$ rpki-client -vvf repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: lAtUfGS13GDkvr/Pm9PSGFkJR4Rstob6+L+fcyUN72Q= Subject key identifier: 91:EF:B8:D5:AE:86:27:5B:61:D8:7A:EA:90:A2:10:25:16:93:97:B9 Certificate issuer: /CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Certificate serial: 5B86963A87380E0AD2A2E197EAFB22FC14E1C2E4 Authority key identifier: 7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa Signing time: Sat 17 May 2025 08:19:01 +0000 ROA not before: Sat 17 May 2025 08:14:01 +0000 ROA not after: Sat 16 May 2026 08:19:01 +0000 asID: 153123 IP address blocks: 160.187.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:86:96:3a:87:38:0e:0a:d2:a2:e1:97:ea:fb:22:fc:14:e1:c2:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Validity Not Before: May 17 08:14:01 2025 GMT Not After : May 16 08:19:01 2026 GMT Subject: CN=91EFB8D5AE86275B61D87AEA90A21025169397B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:90:b1:5d:9c:ae:b1:72:bf:4b:80:f1:83:e4: c0:2b:a7:93:5d:2b:8f:cb:0c:82:d9:47:2e:3e:eb: 45:65:09:0a:eb:eb:15:f2:a7:fb:71:11:7a:d9:eb: ab:94:14:72:a9:4c:e4:28:1f:b6:c8:cf:f4:2d:10: 8e:04:d6:1f:57:58:f4:ee:ed:5b:71:04:03:a0:6b: 0b:5b:c2:48:cc:63:af:bd:c6:f5:39:b8:d4:6b:7f: 1c:60:20:26:6c:92:97:f4:4e:16:c8:94:ad:ee:a5: c0:38:2e:99:9b:be:3e:ea:24:6e:5d:66:42:e5:03: cc:59:f2:f2:a6:c8:27:ce:a5:f8:ad:28:19:aa:4b: fc:cb:05:a9:50:f4:42:52:15:a2:f1:73:b7:3a:85: bb:e4:75:98:6d:d0:49:4b:52:d3:da:9f:d7:6c:48: c8:30:42:89:3f:e5:c8:86:ae:04:16:dc:c9:37:2a: 81:77:a1:54:81:f8:65:17:bf:38:cd:c6:21:69:e6: ba:48:f3:02:4a:0c:eb:2f:ae:e4:14:74:f9:f6:60: e3:b6:98:2c:43:ee:29:52:4f:bd:78:4b:06:5a:4b: 46:a3:a9:5a:21:cc:3d:c0:8e:91:b2:51:51:a3:a9: 89:30:8b:d4:db:5f:c4:8c:63:6a:53:5d:e8:2e:3b: 1f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:EF:B8:D5:AE:86:27:5B:61:D8:7A:EA:90:A2:10:25:16:93:97:B9 X509v3 Authority Key Identifier: keyid:7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.137.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:02:d8:6d:b5:80:3d:f4:3a:1c:63:ce:16:c6:d5:d5:36:0c: 5b:49:7a:9e:f4:d6:57:c2:9b:5e:32:6e:2c:1c:54:9d:29:55: 24:f1:da:de:12:3f:6f:33:3c:9c:af:1b:5d:19:ec:8f:29:3b: 9d:94:e9:62:eb:da:97:b4:88:b4:a3:e4:d9:34:9a:ae:84:a8: 9b:1b:ab:c8:2c:3c:ac:69:6e:97:f8:03:6a:12:0a:89:b3:cc: 5d:8b:d1:d3:04:97:3f:c6:ab:ff:a2:b7:8d:fe:05:53:63:c2: 68:3a:b8:33:ab:85:b9:97:52:40:c0:74:d0:f7:d2:db:72:8f: a4:e8:64:0f:74:fc:f4:7a:41:d8:92:ba:2a:fa:13:11:cd:da: f4:43:76:36:32:0d:45:d7:47:44:ab:d0:3a:97:e3:d3:f1:e1: ad:28:67:f3:32:91:57:5a:cb:54:de:11:25:f9:af:a0:53:35: 3d:72:a2:7f:2a:8a:dd:45:34:22:89:22:71:b7:fe:01:d6:2f: e2:66:1b:22:3c:ca:2c:f4:bf:50:51:18:45:8d:7c:e3:c6:6d: a6:4f:4b:7c:be:9a:9a:6b:3c:b7:4e:6e:1f:4c:2d:c5:98:64: ea:fc:39:01:1f:a9:23:c4:68:ff:b1:cb:7a:46:1e:47:c9:cd: e6:d2:59:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW4aWOoc4DgrSouGX6vsi/BThwuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4 NDM5NDhEQzAeFw0yNTA1MTcwODE0MDFaFw0yNjA1MTYwODE5MDFaMDMxMTAvBgNV BAMTKDkxRUZCOEQ1QUU4NjI3NUI2MUQ4N0FFQTkwQTIxMDI1MTY5Mzk3QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdkLFdnK6xcr9LgPGD5MArp5Nd K4/LDILZRy4+60VlCQrr6xXyp/txEXrZ66uUFHKpTOQoH7bIz/QtEI4E1h9XWPTu 7VtxBAOgawtbwkjMY6+9xvU5uNRrfxxgICZskpf0ThbIlK3upcA4Lpmbvj7qJG5d ZkLlA8xZ8vKmyCfOpfitKBmqS/zLBalQ9EJSFaLxc7c6hbvkdZht0ElLUtPan9ds SMgwQok/5ciGrgQW3Mk3KoF3oVSB+GUXvzjNxiFp5rpI8wJKDOsvruQUdPn2YOO2 mCxD7ilST714SwZaS0ajqVohzD3AjpGyUVGjqYkwi9TbX8SMY2pTXeguOx+ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUke+41a6GJ1th2HrqkKIQJRaTl7kwHwYDVR0j BBgwFoAUfE39eJFNwfZhMPJWrmnZ+oQ5SNwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTkyMzM5Ny04Y2Y4LTRjZWYtODg1Ni0wZDI2OGQ3M2VkYjEvMC83QzRERkQ3ODkx NERDMUY2NjEzMEYyNTZBRTY5RDlGQTg0Mzk0OERDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4NDM5 NDhEQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4kwDQYJ KoZIhvcNAQELBQADggEBAE4C2G21gD30OhxjzhbG1dU2DFtJep701lfCm14ybiwc VJ0pVSTx2t4SP28zPJyvG10Z7I8pO52U6WLr2pe0iLSj5Nk0mq6EqJsbq8gsPKxp bpf4A2oSComzzF2L0dMElz/Gq/+it43+BVNjwmg6uDOrhbmXUkDAdND30ttyj6To ZA90/PR6QdiSuir6ExHN2vRDdjYyDUXXR0Sr0DqX49Px4a0oZ/MykVday1TeESX5 r6BTNT1yon8qit1FNCKJInG3/gHWL+JmGyI8yiz0v1BRGEWNfOPGbaZPS3y+mppr PLdObh9MLcWYZOr8OQEfqSPEaP+xy3pGHkfJzebSWa0= -----END CERTIFICATE-----Generated at Sat Jun 7 07:35:31 2025 by rpki-client