$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32332d3233203d3e20313532383036.roa File: 3136302e32322e32362e302f32332d3233203d3e20313532383036.roa (raw, json) Hash identifier: Kzrvc50VZVqxvNyylv+S6nQsNORPDp45F0+BBKuP5OE= Subject key identifier: B1:BA:3D:37:5A:2D:76:E7:4E:00:96:3D:A4:E6:05:B7:EC:79:A5:95 Certificate issuer: /CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Certificate serial: 3109E31C3302674C32E125A82E2B65C77AF9F6D3 Authority key identifier: BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32332d3233203d3e20313532383036.roa Signing time: Mon 12 May 2025 19:00:01 +0000 ROA not before: Mon 12 May 2025 18:55:01 +0000 ROA not after: Mon 11 May 2026 19:00:01 +0000 asID: 152806 IP address blocks: 160.22.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:09:e3:1c:33:02:67:4c:32:e1:25:a8:2e:2b:65:c7:7a:f9:f6:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Validity Not Before: May 12 18:55:01 2025 GMT Not After : May 11 19:00:01 2026 GMT Subject: CN=B1BA3D375A2D76E74E00963DA4E605B7EC79A595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3c:ec:f7:2a:2a:ef:fd:57:98:76:51:94:12: dd:cf:ec:ae:6e:2e:4e:36:7d:27:2b:f6:66:c1:17: 6a:15:f3:80:d6:88:97:a1:90:b4:34:ed:99:09:d7: 6f:63:1a:31:97:10:d8:64:5f:ae:76:70:e7:57:83: 16:7b:39:5c:87:fb:9f:3d:47:33:2b:19:83:db:39: ea:3a:9d:9e:03:40:2f:bb:1d:45:b1:b0:88:af:2c: 60:b9:d5:65:d3:97:ff:55:35:d2:9e:ea:44:0e:af: 0e:c3:b7:f1:ab:1f:c8:5c:15:87:8b:77:e0:15:42: a3:6d:4a:8e:60:45:b9:0c:59:dc:25:e6:44:c2:27: 14:37:e9:0b:bc:f3:c4:57:27:bc:f4:00:de:f6:f2: 10:f9:37:d2:d8:25:e5:a6:62:93:d1:65:f1:c1:90: f7:55:a8:e0:a5:a0:e9:df:69:d2:e1:fe:cc:65:ab: 2f:47:3e:5f:c2:3d:99:5a:4d:5d:ca:5b:49:52:7e: a6:9c:d1:cd:92:54:e8:08:56:95:aa:ff:94:f4:9b: e5:e2:b6:80:ca:06:33:76:3a:bf:28:7b:94:7a:7b: 3b:b0:a1:0d:8d:16:05:62:42:5e:7d:5d:f0:9b:9b: 8b:ea:60:30:b5:55:22:08:06:33:3c:a5:ba:6c:f3: 27:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BA:3D:37:5A:2D:76:E7:4E:00:96:3D:A4:E6:05:B7:EC:79:A5:95 X509v3 Authority Key Identifier: keyid:BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32332d3233203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.26.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:29:dd:51:96:6e:89:57:6f:b0:ad:fd:a4:be:a3:79:f0:53: 37:5c:fc:2d:f6:32:ea:02:97:e1:87:a8:ad:8c:be:49:04:f7: 62:c5:35:e0:62:32:91:78:d9:e1:31:30:a2:61:c0:e5:8e:68: 2d:f9:e4:20:d4:f3:56:f3:52:ad:59:15:4f:08:5a:61:6d:a9: 0f:5a:6e:54:c5:6b:cc:ed:d3:64:d3:92:38:b5:dd:4a:64:36: 72:0d:08:91:8b:52:f8:36:1e:9f:15:b7:d7:45:6a:4a:7a:d6: fa:92:5f:86:63:f3:ed:11:22:28:14:f8:68:75:da:39:6e:6b: 46:be:cb:f2:df:7b:50:99:0b:fd:73:d6:6b:d7:de:c1:76:42: 6b:d9:b5:fa:99:78:dc:ca:da:b0:5e:38:3a:cd:08:39:b4:76: 78:ab:c3:e5:41:1e:e0:23:bd:f0:d6:15:cd:99:6d:d8:b4:d6: d7:7c:91:aa:7a:85:5e:d8:c6:a7:10:bb:c2:2e:33:a2:b5:2f: 5d:f6:df:7a:a1:a2:07:55:2b:52:6d:d9:f4:e1:5e:80:89:d6: 31:6d:2c:62:23:ed:84:72:c7:55:3c:35:4c:c9:76:3a:00:1c: fa:47:0f:3d:49:b7:36:90:84:49:06:a4:20:1b:37:a9:c5:47: e0:06:a7:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMQnjHDMCZ0wy4SWoLitlx3r59tMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2 ODg0QkI4QzAeFw0yNTA1MTIxODU1MDFaFw0yNjA1MTExOTAwMDFaMDMxMTAvBgNV BAMTKEIxQkEzRDM3NUEyRDc2RTc0RTAwOTYzREE0RTYwNUI3RUM3OUE1OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbPOz3Kirv/VeYdlGUEt3P7K5u Lk42fScr9mbBF2oV84DWiJehkLQ07ZkJ129jGjGXENhkX652cOdXgxZ7OVyH+589 RzMrGYPbOeo6nZ4DQC+7HUWxsIivLGC51WXTl/9VNdKe6kQOrw7Dt/GrH8hcFYeL d+AVQqNtSo5gRbkMWdwl5kTCJxQ36Qu888RXJ7z0AN728hD5N9LYJeWmYpPRZfHB kPdVqOCloOnfadLh/sxlqy9HPl/CPZlaTV3KW0lSfqac0c2SVOgIVpWq/5T0m+Xi toDKBjN2Or8oe5R6ezuwoQ2NFgViQl59XfCbm4vqYDC1VSIIBjM8pbps8ydLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsbo9N1otdudOAJY9pOYFt+x5pZUwHwYDVR0j BBgwFoAUvkH+fcdxSAeeocrEyQBd62iEu4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRjZTM5MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMC9CRTQxRkU3REM3 NzE0ODA3OUVBMUNBQzRDOTAwNURFQjY4ODRCQjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2ODg0 QkI4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8wLzMxMzYzMDJlMzIzMjJlMzIzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM4MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWGjANBgkqhkiG 9w0BAQsFAAOCAQEALSndUZZuiVdvsK39pL6jefBTN1z8LfYy6gKX4YeorYy+SQT3 YsU14GIykXjZ4TEwomHA5Y5oLfnkINTzVvNSrVkVTwhaYW2pD1puVMVrzO3TZNOS OLXdSmQ2cg0IkYtS+DYenxW310VqSnrW+pJfhmPz7REiKBT4aHXaOW5rRr7L8t97 UJkL/XPWa9fewXZCa9m1+pl43MrasF44Os0IObR2eKvD5UEe4CO98NYVzZlt2LTW 13yRqnqFXtjGpxC7wi4zorUvXfbfeqGiB1UrUm3Z9OFegInWMW0sYiPthHLHVTw1 TMl2OgAc+kcPPUm3NpCESQakIBs3qcVH4AanEA== -----END CERTIFICATE-----Generated at Sat Jun 7 03:59:53 2025 by rpki-client