$ rpki-client -vvf repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/3136302e32322e33342e302f32332d3234203d3e20313532383136.roa File: 3136302e32322e33342e302f32332d3234203d3e20313532383136.roa (raw, json) Hash identifier: a4xJEDoYakiTMO96ZZKVCyVqliQmIGfucXGPHg4A430= Subject key identifier: 31:DC:4E:8C:72:C0:A1:D6:64:2A:23:A7:FA:A6:E7:19:FD:22:55:3E Certificate issuer: /CN=C6E5FF54770B28DB44FDD655765364797010697B Certificate serial: 72384119AC709A774DB59A19FAF33B5AFAFCB073 Authority key identifier: C6:E5:FF:54:77:0B:28:DB:44:FD:D6:55:76:53:64:79:70:10:69:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C6E5FF54770B28DB44FDD655765364797010697B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/3136302e32322e33342e302f32332d3234203d3e20313532383136.roa Signing time: Tue 27 May 2025 11:12:23 +0000 ROA not before: Tue 27 May 2025 11:07:23 +0000 ROA not after: Tue 26 May 2026 11:12:23 +0000 asID: 152816 IP address blocks: 160.22.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/C6E5FF54770B28DB44FDD655765364797010697B.crl rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/C6E5FF54770B28DB44FDD655765364797010697B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C6E5FF54770B28DB44FDD655765364797010697B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:38:41:19:ac:70:9a:77:4d:b5:9a:19:fa:f3:3b:5a:fa:fc:b0:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6E5FF54770B28DB44FDD655765364797010697B Validity Not Before: May 27 11:07:23 2025 GMT Not After : May 26 11:12:23 2026 GMT Subject: CN=31DC4E8C72C0A1D6642A23A7FAA6E719FD22553E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:02:be:a8:2c:2c:1b:42:a3:fe:68:52:12:08: 85:4e:0b:a4:c9:d1:f7:34:eb:13:49:a7:ed:0c:7f: 68:20:4e:58:8f:f1:94:84:50:47:e4:44:ef:9c:6a: 44:2d:8e:75:f0:e3:c4:0f:fe:8d:b2:8c:1c:ea:e4: 01:ee:12:af:69:98:fc:cc:d5:55:31:77:0e:1b:e2: 1a:30:54:46:05:30:01:14:53:8b:54:c7:64:2c:39: 15:d3:29:de:c1:ae:ff:7e:b1:35:01:eb:36:aa:a7: 34:08:cd:86:07:c2:96:a5:22:fb:99:3d:3c:cb:a6: 41:f9:6e:88:2f:c6:a9:20:84:16:d5:d8:0f:6a:c4: d3:31:33:2f:f0:bb:94:ac:62:90:98:44:e8:18:14: ad:f7:3b:03:e8:b0:08:14:ec:1f:42:b8:8f:ef:bd: c1:25:8f:a3:da:97:d3:1c:02:a7:08:5c:f7:0a:77: 46:cc:ab:c0:df:9b:f0:32:a7:89:c4:f2:2f:a4:e1: 1d:0c:3f:6b:ce:4f:5c:50:ec:b1:2a:84:6b:a8:74: 41:e1:73:fc:33:09:24:9c:1e:13:f3:1f:c7:40:ce: cf:8f:bc:fb:6a:f5:4b:a8:a5:b3:ee:0c:2a:1c:cc: 29:46:f8:bd:45:f3:5f:bb:c4:a3:72:a8:68:7e:f8: 01:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:DC:4E:8C:72:C0:A1:D6:64:2A:23:A7:FA:A6:E7:19:FD:22:55:3E X509v3 Authority Key Identifier: keyid:C6:E5:FF:54:77:0B:28:DB:44:FD:D6:55:76:53:64:79:70:10:69:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/C6E5FF54770B28DB44FDD655765364797010697B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C6E5FF54770B28DB44FDD655765364797010697B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/3136302e32322e33342e302f32332d3234203d3e20313532383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.34.0/23 Signature Algorithm: sha256WithRSAEncryption 67:90:5f:9b:0e:6a:d2:ca:56:6f:77:82:41:00:af:b0:6a:58: ef:f6:b4:71:eb:71:f9:4c:fb:04:de:b8:fe:aa:c9:4f:6c:9c: 40:86:72:8e:c7:ee:e4:e7:01:a4:9e:2d:0d:06:41:8a:74:99: 7e:28:74:f5:5d:cb:6a:d4:ca:84:7d:e1:a5:e3:ff:ee:ef:27: bd:04:2c:82:6d:5c:fb:ba:17:b7:fe:b8:d4:37:c3:30:10:45: 0c:43:37:a7:09:48:f5:f1:05:ab:c7:60:14:e0:a3:5d:b4:85: 63:c8:6e:21:ac:ae:6d:57:ff:3b:ed:de:39:12:4e:2e:3b:e9: 85:7a:38:84:45:88:eb:a4:a8:66:37:3c:bb:56:90:f7:fa:41: 19:3a:9d:a0:86:1b:d3:e4:39:ff:cd:a0:b9:43:b0:c2:b1:b2: 92:a2:ec:09:ab:54:56:9c:93:42:0d:b6:4c:97:a8:3f:2e:c9: 8c:17:63:8d:30:65:6d:73:74:c2:24:8a:9d:2c:94:02:e9:88: c3:5b:d9:eb:45:3e:3a:00:98:c4:00:ed:10:3f:d7:39:11:22: f8:65:57:f6:e2:4f:b0:70:23:3b:8b:63:74:88:19:13:c6:c9: 0f:c8:03:5f:4c:93:ac:c3:f0:76:7e:f1:b1:10:d3:12:51:15: c9:66:fd:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcjhBGaxwmndNtZoZ+vM7Wvr8sHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZFNUZGNTQ3NzBCMjhEQjQ0RkRENjU1NzY1MzY0Nzk3 MDEwNjk3QjAeFw0yNTA1MjcxMTA3MjNaFw0yNjA1MjYxMTEyMjNaMDMxMTAvBgNV BAMTKDMxREM0RThDNzJDMEExRDY2NDJBMjNBN0ZBQTZFNzE5RkQyMjU1M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCAr6oLCwbQqP+aFISCIVOC6TJ 0fc06xNJp+0Mf2ggTliP8ZSEUEfkRO+cakQtjnXw48QP/o2yjBzq5AHuEq9pmPzM 1VUxdw4b4howVEYFMAEUU4tUx2QsORXTKd7Brv9+sTUB6zaqpzQIzYYHwpalIvuZ PTzLpkH5bogvxqkghBbV2A9qxNMxMy/wu5SsYpCYROgYFK33OwPosAgU7B9CuI/v vcElj6Pal9McAqcIXPcKd0bMq8Dfm/Ayp4nE8i+k4R0MP2vOT1xQ7LEqhGuodEHh c/wzCSScHhPzH8dAzs+PvPtq9UuopbPuDCoczClG+L1F81+7xKNyqGh++AGBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMdxOjHLAodZkKiOn+qbnGf0iVT4wHwYDVR0j BBgwFoAUxuX/VHcLKNtE/dZVdlNkeXAQaXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Yjg4YTUxMy1kZWJmLTRkNWMtOTUxYi1kOTc1OWEwOTJkZTcvMC9DNkU1RkY1NDc3 MEIyOERCNDRGREQ2NTU3NjUzNjQ3OTcwMTA2OTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzZFNUZGNTQ3NzBCMjhEQjQ0RkRENjU1NzY1MzY0Nzk3MDEw Njk3Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiODhhNTEzLWRlYmYtNGQ1Yy05 NTFiLWQ5NzU5YTA5MmRlNy8wLzMxMzYzMDJlMzIzMjJlMzMzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWIjANBgkqhkiG 9w0BAQsFAAOCAQEAZ5Bfmw5q0spWb3eCQQCvsGpY7/a0cetx+Uz7BN64/qrJT2yc QIZyjsfu5OcBpJ4tDQZBinSZfih09V3LatTKhH3hpeP/7u8nvQQsgm1c+7oXt/64 1DfDMBBFDEM3pwlI9fEFq8dgFOCjXbSFY8huIayubVf/O+3eORJOLjvphXo4hEWI 66SoZjc8u1aQ9/pBGTqdoIYb0+Q5/82guUOwwrGykqLsCatUVpyTQg22TJeoPy7J jBdjjTBlbXN0wiSKnSyUAumIw1vZ60U+OgCYxADtED/XOREi+GVX9uJPsHAjO4tj dIgZE8bJD8gDX0yTrMPwdn7xsRDTElEVyWb9AA== -----END CERTIFICATE-----Generated at Sat Jun 7 13:46:31 2025 by rpki-client