$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa File: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (raw, json) Hash identifier: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE= Subject key identifier: 59:28:96:7E:DE:14:05:95:B5:30:07:32:8B:FE:E2:96:39:B4:4A:85 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 11CC2D7A3AAB9C5CB2C07DC732F04CC344D01FCB Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa Signing time: Sat 17 May 2025 09:02:27 +0000 ROA not before: Sat 17 May 2025 08:57:27 +0000 ROA not after: Sat 16 May 2026 09:02:27 +0000 asID: 152767 IP address blocks: 160.20.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:cc:2d:7a:3a:ab:9c:5c:b2:c0:7d:c7:32:f0:4c:c3:44:d0:1f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: May 17 08:57:27 2025 GMT Not After : May 16 09:02:27 2026 GMT Subject: CN=5928967EDE140595B53007328BFEE29639B44A85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5b:d0:f2:19:c7:d3:43:43:04:b3:f5:37:49: ad:da:ee:78:b6:a5:82:8e:7b:7a:eb:f4:6d:ca:21: 2f:8f:97:36:f7:ed:15:f8:98:e0:4f:3e:3f:40:c6: 9b:8f:a8:5a:13:6f:0d:f1:f4:d7:c7:ef:d3:e0:e3: 0f:1d:54:38:73:6d:ce:9a:bf:59:c2:3a:6e:94:9a: d6:9d:c7:0c:bd:bb:c1:da:3a:b3:aa:56:d0:8a:1d: 10:fb:ef:18:65:98:26:c0:38:06:50:f8:5f:11:a4: 70:57:ce:8e:17:92:d3:4c:b5:07:01:49:e8:1e:31: 9a:b2:0e:44:04:84:c1:5b:86:68:df:06:52:c9:f7: 85:55:88:e6:a7:cd:6b:4a:b3:8f:c4:2c:89:b3:22: 19:5d:dc:3c:ef:81:99:ca:36:63:c2:92:ff:a0:07: 03:d1:31:86:e2:34:71:74:d9:1a:98:7d:d0:1f:1f: ed:77:92:fd:4f:0a:3c:c9:ee:a1:92:ea:09:68:76: 4f:e7:fa:92:22:39:60:71:8e:0e:67:2a:3b:f4:de: 83:d9:db:1a:33:48:18:0a:d5:4e:95:47:7b:29:dc: ce:9c:dc:7d:b3:37:a1:9d:3e:d8:43:10:ff:e7:f1: d4:6f:36:b9:a7:60:31:b4:06:6c:fc:ff:ae:dc:8e: 1a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:28:96:7E:DE:14:05:95:B5:30:07:32:8B:FE:E2:96:39:B4:4A:85 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.39.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:91:72:20:a8:3d:85:cd:8a:c0:eb:8c:a5:92:34:24:fa:83: 58:a1:ca:f6:e6:e6:10:a4:db:b5:13:90:77:68:02:8e:80:80: a5:5a:dd:0f:7b:c9:d0:7d:a1:92:68:32:79:32:b4:92:52:25: 0a:3e:4b:7b:ec:da:be:f2:0d:e7:d7:eb:87:3b:bc:e3:06:91: f6:c8:f1:cf:1d:b6:3f:a2:ae:2a:66:0f:5a:81:85:41:80:0e: d9:94:1e:28:66:32:f4:af:d5:5b:54:96:9d:21:53:c0:e1:f3: d1:ba:73:ab:6d:7a:ad:b2:2a:92:0b:36:b5:a4:06:bd:af:90: a7:1f:6d:3d:38:7f:ad:06:86:c1:9e:53:0c:72:b1:df:8d:0b: f8:da:05:22:fe:ee:e4:3c:f0:f2:d8:5a:35:38:89:d0:e7:bd: 90:6b:aa:dd:6e:66:16:68:34:dc:fa:f3:a5:2c:be:15:0f:bd: b8:8e:70:cb:c0:80:ed:f4:ca:8e:73:b0:38:37:cb:de:38:48: 55:e3:68:a0:9f:ee:1d:bb:9b:d7:36:4f:ea:83:86:7d:19:82: bc:b0:35:37:67:f1:a9:de:e9:9a:00:75:80:ba:99:30:a0:37: 71:f9:b7:e1:86:e6:66:b3:73:3d:f7:12:bc:a1:75:08:f6:2a: 07:2f:46:6e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEcwtejqrnFyywH3HMvBMw0TQH8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTA1MTcwODU3MjdaFw0yNjA1MTYwOTAyMjdaMDMxMTAvBgNV BAMTKDU5Mjg5NjdFREUxNDA1OTVCNTMwMDczMjhCRkVFMjk2MzlCNDRBODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDW9DyGcfTQ0MEs/U3Sa3a7ni2 pYKOe3rr9G3KIS+Plzb37RX4mOBPPj9AxpuPqFoTbw3x9NfH79Pg4w8dVDhzbc6a v1nCOm6Umtadxwy9u8HaOrOqVtCKHRD77xhlmCbAOAZQ+F8RpHBXzo4XktNMtQcB SegeMZqyDkQEhMFbhmjfBlLJ94VViOanzWtKs4/ELImzIhld3DzvgZnKNmPCkv+g BwPRMYbiNHF02RqYfdAfH+13kv1PCjzJ7qGS6glodk/n+pIiOWBxjg5nKjv03oPZ 2xozSBgK1U6VR3sp3M6c3H2zN6GdPthDEP/n8dRvNrmnYDG0Bmz8/67cjhpzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWSiWft4UBZW1MAcyi/7iljm0SoUwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZTdkYWNjLTJiNDUtNDE0MS05 Nzc1LWYxYmI5ZjA1MjM5Ni8wLzMxMzYzMDJlMzIzMDJlMzMzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAUJzANBgkqhkiG 9w0BAQsFAAOCAQEAPZFyIKg9hc2KwOuMpZI0JPqDWKHK9ubmEKTbtROQd2gCjoCA pVrdD3vJ0H2hkmgyeTK0klIlCj5Le+zavvIN59frhzu84waR9sjxzx22P6KuKmYP WoGFQYAO2ZQeKGYy9K/VW1SWnSFTwOHz0bpzq216rbIqkgs2taQGva+Qpx9tPTh/ rQaGwZ5TDHKx340L+NoFIv7u5Dzw8thaNTiJ0Oe9kGuq3W5mFmg03PrzpSy+FQ+9 uI5wy8CA7fTKjnOwODfL3jhIVeNooJ/uHbub1zZP6oOGfRmCvLA1N2fxqd7pmgB1 gLqZMKA3cfm34YbmZrNzPfcSvKF1CPYqBy9Gbg== -----END CERTIFICATE-----Generated at Fri Jun 6 19:41:51 2025 by rpki-client