$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e3232342e302f32322d3232203d3e203535363939.roa File: 3136302e31392e3232342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: GRueTMA2O7baTL3L4l0x1m5orgjkTOBplI10xnIAWvE= Subject key identifier: D1:60:FF:DD:5E:66:74:BD:5C:7D:AD:98:04:79:0B:6C:79:9F:F6:DF Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 47DEB48401E398C5EE258AC588B5D77CB550B308 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e3232342e302f32322d3232203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:06 +0000 ROA not before: Mon 02 Jun 2025 01:58:06 +0000 ROA not after: Mon 01 Jun 2026 02:03:06 +0000 asID: 55699 IP address blocks: 160.19.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:de:b4:84:01:e3:98:c5:ee:25:8a:c5:88:b5:d7:7c:b5:50:b3:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:06 2025 GMT Not After : Jun 1 02:03:06 2026 GMT Subject: CN=D160FFDD5E6674BD5C7DAD9804790B6C799FF6DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:76:39:5c:a1:0a:70:c8:58:35:03:32:59:2d: 07:c3:8e:fe:fb:e9:27:ce:1e:5f:66:d3:63:ba:74: 44:df:90:f7:75:03:1f:4d:f0:77:94:a4:f1:f7:39: 4a:47:75:2d:23:9e:b5:92:56:89:c0:e1:ab:86:bb: 6d:e5:96:4a:dd:55:75:c5:08:b0:48:76:d7:df:da: 54:e8:e9:4e:cc:a0:96:8d:2d:e0:fa:61:ab:85:f1: 3d:40:fa:f2:90:c8:f9:2c:f5:ab:fc:fd:ed:b9:d3: 4a:d5:57:72:83:06:23:a8:fa:da:32:d7:a2:2f:e1: e7:f7:58:34:8e:0f:08:51:02:61:21:05:f0:9b:4c: 99:fc:9b:21:cf:27:25:47:51:2f:d5:2c:88:11:17: 95:82:8a:b1:cd:2f:51:dc:a3:1b:17:01:e8:22:39: cb:67:d5:77:b5:45:bb:a1:a4:0e:86:10:5b:ff:d5: 9a:21:af:b1:cf:bd:65:70:dc:fc:2c:3a:25:d7:0b: 38:e8:8b:a6:92:41:28:e5:4f:d3:34:64:a3:b9:72: 66:e0:49:9c:32:70:e2:f0:f2:3a:a7:43:55:10:95: 72:bb:6e:3d:66:f3:70:bf:3b:c3:ff:7b:60:e2:1c: d1:db:2f:a8:2c:d1:f2:b2:47:d6:2d:6a:d0:21:e7: 2d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:60:FF:DD:5E:66:74:BD:5C:7D:AD:98:04:79:0B:6C:79:9F:F6:DF X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e3232342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.224.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:af:6e:33:f9:2d:c2:87:f9:58:30:f6:8a:3f:f5:2e:26:83: 7e:8e:7b:39:c0:0e:36:10:cc:e9:f9:36:e0:3b:ec:16:c0:d9: 9c:88:54:98:79:cb:7f:73:7b:ed:47:42:d6:b8:96:51:27:e3: 59:cb:17:d0:f4:77:01:e9:6d:f3:40:93:bd:b5:52:d4:1a:21: 93:fd:ca:a8:3e:33:16:3c:53:c6:a6:69:cb:0a:d1:d7:3b:02: 53:9e:45:1d:eb:fc:f8:96:f1:44:14:91:d5:06:87:83:cd:60: 67:58:72:4e:89:d8:a3:37:0d:12:0e:61:e3:47:ea:3b:c1:3d: ea:ec:da:ba:1c:4a:60:69:7b:3d:d6:16:c8:b0:60:1c:d7:5f: 35:4c:99:cb:e5:bd:3f:76:ca:48:52:7a:2e:f7:43:cc:59:18: bd:3b:3e:38:da:d3:b8:a6:0b:ef:87:9c:78:d5:36:3e:8b:c9: 3b:a4:a7:25:cf:72:86:21:d1:39:d9:2a:8a:b5:ab:6f:13:8c: ec:78:4c:06:cc:20:7a:61:86:78:7f:ca:65:19:93:6e:cb:10: ee:97:1c:3e:4b:56:96:f9:3a:1a:50:6c:48:15:85:7b:57:27: 3d:4e:5d:c1:1e:d1:da:27:21:8e:e0:d1:03:e9:14:82:49:89: 12:a2:ef:72 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR960hAHjmMXuJYrFiLXXfLVQswgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDZaFw0yNjA2MDEwMjAzMDZaMDMxMTAvBgNV BAMTKEQxNjBGRkRENUU2Njc0QkQ1QzdEQUQ5ODA0NzkwQjZDNzk5RkY2REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVdjlcoQpwyFg1AzJZLQfDjv77 6SfOHl9m02O6dETfkPd1Ax9N8HeUpPH3OUpHdS0jnrWSVonA4auGu23llkrdVXXF CLBIdtff2lTo6U7MoJaNLeD6YauF8T1A+vKQyPks9av8/e2500rVV3KDBiOo+toy 16Iv4ef3WDSODwhRAmEhBfCbTJn8myHPJyVHUS/VLIgRF5WCirHNL1HcoxsXAegi Octn1Xe1RbuhpA6GEFv/1Zohr7HPvWVw3PwsOiXXCzjoi6aSQSjlT9M0ZKO5cmbg SZwycOLw8jqnQ1UQlXK7bj1m83C/O8P/e2DiHNHbL6gs0fKyR9YtatAh5y3nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0WD/3V5mdL1cfa2YBHkLbHmf9t8wHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzYzMDJlMzEzOTJlMzIzMjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqAT4DANBgkqhkiG 9w0BAQsFAAOCAQEAWq9uM/ktwof5WDD2ij/1LiaDfo57OcAONhDM6fk24DvsFsDZ nIhUmHnLf3N77UdC1riWUSfjWcsX0PR3Aelt80CTvbVS1Bohk/3KqD4zFjxTxqZp ywrR1zsCU55FHev8+JbxRBSR1QaHg81gZ1hyTonYozcNEg5h40fqO8E96uzauhxK YGl7PdYWyLBgHNdfNUyZy+W9P3bKSFJ6LvdDzFkYvTs+ONrTuKYL74eceNU2PovJ O6SnJc9yhiHROdkqirWrbxOM7HhMBswgemGGeH/KZRmTbssQ7pccPktWlvk6GlBs SBWFe1cnPU5dwR7R2ichjuDRA+kUgkmJEqLvcg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:04 2025 by rpki-client