$ rpki-client -vvf repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: HJdK4DRAmRrZWLjILXhoJkILfMyC0BwC4uGRxH8TEAM= Subject key identifier: CE:FF:87:C8:67:89:B5:86:7A:4B:77:2A:92:B4:5A:0B:6D:9E:55:80 Certificate issuer: /CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Certificate serial: 63F9567BAF27141279776849BC76E89C7FD9CC13 Authority key identifier: 7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa Signing time: Sat 17 May 2025 08:18:48 +0000 ROA not before: Sat 17 May 2025 08:13:48 +0000 ROA not after: Sat 16 May 2026 08:18:48 +0000 asID: 153123 IP address blocks: 160.187.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f9:56:7b:af:27:14:12:79:77:68:49:bc:76:e8:9c:7f:d9:cc:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Validity Not Before: May 17 08:13:48 2025 GMT Not After : May 16 08:18:48 2026 GMT Subject: CN=CEFF87C86789B5867A4B772A92B45A0B6D9E5580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:ec:8c:dd:29:e8:55:5d:e6:aa:ab:7d:fc: b6:59:15:0c:5f:1b:99:f0:b0:c4:14:29:72:98:3c: 64:18:cd:6c:df:b0:8b:5a:16:22:83:87:f6:85:49: 9c:d9:f4:cb:20:a7:dc:a1:75:f4:8a:ca:6c:b4:7e: 29:40:5e:4f:b7:1b:9f:fa:95:cc:ba:e0:7f:a7:5c: 4f:a7:2a:65:6c:5c:55:35:09:d8:a7:09:e6:d0:87: 12:e5:f9:fe:93:54:db:25:42:86:04:a6:b6:b9:f2: 0c:eb:f2:2e:36:6c:e6:25:41:c0:8e:1e:e5:63:21: f7:9d:a3:47:5e:32:74:72:74:9e:d2:43:fb:90:25: 79:03:f6:fe:bf:9c:7a:99:29:24:0b:ad:45:de:0b: 9f:9e:9c:d5:0d:77:de:e4:d6:4a:62:d2:a5:42:67: 71:97:59:79:64:36:b8:c0:ff:a7:2f:6f:24:d7:a6: 8d:a6:df:42:d6:b0:ce:32:03:9a:47:6b:86:b8:85: 4d:73:b7:9b:8d:e8:3a:18:5c:99:db:a9:11:30:a2: 15:b6:51:fc:e8:ce:bb:a9:d5:4e:b7:a4:1b:89:93: e7:fb:37:64:0c:39:37:ee:e5:ea:a2:58:d8:3a:77: fa:33:5c:02:97:ae:47:26:90:b4:ed:21:e1:37:69: 2f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FF:87:C8:67:89:B5:86:7A:4B:77:2A:92:B4:5A:0B:6D:9E:55:80 X509v3 Authority Key Identifier: keyid:7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.136.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:fd:7c:54:08:51:98:5c:8f:28:0c:4c:e7:81:d6:45:14:14: 20:27:43:b1:1e:16:63:c7:9e:13:89:44:12:39:14:6c:12:f1: bd:a1:a5:69:dd:b1:42:a3:8e:86:e4:d3:83:d0:47:68:dc:05: 6b:c6:ab:59:bb:ad:35:0d:53:dd:30:db:1d:14:08:ae:e4:2b: d7:47:5b:2d:f2:e3:bb:b6:1d:3c:31:61:71:9e:a8:8b:ba:09: e9:15:69:20:29:39:c1:af:12:48:ea:bb:1c:ee:aa:f5:a6:15: 28:24:34:b2:1e:35:51:ad:42:28:6c:bc:75:71:90:e8:5a:0a: b9:ff:ba:40:2d:a4:3e:54:2b:72:30:ed:6f:81:f5:48:e7:4d: 78:79:93:b1:89:16:d4:7a:c6:d3:7e:f2:74:b6:70:78:60:2c: 33:63:cc:29:f9:e9:86:3e:c5:07:d9:77:b8:c3:84:84:0f:7a: 54:9c:c3:5c:f7:b7:7b:13:7e:0f:2d:2c:68:d3:cd:92:19:5d: 8b:5a:ac:07:b2:6e:87:56:0c:69:9e:69:3a:50:54:79:29:ae: 62:71:55:0b:fe:21:3b:3b:b1:30:44:94:dc:3f:1c:fa:5c:37: 62:61:3e:af:39:08:e2:2e:66:35:f6:8b:ae:53:70:be:8e:ae: a4:48:67:b4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY/lWe68nFBJ5d2hJvHbonH/ZzBMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4 NDM5NDhEQzAeFw0yNTA1MTcwODEzNDhaFw0yNjA1MTYwODE4NDhaMDMxMTAvBgNV BAMTKENFRkY4N0M4Njc4OUI1ODY3QTRCNzcyQTkyQjQ1QTBCNkQ5RTU1ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC32uyM3SnoVV3mqqt9/LZZFQxf G5nwsMQUKXKYPGQYzWzfsItaFiKDh/aFSZzZ9Msgp9yhdfSKymy0filAXk+3G5/6 lcy64H+nXE+nKmVsXFU1CdinCebQhxLl+f6TVNslQoYEpra58gzr8i42bOYlQcCO HuVjIfedo0deMnRydJ7SQ/uQJXkD9v6/nHqZKSQLrUXeC5+enNUNd97k1kpi0qVC Z3GXWXlkNrjA/6cvbyTXpo2m30LWsM4yA5pHa4a4hU1zt5uN6DoYXJnbqREwohW2 Ufzozrup1U63pBuJk+f7N2QMOTfu5eqiWNg6d/ozXAKXrkcmkLTtIeE3aS9VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzv+HyGeJtYZ6S3cqkrRaC22eVYAwHwYDVR0j BBgwFoAUfE39eJFNwfZhMPJWrmnZ+oQ5SNwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTkyMzM5Ny04Y2Y4LTRjZWYtODg1Ni0wZDI2OGQ3M2VkYjEvMC83QzRERkQ3ODkx NERDMUY2NjEzMEYyNTZBRTY5RDlGQTg0Mzk0OERDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4NDM5 NDhEQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4gwDQYJ KoZIhvcNAQELBQADggEBAA39fFQIUZhcjygMTOeB1kUUFCAnQ7EeFmPHnhOJRBI5 FGwS8b2hpWndsUKjjobk04PQR2jcBWvGq1m7rTUNU90w2x0UCK7kK9dHWy3y47u2 HTwxYXGeqIu6CekVaSApOcGvEkjquxzuqvWmFSgkNLIeNVGtQihsvHVxkOhaCrn/ ukAtpD5UK3Iw7W+B9UjnTXh5k7GJFtR6xtN+8nS2cHhgLDNjzCn56YY+xQfZd7jD hIQPelScw1z3t3sTfg8tLGjTzZIZXYtarAeybodWDGmeaTpQVHkprmJxVQv+ITs7 sTBElNw/HPpcN2JhPq85COIuZjX2i65TcL6OrqRIZ7Q= -----END CERTIFICATE-----Generated at Sat Jun 7 07:33:49 2025 by rpki-client