$ rpki-client -vvf repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa File: 3136302e32322e37302e302f32332d3234203d3e203538333831.roa (raw, json) Hash identifier: FO3pGbtDCey282ifjhO/l/kBiiy065aX3qH0ZWB4XyM= Subject key identifier: 2E:1E:4E:3F:05:8A:69:A8:BA:AD:DA:0B:63:AD:D9:F2:DB:D3:03:70 Certificate issuer: /CN=5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61 Certificate serial: 3B6B6237E1BCECF92777C237EBEFFEAD41B50CA8 Authority key identifier: 5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa Signing time: Wed 21 May 2025 06:00:03 +0000 ROA not before: Wed 21 May 2025 05:55:03 +0000 ROA not after: Wed 20 May 2026 06:00:03 +0000 asID: 58381 IP address blocks: 160.22.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.crl rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:6b:62:37:e1:bc:ec:f9:27:77:c2:37:eb:ef:fe:ad:41:b5:0c:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61 Validity Not Before: May 21 05:55:03 2025 GMT Not After : May 20 06:00:03 2026 GMT Subject: CN=2E1E4E3F058A69A8BAADDA0B63ADD9F2DBD30370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e6:b5:22:ff:7e:71:5a:8e:74:83:11:67:8e: ba:fa:0a:77:fe:ea:ec:de:e1:21:bb:5c:79:48:ff: 11:8b:74:ea:5a:31:34:59:0a:4a:e0:be:4f:bb:e5: 13:2e:e2:71:92:11:e4:4f:d5:ec:35:35:4c:cc:47: 73:fd:84:c0:af:b5:fe:01:f9:7d:43:7d:51:f2:df: 1a:43:83:76:66:69:b7:96:93:f7:0c:6a:32:da:54: fb:dd:07:36:13:86:ae:4a:c0:2a:a6:3d:4b:65:d1: 5a:22:e0:f8:b4:2d:71:12:88:6c:22:8a:06:76:14: 10:d4:a6:d8:f5:84:a4:36:87:8e:01:90:e7:dc:b7: 91:80:0f:df:f1:93:4f:ae:9b:24:bb:a0:e6:39:49: 98:63:ef:ec:56:c2:be:6a:2c:51:9b:f1:d6:0e:56: 36:a3:b6:ff:2c:64:87:74:b4:58:94:5e:76:bd:37: 47:85:ee:71:62:db:16:dd:ce:7c:9f:cd:af:07:43: 3d:c7:2d:25:8f:bc:27:ea:11:3a:e4:23:bf:7f:7b: bb:76:0a:ed:86:b4:c3:b6:2e:93:f4:49:f8:99:ce: c0:69:57:5d:00:ef:46:c6:a9:2f:e2:59:17:c6:d8: 2c:40:dc:07:c4:45:32:9c:be:12:9e:58:dd:0b:18: b9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1E:4E:3F:05:8A:69:A8:BA:AD:DA:0B:63:AD:D9:F2:DB:D3:03:70 X509v3 Authority Key Identifier: keyid:5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.70.0/23 Signature Algorithm: sha256WithRSAEncryption 01:96:43:ba:3c:ff:21:8f:23:98:e4:79:9b:72:67:75:0f:d7: 73:4f:a6:c9:e5:d7:0e:3b:5a:3f:9f:e3:fb:c2:6d:da:2a:9b: 46:66:c8:f4:73:6c:1c:bf:6f:57:67:e8:6d:63:a6:aa:50:26: 5e:08:93:f1:a4:00:c6:8c:60:c5:e3:ca:b4:d8:ea:a1:14:f4: 5f:e4:ba:2b:84:b5:ca:2a:6b:7b:f3:f1:c1:9f:c4:d6:b7:f0: 02:37:45:95:e9:0d:c0:00:fa:14:3f:e5:a9:6b:bb:f5:36:ab: 8e:0a:15:ee:96:76:07:9b:a0:ed:56:37:9f:16:97:6c:e4:ee: 23:a5:c9:cd:5b:2c:8d:43:c7:8e:ff:f9:82:f2:84:b5:7c:69: ca:b7:04:2b:cd:73:54:35:c5:1c:78:56:71:e8:b6:1d:8d:a4: db:97:2f:bf:fe:7f:02:5b:bc:2f:bc:84:0a:2d:8b:f2:7d:ec: f2:6b:15:d6:9d:0e:6a:d3:16:e4:89:c0:dc:c9:53:31:17:23: ff:13:59:f8:90:dc:2e:97:01:e1:de:e3:d0:86:8a:ee:53:1a: 13:42:f8:e3:f7:15:40:d8:89:3b:27:09:db:a7:97:3b:6d:f7: 7b:f8:ec:0a:9b:68:94:29:c8:a6:88:b7:f0:18:09:99:46:8e: 35:cf:69:53 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUO2tiN+G87Pknd8I36+/+rUG1DKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJCN0U4QTNBQkY2REY2RDQ2QzNENUY5MUVDM0I3Nzg3 MENFNkM2MTAeFw0yNTA1MjEwNTU1MDNaFw0yNjA1MjAwNjAwMDNaMDMxMTAvBgNV BAMTKDJFMUU0RTNGMDU4QTY5QThCQUFEREEwQjYzQUREOUYyREJEMzAzNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC65rUi/35xWo50gxFnjrr6Cnf+ 6uze4SG7XHlI/xGLdOpaMTRZCkrgvk+75RMu4nGSEeRP1ew1NUzMR3P9hMCvtf4B +X1DfVHy3xpDg3ZmabeWk/cMajLaVPvdBzYThq5KwCqmPUtl0Voi4Pi0LXESiGwi igZ2FBDUptj1hKQ2h44BkOfct5GAD9/xk0+umyS7oOY5SZhj7+xWwr5qLFGb8dYO Vjajtv8sZId0tFiUXna9N0eF7nFi2xbdznyfza8HQz3HLSWPvCfqETrkI79/e7t2 Cu2GtMO2LpP0SfiZzsBpV10A70bGqS/iWRfG2CxA3AfERTKcvhKeWN0LGLkdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULh5OPwWKaai6rdoLY63Z8tvTA3AwHwYDVR0j BBgwFoAUW7foo6v2321Gw9X5HsO3eHDObGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NWEyMDA3Ny1mYzUzLTQzYTMtYmRhNy1mMzk5NTZkOTkyNmQvMC81QkI3RThBM0FC RjZERjZENDZDM0Q1RjkxRUMzQjc3ODcwQ0U2QzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUJCN0U4QTNBQkY2REY2RDQ2QzNENUY5MUVDM0I3Nzg3MENF NkM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1YTIwMDc3LWZjNTMtNDNhMy1i ZGE3LWYzOTk1NmQ5OTI2ZC8wLzMxMzYzMDJlMzIzMjJlMzczMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgFkYwDQYJKoZIhvcN AQELBQADggEBAAGWQ7o8/yGPI5jkeZtyZ3UP13NPpsnl1w47Wj+f4/vCbdoqm0Zm yPRzbBy/b1dn6G1jpqpQJl4Ik/GkAMaMYMXjyrTY6qEU9F/kuiuEtcoqa3vz8cGf xNa38AI3RZXpDcAA+hQ/5alru/U2q44KFe6WdgeboO1WN58Wl2zk7iOlyc1bLI1D x47/+YLyhLV8acq3BCvNc1Q1xRx4VnHoth2NpNuXL7/+fwJbvC+8hAoti/J97PJr FdadDmrTFuSJwNzJUzEXI/8TWfiQ3C6XAeHe49CGiu5TGhNC+OP3FUDYiTsnCdun lztt93v47AqbaJQpyKaIt/AYCZlGjjXPaVM= -----END CERTIFICATE-----Generated at Sat Jun 7 15:33:14 2025 by rpki-client