ce:c7:f8:c0:90:cb:e6:41:01:3a:9c:d3:00:bc: 83:1d:60:61:a8:d9:38:5c:ba:5c:24:8c:8f:19:d8:60:1e:a4: 09:64:de:f0:2b:34:ba:4e:8d:89:67:8c:97:31:4f:07:69:54: 5c:37:9c:5a:5d:0a:db:3a:b9:b1:2b:2b:e7:48:98:9d:9b:6e: e9:e7:0c:b0:9d:a4:5a:46:67:9b:13:68:47:cd:f8:03:54:46: e5:57:a0:3d:a1:16:2c:25:96:3b:09:5e:1a:d3:58:c8:35:27: 87:20:bb:12:4c:3e:04:23:ce:3d:34:f7:26:27:33:04:e7:73: d2:bd:a8:2f:c8:a5:5b:48:4c:1b:e4:f2:22:6f:3e:0a:c9:93: 9d:e2:66:b8:26:33:8e:70:d6:d9:93:d7:14:e5:c6:8d:1b:a6: 4f:05:8d:f4:37:d3:87:0c:a5:b3:9f:d7:ff:db:f7:7d:aa:e0: e0:9b:cf:5a:b8:26:63:aa:00:96:cd:c0:39:e4:35:96:13:1e: 76:c9:9d:5e:48:02:3e:a2:df:a9:0c:87:0d:75:dc:4e:3c:c6: 4a:26:90:6e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAKqgvlxe6VnMtk0WYfc/WIJSwr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0RTRFMUMxQUExMjkxQkE4MzM1Njk2OEY4QUU0OEU4 NDQzNTlBOTAeFw0yNTA1MTExMTU1MDFaFw0yNjA1MTAxMjAwMDFaMDMxMTAvBgNV BAMTKEUxQzRDQjdDNDY4NjI5RTlCNjBCNTJDMUQyMEVDQjdGRkRGMEJFNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn3SM++ke7SmOr8456LY2jP8SV JDKvt4m6VUOZVClR56XdJDhVVjqdlnFz9HFYaflff7MgfWpuu4MjHse3ZzWlVW8L /2iy7jnaE0ASrvjS7jG/CHCJ1uz4BVg4AaaM2H+MOxr2B+lpyQgt1RagJtTqOfT2 hu2ttQtM+56Iq0FPUV9zNrWQx5/jovZL1hqjGmqz2zN/BXQrwamWuCEX7YGiwBZV yv2s6p3yHulVhM9NzwAX7mYXVJmqtbu9CFVE87ZlXOjMRWIeMwTibcEcofu4rHN9 R0HCIwDel9f8bBlutRxGUa6HMzSke7ctIfCRC8chBeSgkvoaGK7eZHTBJGmDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4cTLfEaGKem2C1LB0g7Lf/3wvngwHwYDVR0j BBgwFoAUsU5OHBqhKRuoM1aWj4rkjoRDWakwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTE0MmM4Mi1iMDQzLTQ2ZWItYjBhMS04ZTE1ZmQ1ZGFhNzkvMC9CMTRFNEUxQzFB QTEyOTFCQTgzMzU2OTY4RjhBRTQ4RTg0NDM1OUE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjE0RTRFMUMxQUExMjkxQkE4MzM1Njk2OEY4QUU0OEU4NDQz NTlBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5MTQyYzgyLWIwNDMtNDZlYi1i MGExLThlMTVmZDVkYWE3OS8wLzMxMzYzMDJlMzIzMjJlMzIzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWHDANBgkqhkiG 9w0BAQsFAAOCAQEATPdw3NwpRBkWRRiwU9CofFTXrS9bYipJ5BMDbGCrYW7iAgyL hEUvJc7H+MCQy+ZBATqc0wC8gx1gYajZOFy6XCSMjxnYYB6kCWTe8Cs0uk6NiWeM lzFPB2lUXDecWl0K2zq5sSsr50iYnZtu6ecMsJ2kWkZnmxNoR834A1RG5VegPaEW LCWWOwleGtNYyDUnhyC7Ekw+BCPOPTT3JiczBOdz0r2oL8ilW0hMG+TyIm8+CsmT neJmuCYzjnDW2ZPXFOXGjRumTwWN9DfThwyls5/X/9v3farg4JvPWrgmY6oAls3A OeQ1lhMedsmdXkgCPqLfqQyHDXXcTjzGSiaQbg== -----END CERTIFICATE-----Generated at Sat Jun 7 23:28:35 2025 by rpki-client