$ rpki-client -vvf repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139382e302f32332d3233203d3e20313532383336.roa File: 3136302e32322e3139382e302f32332d3233203d3e20313532383336.roa (raw, json) Hash identifier: VUNIcQLLtJsrGFAzVMiImA2RepGLVIMfYYvCS/t2Ge0= Subject key identifier: 85:C8:94:DA:E9:9E:9E:AE:61:BB:FB:50:C8:0B:41:91:26:50:06:A9 Certificate issuer: /CN=A7E6C62C47C02EEA32422E135908EBF230C5B5FA Certificate serial: 36650B8F42D00EF6D5C128ABB46D95606CDD8256 Authority key identifier: A7:E6:C6:2C:47:C0:2E:EA:32:42:2E:13:59:08:EB:F2:30:C5:B5:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139382e302f32332d3233203d3e20313532383336.roa Signing time: Fri 11 Jul 2025 08:50:22 +0000 ROA not before: Fri 11 Jul 2025 08:45:22 +0000 ROA not after: Fri 10 Jul 2026 08:50:22 +0000 asID: 152836 IP address blocks: 160.22.198.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.crl rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 17:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:65:0b:8f:42:d0:0e:f6:d5:c1:28:ab:b4:6d:95:60:6c:dd:82:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7E6C62C47C02EEA32422E135908EBF230C5B5FA Validity Not Before: Jul 11 08:45:22 2025 GMT Not After : Jul 10 08:50:22 2026 GMT Subject: CN=85C894DAE99E9EAE61BBFB50C80B4191265006A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:49:dc:71:ff:46:41:97:de:88:3b:b2:5a:80: ce:06:b0:37:14:a2:cd:d6:c2:76:8d:7f:79:fd:a0: a4:4e:e3:75:b7:d5:21:5c:86:1f:c4:79:16:26:46: 59:74:db:2d:db:16:06:6b:f7:42:9d:89:59:65:cd: 6a:27:c1:ca:86:41:8f:66:6a:ea:e3:78:b4:8f:9f: 08:a9:7a:cc:1a:14:de:96:9c:e2:89:67:be:c8:e4: 16:d6:ac:f0:39:24:95:a6:42:b6:4f:3d:64:e3:eb: 50:3c:c1:c4:5f:14:40:b2:3b:7b:e6:71:57:b1:50: a8:d4:5a:c3:26:18:57:f2:09:1d:e8:09:3b:3f:44: 84:37:d1:33:5a:1c:b2:97:05:ad:ca:d3:9a:01:4a: 2d:ea:f9:54:e2:fb:6e:7f:2a:7b:08:e6:3a:92:1c: 71:9d:22:b8:2a:26:07:66:79:d1:64:d4:65:4c:5b: ce:c6:73:dc:59:ce:15:88:b9:d7:9f:e6:d9:05:71: ca:2b:69:76:19:d0:6b:0b:42:e9:de:ba:02:1d:98: 33:1f:1f:bb:eb:53:04:e5:5a:26:67:fa:50:9b:b8: 32:f9:d8:cf:fc:f8:4c:2c:37:19:9b:41:d9:2d:ec: 62:a9:47:fa:a9:38:4a:64:6a:56:ce:54:9b:95:0b: 61:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C8:94:DA:E9:9E:9E:AE:61:BB:FB:50:C8:0B:41:91:26:50:06:A9 X509v3 Authority Key Identifier: keyid:A7:E6:C6:2C:47:C0:2E:EA:32:42:2E:13:59:08:EB:F2:30:C5:B5:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139382e302f32332d3233203d3e20313532383336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.198.0/23 Signature Algorithm: sha256WithRSAEncryption 36:25:9a:9c:51:0a:54:36:6a:7e:83:bd:b4:27:fe:bf:22:e1: c6:e7:d4:7b:ff:5f:5e:2d:93:cf:35:62:5e:a0:e9:99:b2:7e: e7:8b:e0:27:06:17:9d:94:a7:be:29:83:ad:91:5d:42:00:fa: 36:d2:3c:a0:ff:fd:c3:d2:f0:09:2e:db:74:54:b5:8b:22:0a: ef:46:d2:3e:ac:58:d5:a6:a6:2a:ea:01:1d:86:c4:4d:5b:53: 7f:26:2d:08:b0:55:ff:10:0a:bc:dd:fa:e8:25:01:b5:5f:77: 87:fe:1a:7b:e2:74:68:22:9d:3e:ad:5a:9c:82:ef:45:63:d1: 91:2b:26:f5:53:b6:7e:c9:50:ba:35:2d:4e:ed:cd:93:36:2e: e3:1c:eb:b7:78:18:28:f1:d2:ff:58:e5:ef:c0:d1:0f:d7:92: e3:97:1b:3b:0f:3f:ad:8d:ad:d3:e4:5a:ea:23:d7:46:6b:5c: 61:a6:d6:39:42:14:a3:aa:b4:c8:6a:1f:83:d7:a7:a1:0c:3b: ab:9e:09:11:79:e2:ca:62:99:7b:aa:27:1e:fe:5c:a6:39:b1: 57:b5:9e:76:8b:58:84:03:d8:bb:77:00:6d:68:0f:3a:d7:7f: 60:fd:cf:d3:cb:3f:83:bb:ca:92:b2:db:8f:a8:3a:20:a6:08: fe:c1:f3:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNmULj0LQDvbVwSirtG2VYGzdglYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdFNkM2MkM0N0MwMkVFQTMyNDIyRTEzNTkwOEVCRjIz MEM1QjVGQTAeFw0yNTA3MTEwODQ1MjJaFw0yNjA3MTAwODUwMjJaMDMxMTAvBgNV BAMTKDg1Qzg5NERBRTk5RTlFQUU2MUJCRkI1MEM4MEI0MTkxMjY1MDA2QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbSdxx/0ZBl96IO7JagM4GsDcU os3WwnaNf3n9oKRO43W31SFchh/EeRYmRll02y3bFgZr90KdiVllzWonwcqGQY9m aurjeLSPnwipeswaFN6WnOKJZ77I5BbWrPA5JJWmQrZPPWTj61A8wcRfFECyO3vm cVexUKjUWsMmGFfyCR3oCTs/RIQ30TNaHLKXBa3K05oBSi3q+VTi+25/KnsI5jqS HHGdIrgqJgdmedFk1GVMW87Gc9xZzhWIudef5tkFccoraXYZ0GsLQuneugIdmDMf H7vrUwTlWiZn+lCbuDL52M/8+EwsNxmbQdkt7GKpR/qpOEpkalbOVJuVC2HJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhciU2umenq5hu/tQyAtBkSZQBqkwHwYDVR0j BBgwFoAUp+bGLEfALuoyQi4TWQjr8jDFtfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZjMwZTRhZS0zZTQ3LTQ1NDAtODIzYy01M2NhZjIyNjdiMzYvMC9BN0U2QzYyQzQ3 QzAyRUVBMzI0MjJFMTM1OTA4RUJGMjMwQzVCNUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTdFNkM2MkM0N0MwMkVFQTMyNDIyRTEzNTkwOEVCRjIzMEM1 QjVGQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmMzBlNGFlLTNlNDctNDU0MC04 MjNjLTUzY2FmMjI2N2IzNi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbGMA0GCSqG SIb3DQEBCwUAA4IBAQA2JZqcUQpUNmp+g720J/6/IuHG59R7/19eLZPPNWJeoOmZ sn7ni+AnBhedlKe+KYOtkV1CAPo20jyg//3D0vAJLtt0VLWLIgrvRtI+rFjVpqYq 6gEdhsRNW1N/Ji0IsFX/EAq83froJQG1X3eH/hp74nRoIp0+rVqcgu9FY9GRKyb1 U7Z+yVC6NS1O7c2TNi7jHOu3eBgo8dL/WOXvwNEP15Ljlxs7Dz+tja3T5FrqI9dG a1xhptY5QhSjqrTIah+D16ehDDurngkReeLKYpl7qice/lymObFXtZ52i1iEA9i7 dwBtaA86139g/c/Tyz+Du8qSstuPqDogpgj+wfPh -----END CERTIFICATE-----Generated at Mon Jul 21 23:20:57 2025 by rpki-client