$ rpki-client -vvf repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32342d3234203d3e20313532373638.roa File: 3136302e31392e3135362e302f32342d3234203d3e20313532373638.roa (raw, json) Hash identifier: YwfkNT9uJxp+XppevLMj2drKR6MOyIxH6IZjcA7OFyw= Subject key identifier: 96:AC:9C:63:C3:87:A4:E4:A0:01:0F:B7:5F:D1:A6:A9:56:74:99:55 Certificate issuer: /CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Certificate serial: 58F2BF831A9177FF75EFBC852B46A759F2DB7B95 Authority key identifier: 01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32342d3234203d3e20313532373638.roa Signing time: Thu 05 Jun 2025 19:02:44 +0000 ROA not before: Thu 05 Jun 2025 18:57:44 +0000 ROA not after: Thu 04 Jun 2026 19:02:44 +0000 asID: 152768 IP address blocks: 160.19.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f2:bf:83:1a:91:77:ff:75:ef:bc:85:2b:46:a7:59:f2:db:7b:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Validity Not Before: Jun 5 18:57:44 2025 GMT Not After : Jun 4 19:02:44 2026 GMT Subject: CN=96AC9C63C387A4E4A0010FB75FD1A6A956749955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:92:68:12:5b:5d:48:a4:ce:81:36:c5:50:59: 30:c3:c9:bd:9d:4b:1e:5f:51:37:96:fa:b1:e6:90: fa:90:d1:71:40:cc:61:27:ff:ee:e6:5d:e4:0e:64: 02:05:53:2b:39:3e:d6:b3:42:1d:4f:7a:c3:63:75: 36:44:01:44:65:c2:39:c1:2d:de:f0:f5:d0:ae:c6: 27:79:36:2a:a4:0e:7f:28:ea:93:34:80:d7:d1:4f: f4:d7:d9:3a:6f:ba:18:dd:fe:dd:eb:04:bb:6c:11: 44:16:48:dd:df:53:2d:fc:5d:a9:62:90:41:de:06: ca:46:0f:06:3b:cb:85:2f:24:7f:19:3a:57:cd:42: 68:08:a7:1d:c3:22:bc:cf:3a:0e:fd:e7:79:fc:82: a1:7a:ff:84:f6:1b:96:48:31:7d:f9:b5:64:cc:ae: 29:1a:e4:ff:c4:0b:64:5f:72:39:cf:2e:0e:17:a7: 63:d4:a7:3b:40:4c:a8:0f:ae:c1:ab:29:3c:f4:10: 0f:94:bd:1a:89:b6:f7:07:fb:2a:6e:dc:dc:e8:5d: 41:a1:14:2a:63:2a:d2:c1:c5:9c:29:39:bf:93:e8: 24:3b:51:fc:e5:94:c7:a9:f3:0f:0b:48:ed:bf:58: 09:f6:32:cd:2d:c4:37:34:85:b9:8e:05:f4:85:75: 0f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AC:9C:63:C3:87:A4:E4:A0:01:0F:B7:5F:D1:A6:A9:56:74:99:55 X509v3 Authority Key Identifier: keyid:01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32342d3234203d3e20313532373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.156.0/24 Signature Algorithm: sha256WithRSAEncryption 85:41:2d:1b:8d:4e:ad:14:c1:d2:5b:a7:c4:b0:cc:bc:0c:73: 00:31:1d:2b:22:9f:8e:83:07:ac:da:ea:cb:e1:c6:05:ea:9a: 7e:18:f8:7c:90:04:91:01:f2:d2:a2:33:6d:c6:e5:d4:38:25: 4b:cb:42:85:18:51:a9:9e:3e:36:f0:be:4a:dc:81:53:2d:5a: a8:e2:ba:16:20:7d:e9:0d:c9:b7:30:64:c4:44:5d:42:a3:93: 7f:4a:4a:c4:35:b8:72:e7:5c:48:b1:54:ab:43:ab:85:3e:5f: 2c:b5:ae:14:3c:4b:49:fd:ca:c0:0f:9c:ea:3a:77:3e:0a:fc: 70:c6:42:b1:c8:31:c0:1b:95:da:34:a4:b8:37:05:f0:08:fe: 46:71:e5:82:94:f3:00:b0:7d:f1:3c:29:ae:f7:2e:9a:5b:b5: 9d:13:44:4e:72:3c:b4:38:03:01:f6:52:4c:1f:a1:88:3f:df: b7:d0:e3:4a:d2:fa:b1:f8:52:74:7d:fc:5f:cd:cb:4e:0e:35: b9:7f:b7:be:09:c4:40:d3:62:95:b6:93:c7:30:76:bb:14:e5: 7d:bf:8a:55:cf:26:a6:81:99:2a:00:91:b2:d6:57:0f:cd:1f: 96:62:66:3f:c0:8c:42:08:f4:47:60:f8:3e:bb:89:04:c7:6a: 08:3b:c1:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWPK/gxqRd/9177yFK0anWfLbe5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMw MTA5MTBFMjAeFw0yNTA2MDUxODU3NDRaFw0yNjA2MDQxOTAyNDRaMDMxMTAvBgNV BAMTKDk2QUM5QzYzQzM4N0E0RTRBMDAxMEZCNzVGRDFBNkE5NTY3NDk5NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCykmgSW11IpM6BNsVQWTDDyb2d Sx5fUTeW+rHmkPqQ0XFAzGEn/+7mXeQOZAIFUys5PtazQh1PesNjdTZEAURlwjnB Ld7w9dCuxid5NiqkDn8o6pM0gNfRT/TX2Tpvuhjd/t3rBLtsEUQWSN3fUy38Xali kEHeBspGDwY7y4UvJH8ZOlfNQmgIpx3DIrzPOg7953n8gqF6/4T2G5ZIMX35tWTM rika5P/EC2RfcjnPLg4Xp2PUpztATKgPrsGrKTz0EA+UvRqJtvcH+ypu3NzoXUGh FCpjKtLBxZwpOb+T6CQ7UfzllMep8w8LSO2/WAn2Ms0txDc0hbmOBfSFdQ9/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlqycY8OHpOSgAQ+3X9GmqVZ0mVUwHwYDVR0j BBgwFoAUAaI0myXBi8FWzuU66uY+4wEJEOIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmY4MDhhNC05ZGIzLTQ2OTgtYTA3Yi00NzY5ZGNlMThlYzcvMC8wMUEyMzQ5QjI1 QzE4QkMxNTZDRUU1M0FFQUU2M0VFMzAxMDkxMEUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMwMTA5 MTBFMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZjgwOGE0LTlkYjMtNDY5OC1h MDdiLTQ3NjlkY2UxOGVjNy8wLzMxMzYzMDJlMzEzOTJlMzEzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOcMA0GCSqG SIb3DQEBCwUAA4IBAQCFQS0bjU6tFMHSW6fEsMy8DHMAMR0rIp+Ogwes2urL4cYF 6pp+GPh8kASRAfLSojNtxuXUOCVLy0KFGFGpnj428L5K3IFTLVqo4roWIH3pDcm3 MGTERF1Co5N/SkrENbhy51xIsVSrQ6uFPl8sta4UPEtJ/crAD5zqOnc+CvxwxkKx yDHAG5XaNKS4NwXwCP5GceWClPMAsH3xPCmu9y6aW7WdE0ROcjy0OAMB9lJMH6GI P9+30ONK0vqx+FJ0ffxfzctODjW5f7e+CcRA02KVtpPHMHa7FOV9v4pVzyamgZkq AJGy1lcPzR+WYmY/wIxCCPRHYPg+u4kEx2oIO8F/ -----END CERTIFICATE-----Generated at Sat Jun 7 19:19:38 2025 by rpki-client