$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa File: 3136302e32322e32372e302f32342d3234203d3e20313532383036.roa (raw, json) Hash identifier: 0OeYR75ixQZTlrIcMsAEVIAMsFHHHRmOANT+VjAQdGg= Subject key identifier: 61:F5:C4:82:0F:5C:D2:CC:F3:55:28:E3:33:28:94:43:4B:24:DD:EF Certificate issuer: /CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Certificate serial: 170911E028ABAD952983F7453EAE3F783B0B0135 Authority key identifier: BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa Signing time: Mon 12 May 2025 19:00:02 +0000 ROA not before: Mon 12 May 2025 18:55:02 +0000 ROA not after: Mon 11 May 2026 19:00:02 +0000 asID: 152806 IP address blocks: 160.22.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:09:11:e0:28:ab:ad:95:29:83:f7:45:3e:ae:3f:78:3b:0b:01:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C Validity Not Before: May 12 18:55:02 2025 GMT Not After : May 11 19:00:02 2026 GMT Subject: CN=61F5C4820F5CD2CCF35528E3332894434B24DDEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f0:bc:3d:b1:0d:b3:78:91:94:73:5f:cc:53: 30:49:a9:17:91:be:80:9d:57:54:b2:2d:43:8c:a5: 09:16:02:94:0c:cf:96:54:6b:38:e8:1c:12:4a:f8: 37:f3:5b:28:35:a1:f6:a5:2b:ef:e0:b9:52:23:eb: bc:d1:b1:e4:d7:fc:52:be:9a:20:4f:73:b0:33:7b: 58:aa:de:bf:de:22:04:61:ba:c2:fa:e1:b6:ed:ad: d7:70:85:f6:f0:f7:62:da:72:56:d3:ac:91:f4:cd: 0d:7d:d7:fe:00:d1:6c:3c:fd:8d:d2:0a:14:7c:28: 2b:b3:f4:38:71:2e:cb:3c:ae:5e:a3:b2:e5:34:31: 7d:6a:d9:95:ac:76:64:cd:f5:1d:c7:0e:d4:bc:49: 44:de:ef:27:f6:69:96:6e:1e:d3:42:b9:01:ab:1e: e9:cc:8d:cf:84:11:27:c3:47:89:e9:58:a9:3b:9f: af:f3:bd:51:23:7c:3e:e5:d6:dd:c0:56:cc:ae:cb: 68:b2:56:10:be:59:a0:67:c1:cd:44:f7:ab:64:70: 30:9d:17:13:2b:fb:32:6f:2c:1e:3f:62:6d:4b:07: c4:3f:a2:48:b8:54:a2:78:7c:7f:25:07:d8:79:c9: 67:6e:0b:ae:bd:8a:c1:93:f5:09:b1:7b:ae:29:f2: eb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F5:C4:82:0F:5C:D2:CC:F3:55:28:E3:33:28:94:43:4B:24:DD:EF X509v3 Authority Key Identifier: keyid:BE:41:FE:7D:C7:71:48:07:9E:A1:CA:C4:C9:00:5D:EB:68:84:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BE41FE7DC77148079EA1CAC4C9005DEB6884BB8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.27.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:18:fd:f5:f2:07:ac:05:c1:cc:8b:9d:d3:08:2a:0c:ad:99: 4d:6d:5e:44:e9:82:80:b5:75:90:f0:35:07:4b:51:d1:1a:7a: c3:95:76:8f:30:f1:6f:1d:5c:62:b0:cc:1a:66:02:40:f2:df: ba:0e:dd:f3:ba:83:bc:aa:db:1c:b1:55:bf:ad:33:58:91:4f: c6:b1:87:2b:39:b0:1f:38:ee:df:c6:59:76:55:90:ac:89:db: 6d:9e:63:8c:aa:49:f0:d0:5c:e0:a0:8a:f1:51:4f:91:33:da: 02:e1:36:66:ad:82:e5:b3:8e:f3:2b:c7:0e:79:49:a9:c4:6e: db:8a:c4:0a:bf:6b:a6:12:63:f0:fc:38:bf:eb:a7:3f:0b:ce: f1:e4:41:a3:30:3a:3e:11:18:c6:73:89:8a:b7:f8:74:e3:60: c2:cd:0a:59:a3:bd:38:2a:0e:9d:77:86:17:dd:4f:78:84:26: 4e:e3:99:a9:ee:84:4c:6e:fe:73:f4:80:a7:93:67:49:a3:c4: e0:85:dc:7c:a3:12:69:46:cb:2f:b1:9e:16:a3:59:ee:e9:58: 51:f0:53:63:4e:e3:89:88:e0:ab:0c:be:76:74:8f:82:7d:b3: fe:21:d4:65:fa:7c:ef:e2:0c:64:44:2d:bd:20:24:6a:be:dc: 47:de:46:2d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFwkR4CirrZUpg/dFPq4/eDsLATUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2 ODg0QkI4QzAeFw0yNTA1MTIxODU1MDJaFw0yNjA1MTExOTAwMDJaMDMxMTAvBgNV BAMTKDYxRjVDNDgyMEY1Q0QyQ0NGMzU1MjhFMzMzMjg5NDQzNEIyNERERUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk8Lw9sQ2zeJGUc1/MUzBJqReR voCdV1SyLUOMpQkWApQMz5ZUazjoHBJK+DfzWyg1ofalK+/guVIj67zRseTX/FK+ miBPc7Aze1iq3r/eIgRhusL64bbtrddwhfbw92LaclbTrJH0zQ191/4A0Ww8/Y3S ChR8KCuz9DhxLss8rl6jsuU0MX1q2ZWsdmTN9R3HDtS8SUTe7yf2aZZuHtNCuQGr HunMjc+EESfDR4npWKk7n6/zvVEjfD7l1t3AVsyuy2iyVhC+WaBnwc1E96tkcDCd FxMr+zJvLB4/Ym1LB8Q/oki4VKJ4fH8lB9h5yWduC669isGT9Qmxe64p8uvLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYfXEgg9c0szzVSjjMyiUQ0sk3e8wHwYDVR0j BBgwFoAUvkH+fcdxSAeeocrEyQBd62iEu4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRjZTM5MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMC9CRTQxRkU3REM3 NzE0ODA3OUVBMUNBQzRDOTAwNURFQjY4ODRCQjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkU0MUZFN0RDNzcxNDgwNzlFQTFDQUM0QzkwMDVERUI2ODg0 QkI4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8wLzMxMzYzMDJlMzIzMjJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGzANBgkqhkiG 9w0BAQsFAAOCAQEAjRj99fIHrAXBzIud0wgqDK2ZTW1eROmCgLV1kPA1B0tR0Rp6 w5V2jzDxbx1cYrDMGmYCQPLfug7d87qDvKrbHLFVv60zWJFPxrGHKzmwHzju38ZZ dlWQrInbbZ5jjKpJ8NBc4KCK8VFPkTPaAuE2Zq2C5bOO8yvHDnlJqcRu24rECr9r phJj8Pw4v+unPwvO8eRBozA6PhEYxnOJirf4dONgws0KWaO9OCoOnXeGF91PeIQm TuOZqe6ETG7+c/SAp5NnSaPE4IXcfKMSaUbLL7GeFqNZ7ulYUfBTY07jiYjgqwy+ dnSPgn2z/iHUZfp87+IMZEQtvSAkar7cR95GLQ== -----END CERTIFICATE-----Generated at Sat Jun 7 04:02:34 2025 by rpki-client