$ rpki-client -vvf repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31362e302f32342d3234203d3e20313532303733.roa File: 3136302e31392e31362e302f32342d3234203d3e20313532303733.roa (raw, json) Hash identifier: BD9874huussdd9AhnhjODm64dILqVkWxIW7wjOoaAMQ= Subject key identifier: 96:0C:6D:4E:F9:9F:CD:87:91:F7:D2:BE:60:5C:AC:14:55:A6:5A:98 Certificate issuer: /CN=8910B51FCAA7F54124A76AF839CE19F4055A1061 Certificate serial: 7268690C461CBA24646B5F225929F26303DD83C8 Authority key identifier: 89:10:B5:1F:CA:A7:F5:41:24:A7:6A:F8:39:CE:19:F4:05:5A:10:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8910B51FCAA7F54124A76AF839CE19F4055A1061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31362e302f32342d3234203d3e20313532303733.roa Signing time: Fri 06 Jun 2025 07:00:00 +0000 ROA not before: Fri 06 Jun 2025 06:55:00 +0000 ROA not after: Fri 05 Jun 2026 07:00:00 +0000 asID: 152073 IP address blocks: 160.19.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/8910B51FCAA7F54124A76AF839CE19F4055A1061.crl rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/8910B51FCAA7F54124A76AF839CE19F4055A1061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8910B51FCAA7F54124A76AF839CE19F4055A1061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:68:69:0c:46:1c:ba:24:64:6b:5f:22:59:29:f2:63:03:dd:83:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8910B51FCAA7F54124A76AF839CE19F4055A1061 Validity Not Before: Jun 6 06:55:00 2025 GMT Not After : Jun 5 07:00:00 2026 GMT Subject: CN=960C6D4EF99FCD8791F7D2BE605CAC1455A65A98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:76:8f:ff:8c:2b:a7:01:60:1c:7d:e0:a9:bd: f6:92:cc:fa:37:c6:ef:ce:b0:29:65:b9:13:fb:3b: f9:86:a1:40:5f:a4:43:d8:1b:89:6b:1f:9e:1a:c0: bf:91:a4:56:5a:ce:dd:e4:73:af:06:31:fa:f4:01: 27:86:f7:25:cd:e1:c6:be:d4:07:71:51:c8:fa:1f: 8c:6b:cb:e7:fb:c5:9d:6c:a2:33:20:ec:3e:08:65: cb:2f:f6:aa:c0:93:cc:4f:b3:6d:e1:35:a0:4a:6c: f0:57:ed:a9:34:6f:30:97:0d:bb:34:5d:40:9b:65: e8:35:81:2c:45:23:f2:53:cc:2d:32:db:2d:98:19: 1e:cd:d0:61:e8:1b:9a:f3:e5:cf:25:a7:ce:97:64: 8a:fa:a7:d6:23:a7:b0:5d:37:24:8f:ec:e9:74:23: f0:77:27:b3:e9:53:42:70:35:d0:53:7d:68:4b:dd: d6:2e:61:28:d0:53:78:95:5b:fe:d0:8f:56:c6:0d: 94:c6:67:7f:cf:b5:7a:de:df:cb:d4:cc:cf:b6:41: 14:ca:df:fc:14:78:7d:3d:c8:b5:af:b5:00:bc:c3: 88:55:23:7f:69:a0:77:a2:cd:54:d0:79:b4:11:20: e5:29:21:57:ea:59:58:69:80:fb:97:db:2a:7d:88: ba:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0C:6D:4E:F9:9F:CD:87:91:F7:D2:BE:60:5C:AC:14:55:A6:5A:98 X509v3 Authority Key Identifier: keyid:89:10:B5:1F:CA:A7:F5:41:24:A7:6A:F8:39:CE:19:F4:05:5A:10:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/8910B51FCAA7F54124A76AF839CE19F4055A1061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8910B51FCAA7F54124A76AF839CE19F4055A1061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31362e302f32342d3234203d3e20313532303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.16.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:4c:2a:46:ec:cd:12:0e:37:90:22:77:7e:66:c5:b2:54:0d: 47:2e:b1:e9:9a:ab:2c:55:d5:44:c4:df:47:b5:69:cf:45:7c: 97:b3:ed:a1:a1:e1:e9:d7:c4:dc:34:d9:a4:ef:06:a8:cc:e6: 65:56:af:83:90:dd:48:0e:78:06:8b:a7:f5:e9:c0:d1:17:14: 8b:ee:cd:6f:91:91:63:49:30:12:a6:de:00:5f:79:91:c4:4f: f8:32:3f:f7:7d:a4:53:16:38:2b:4f:fc:cd:14:a4:90:c2:29: 8a:43:9a:30:24:a8:a1:96:da:5a:3d:25:51:d2:4e:e9:df:24: c3:f4:be:2c:18:fd:24:98:61:eb:57:92:5d:87:cf:ec:ce:5f: d3:9b:58:4e:dc:86:99:75:fb:ae:84:6e:ea:ee:5e:e1:ab:1e: bd:60:89:d6:82:45:02:b5:f2:ff:12:a7:0e:7b:6e:93:a9:7f: a4:56:53:ee:6b:94:7f:99:34:ce:ef:d0:a3:81:12:43:cd:f0: d4:56:93:c0:46:d2:b1:f7:0d:47:18:c2:e3:06:39:c2:f3:19: da:0c:30:c9:41:c5:ba:1b:9b:d1:b8:96:6d:8c:7f:c8:ee:e8: a2:c8:6e:d3:90:ec:d5:9e:05:4f:2d:21:0c:18:60:64:90:b3: c4:df:eb:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcmhpDEYcuiRka18iWSnyYwPdg8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkxMEI1MUZDQUE3RjU0MTI0QTc2QUY4MzlDRTE5RjQw NTVBMTA2MTAeFw0yNTA2MDYwNjU1MDBaFw0yNjA2MDUwNzAwMDBaMDMxMTAvBgNV BAMTKDk2MEM2RDRFRjk5RkNEODc5MUY3RDJCRTYwNUNBQzE0NTVBNjVBOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCdo//jCunAWAcfeCpvfaSzPo3 xu/OsClluRP7O/mGoUBfpEPYG4lrH54awL+RpFZazt3kc68GMfr0ASeG9yXN4ca+ 1AdxUcj6H4xry+f7xZ1sojMg7D4IZcsv9qrAk8xPs23hNaBKbPBX7ak0bzCXDbs0 XUCbZeg1gSxFI/JTzC0y2y2YGR7N0GHoG5rz5c8lp86XZIr6p9Yjp7BdNySP7Ol0 I/B3J7PpU0JwNdBTfWhL3dYuYSjQU3iVW/7Qj1bGDZTGZ3/PtXre38vUzM+2QRTK 3/wUeH09yLWvtQC8w4hVI39poHeizVTQebQRIOUpIVfqWVhpgPuX2yp9iLqzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlgxtTvmfzYeR99K+YFysFFWmWpgwHwYDVR0j BBgwFoAUiRC1H8qn9UEkp2r4Oc4Z9AVaEGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MTQwMzQwOS1iZjA0LTQyZTktOTU2Ny1iMDZlYzgyM2Q5MDEvMC84OTEwQjUxRkNB QTdGNTQxMjRBNzZBRjgzOUNFMTlGNDA1NUExMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODkxMEI1MUZDQUE3RjU0MTI0QTc2QUY4MzlDRTE5RjQwNTVB MTA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcxNDAzNDA5LWJmMDQtNDJlOS05 NTY3LWIwNmVjODIzZDkwMS8wLzMxMzYzMDJlMzEzOTJlMzEzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATEDANBgkqhkiG 9w0BAQsFAAOCAQEAnUwqRuzNEg43kCJ3fmbFslQNRy6x6ZqrLFXVRMTfR7Vpz0V8 l7PtoaHh6dfE3DTZpO8GqMzmZVavg5DdSA54Boun9enA0RcUi+7Nb5GRY0kwEqbe AF95kcRP+DI/932kUxY4K0/8zRSkkMIpikOaMCSooZbaWj0lUdJO6d8kw/S+LBj9 JJhh61eSXYfP7M5f05tYTtyGmXX7roRu6u5e4asevWCJ1oJFArXy/xKnDntuk6l/ pFZT7muUf5k0zu/Qo4ESQ83w1FaTwEbSsfcNRxjC4wY5wvMZ2gwwyUHFuhub0biW bYx/yO7ooshu05Ds1Z4FTy0hDBhgZJCzxN/rUA== -----END CERTIFICATE-----Generated at Sun Jun 8 07:55:05 2025 by rpki-client