$ rpki-client -vvf repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa File: 3136302e32322e37322e302f32342d3234203d3e20313532383033.roa (raw, json) Hash identifier: KXi3wp4OORvn6TsBUOzJaVybFRf6vF3ckUcKEtOB1Ho= Subject key identifier: 3E:1D:8A:C4:10:17:44:DF:9C:C2:E3:AB:4B:2B:EE:77:B2:1E:02:CD Certificate issuer: /CN=E380A055DD3B1E364672B9F0DD6852AE31F93906 Certificate serial: 687A30F31EDF03BF2CC0B700BF698FA01C5D97CE Authority key identifier: E3:80:A0:55:DD:3B:1E:36:46:72:B9:F0:DD:68:52:AE:31:F9:39:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E380A055DD3B1E364672B9F0DD6852AE31F93906.cer Subject info access: rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa Signing time: Sun 25 May 2025 17:00:00 +0000 ROA not before: Sun 25 May 2025 16:55:00 +0000 ROA not after: Sun 24 May 2026 17:00:00 +0000 asID: 152803 IP address blocks: 160.22.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/E380A055DD3B1E364672B9F0DD6852AE31F93906.crl rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/E380A055DD3B1E364672B9F0DD6852AE31F93906.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E380A055DD3B1E364672B9F0DD6852AE31F93906.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 06:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:7a:30:f3:1e:df:03:bf:2c:c0:b7:00:bf:69:8f:a0:1c:5d:97:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E380A055DD3B1E364672B9F0DD6852AE31F93906 Validity Not Before: May 25 16:55:00 2025 GMT Not After : May 24 17:00:00 2026 GMT Subject: CN=3E1D8AC4101744DF9CC2E3AB4B2BEE77B21E02CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:3c:fb:3b:38:38:8d:64:32:03:b4:bb:28: 1a:cf:e6:f2:7e:29:18:a0:c5:2d:56:3b:e7:40:50: 50:61:7a:06:a6:0b:c7:d8:de:cb:b9:6d:70:67:89: e8:31:d9:f3:f2:7b:eb:c4:99:7f:1f:ff:36:21:ba: 2b:ce:4f:c4:c9:7d:f2:16:6e:fa:da:d4:aa:51:43: 57:ce:c0:08:33:30:77:47:d9:64:2b:b3:a8:64:61: 87:f6:48:81:ff:f8:2c:bf:bb:b5:d1:58:5a:36:79: 10:2e:9b:0a:3b:34:de:1c:92:95:e6:24:40:70:6d: 72:6a:65:9e:a8:00:91:37:b6:ec:53:d0:12:9d:b0: a4:2f:b1:4a:6b:98:f0:00:7b:38:70:97:e7:d9:e9: 26:82:9c:4e:14:40:82:b6:fc:28:22:5d:62:f4:fc: 98:ad:dc:a3:f3:30:18:ba:6b:14:c8:63:7c:de:a6: 3a:a0:2f:99:83:d2:9d:4b:e9:aa:e5:80:16:a9:f7: b2:fa:da:55:ca:11:5e:9a:c0:b3:ed:39:87:cb:2f: 9c:ee:af:87:35:01:07:96:75:de:7e:70:66:40:7a: 21:2d:34:cd:cd:c8:dd:69:db:37:ec:b3:df:54:0d: ab:34:77:8c:93:69:81:5a:6d:87:59:1d:46:02:23: d1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1D:8A:C4:10:17:44:DF:9C:C2:E3:AB:4B:2B:EE:77:B2:1E:02:CD X509v3 Authority Key Identifier: keyid:E3:80:A0:55:DD:3B:1E:36:46:72:B9:F0:DD:68:52:AE:31:F9:39:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/E380A055DD3B1E364672B9F0DD6852AE31F93906.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E380A055DD3B1E364672B9F0DD6852AE31F93906.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.72.0/24 Signature Algorithm: sha256WithRSAEncryption ab:6c:47:f7:86:3d:14:dd:38:18:16:d2:39:8b:58:90:f1:5a: 37:7a:09:cc:5f:02:12:75:63:22:3f:00:b4:2f:3c:1d:3b:43: f3:2e:c5:e1:ba:48:19:9d:7f:67:13:90:5a:da:db:f8:15:68: 4c:1b:ef:dc:64:4d:9e:01:53:09:a3:85:60:ec:c9:fe:01:93: 68:12:bd:e9:90:88:f0:86:87:fc:a9:0f:57:03:89:5d:fa:57: a9:bf:e1:e4:18:83:87:4a:5c:29:c4:eb:42:f8:01:cd:aa:4c: 8e:ff:fe:54:09:c1:42:57:16:21:4e:da:22:2c:dd:96:ad:f1: f3:51:c8:92:75:e1:cb:f4:f1:ea:32:21:e3:61:93:42:a3:23: fb:a3:4f:28:a8:ce:4a:d8:c9:59:d4:56:de:74:84:6e:77:71: a1:75:a7:f2:40:e5:cc:1e:9a:90:b6:d3:f3:77:83:d9:94:82: 4d:7e:9c:36:61:ee:9b:3b:05:f8:20:23:19:44:d5:e0:bd:02: 70:ab:a4:0f:1e:6f:be:aa:f1:07:f2:f7:b3:88:11:dd:12:ae: a8:c4:22:51:30:c0:af:2e:13:e1:06:2b:d6:93:cc:01:4b:4e: 30:c4:ba:6a:30:a3:0a:de:2e:f0:26:04:9e:1a:29:54:f0:a2: 61:2a:75:14 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaHow8x7fA78swLcAv2mPoBxdl84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM4MEEwNTVERDNCMUUzNjQ2NzJCOUYwREQ2ODUyQUUz MUY5MzkwNjAeFw0yNTA1MjUxNjU1MDBaFw0yNjA1MjQxNzAwMDBaMDMxMTAvBgNV BAMTKDNFMUQ4QUM0MTAxNzQ0REY5Q0MyRTNBQjRCMkJFRTc3QjIxRTAyQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/uzz7Ozg4jWQyA7S7KBrP5vJ+ KRigxS1WO+dAUFBhegamC8fY3su5bXBniegx2fPye+vEmX8f/zYhuivOT8TJffIW bvra1KpRQ1fOwAgzMHdH2WQrs6hkYYf2SIH/+Cy/u7XRWFo2eRAumwo7NN4ckpXm JEBwbXJqZZ6oAJE3tuxT0BKdsKQvsUprmPAAezhwl+fZ6SaCnE4UQIK2/CgiXWL0 /Jit3KPzMBi6axTIY3zepjqgL5mD0p1L6arlgBap97L62lXKEV6awLPtOYfLL5zu r4c1AQeWdd5+cGZAeiEtNM3NyN1p2zfss99UDas0d4yTaYFabYdZHUYCI9EbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPh2KxBAXRN+cwuOrSyvud7IeAs0wHwYDVR0j BBgwFoAU44CgVd07HjZGcrnw3WhSrjH5OQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MmYyNjBjZS0yM2Y1LTQwOTUtODJkYi1lZjcxMTRlNDcxYjIvMC9FMzgwQTA1NURE M0IxRTM2NDY3MkI5RjBERDY4NTJBRTMxRjkzOTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRTM4MEEwNTVERDNCMUUzNjQ2NzJCOUYwREQ2ODUyQUUzMUY5 MzkwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyZjI2MGNlLTIzZjUtNDA5NS04 MmRiLWVmNzExNGU0NzFiMi8wLzMxMzYzMDJlMzIzMjJlMzczMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWSDANBgkqhkiG 9w0BAQsFAAOCAQEAq2xH94Y9FN04GBbSOYtYkPFaN3oJzF8CEnVjIj8AtC88HTtD 8y7F4bpIGZ1/ZxOQWtrb+BVoTBvv3GRNngFTCaOFYOzJ/gGTaBK96ZCI8IaH/KkP VwOJXfpXqb/h5BiDh0pcKcTrQvgBzapMjv/+VAnBQlcWIU7aIizdlq3x81HIknXh y/Tx6jIh42GTQqMj+6NPKKjOStjJWdRW3nSEbndxoXWn8kDlzB6akLbT83eD2ZSC TX6cNmHumzsF+CAjGUTV4L0CcKukDx5vvqrxB/L3s4gR3RKuqMQiUTDAry4T4QYr 1pPMAUtOMMS6ajCjCt4u8CYEnhopVPCiYSp1FA== -----END CERTIFICATE-----Generated at Sat Jun 7 07:56:49 2025 by rpki-client