$ rpki-client -vvf repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa File: 3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa (raw, json) Hash identifier: CbUawBdc6/owSFYBdX6zk907J+9GwiPGZDz88NQXPnI= Subject key identifier: 8A:54:8C:8F:44:4D:FF:7B:08:23:2A:17:EE:45:A5:B1:5A:1F:47:35 Certificate issuer: /CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Certificate serial: 2CE5287997CC1C97D6F6699B8435F4C580151C3E Authority key identifier: 01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa Signing time: Thu 05 Jun 2025 19:02:44 +0000 ROA not before: Thu 05 Jun 2025 18:57:44 +0000 ROA not after: Thu 04 Jun 2026 19:02:44 +0000 asID: 152768 IP address blocks: 160.19.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e5:28:79:97:cc:1c:97:d6:f6:69:9b:84:35:f4:c5:80:15:1c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Validity Not Before: Jun 5 18:57:44 2025 GMT Not After : Jun 4 19:02:44 2026 GMT Subject: CN=8A548C8F444DFF7B08232A17EE45A5B15A1F4735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:92:4f:e8:0d:3e:17:b0:91:5f:fd:97:01:19: d1:6d:99:40:3e:b3:78:36:d0:1c:e2:88:56:5f:39: 01:16:f3:c0:f8:31:3f:bf:a5:71:ed:aa:10:19:58: ca:a9:7f:b0:be:20:d8:7f:bc:00:af:3c:eb:76:00: b9:54:43:6c:73:17:01:39:5b:aa:23:70:d0:db:f1: 33:03:25:9d:9b:ab:eb:6e:c4:44:c2:31:e3:65:bc: 82:c2:ac:7b:f0:ff:2c:78:f1:02:36:a6:07:7b:4e: 12:4a:18:13:28:09:7c:50:93:d5:0d:c6:72:7d:2f: 46:a2:40:0b:c7:8f:b1:ee:eb:49:a2:b8:a1:71:ec: 22:7a:ac:a7:1f:68:9a:82:e1:3c:3b:97:df:30:f1: 4d:6d:3c:92:f7:5a:d2:87:75:91:64:55:3c:6d:aa: 8c:e0:c5:b8:3c:37:e0:ae:18:b1:fc:97:86:7a:a2: 5c:8b:72:b2:94:ab:75:6c:81:73:ed:f4:bb:60:56: c7:ad:7f:4c:c8:2b:b6:c7:2a:aa:97:87:d6:61:cb: ef:8f:a8:77:16:74:26:81:b2:4e:58:1b:a2:80:ec: 57:f6:54:f2:fc:f5:2f:e6:df:7c:22:f9:57:bb:93: ad:67:29:43:d0:b7:22:0b:83:0a:43:dc:22:7d:dc: 48:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:54:8C:8F:44:4D:FF:7B:08:23:2A:17:EE:45:A5:B1:5A:1F:47:35 X509v3 Authority Key Identifier: keyid:01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.156.0/23 Signature Algorithm: sha256WithRSAEncryption 76:cf:dc:6b:c0:0a:e2:bf:c8:21:fa:55:a5:0a:4e:45:4c:8e: d7:5c:ce:ed:a3:58:76:77:b9:af:6c:77:f2:ca:67:c9:a0:22: 51:42:5e:88:f3:58:e8:8c:f8:8b:56:67:7d:56:14:2e:4a:81: 63:68:81:11:5f:e6:1f:b8:80:17:17:2a:3f:e9:09:ae:5a:c2: 9a:80:20:bb:d9:40:37:ee:42:b8:56:1f:34:3e:2b:16:9c:c7: d5:a2:0e:b6:a6:b9:f9:1b:af:90:79:2e:fc:a8:5d:a9:ed:b8: a8:b1:7f:ef:b8:09:b6:96:93:c8:df:ec:65:1a:0e:24:9b:9c: 6c:72:68:ac:70:a0:7d:96:8a:73:00:85:bb:3e:cd:cc:bd:d0: 25:9a:d7:02:b7:dd:cf:9b:b3:62:c7:25:d8:4d:b6:ea:d9:a0: 50:a5:62:8a:ae:68:61:5e:af:0c:04:f9:05:96:35:ec:15:0a: 73:9e:c6:7d:60:22:68:9d:b7:79:a4:a9:f3:b7:93:8d:35:bb: 0f:13:d1:26:d6:d8:eb:a9:7d:cc:43:ca:0e:ec:77:4c:11:b4: c8:ce:54:66:e6:6e:c9:2b:33:00:ea:35:55:fa:4d:56:7f:40: 8c:a4:e6:e7:fa:45:51:4e:c4:63:bb:37:08:85:a3:51:92:f5: 93:f3:6d:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULOUoeZfMHJfW9mmbhDX0xYAVHD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMw MTA5MTBFMjAeFw0yNTA2MDUxODU3NDRaFw0yNjA2MDQxOTAyNDRaMDMxMTAvBgNV BAMTKDhBNTQ4QzhGNDQ0REZGN0IwODIzMkExN0VFNDVBNUIxNUExRjQ3MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIkk/oDT4XsJFf/ZcBGdFtmUA+ s3g20BziiFZfOQEW88D4MT+/pXHtqhAZWMqpf7C+INh/vACvPOt2ALlUQ2xzFwE5 W6ojcNDb8TMDJZ2bq+tuxETCMeNlvILCrHvw/yx48QI2pgd7ThJKGBMoCXxQk9UN xnJ9L0aiQAvHj7Hu60miuKFx7CJ6rKcfaJqC4Tw7l98w8U1tPJL3WtKHdZFkVTxt qozgxbg8N+CuGLH8l4Z6olyLcrKUq3VsgXPt9LtgVsetf0zIK7bHKqqXh9Zhy++P qHcWdCaBsk5YG6KA7Ff2VPL89S/m33wi+Ve7k61nKUPQtyILgwpD3CJ93EhZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUilSMj0RN/3sIIyoX7kWlsVofRzUwHwYDVR0j BBgwFoAUAaI0myXBi8FWzuU66uY+4wEJEOIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmY4MDhhNC05ZGIzLTQ2OTgtYTA3Yi00NzY5ZGNlMThlYzcvMC8wMUEyMzQ5QjI1 QzE4QkMxNTZDRUU1M0FFQUU2M0VFMzAxMDkxMEUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMwMTA5 MTBFMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZjgwOGE0LTlkYjMtNDY5OC1h MDdiLTQ3NjlkY2UxOGVjNy8wLzMxMzYzMDJlMzEzOTJlMzEzNTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBOcMA0GCSqG SIb3DQEBCwUAA4IBAQB2z9xrwAriv8gh+lWlCk5FTI7XXM7to1h2d7mvbHfyymfJ oCJRQl6I81jojPiLVmd9VhQuSoFjaIERX+YfuIAXFyo/6QmuWsKagCC72UA37kK4 Vh80PisWnMfVog62prn5G6+QeS78qF2p7biosX/vuAm2lpPI3+xlGg4km5xscmis cKB9lopzAIW7Ps3MvdAlmtcCt93Pm7NixyXYTbbq2aBQpWKKrmhhXq8MBPkFljXs FQpznsZ9YCJonbd5pKnzt5ONNbsPE9Em1tjrqX3MQ8oO7HdMEbTIzlRm5m7JKzMA 6jVV+k1Wf0CMpObn+kVRTsRjuzcIhaNRkvWT823Y -----END CERTIFICATE-----Generated at Sat Jun 7 22:55:20 2025 by rpki-client