$ rpki-client -vvf repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa File: 3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa (raw, json) Hash identifier: /U+44U6OBvCGsv3ed3z+YxR73loB+6G9DzRSbiFpHC4= Subject key identifier: FC:74:D8:CE:6B:69:F3:5A:1F:D6:BD:86:88:9D:55:E4:27:3A:90:06 Certificate issuer: /CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Certificate serial: 1375B554C482E290E4BF925B33D1D3131FF6ADD1 Authority key identifier: 01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa Signing time: Thu 05 Jun 2025 19:02:45 +0000 ROA not before: Thu 05 Jun 2025 18:57:45 +0000 ROA not after: Thu 04 Jun 2026 19:02:45 +0000 asID: 152768 IP address blocks: 160.19.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:75:b5:54:c4:82:e2:90:e4:bf:92:5b:33:d1:d3:13:1f:f6:ad:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A2349B25C18BC156CEE53AEAE63EE3010910E2 Validity Not Before: Jun 5 18:57:45 2025 GMT Not After : Jun 4 19:02:45 2026 GMT Subject: CN=FC74D8CE6B69F35A1FD6BD86889D55E4273A9006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:c7:41:7b:3c:b4:b0:72:f6:82:16:c7:ab: ee:11:07:22:3a:6d:6c:f8:5d:58:85:c4:48:90:cf: ca:14:00:82:95:9d:89:01:ae:eb:f7:76:56:9f:4f: 3c:c2:d1:61:e4:94:23:9f:ff:61:a4:aa:0a:14:91: eb:ab:d6:f9:60:6b:f9:a7:e8:c0:21:b3:ed:ed:46: 9b:c5:c9:2b:34:c3:0b:9f:fe:0a:e3:db:6a:d2:96: c9:92:b0:c6:65:5a:30:db:f2:1f:2b:0b:b0:ed:40: e8:5b:9a:15:9f:93:02:8f:77:de:41:29:11:62:61: e2:7e:f0:f2:13:9c:c8:bb:e8:72:9f:6d:ea:83:b2: 01:d4:da:c9:bc:fa:3f:36:91:c1:5f:8d:41:d7:64: 2f:3a:9e:1b:4d:bc:11:8c:bd:c7:41:bc:d0:a6:53: 63:99:97:43:f7:b9:78:13:77:4e:46:01:23:f7:a4: d7:8f:f7:b8:74:11:82:e7:37:5a:13:79:78:14:7f: dc:4c:c5:34:e0:fb:71:b6:5e:0c:13:f2:43:f7:c0: 85:a9:80:a3:1b:c8:7a:6d:13:d4:04:ec:dc:00:de: 4c:71:af:fb:44:79:37:38:54:8e:4f:3a:48:f9:dd: 00:59:96:f8:53:03:31:01:8d:e1:5b:b6:31:67:f4: 92:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:74:D8:CE:6B:69:F3:5A:1F:D6:BD:86:88:9D:55:E4:27:3A:90:06 X509v3 Authority Key Identifier: keyid:01:A2:34:9B:25:C1:8B:C1:56:CE:E5:3A:EA:E6:3E:E3:01:09:10:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/01A2349B25C18BC156CEE53AEAE63EE3010910E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/01A2349B25C18BC156CEE53AEAE63EE3010910E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135372e302f32342d3234203d3e20313532373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.157.0/24 Signature Algorithm: sha256WithRSAEncryption 81:f5:be:76:56:25:ac:7e:30:db:9f:5f:dd:ed:79:61:50:57: b6:1f:ed:70:33:44:b4:c1:db:66:5f:34:4f:20:92:65:43:79: 45:d1:e8:c7:55:e3:da:31:58:1e:1e:0d:ae:37:4a:3e:d8:ff: a2:8f:c9:56:a2:d0:8e:da:ec:09:2f:ce:34:40:96:45:a2:15: fa:0a:7c:e3:5f:dd:e7:6e:d5:54:1d:24:68:a3:66:ba:63:56: 48:0c:b5:97:ae:33:01:2c:3e:9a:c3:82:ad:76:4e:a4:67:10: d8:54:78:6a:bd:c2:55:80:ad:03:73:49:5b:ac:b1:47:70:e1: d6:29:91:3b:b1:d7:81:af:7c:f8:66:8f:52:bd:97:24:20:6e: c1:e2:c9:27:a4:f2:fb:e3:8a:24:fa:de:7a:27:a4:d8:26:a8: b4:5a:40:13:b4:ba:c8:86:08:d7:95:42:a7:f8:41:fc:52:59: fa:5b:91:bf:45:e6:65:3e:2a:54:48:05:be:16:fa:20:78:17: eb:7a:64:04:a6:8e:b0:03:e0:76:aa:dd:4f:af:1d:c2:b1:fa: 5d:97:ab:b0:7b:ed:96:eb:ff:f2:5d:80:a7:a7:dc:80:e9:d4: d8:82:49:e9:88:be:01:0c:07:e6:aa:a7:ff:fc:e3:52:9a:58: 6b:56:64:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE3W1VMSC4pDkv5JbM9HTEx/2rdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMw MTA5MTBFMjAeFw0yNTA2MDUxODU3NDVaFw0yNjA2MDQxOTAyNDVaMDMxMTAvBgNV BAMTKEZDNzREOENFNkI2OUYzNUExRkQ2QkQ4Njg4OUQ1NUU0MjczQTkwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW9sdBezy0sHL2ghbHq+4RByI6 bWz4XViFxEiQz8oUAIKVnYkBruv3dlafTzzC0WHklCOf/2GkqgoUkeur1vlga/mn 6MAhs+3tRpvFySs0wwuf/grj22rSlsmSsMZlWjDb8h8rC7DtQOhbmhWfkwKPd95B KRFiYeJ+8PITnMi76HKfbeqDsgHU2sm8+j82kcFfjUHXZC86nhtNvBGMvcdBvNCm U2OZl0P3uXgTd05GASP3pNeP97h0EYLnN1oTeXgUf9xMxTTg+3G2XgwT8kP3wIWp gKMbyHptE9QE7NwA3kxxr/tEeTc4VI5POkj53QBZlvhTAzEBjeFbtjFn9JLjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/HTYzmtp81of1r2GiJ1V5Cc6kAYwHwYDVR0j BBgwFoAUAaI0myXBi8FWzuU66uY+4wEJEOIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmY4MDhhNC05ZGIzLTQ2OTgtYTA3Yi00NzY5ZGNlMThlYzcvMC8wMUEyMzQ5QjI1 QzE4QkMxNTZDRUU1M0FFQUU2M0VFMzAxMDkxMEUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDFBMjM0OUIyNUMxOEJDMTU2Q0VFNTNBRUFFNjNFRTMwMTA5 MTBFMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZjgwOGE0LTlkYjMtNDY5OC1h MDdiLTQ3NjlkY2UxOGVjNy8wLzMxMzYzMDJlMzEzOTJlMzEzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOdMA0GCSqG SIb3DQEBCwUAA4IBAQCB9b52ViWsfjDbn1/d7XlhUFe2H+1wM0S0wdtmXzRPIJJl Q3lF0ejHVePaMVgeHg2uN0o+2P+ij8lWotCO2uwJL840QJZFohX6CnzjX93nbtVU HSRoo2a6Y1ZIDLWXrjMBLD6aw4Ktdk6kZxDYVHhqvcJVgK0Dc0lbrLFHcOHWKZE7 sdeBr3z4Zo9SvZckIG7B4sknpPL744ok+t56J6TYJqi0WkATtLrIhgjXlUKn+EH8 Uln6W5G/ReZlPipUSAW+FvogeBfremQEpo6wA+B2qt1Prx3Csfpdl6uwe+2W6//y XYCnp9yA6dTYgknpiL4BDAfmqqf//ONSmlhrVmTI -----END CERTIFICATE-----Generated at Sat Jun 7 23:21:45 2025 by rpki-client