$ rpki-client -vvf repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230372e302f32342d3234203d3e20313532383235.roa File: 3136302e32322e3230372e302f32342d3234203d3e20313532383235.roa (raw, json) Hash identifier: mwbcH7nFmiAf30ZnBCoT9KoAQ3Lr5VdBs5VWMrjgsMc= Subject key identifier: FB:E8:E0:A1:80:A2:5C:52:0E:7B:9A:D0:DF:4D:EE:D7:EB:6F:E5:C3 Certificate issuer: /CN=9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5 Certificate serial: 715EDE8CC9A0BADD18DB90E3E342D02EAB49383A Authority key identifier: 9C:94:8B:B5:F7:C6:53:9D:B5:D4:58:5D:BE:EA:F3:5A:E2:3D:DC:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230372e302f32342d3234203d3e20313532383235.roa Signing time: Thu 05 Jun 2025 19:01:51 +0000 ROA not before: Thu 05 Jun 2025 18:56:51 +0000 ROA not after: Thu 04 Jun 2026 19:01:51 +0000 asID: 152825 IP address blocks: 160.22.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.crl rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 19:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5e:de:8c:c9:a0:ba:dd:18:db:90:e3:e3:42:d0:2e:ab:49:38:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5 Validity Not Before: Jun 5 18:56:51 2025 GMT Not After : Jun 4 19:01:51 2026 GMT Subject: CN=FBE8E0A180A25C520E7B9AD0DF4DEED7EB6FE5C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fe:bf:2b:f5:c3:fd:bb:38:84:b7:f9:55:8c: c6:c0:13:85:74:b2:05:2b:95:14:8a:c2:1a:99:5e: d9:b9:44:54:38:e3:3f:f0:e6:72:49:d7:34:5e:14: f9:f8:99:9a:d8:91:f9:64:1e:b3:39:1d:a6:1c:30: b7:6f:de:83:15:00:eb:7c:96:1c:0f:bb:c3:70:d7: 35:8e:40:e5:b8:8b:89:db:01:63:2b:05:a3:86:5a: bc:44:be:41:5c:27:ca:c1:88:ec:34:ca:20:32:1e: 63:9d:bf:d5:28:3c:56:46:4a:a0:b1:5c:2c:09:67: 08:7d:e3:70:09:9e:03:78:76:6e:d8:a4:c7:e5:5e: 7f:7d:38:10:62:1d:e8:67:0a:d8:5d:b8:e5:ea:75: 69:30:ee:3e:dd:9f:4f:f8:55:c9:af:10:94:fa:4c: 30:f1:c3:21:17:35:97:be:9d:92:4a:cc:44:f1:01: b8:20:8a:cb:0f:6c:8e:ff:3c:82:3b:c1:89:da:38: b0:c8:89:76:28:aa:ac:73:09:ad:6e:30:d8:c7:71: d5:d3:c6:69:42:e2:e7:8a:d7:de:02:63:bd:a0:8a: 72:f0:f0:df:ae:1d:d9:03:5d:b4:40:7e:3f:c8:ed: ee:0c:0d:e1:0c:b4:fb:3e:b2:4a:1d:44:cf:67:84: 11:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E8:E0:A1:80:A2:5C:52:0E:7B:9A:D0:DF:4D:EE:D7:EB:6F:E5:C3 X509v3 Authority Key Identifier: keyid:9C:94:8B:B5:F7:C6:53:9D:B5:D4:58:5D:BE:EA:F3:5A:E2:3D:DC:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230372e302f32342d3234203d3e20313532383235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.207.0/24 Signature Algorithm: sha256WithRSAEncryption ae:44:6e:26:64:df:c4:b6:59:02:42:e7:96:85:d7:af:a8:2b: e5:4f:d9:6f:59:16:b8:92:66:07:e8:72:0a:e2:33:30:5b:23: 62:6c:86:42:b7:ca:15:9a:95:e3:d8:2d:1c:47:13:20:95:1d: 12:3d:e8:2a:46:4d:69:c8:69:ff:9d:b0:b1:78:0b:18:88:7e: 15:2e:41:22:aa:e5:8d:91:37:d3:0f:86:d1:0a:a5:4c:4f:7a: dc:0c:a9:85:40:62:7d:a0:d9:26:1a:d7:da:68:62:56:8b:0d: 39:24:f6:ca:1e:43:2f:82:09:7c:13:d3:65:66:82:61:14:0d: 1b:16:1c:a5:d8:f2:0b:63:99:2d:79:c8:b2:e5:2d:7f:7b:ef: c0:74:53:a6:20:8f:23:5a:9c:76:f5:6f:23:c0:ff:f5:b9:3c: 2b:54:54:11:e5:09:2a:ac:2f:8e:00:dc:c5:01:92:c6:04:fa: fb:3c:d9:59:a0:a3:28:eb:46:c2:44:b5:a9:65:6b:a3:95:1a: 0b:3f:29:fd:a6:98:bd:33:0a:a0:a5:77:2a:72:53:a7:7e:30: 90:81:6b:20:bd:4e:6f:4a:9d:5a:ae:24:f0:08:07:b2:d8:7c: 22:3e:63:53:61:80:44:00:42:11:6c:b4:5e:2c:1c:f4:1b:4b: 31:95:ac:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcV7ejMmgut0Y25Dj40LQLqtJODowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM5NDhCQjVGN0M2NTM5REI1RDQ1ODVEQkVFQUYzNUFF MjNERENBNTAeFw0yNTA2MDUxODU2NTFaFw0yNjA2MDQxOTAxNTFaMDMxMTAvBgNV BAMTKEZCRThFMEExODBBMjVDNTIwRTdCOUFEMERGNERFRUQ3RUI2RkU1QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp/r8r9cP9uziEt/lVjMbAE4V0 sgUrlRSKwhqZXtm5RFQ44z/w5nJJ1zReFPn4mZrYkflkHrM5HaYcMLdv3oMVAOt8 lhwPu8Nw1zWOQOW4i4nbAWMrBaOGWrxEvkFcJ8rBiOw0yiAyHmOdv9UoPFZGSqCx XCwJZwh943AJngN4dm7YpMflXn99OBBiHehnCthduOXqdWkw7j7dn0/4VcmvEJT6 TDDxwyEXNZe+nZJKzETxAbggissPbI7/PII7wYnaOLDIiXYoqqxzCa1uMNjHcdXT xmlC4ueK194CY72ginLw8N+uHdkDXbRAfj/I7e4MDeEMtPs+skodRM9nhBFnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU++jgoYCiXFIOe5rQ303u1+tv5cMwHwYDVR0j BBgwFoAUnJSLtffGU5211FhdvurzWuI93KUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTZlNDJlNi1jNmNkLTRjY2QtYmRhNy01YWU5YTI0NjA0NGEvMC85Qzk0OEJCNUY3 QzY1MzlEQjVENDU4NURCRUVBRjM1QUUyM0REQ0E1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUM5NDhCQjVGN0M2NTM5REI1RDQ1ODVEQkVFQUYzNUFFMjNE RENBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NmU0MmU2LWM2Y2QtNGNjZC1i ZGE3LTVhZTlhMjQ2MDQ0YS8wLzMxMzYzMDJlMzIzMjJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbPMA0GCSqG SIb3DQEBCwUAA4IBAQCuRG4mZN/EtlkCQueWhdevqCvlT9lvWRa4kmYH6HIK4jMw WyNibIZCt8oVmpXj2C0cRxMglR0SPegqRk1pyGn/nbCxeAsYiH4VLkEiquWNkTfT D4bRCqVMT3rcDKmFQGJ9oNkmGtfaaGJWiw05JPbKHkMvggl8E9NlZoJhFA0bFhyl 2PILY5kteciy5S1/e+/AdFOmII8jWpx29W8jwP/1uTwrVFQR5QkqrC+OANzFAZLG BPr7PNlZoKMo60bCRLWpZWujlRoLPyn9ppi9MwqgpXcqclOnfjCQgWsgvU5vSp1a riTwCAey2HwiPmNTYYBEAEIRbLReLBz0G0sxlawF -----END CERTIFICATE-----Generated at Sat Jun 7 10:48:52 2025 by rpki-client