$ rpki-client -vvf repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa File: 3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa (raw, json) Hash identifier: KqfiAsqedp1jTN5MJJRXQeZ9izmOQOboRC1ur5qsBHw= Subject key identifier: DE:7A:56:F1:B4:02:8B:1E:43:21:C5:A1:50:90:9C:C7:B7:22:BC:8C Certificate issuer: /CN=1391AB90F1BF56A92FBDF7B8F48207992410775E Certificate serial: 28179E14CB74EB31E2D0FE030919F6211A3A6C1B Authority key identifier: 13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa Signing time: Fri 23 May 2025 05:00:01 +0000 ROA not before: Fri 23 May 2025 04:55:01 +0000 ROA not after: Fri 22 May 2026 05:00:01 +0000 asID: 152775 IP address blocks: 160.19.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:17:9e:14:cb:74:eb:31:e2:d0:fe:03:09:19:f6:21:1a:3a:6c:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1391AB90F1BF56A92FBDF7B8F48207992410775E Validity Not Before: May 23 04:55:01 2025 GMT Not After : May 22 05:00:01 2026 GMT Subject: CN=DE7A56F1B4028B1E4321C5A150909CC7B722BC8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0d:8b:b4:b9:b2:31:a8:dc:02:49:f9:36:26: d8:39:15:05:25:97:21:00:b6:3c:d3:02:f0:14:cf: 55:e8:af:6d:03:9a:60:db:d2:ed:fb:93:12:d9:dd: fc:75:3d:0c:32:8a:3f:dc:b6:64:b6:1f:13:c9:21: 0b:33:66:4a:8e:8e:ce:9e:45:94:1a:3c:9d:90:28: b3:94:f8:00:2a:6f:bf:02:8f:0d:6a:9c:46:9a:80: a2:5d:80:9d:ac:f3:48:ac:fb:eb:65:f9:6f:39:25: 05:5d:1c:62:7d:f5:3e:eb:60:39:b6:e4:2b:d4:28: 0d:5b:08:4d:57:91:c5:b9:b1:59:43:84:b3:ca:7e: 18:d3:70:9a:88:d5:aa:6d:79:9f:21:6a:45:cc:d5: 8c:e4:89:92:94:18:04:b7:9f:9d:d9:ad:54:06:b8: f4:e3:49:f9:b1:da:f3:eb:8e:dd:50:86:e8:3e:4e: 0c:71:f3:d7:14:37:9e:12:99:7f:cf:27:da:d6:14: dd:f4:34:e5:3d:45:5a:ad:5e:8c:28:e0:70:2f:cb: 2e:2a:eb:37:41:b1:11:ca:c8:37:63:dc:db:89:a1: 90:40:d9:82:2c:66:23:0b:ee:79:9a:44:2b:75:ba: c9:8c:26:11:d4:6f:a9:69:95:44:f3:c7:15:79:3e: 3f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7A:56:F1:B4:02:8B:1E:43:21:C5:A1:50:90:9C:C7:B7:22:BC:8C X509v3 Authority Key Identifier: keyid:13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.146.0/24 Signature Algorithm: sha256WithRSAEncryption 53:63:30:ad:b1:cb:81:d4:9c:75:7b:d8:e2:f8:e5:e6:dc:62: 5c:00:34:0c:ba:ec:4d:69:8c:e2:c7:15:ad:1f:07:bc:68:36: 0c:83:29:47:1c:1a:44:af:9f:37:d0:5f:92:74:7c:da:7c:78: 81:de:23:19:c6:4f:df:f3:53:d6:11:e7:f3:e7:b9:d5:2d:1c: a3:61:9c:5a:a3:2c:a3:90:fb:a6:6b:9e:63:24:23:be:98:e8: cc:a4:1a:14:06:4d:8e:e1:d3:13:f4:b8:69:e9:8f:40:2b:fa: c2:38:e4:99:65:6d:cd:52:1d:b8:e3:21:58:4c:99:3b:a1:30: 70:43:19:aa:d1:73:d5:0b:ee:cf:b7:1b:bf:52:59:b9:e7:6c: 78:a7:6d:5f:a4:ed:a0:3e:c8:c8:21:0f:ca:52:51:28:56:1a: f8:d3:d2:ed:0b:4c:60:d7:ae:94:9c:07:f1:5f:ba:0e:22:1f: 68:d9:1a:e0:29:39:5d:c0:da:02:79:bb:c9:8f:ec:59:e0:3c: 9b:34:1a:88:45:95:46:94:70:7a:bb:ea:60:b3:c0:fa:c1:cd: 7d:c8:b3:4a:d7:14:e4:a3:7e:88:49:80:1d:02:0c:52:29:6d: cb:3c:b8:30:a8:6b:ae:c8:66:58:76:8a:4a:41:d1:5b:db:81: 90:aa:9d:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKBeeFMt06zHi0P4DCRn2IRo6bBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5MUFCOTBGMUJGNTZBOTJGQkRGN0I4RjQ4MjA3OTky NDEwNzc1RTAeFw0yNTA1MjMwNDU1MDFaFw0yNjA1MjIwNTAwMDFaMDMxMTAvBgNV BAMTKERFN0E1NkYxQjQwMjhCMUU0MzIxQzVBMTUwOTA5Q0M3QjcyMkJDOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLDYu0ubIxqNwCSfk2Jtg5FQUl lyEAtjzTAvAUz1Xor20DmmDb0u37kxLZ3fx1PQwyij/ctmS2HxPJIQszZkqOjs6e RZQaPJ2QKLOU+AAqb78Cjw1qnEaagKJdgJ2s80is++tl+W85JQVdHGJ99T7rYDm2 5CvUKA1bCE1XkcW5sVlDhLPKfhjTcJqI1apteZ8hakXM1YzkiZKUGAS3n53ZrVQG uPTjSfmx2vPrjt1Qhug+Tgxx89cUN54SmX/PJ9rWFN30NOU9RVqtXowo4HAvyy4q 6zdBsRHKyDdj3NuJoZBA2YIsZiML7nmaRCt1usmMJhHUb6lplUTzxxV5Pj8RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3npW8bQCix5DIcWhUJCcx7civIwwHwYDVR0j BBgwFoAUE5GrkPG/Vqkvvfe49IIHmSQQd14wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OWI5YmQzOC0yZWZhLTRkNGMtYTk1Ni00MjQ5MmEzZTYwMDAvMC8xMzkxQUI5MEYx QkY1NkE5MkZCREY3QjhGNDgyMDc5OTI0MTA3NzVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTM5MUFCOTBGMUJGNTZBOTJGQkRGN0I4RjQ4MjA3OTkyNDEw Nzc1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5YjliZDM4LTJlZmEtNGQ0Yy1h OTU2LTQyNDkyYTNlNjAwMC8wLzMxMzYzMDJlMzEzOTJlMzEzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOSMA0GCSqG SIb3DQEBCwUAA4IBAQBTYzCtscuB1Jx1e9ji+OXm3GJcADQMuuxNaYzixxWtHwe8 aDYMgylHHBpEr5830F+SdHzafHiB3iMZxk/f81PWEefz57nVLRyjYZxaoyyjkPum a55jJCO+mOjMpBoUBk2O4dMT9Lhp6Y9AK/rCOOSZZW3NUh244yFYTJk7oTBwQxmq 0XPVC+7Ptxu/Ulm552x4p21fpO2gPsjIIQ/KUlEoVhr409LtC0xg166UnAfxX7oO Ih9o2RrgKTldwNoCebvJj+xZ4DybNBqIRZVGlHB6u+pgs8D6wc19yLNK1xTko36I SYAdAgxSKW3LPLgwqGuuyGZYdopKQdFb24GQqp1S -----END CERTIFICATE-----Generated at Sat Jun 7 04:04:56 2025 by rpki-client