$ rpki-client -vvf repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa File: 3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa (raw, json) Hash identifier: vWKkBT4xeS3gWR4PhONDDyBeT46kLBCLfRTaWAbu5Wk= Subject key identifier: 0C:5D:5B:DC:3D:E2:BB:43:8D:41:6A:E0:1E:15:17:55:71:68:1F:02 Certificate issuer: /CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Certificate serial: A58CCF105A82896AB47DB90EF76E088A87C98B Authority key identifier: 31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa Signing time: Wed 03 Sep 2025 14:00:01 +0000 ROA not before: Wed 03 Sep 2025 13:55:01 +0000 ROA not after: Wed 02 Sep 2026 14:00:01 +0000 asID: 152818 IP address blocks: 160.22.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 13:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a5:8c:cf:10:5a:82:89:6a:b4:7d:b9:0e:f7:6e:08:8a:87:c9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Validity Not Before: Sep 3 13:55:01 2025 GMT Not After : Sep 2 14:00:01 2026 GMT Subject: CN=0C5D5BDC3DE2BB438D416AE01E15175571681F02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:be:ed:84:ad:11:f7:ae:00:34:9b:21:9e:bc: 0d:93:8d:c9:81:ff:79:d4:db:b7:0b:6c:1f:2e:f6: 8c:fb:31:39:66:0e:91:15:62:0d:b2:5f:25:b5:5f: 25:61:0d:38:dd:4e:5e:f4:3c:02:d0:b8:a8:0b:b9: 7b:61:13:3d:cc:12:cc:87:32:b8:7c:3d:c5:ed:2e: 07:64:fc:c5:2d:ca:dc:7a:65:59:22:aa:4c:60:38: 6b:5b:75:3d:be:ea:5c:72:b7:c2:fc:29:ec:22:c9: 56:fe:03:2f:3e:37:0b:a0:8f:fd:35:56:96:aa:16: 7b:b8:96:87:02:4a:89:b0:76:12:f7:17:15:d4:67: 2f:f3:b9:48:5e:a0:84:2a:4c:43:c0:7a:f8:64:f8: 6b:18:b6:4c:ff:d7:c6:0e:b8:76:10:ce:43:2c:ca: 8e:28:69:00:a0:c3:44:ec:1c:f3:b3:65:62:4b:dd: 18:b5:df:ad:91:f0:12:b6:af:5e:b2:1f:4f:f4:32: e9:5b:c7:fd:7d:f0:18:72:18:f7:87:3b:76:31:75: 61:91:20:7f:5b:96:98:ba:4a:9e:d4:64:69:67:dd: 70:90:b9:b4:65:5c:00:b1:8a:7d:92:3d:94:0e:78: b7:25:d7:74:df:b1:7d:d2:9c:4e:98:30:78:86:04: ea:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5D:5B:DC:3D:E2:BB:43:8D:41:6A:E0:1E:15:17:55:71:68:1F:02 X509v3 Authority Key Identifier: keyid:31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.128.0/24 Signature Algorithm: sha256WithRSAEncryption 71:7c:6d:a2:50:51:5c:2d:8c:43:9f:aa:55:a0:2c:01:65:3e: b5:10:e7:1d:08:26:5a:aa:a1:cf:78:29:07:04:89:98:02:79: 56:8d:21:7b:93:e5:9e:53:ac:ac:5f:24:85:74:ac:38:03:47: b2:2d:94:b6:39:b3:7f:e4:56:2d:20:63:72:71:fe:bb:c6:1d: 39:e2:5c:f3:db:c7:c9:f8:4e:06:81:09:4c:d0:90:a0:41:a8: b7:ea:f1:a3:e6:f8:a0:ba:38:ac:1f:5e:0a:f0:e1:e0:b1:c2: 37:59:75:8f:2b:b1:72:f0:75:37:ef:01:24:61:f5:90:7f:11: 74:88:d6:e0:9b:e0:22:25:33:27:b9:7c:b0:82:b0:0e:96:5f: 9b:2f:52:86:a6:e9:5a:39:3e:a3:78:a7:e9:92:bb:7b:8e:37: 3a:b6:ae:ab:53:77:94:3a:94:08:cc:01:35:80:2a:94:ab:9f: ca:8c:2c:19:22:2b:55:42:5b:1d:95:5e:d1:de:80:ff:1b:65: 8e:1f:f0:ed:57:e6:f4:9f:f9:ab:d9:db:f4:10:c5:38:7c:58: f9:d4:3a:02:8c:5d:45:6c:6e:d6:83:e6:d8:c8:e7:40:d3:72: 7c:ac:5f:ad:cd:18:64:4e:02:d4:97:a6:12:b6:f6:66:80:66: 6b:a9:98:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAKWMzxBagolqtH25DvduCIqHyYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTND NzVDMEUyRDAeFw0yNTA5MDMxMzU1MDFaFw0yNjA5MDIxNDAwMDFaMDMxMTAvBgNV BAMTKDBDNUQ1QkRDM0RFMkJCNDM4RDQxNkFFMDFFMTUxNzU1NzE2ODFGMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwvu2ErRH3rgA0myGevA2TjcmB /3nU27cLbB8u9oz7MTlmDpEVYg2yXyW1XyVhDTjdTl70PALQuKgLuXthEz3MEsyH Mrh8PcXtLgdk/MUtytx6ZVkiqkxgOGtbdT2+6lxyt8L8KewiyVb+Ay8+Nwugj/01 VpaqFnu4locCSomwdhL3FxXUZy/zuUheoIQqTEPAevhk+GsYtkz/18YOuHYQzkMs yo4oaQCgw0TsHPOzZWJL3Ri1362R8BK2r16yH0/0Mulbx/198BhyGPeHO3YxdWGR IH9blpi6Sp7UZGln3XCQubRlXACxin2SPZQOeLcl13TfsX3SnE6YMHiGBOqFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDF1b3D3iu0ONQWrgHhUXVXFoHwIwHwYDVR0j BBgwFoAUMVe5vm82mhyjhzj/1k1hE8dcDi0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGZiNzhhOS1jZDY4LTQ0ZmQtODVhYS02YzZiMDhjYjIzNDYvMC8zMTU3QjlCRTZG MzY5QTFDQTM4NzM4RkZENjRENjExM0M3NUMwRTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTNDNzVD MEUyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwZmI3OGE5LWNkNjgtNDRmZC04 NWFhLTZjNmIwOGNiMjM0Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaAMA0GCSqG SIb3DQEBCwUAA4IBAQBxfG2iUFFcLYxDn6pVoCwBZT61EOcdCCZaqqHPeCkHBImY AnlWjSF7k+WeU6ysXySFdKw4A0eyLZS2ObN/5FYtIGNycf67xh054lzz28fJ+E4G gQlM0JCgQai36vGj5vigujisH14K8OHgscI3WXWPK7Fy8HU37wEkYfWQfxF0iNbg m+AiJTMnuXywgrAOll+bL1KGpulaOT6jeKfpkrt7jjc6tq6rU3eUOpQIzAE1gCqU q5/KjCwZIitVQlsdlV7R3oD/G2WOH/DtV+b0n/mr2dv0EMU4fFj51DoCjF1FbG7W g+bYyOdA03J8rF+tzRhkTgLUl6YStvZmgGZrqZi9 -----END CERTIFICATE-----Generated at Wed Sep 3 17:35:03 2025 by rpki-client