$ rpki-client -vvf repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa File: 3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa (raw, json) Hash identifier: 8CRgA1ByY654Nlat1fHrKnqGH93mDlUGlMXfJsCa4ik= Subject key identifier: 8B:C9:85:66:D7:5A:53:A0:28:3B:95:79:CA:10:9C:10:D5:EC:99:C1 Certificate issuer: /CN=8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0 Certificate serial: 3833E6D16659231AE0486DEB6353F425534C75D1 Authority key identifier: 8C:21:08:40:D9:E2:8A:46:5D:4F:0B:9F:3A:1D:7C:31:CC:66:80:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa Signing time: Thu 05 Jun 2025 03:03:24 +0000 ROA not before: Thu 05 Jun 2025 02:58:24 +0000 ROA not after: Thu 04 Jun 2026 03:03:24 +0000 asID: 152826 IP address blocks: 160.22.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.crl rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:33:e6:d1:66:59:23:1a:e0:48:6d:eb:63:53:f4:25:53:4c:75:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0 Validity Not Before: Jun 5 02:58:24 2025 GMT Not After : Jun 4 03:03:24 2026 GMT Subject: CN=8BC98566D75A53A0283B9579CA109C10D5EC99C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:8e:5d:70:80:4d:80:0f:f7:22:fc:14:d8: 00:61:c1:a7:1a:99:f6:5e:ee:d1:d8:85:9a:32:3b: 66:ef:82:82:6d:1b:3c:f7:97:f7:dd:62:0e:95:20: a0:76:27:62:b8:b7:72:7c:ef:c7:22:6a:92:86:51: 02:b5:f2:ef:85:69:ca:e5:cf:b5:fe:09:65:de:7e: 0d:b7:1e:ea:28:d6:8f:e2:63:75:46:40:8d:f9:7a: 35:4f:8e:20:84:5c:1e:9b:a0:ba:f6:79:8a:8a:80: 51:e2:4c:b9:d2:97:11:13:ed:51:ea:b7:bc:e0:bf: 1f:db:eb:cf:19:e4:67:80:5c:94:24:7d:16:b8:4d: 9c:2d:8b:c7:f9:71:6a:b3:a3:3e:16:c7:e5:5c:9e: c4:d7:5a:1c:17:7a:fd:1f:b4:cc:2d:74:36:71:76: e1:b0:75:a7:d8:ee:f4:f6:21:96:f2:71:c6:3f:9e: e2:e4:2f:72:33:1e:48:da:40:81:a2:7d:29:c9:9c: 03:36:8b:a6:91:d6:8f:24:df:03:ca:fe:68:ef:90: 5d:ed:ec:8e:19:98:67:88:70:34:3b:f1:ef:26:0e: 13:22:54:7e:d1:ad:e0:0c:83:bc:de:da:ad:09:e2: 57:fc:81:01:02:3d:96:1b:0a:4c:a4:05:c9:a6:c9: ec:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C9:85:66:D7:5A:53:A0:28:3B:95:79:CA:10:9C:10:D5:EC:99:C1 X509v3 Authority Key Identifier: keyid:8C:21:08:40:D9:E2:8A:46:5D:4F:0B:9F:3A:1D:7C:31:CC:66:80:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.194.0/23 Signature Algorithm: sha256WithRSAEncryption 29:cc:f2:19:48:72:67:af:d6:81:dd:1b:a2:5c:11:02:c7:b0: 50:0b:e4:71:62:59:85:13:02:06:3f:a6:9b:33:46:7a:68:29: eb:ea:ac:14:6a:ac:d4:bb:11:98:2a:81:ff:b8:2c:74:a7:4b: 63:06:e2:5e:21:d6:29:57:d1:04:a0:59:db:56:b4:60:36:61: b8:08:72:67:73:df:6e:fd:eb:8d:0f:09:3b:9d:ba:c3:bb:81: f3:0d:c3:f8:2e:15:5b:65:4d:60:93:3b:47:59:06:8f:5a:71: 4b:ae:bd:d3:a1:12:b0:dc:70:0b:f5:3b:c6:64:58:21:f0:c6: d7:c1:2b:dc:ad:57:44:49:bf:25:ce:e5:c3:31:74:eb:09:f2: 43:5a:a3:a3:0f:bc:e2:0d:c1:98:ff:33:3c:93:af:ed:59:3a: a1:41:6c:59:79:dd:ee:93:6f:23:20:c4:52:ec:dc:e6:6e:73: 59:4f:50:b8:b4:b7:2c:f5:fd:4b:cb:5b:4f:5c:9a:6b:40:db: 1c:3e:45:76:e8:83:f1:03:63:2a:41:b6:3b:3a:54:53:9b:53: 46:48:c5:42:41:26:38:72:5e:3e:74:8c:40:0b:ce:db:a0:1e: 44:02:39:09:67:15:79:30:c6:f9:f5:4a:91:42:11:fb:33:70: 53:88:73:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUODPm0WZZIxrgSG3rY1P0JVNMddEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMyMTA4NDBEOUUyOEE0NjVENEYwQjlGM0ExRDdDMzFD QzY2ODBDMDAeFw0yNTA2MDUwMjU4MjRaFw0yNjA2MDQwMzAzMjRaMDMxMTAvBgNV BAMTKDhCQzk4NTY2RDc1QTUzQTAyODNCOTU3OUNBMTA5QzEwRDVFQzk5QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMxI5dcIBNgA/3IvwU2ABhwaca mfZe7tHYhZoyO2bvgoJtGzz3l/fdYg6VIKB2J2K4t3J878ciapKGUQK18u+Facrl z7X+CWXefg23Huoo1o/iY3VGQI35ejVPjiCEXB6boLr2eYqKgFHiTLnSlxET7VHq t7zgvx/b688Z5GeAXJQkfRa4TZwti8f5cWqzoz4Wx+VcnsTXWhwXev0ftMwtdDZx duGwdafY7vT2IZbyccY/nuLkL3IzHkjaQIGifSnJnAM2i6aR1o8k3wPK/mjvkF3t 7I4ZmGeIcDQ78e8mDhMiVH7RreAMg7ze2q0J4lf8gQECPZYbCkykBcmmyey3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUi8mFZtdaU6AoO5V5yhCcENXsmcEwHwYDVR0j BBgwFoAUjCEIQNniikZdTwufOh18McxmgMAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGJhODVhMC0zNTM0LTQ5YTQtYTgyNi0xM2E3MzVmOTQzNjkvMC84QzIxMDg0MEQ5 RTI4QTQ2NUQ0RjBCOUYzQTFEN0MzMUNDNjY4MEMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEMyMTA4NDBEOUUyOEE0NjVENEYwQjlGM0ExRDdDMzFDQzY2 ODBDMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwYmE4NWEwLTM1MzQtNDlhNC1h ODI2LTEzYTczNWY5NDM2OS8wLzMxMzYzMDJlMzIzMjJlMzEzOTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbCMA0GCSqG SIb3DQEBCwUAA4IBAQApzPIZSHJnr9aB3RuiXBECx7BQC+RxYlmFEwIGP6abM0Z6 aCnr6qwUaqzUuxGYKoH/uCx0p0tjBuJeIdYpV9EEoFnbVrRgNmG4CHJnc99u/euN Dwk7nbrDu4HzDcP4LhVbZU1gkztHWQaPWnFLrr3ToRKw3HAL9TvGZFgh8MbXwSvc rVdESb8lzuXDMXTrCfJDWqOjD7ziDcGY/zM8k6/tWTqhQWxZed3uk28jIMRS7Nzm bnNZT1C4tLcs9f1Ly1tPXJprQNscPkV26IPxA2MqQbY7OlRTm1NGSMVCQSY4cl4+ dIxAC87boB5EAjkJZxV5MMb59UqRQhH7M3BTiHOc -----END CERTIFICATE-----Generated at Sun Jun 8 06:42:40 2025 by rpki-client