$ rpki-client -vvf repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa File: 3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa (raw, json) Hash identifier: kfe7bioqh5Iq3Zs3yK/jDrU8ENFR3XhQIQMqoWIpf3I= Subject key identifier: 65:38:FC:E5:31:D4:3D:F2:BF:53:F4:7F:E4:72:C4:86:33:B9:89:84 Certificate issuer: /CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Certificate serial: 771F2E445D04997D95342B06307BE366176A8F14 Authority key identifier: 31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa Signing time: Wed 03 Sep 2025 14:00:01 +0000 ROA not before: Wed 03 Sep 2025 13:55:01 +0000 ROA not after: Wed 02 Sep 2026 14:00:01 +0000 asID: 152818 IP address blocks: 160.22.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 13:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:1f:2e:44:5d:04:99:7d:95:34:2b:06:30:7b:e3:66:17:6a:8f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Validity Not Before: Sep 3 13:55:01 2025 GMT Not After : Sep 2 14:00:01 2026 GMT Subject: CN=6538FCE531D43DF2BF53F47FE472C48633B98984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:01:0a:92:b3:74:ca:42:5f:dc:c2:eb:44:67: 1a:71:44:99:86:df:29:72:88:e3:96:87:11:61:bc: 16:ef:79:8b:6e:0d:47:30:ec:d0:0e:98:cd:86:43: ae:0e:1e:e8:e0:7c:97:a1:93:6e:94:b2:39:b0:d7: 19:23:0f:60:56:a3:3e:46:7e:bd:21:9f:06:e0:ed: 3b:48:f1:85:83:5d:7b:ab:8f:ce:f7:be:af:40:00: 1e:41:4c:fe:56:80:79:20:db:f1:12:64:87:5f:23: db:af:e7:72:d3:dd:e0:98:58:09:67:1d:ce:f0:51: 34:8f:55:87:48:4c:2f:0e:0c:51:3f:e9:63:18:d8: 01:2d:2e:af:7d:e4:a4:67:fb:b9:d0:c4:c2:52:da: f3:8b:72:d8:00:58:f3:84:d4:0a:97:cb:91:fe:56: 25:fc:fe:f0:db:e5:c9:6e:31:81:2f:a3:6e:ae:ff: 2a:d3:7e:20:d2:aa:54:28:79:68:46:5f:54:0c:15: 37:0a:44:95:96:e8:65:b5:07:53:16:08:3d:09:28: 9d:b5:98:50:1c:86:60:aa:3d:08:79:1c:50:70:2a: ed:1e:19:cb:d8:63:ce:c2:a4:f9:35:00:12:34:c8: 2f:2a:14:37:2a:e3:0c:56:a4:86:20:33:94:d9:e1: c9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:38:FC:E5:31:D4:3D:F2:BF:53:F4:7F:E4:72:C4:86:33:B9:89:84 X509v3 Authority Key Identifier: keyid:31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.129.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:79:e4:dd:70:90:3c:8f:f0:1c:2a:c1:86:c7:a3:a6:c0:47: 45:6e:7b:56:8b:35:80:95:73:39:b2:e7:8f:8f:ae:53:bd:05: 45:13:01:dd:71:1e:bb:5f:b1:df:41:e1:2a:7c:dc:4c:f1:63: 60:e6:62:bf:5c:db:8a:77:8f:ba:cd:6e:3b:f3:c1:86:fb:6b: 76:31:24:cb:5e:f3:85:9f:83:51:99:16:61:d9:e1:7d:0c:67: 5b:43:34:c8:26:d7:7d:75:65:a2:12:07:54:3d:0e:8e:7c:90: 63:f4:77:a9:46:1c:f5:1d:c6:75:3a:d8:67:41:dc:17:b8:f6: d5:ca:22:ea:d2:4e:d6:33:c2:61:fb:cb:82:65:2d:40:78:c9: 60:ce:fe:6f:76:fc:1c:2a:9b:3f:64:97:55:f4:0e:b8:8d:be: a5:ac:e3:91:eb:e5:f7:54:d6:cc:33:de:93:6b:b5:f6:93:ff: a6:8f:f3:6f:78:54:3c:7d:c0:e4:98:71:f8:9c:56:8e:30:f1: 56:2a:5e:73:55:a5:15:c5:d9:e9:1f:14:4d:de:d3:d7:4a:35: 34:35:22:d7:a8:ae:16:f7:22:e8:4a:3e:97:5e:05:87:20:95: 2e:fb:9f:cf:66:8d:5c:92:29:16:e8:e2:0b:1d:28:b0:a0:f1: 01:70:5d:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdx8uRF0EmX2VNCsGMHvjZhdqjxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTND NzVDMEUyRDAeFw0yNTA5MDMxMzU1MDFaFw0yNjA5MDIxNDAwMDFaMDMxMTAvBgNV BAMTKDY1MzhGQ0U1MzFENDNERjJCRjUzRjQ3RkU0NzJDNDg2MzNCOTg5ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgAQqSs3TKQl/cwutEZxpxRJmG 3ylyiOOWhxFhvBbveYtuDUcw7NAOmM2GQ64OHujgfJehk26Usjmw1xkjD2BWoz5G fr0hnwbg7TtI8YWDXXurj873vq9AAB5BTP5WgHkg2/ESZIdfI9uv53LT3eCYWAln Hc7wUTSPVYdITC8ODFE/6WMY2AEtLq995KRn+7nQxMJS2vOLctgAWPOE1AqXy5H+ ViX8/vDb5cluMYEvo26u/yrTfiDSqlQoeWhGX1QMFTcKRJWW6GW1B1MWCD0JKJ21 mFAchmCqPQh5HFBwKu0eGcvYY87CpPk1ABI0yC8qFDcq4wxWpIYgM5TZ4ckpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZTj85THUPfK/U/R/5HLEhjO5iYQwHwYDVR0j BBgwFoAUMVe5vm82mhyjhzj/1k1hE8dcDi0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGZiNzhhOS1jZDY4LTQ0ZmQtODVhYS02YzZiMDhjYjIzNDYvMC8zMTU3QjlCRTZG MzY5QTFDQTM4NzM4RkZENjRENjExM0M3NUMwRTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTNDNzVD MEUyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwZmI3OGE5LWNkNjgtNDRmZC04 NWFhLTZjNmIwOGNiMjM0Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaBMA0GCSqG SIb3DQEBCwUAA4IBAQBdeeTdcJA8j/AcKsGGx6OmwEdFbntWizWAlXM5suePj65T vQVFEwHdcR67X7HfQeEqfNxM8WNg5mK/XNuKd4+6zW4788GG+2t2MSTLXvOFn4NR mRZh2eF9DGdbQzTIJtd9dWWiEgdUPQ6OfJBj9HepRhz1HcZ1OthnQdwXuPbVyiLq 0k7WM8Jh+8uCZS1AeMlgzv5vdvwcKps/ZJdV9A64jb6lrOOR6+X3VNbMM96Ta7X2 k/+mj/NveFQ8fcDkmHH4nFaOMPFWKl5zVaUVxdnpHxRN3tPXSjU0NSLXqK4W9yLo Sj6XXgWHIJUu+5/PZo1ckikW6OILHSiwoPEBcF3h -----END CERTIFICATE-----Generated at Wed Sep 3 17:35:03 2025 by rpki-client