$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa File: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (raw, json) Hash identifier: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw= Subject key identifier: 70:47:FB:C8:CD:18:16:C6:60:0C:BB:B6:8D:30:E0:A1:54:D2:57:65 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 18D7681CD227E58F564642C26855508C455D4FF1 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa Signing time: Sat 17 May 2025 09:02:26 +0000 ROA not before: Sat 17 May 2025 08:57:26 +0000 ROA not after: Sat 16 May 2026 09:02:26 +0000 asID: 152767 IP address blocks: 160.20.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d7:68:1c:d2:27:e5:8f:56:46:42:c2:68:55:50:8c:45:5d:4f:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: May 17 08:57:26 2025 GMT Not After : May 16 09:02:26 2026 GMT Subject: CN=7047FBC8CD1816C6600CBBB68D30E0A154D25765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2a:82:60:7d:f4:d1:aa:b4:ee:56:fd:5f:51: 9b:be:08:fa:28:0b:6e:e4:2e:b6:37:33:4d:89:0a: 9d:e3:d2:e6:3b:6d:f1:23:4a:20:6d:85:8d:95:86: 38:cc:c9:2c:96:24:b3:f1:b5:c2:39:5b:ad:6b:ba: 3f:30:d0:5d:f9:b1:85:92:f2:60:21:57:3e:51:6f: c6:53:7a:4a:9c:88:db:31:3d:e3:03:91:6b:53:ab: 23:0d:a1:e1:bc:fe:7e:e3:d5:c3:9d:b0:eb:98:2c: 74:b0:59:fa:8e:9c:1d:c1:3c:cb:3b:a7:46:4a:78: eb:a0:02:17:56:7e:cb:d4:ee:a7:a2:62:1a:fa:6a: 29:33:1f:72:22:b4:90:8e:9e:fd:70:09:d0:7a:8a: 5a:a7:d1:47:84:6d:96:64:a6:60:cf:12:6e:48:6c: 70:e5:8a:e6:db:0d:b4:82:30:90:81:9f:71:9f:cf: 60:8e:d0:4c:64:31:b3:eb:dd:3f:53:66:ae:e9:4f: 8c:b1:e6:ab:3c:89:cc:9e:76:13:df:fc:68:ee:d4: b3:b4:ee:0b:60:7a:19:d4:14:5d:d5:be:66:ee:7b: fd:30:4a:e2:c6:ff:77:40:ad:44:bd:4d:5c:ce:4a: 5c:6b:c2:47:ba:7a:df:5f:19:d2:4c:95:df:b8:42: 62:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:47:FB:C8:CD:18:16:C6:60:0C:BB:B6:8D:30:E0:A1:54:D2:57:65 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.38.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:b2:60:64:cb:ae:2c:6b:51:46:00:57:32:d4:32:92:56:57: 93:db:a5:3e:0b:0a:24:60:38:43:82:c8:ae:58:0d:2f:ed:1c: c4:5a:5e:cc:ca:a8:e3:4d:36:0d:9d:ee:1e:03:0b:62:44:18: e4:1b:00:1c:71:8d:25:0d:fd:cb:30:20:b2:a1:8a:f8:58:7f: 21:40:da:a1:f1:6d:2b:0e:1c:1c:22:9a:2e:1b:43:8a:95:c2: 98:ae:89:0f:12:8a:87:6d:15:47:ec:1a:6f:3f:62:c6:fe:0c: 74:55:17:ac:e7:48:20:a5:42:dc:fd:3d:e9:dd:0c:32:9f:a5: 49:34:1c:92:e4:9b:dc:f8:2a:65:c2:f3:a9:3b:83:5a:1e:43: 98:a6:ee:b3:39:0c:85:47:b2:84:82:0d:c3:30:ff:8d:c7:9f: 62:d3:41:ca:cb:e9:eb:11:b9:7f:62:fc:20:65:aa:cf:51:f2: b5:46:a8:8d:c5:af:39:74:51:20:a4:56:a5:a2:10:23:76:34: 52:ba:c7:c3:15:b8:2e:82:cd:8b:cb:91:93:36:33:28:87:86: 70:1c:38:5a:43:de:c4:8f:b5:3f:b2:a5:da:14:4e:b9:03:bb: 0a:f0:34:24:24:2a:12:59:3a:fd:2d:69:70:2c:d1:71:fa:fb: 46:5f:89:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGNdoHNIn5Y9WRkLCaFVQjEVdT/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTA1MTcwODU3MjZaFw0yNjA1MTYwOTAyMjZaMDMxMTAvBgNV BAMTKDcwNDdGQkM4Q0QxODE2QzY2MDBDQkJCNjhEMzBFMEExNTREMjU3NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUKoJgffTRqrTuVv1fUZu+CPoo C27kLrY3M02JCp3j0uY7bfEjSiBthY2VhjjMySyWJLPxtcI5W61ruj8w0F35sYWS 8mAhVz5Rb8ZTekqciNsxPeMDkWtTqyMNoeG8/n7j1cOdsOuYLHSwWfqOnB3BPMs7 p0ZKeOugAhdWfsvU7qeiYhr6aikzH3IitJCOnv1wCdB6ilqn0UeEbZZkpmDPEm5I bHDliubbDbSCMJCBn3Gfz2CO0ExkMbPr3T9TZq7pT4yx5qs8icyedhPf/Gju1LO0 7gtgehnUFF3Vvmbue/0wSuLG/3dArUS9TVzOSlxrwke6et9fGdJMld+4QmJZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcEf7yM0YFsZgDLu2jTDgoVTSV2UwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZTdkYWNjLTJiNDUtNDE0MS05 Nzc1LWYxYmI5ZjA1MjM5Ni8wLzMxMzYzMDJlMzIzMDJlMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAUJjANBgkqhkiG 9w0BAQsFAAOCAQEAfLJgZMuuLGtRRgBXMtQyklZXk9ulPgsKJGA4Q4LIrlgNL+0c xFpezMqo4002DZ3uHgMLYkQY5BsAHHGNJQ39yzAgsqGK+Fh/IUDaofFtKw4cHCKa LhtDipXCmK6JDxKKh20VR+wabz9ixv4MdFUXrOdIIKVC3P096d0MMp+lSTQckuSb 3PgqZcLzqTuDWh5DmKbuszkMhUeyhIINwzD/jcefYtNBysvp6xG5f2L8IGWqz1Hy tUaojcWvOXRRIKRWpaIQI3Y0UrrHwxW4LoLNi8uRkzYzKIeGcBw4WkPexI+1P7Kl 2hROuQO7CvA0JCQqElk6/S1pcCzRcfr7Rl+JDA== -----END CERTIFICATE-----Generated at Fri Jun 6 19:42:18 2025 by rpki-client