$ rpki-client -vvf repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/3136302e32322e32322e302f32332d3234203d3e20313532383032.roa File: 3136302e32322e32322e302f32332d3234203d3e20313532383032.roa (raw, json) Hash identifier: 1cb+dRF1cCmzlK2LUqHDHTpgVi9SG86amprY/lPnWU4= Subject key identifier: 8C:27:6F:1D:FD:94:AC:8B:2C:6F:66:24:DB:C0:EB:04:5A:A6:39:C3 Certificate issuer: /CN=B0D673B78DBE219F1EEEF056E3E49FB6D58A5550 Certificate serial: 520C7D8000051AD41EBF336CB97D21185F4D52B8 Authority key identifier: B0:D6:73:B7:8D:BE:21:9F:1E:EE:F0:56:E3:E4:9F:B6:D5:8A:55:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/3136302e32322e32322e302f32332d3234203d3e20313532383032.roa Signing time: Tue 13 May 2025 18:00:02 +0000 ROA not before: Tue 13 May 2025 17:55:02 +0000 ROA not after: Tue 12 May 2026 18:00:02 +0000 asID: 152802 IP address blocks: 160.22.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.crl rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:0c:7d:80:00:05:1a:d4:1e:bf:33:6c:b9:7d:21:18:5f:4d:52:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0D673B78DBE219F1EEEF056E3E49FB6D58A5550 Validity Not Before: May 13 17:55:02 2025 GMT Not After : May 12 18:00:02 2026 GMT Subject: CN=8C276F1DFD94AC8B2C6F6624DBC0EB045AA639C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:22:c5:9b:62:9f:e0:88:e2:8c:f7:be:82:fb: c6:d6:1e:98:8b:00:ac:22:cd:06:dd:03:1e:22:c9: e8:a7:15:f6:26:57:bf:fd:ba:a0:d9:9d:09:2e:83: df:a8:aa:d1:51:81:a8:c5:ad:75:ed:d7:fb:ca:c6: c1:45:9f:ba:e3:9b:e8:18:c6:02:01:36:6a:15:0f: 9e:b1:2b:08:95:e9:f9:39:cc:2a:56:f8:04:cf:51: de:6f:24:e8:2a:fb:0f:90:8a:6d:5f:9e:97:2a:26: 61:d1:e8:0c:d0:b4:86:c0:69:3d:31:96:b7:ae:ed: f1:e0:ac:80:50:7f:87:0f:d8:70:91:97:86:5b:ea: d3:ed:f2:42:47:d2:81:ff:e7:7e:40:c5:46:20:04: d4:39:74:47:00:e9:9e:9f:93:78:66:90:aa:0c:5b: 91:04:68:f2:06:49:40:94:60:f1:c6:01:53:11:c0: 0d:37:db:3d:79:18:7f:eb:28:75:2d:27:da:07:06: 5b:5d:2d:ad:46:c7:53:ac:ed:9d:b9:9d:de:12:a7: f9:f4:10:64:15:b9:05:74:c2:7c:9c:6a:ac:ee:e8: 1c:f4:40:a7:ac:fb:1c:02:03:3a:d8:1f:77:33:06: f3:d5:d3:cc:30:a1:d3:b3:72:9b:1b:1e:ad:73:ad: 42:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:27:6F:1D:FD:94:AC:8B:2C:6F:66:24:DB:C0:EB:04:5A:A6:39:C3 X509v3 Authority Key Identifier: keyid:B0:D6:73:B7:8D:BE:21:9F:1E:EE:F0:56:E3:E4:9F:B6:D5:8A:55:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/3136302e32322e32322e302f32332d3234203d3e20313532383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.22.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:b1:52:1f:b3:64:09:b8:9a:f1:f7:56:99:50:54:74:66:ed: 5e:58:3c:ff:65:e7:3f:db:b7:3d:b5:b0:4d:d6:c2:61:5d:79: 86:53:9e:66:2e:a4:ab:d4:ab:2f:c4:99:ae:2c:b3:0e:1a:a0: ea:cd:84:6b:51:5e:85:28:f5:6f:4f:ba:27:3a:64:16:54:6c: f3:21:9b:1f:ae:82:d0:63:ef:09:51:e5:6a:a2:08:9b:54:03: b0:f2:f2:3a:8b:d7:c4:ef:66:ff:14:8f:35:b4:f4:0e:e1:dc: 4f:38:a8:21:9c:64:d8:ec:71:de:4d:49:57:b2:13:22:7e:22: 82:05:93:34:15:41:81:8f:aa:e4:8e:46:f3:be:08:c3:16:be: c4:33:10:47:d2:a2:53:87:6b:67:4d:aa:b4:0a:34:35:d8:66: 43:9b:cf:d6:50:d2:3f:f3:4c:eb:5d:dd:45:d5:0e:2a:c2:46: b0:93:94:bf:49:13:46:6a:66:45:72:1d:13:df:f9:7e:6b:79: d3:b9:15:78:e7:eb:0a:3c:e9:03:e7:4a:fb:63:62:8a:a1:77: dc:4d:71:2f:83:35:69:6a:d4:7c:8a:b2:86:1e:03:b8:14:18: f7:7f:e9:f1:00:a6:62:61:a9:85:26:27:83:0c:93:90:4c:39: 17:25:3d:fe -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUgx9gAAFGtQevzNsuX0hGF9NUrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBENjczQjc4REJFMjE5RjFFRUVGMDU2RTNFNDlGQjZE NThBNTU1MDAeFw0yNTA1MTMxNzU1MDJaFw0yNjA1MTIxODAwMDJaMDMxMTAvBgNV BAMTKDhDMjc2RjFERkQ5NEFDOEIyQzZGNjYyNERCQzBFQjA0NUFBNjM5QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5IsWbYp/giOKM976C+8bWHpiL AKwizQbdAx4iyeinFfYmV7/9uqDZnQkug9+oqtFRgajFrXXt1/vKxsFFn7rjm+gY xgIBNmoVD56xKwiV6fk5zCpW+ATPUd5vJOgq+w+Qim1fnpcqJmHR6AzQtIbAaT0x lreu7fHgrIBQf4cP2HCRl4Zb6tPt8kJH0oH/535AxUYgBNQ5dEcA6Z6fk3hmkKoM W5EEaPIGSUCUYPHGAVMRwA032z15GH/rKHUtJ9oHBltdLa1Gx1Os7Z25nd4Sp/n0 EGQVuQV0wnycaqzu6Bz0QKes+xwCAzrYH3czBvPV08wwodOzcpsbHq1zrUJbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjCdvHf2UrIssb2Yk28DrBFqmOcMwHwYDVR0j BBgwFoAUsNZzt42+IZ8e7vBW4+SfttWKVVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjdkMjg5NC1jMDc3LTQyMWMtYmMxZC0zN2Q2ZjlkOTg5N2QvMC9CMEQ2NzNCNzhE QkUyMTlGMUVFRUYwNTZFM0U0OUZCNkQ1OEE1NTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjBENjczQjc4REJFMjE5RjFFRUVGMDU2RTNFNDlGQjZENThB NTU1MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmN2QyODk0LWMwNzctNDIxYy1i YzFkLTM3ZDZmOWQ5ODk3ZC8wLzMxMzYzMDJlMzIzMjJlMzIzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWFjANBgkqhkiG 9w0BAQsFAAOCAQEAXLFSH7NkCbia8fdWmVBUdGbtXlg8/2XnP9u3PbWwTdbCYV15 hlOeZi6kq9SrL8SZriyzDhqg6s2Ea1FehSj1b0+6JzpkFlRs8yGbH66C0GPvCVHl aqIIm1QDsPLyOovXxO9m/xSPNbT0DuHcTzioIZxk2Oxx3k1JV7ITIn4iggWTNBVB gY+q5I5G874Iwxa+xDMQR9KiU4drZ02qtAo0NdhmQ5vP1lDSP/NM613dRdUOKsJG sJOUv0kTRmpmRXIdE9/5fmt507kVeOfrCjzpA+dK+2NiiqF33E1xL4M1aWrUfIqy hh4DuBQY93/p8QCmYmGphSYngwyTkEw5FyU9/g== -----END CERTIFICATE-----Generated at Sat Jun 7 22:39:08 2025 by rpki-client