$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa File: 3136302e32322e32362e302f32342d3234203d3e20313532383036.roa (raw, json) Hash identifier: 9EHkZCz3jJLHmIc/2dkH9Ib/3pIoSydcnX/ESKF5C0o= Subject key identifier: AB:5A:B1:3F:D8:C9:A1:D2:CC:78:39:92:74:1B:4D:D8:F1:B8:28:B8 Certificate issuer: /CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Certificate serial: C6D85C9D956F94468B71DE54FFEF7FA0C02234 Authority key identifier: BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa Signing time: Mon 12 May 2025 19:00:02 +0000 ROA not before: Mon 12 May 2025 18:55:02 +0000 ROA not after: Mon 11 May 2026 19:00:02 +0000 asID: 152806 IP address blocks: 160.22.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: c6:d8:5c:9d:95:6f:94:46:8b:71:de:54:ff:ef:7f:a0:c0:22:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Validity Not Before: May 12 18:55:02 2025 GMT Not After : May 11 19:00:02 2026 GMT Subject: CN=AB5AB13FD8C9A1D2CC783992741B4DD8F1B828B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4f:a5:e8:8d:84:5d:44:ec:27:6a:4b:63:c9: df:39:81:98:bf:5d:1d:b4:43:c6:80:ba:5a:e6:1f: ea:21:5f:39:02:64:1b:2f:a5:02:9e:99:2d:10:21: 0a:02:6e:5a:d6:e1:bc:9e:12:09:34:e6:e8:ca:e4: 25:6b:b9:5c:34:0a:b8:b1:19:21:50:63:0c:d2:1a: 04:1a:e2:c9:2f:fc:bb:67:38:13:88:b7:2d:85:77: 58:92:48:58:cb:79:17:b8:7b:b2:0d:aa:28:9a:03: 7c:28:80:f1:bc:20:90:cd:2b:17:28:66:cc:7e:74: de:01:78:6e:81:24:e0:03:6b:64:7b:e7:1b:36:b6: a1:8f:43:ce:89:1a:82:c3:6a:65:47:bd:11:2a:8f: ed:ad:52:2c:6f:64:3d:7c:12:a1:54:9d:c9:4d:84: 24:d6:e3:9b:cb:bb:af:63:f5:11:51:a0:1d:c6:01: 44:32:cb:4d:b1:9f:0f:ea:86:2f:03:3b:e3:3c:52: a5:2b:ac:ba:99:d6:35:fc:52:18:27:15:42:d8:55: f9:35:ab:ae:f8:9a:70:68:46:24:ba:b8:08:29:2c: 55:ad:1f:ae:0c:89:ba:c2:ea:2d:dc:74:fb:48:2e: 83:bb:eb:dd:80:ec:fd:72:ea:b8:36:f1:83:b6:3e: 59:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:5A:B1:3F:D8:C9:A1:D2:CC:78:39:92:74:1B:4D:D8:F1:B8:28:B8 X509v3 Authority Key Identifier: keyid:BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.26.0/24 Signature Algorithm: sha256WithRSAEncryption 98:0f:e4:3e:d7:38:f1:03:78:7f:82:38:1b:cb:e9:9e:3b:ed: 9b:62:50:0a:4d:f8:cb:8d:c7:e6:d6:a8:9a:9e:ce:e0:e3:de: 43:cf:b6:e2:76:5f:dc:97:be:38:41:12:5e:c4:04:7e:ff:64: 52:85:78:98:d3:f0:7e:28:83:06:a7:6f:9e:bb:df:d5:f6:5e: ad:12:a7:9e:bc:36:8f:7e:36:fb:30:6f:d3:9a:b9:77:f5:87: ff:1c:3e:9d:b5:5a:85:10:32:26:01:33:ab:c5:05:b6:d0:31: ad:b2:34:f1:66:03:f0:1e:57:6a:be:ca:03:bc:7a:34:01:7b: 77:de:4a:30:e5:8d:45:6b:83:c0:d5:f5:aa:05:d3:06:12:31: 48:0b:49:fa:45:32:f3:77:d6:ab:3e:db:a8:f2:80:00:56:51: 98:cf:0d:e6:7b:69:6d:d1:ea:d3:76:16:e8:6f:fa:af:d5:b5: 81:db:9c:0f:87:17:5e:a3:e8:f7:3b:ed:26:e3:71:f1:69:37: ec:28:3c:4e:6d:8c:a6:3f:ff:f0:ec:c9:0b:ac:4d:9a:c9:2f: 25:cb:87:31:7a:58:52:b7:16:21:91:f0:71:59:7e:21:44:85: 7c:e2:c6:da:ac:ac:5a:0a:d2:26:07:27:65:ed:cf:5a:31:b7: 3c:06:02:03 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAMbYXJ2Vb5RGi3HeVP/vf6DAIjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2 ODg0QkI4QzAeFw0yNTA1MTIxODU1MDJaFw0yNjA1MTExOTAwMDJaMDMxMTAvBgNV BAMTKEFCNUFCMTNGRDhDOUExRDJDQzc4Mzk5Mjc0MUI0REQ4RjFCODI4QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQT6XojYRdROwnaktjyd85gZi/ XR20Q8aAulrmH+ohXzkCZBsvpQKemS0QIQoCblrW4byeEgk05ujK5CVruVw0Crix GSFQYwzSGgQa4skv/LtnOBOIty2Fd1iSSFjLeRe4e7INqiiaA3wogPG8IJDNKxco Zsx+dN4BeG6BJOADa2R75xs2tqGPQ86JGoLDamVHvREqj+2tUixvZD18EqFUnclN hCTW45vLu69j9RFRoB3GAUQyy02xnw/qhi8DO+M8UqUrrLqZ1jX8UhgnFULYVfk1 q674mnBoRiS6uAgpLFWtH64MibrC6i3cdPtILoO7692A7P1y6rg28YO2PlmXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUq1qxP9jJodLMeDmSdBtN2PG4KLgwHwYDVR0j BBgwFoAUvkH+fcdxSAeeocrEyQBd62iEu4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRjZTM5MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMC9CRTQxRkU3REM3 NzE0ODA3OUVBMUNBQzRDOTAwNURFQjY4ODRCQjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2ODg0 QkI4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8wLzMxMzYzMDJlMzIzMjJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGjANBgkqhkiG 9w0BAQsFAAOCAQEAmA/kPtc48QN4f4I4G8vpnjvtm2JQCk34y43H5taomp7O4OPe Q8+24nZf3Je+OEESXsQEfv9kUoV4mNPwfiiDBqdvnrvf1fZerRKnnrw2j342+zBv 05q5d/WH/xw+nbVahRAyJgEzq8UFttAxrbI08WYD8B5Xar7KA7x6NAF7d95KMOWN RWuDwNX1qgXTBhIxSAtJ+kUy83fWqz7bqPKAAFZRmM8N5ntpbdHq03YW6G/6r9W1 gducD4cXXqPo9zvtJuNx8Wk37Cg8Tm2Mpj//8OzJC6xNmskvJcuHMXpYUrcWIZHw cVl+IUSFfOLG2qysWgrSJgcnZe3PWjG3PAYCAw== -----END CERTIFICATE-----Generated at Fri Jun 6 19:12:02 2025 by rpki-client