$ rpki-client -vvf repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32342d3234203d3e20313532383030.roa File: 3136302e32322e32342e302f32342d3234203d3e20313532383030.roa (raw, json) Hash identifier: WQbsLa/WI6fTYVHN1f/acG1CHu2vwbKzJ6P9lpc4ums= Subject key identifier: DF:55:7B:F6:42:CC:09:99:05:53:8E:C0:11:13:63:61:E2:08:90:42 Certificate issuer: /CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD Certificate serial: 6A07CEA5BA0CBEDA810AFEFBC7C0CA65CC3E6DB6 Authority key identifier: FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32342d3234203d3e20313532383030.roa Signing time: Tue 27 May 2025 15:00:50 +0000 ROA not before: Tue 27 May 2025 14:55:50 +0000 ROA not after: Tue 26 May 2026 15:00:50 +0000 asID: 152800 IP address blocks: 160.22.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.crl rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 01:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:07:ce:a5:ba:0c:be:da:81:0a:fe:fb:c7:c0:ca:65:cc:3e:6d:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD Validity Not Before: May 27 14:55:50 2025 GMT Not After : May 26 15:00:50 2026 GMT Subject: CN=DF557BF642CC099905538EC011136361E2089042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:3e:a7:ff:20:96:fb:7b:42:b5:ed:2d:90: 46:0b:d1:76:3c:9c:92:f4:ff:65:fc:9e:c9:06:b9: f9:cf:7d:5a:8b:45:cd:8f:52:65:7d:8a:53:69:50: 01:2b:cc:70:02:f6:4d:5c:86:17:9e:3c:41:35:85: 79:3c:51:b3:15:df:b5:5b:3a:4a:9e:df:2f:3c:01: 29:4a:2d:0c:4c:a6:23:60:ae:43:af:37:f4:91:54: 7f:a8:af:42:ce:e2:8e:50:2f:62:a7:82:a5:c1:67: d6:a5:23:13:30:ee:9c:fb:68:44:8e:f5:95:d9:3e: 02:1e:a2:8e:c2:d9:24:a8:71:d2:49:72:92:f3:67: 37:85:50:2b:1c:11:84:9c:70:9b:bf:21:9b:ab:92: bf:31:aa:87:7b:1c:b9:5e:a3:97:01:97:3f:4f:6f: 7b:35:d2:24:23:3f:be:4e:8e:ab:af:8f:2d:b7:a9: 8a:cf:7d:98:29:5b:37:7a:1b:f4:68:47:f2:d2:c9: 79:5f:66:82:0a:33:7b:08:f9:96:a5:2c:c1:00:1d: 95:2b:d8:26:c7:26:cc:d9:10:e5:8c:28:07:4a:90: c2:68:e4:63:6f:6c:5d:ef:25:a8:c3:f3:a5:cc:a2: 89:32:71:68:98:3b:3a:72:36:3a:fa:bc:c5:cb:42: 19:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:55:7B:F6:42:CC:09:99:05:53:8E:C0:11:13:63:61:E2:08:90:42 X509v3 Authority Key Identifier: keyid:FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32342d3234203d3e20313532383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.24.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:f8:84:47:f7:c1:78:6a:58:bb:5b:85:8e:75:51:07:29:ef: 17:9d:19:98:6c:24:06:12:48:7b:1c:97:ad:3a:3a:e9:53:5e: 74:17:21:51:50:71:4a:d4:98:9e:3f:f6:15:14:0c:3a:27:89: 27:93:b4:e1:b7:50:02:e6:10:b2:c8:41:17:41:8a:50:c6:b9: 2d:4e:33:5f:d3:a7:45:6b:c1:d8:31:21:14:dd:61:92:1a:74: 97:af:e2:50:25:3d:44:86:0b:3b:75:32:75:bc:07:86:2d:ab: 12:1d:8d:51:36:f9:83:10:f4:e4:eb:0c:a4:68:88:3d:90:e4: 06:a3:d3:3b:77:90:d9:b3:8d:ad:a7:ee:f1:7c:8b:55:9f:a5: 65:c1:96:e4:28:aa:75:87:00:0d:b4:ec:3d:48:b6:3d:e2:9d: 53:83:9b:be:81:52:b1:9f:06:35:3c:1e:0d:a5:28:b8:0e:a4: 83:82:e8:a8:7e:02:a5:51:c1:5a:e1:5c:c1:71:0c:5a:4d:89: 36:80:90:69:b3:c2:eb:af:d0:d7:ca:98:05:7c:88:1a:64:81: e6:34:1d:56:aa:99:35:7a:12:5e:cc:43:78:63:0c:b3:0b:c2: 5a:5e:10:84:ea:6a:26:f1:0e:a1:c9:f6:94:73:2c:cc:6a:d8: d8:94:a5:81 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUagfOpboMvtqBCv77x8DKZcw+bbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkEzMEZGODU2Njc1MzI1M0ZCQkQ4Nzg2Nzk3RkU5M0ZC MENGNjJBRDAeFw0yNTA1MjcxNDU1NTBaFw0yNjA1MjYxNTAwNTBaMDMxMTAvBgNV BAMTKERGNTU3QkY2NDJDQzA5OTkwNTUzOEVDMDExMTM2MzYxRTIwODkwNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+cD6n/yCW+3tCte0tkEYL0XY8 nJL0/2X8nskGufnPfVqLRc2PUmV9ilNpUAErzHAC9k1chheePEE1hXk8UbMV37Vb Okqe3y88ASlKLQxMpiNgrkOvN/SRVH+or0LO4o5QL2KngqXBZ9alIxMw7pz7aESO 9ZXZPgIeoo7C2SSocdJJcpLzZzeFUCscEYSccJu/IZurkr8xqod7HLleo5cBlz9P b3s10iQjP75Ojquvjy23qYrPfZgpWzd6G/RoR/LSyXlfZoIKM3sI+ZalLMEAHZUr 2CbHJszZEOWMKAdKkMJo5GNvbF3vJajD86XMookycWiYOzpyNjr6vMXLQhntAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU31V79kLMCZkFU47AERNjYeIIkEIwHwYDVR0j BBgwFoAU+jD/hWZ1MlP7vYeGeX/pP7DPYq0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmRhMGU4Mi0wNzY0LTQ1ZDMtYWVkOS1mZDI1OGU3MmI2ZTIvMC9GQTMwRkY4NTY2 NzUzMjUzRkJCRDg3ODY3OTdGRTkzRkIwQ0Y2MkFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkEzMEZGODU2Njc1MzI1M0ZCQkQ4Nzg2Nzk3RkU5M0ZCMENG NjJBRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2ZGEwZTgyLTA3NjQtNDVkMy1h ZWQ5LWZkMjU4ZTcyYjZlMi8wLzMxMzYzMDJlMzIzMjJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGDANBgkqhkiG 9w0BAQsFAAOCAQEAP/iER/fBeGpYu1uFjnVRBynvF50ZmGwkBhJIexyXrTo66VNe dBchUVBxStSYnj/2FRQMOieJJ5O04bdQAuYQsshBF0GKUMa5LU4zX9OnRWvB2DEh FN1hkhp0l6/iUCU9RIYLO3UydbwHhi2rEh2NUTb5gxD05OsMpGiIPZDkBqPTO3eQ 2bONrafu8XyLVZ+lZcGW5CiqdYcADbTsPUi2PeKdU4ObvoFSsZ8GNTweDaUouA6k g4LoqH4CpVHBWuFcwXEMWk2JNoCQabPC66/Q18qYBXyIGmSB5jQdVqqZNXoSXsxD eGMMswvCWl4QhOpqJvEOocn2lHMszGrY2JSlgQ== -----END CERTIFICATE-----Generated at Sat Jun 7 21:03:57 2025 by rpki-client