$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa File: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (raw, json) Hash identifier: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI= Subject key identifier: 5E:C6:5C:04:CA:1E:7E:75:4F:A9:21:40:37:04:6C:D7:3F:6A:0A:58 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 6642BDA7354E63AD3162A4D8590CB57420E49257 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa Signing time: Fri 06 Jun 2025 02:00:01 +0000 ROA not before: Fri 06 Jun 2025 01:55:01 +0000 ROA not after: Fri 05 Jun 2026 02:00:01 +0000 asID: 152790 IP address blocks: 160.20.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:42:bd:a7:35:4e:63:ad:31:62:a4:d8:59:0c:b5:74:20:e4:92:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Jun 6 01:55:01 2025 GMT Not After : Jun 5 02:00:01 2026 GMT Subject: CN=5EC65C04CA1E7E754FA9214037046CD73F6A0A58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:2c:d1:55:b5:a6:48:63:f4:6c:e3:0d:72: 8d:3a:ef:c4:d4:3a:17:1f:ff:e3:d8:32:20:98:cb: 7a:8a:85:65:72:26:44:8e:66:75:07:07:2f:e2:7f: 02:56:e8:07:27:77:43:a9:32:17:75:5f:bd:ea:c3: cc:c5:6c:87:44:cf:43:f1:0a:d4:d5:57:11:f5:d2: 27:29:02:05:10:c4:0e:50:7a:56:77:5b:b8:4c:ea: 1d:0c:11:56:92:9e:e7:4a:8d:86:9d:89:7e:f5:80: fc:55:31:38:27:81:c9:fc:8a:e0:f5:3f:2e:04:ef: 9f:89:a7:af:e0:db:8a:9e:90:ef:85:c8:24:e6:2b: 3e:91:53:44:7b:b5:0a:c4:9c:70:9f:de:a1:36:18: 57:da:b3:c0:17:cf:a6:08:c3:cf:d7:99:69:42:a0: 45:b6:30:da:3b:81:db:5b:47:6c:17:29:04:7a:3e: 8e:3a:1a:75:af:1d:69:00:3e:bb:de:8a:3c:b6:e6: 82:f2:2c:51:52:45:cc:8f:8b:d0:3c:2f:f5:fd:fd: 3e:90:eb:b9:3c:2a:cf:b4:56:c8:74:0d:79:8c:fc: b0:e6:92:b6:06:30:f6:0d:3a:8b:0d:1a:07:60:46: 3a:a2:86:d6:24:76:8a:54:fe:78:7b:c4:e8:79:13: 1e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C6:5C:04:CA:1E:7E:75:4F:A9:21:40:37:04:6C:D7:3F:6A:0A:58 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.104.0/23 Signature Algorithm: sha256WithRSAEncryption 31:13:be:6e:12:a6:76:fa:74:c9:9a:80:2a:fa:b2:16:f0:29: 64:3b:9f:ab:79:4b:12:75:1f:92:a1:dd:5b:f9:0d:59:a7:ef: 31:89:bd:f2:c8:72:27:16:b9:70:6d:a1:0a:14:25:07:98:c8: c3:07:05:b5:48:1a:31:f2:15:2c:1d:75:b4:07:58:cb:65:72: 19:d9:e7:c4:89:5e:3c:d9:08:18:c8:71:d9:7c:4a:08:35:fe: 4c:15:fe:9b:28:2e:40:a1:9b:4e:d8:53:fb:00:a7:f5:b8:ca: 9f:50:0f:96:00:c3:23:8c:32:95:09:8e:b9:c4:d3:e9:6a:e1: 9b:99:cf:ea:98:e9:3f:2a:a1:57:c5:d7:2e:89:10:86:fe:52: de:e3:78:42:c5:b6:ea:cf:1b:57:54:a8:09:01:e8:99:ce:16: c2:c6:c2:88:01:ae:4a:8a:3c:5f:1c:bc:df:5d:ef:ca:82:6c: 6a:ef:1a:f7:06:ea:6c:00:ff:68:45:a8:a1:fd:d5:2d:45:30: 43:47:49:cd:c7:51:0f:76:13:65:4f:ee:63:fa:34:ed:b9:3a: 6c:03:79:31:f6:9a:23:f6:4c:6c:27:df:5d:80:4c:55:cc:57: 25:92:7b:e3:36:09:05:c0:b5:bf:ae:bc:a9:c4:0f:02:54:27: f1:dc:0a:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZkK9pzVOY60xYqTYWQy1dCDkklcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA2MDYwMTU1MDFaFw0yNjA2MDUwMjAwMDFaMDMxMTAvBgNV BAMTKDVFQzY1QzA0Q0ExRTdFNzU0RkE5MjE0MDM3MDQ2Q0Q3M0Y2QTBBNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwkizRVbWmSGP0bOMNco0678TU Ohcf/+PYMiCYy3qKhWVyJkSOZnUHBy/ifwJW6Acnd0OpMhd1X73qw8zFbIdEz0Px CtTVVxH10icpAgUQxA5QelZ3W7hM6h0MEVaSnudKjYadiX71gPxVMTgngcn8iuD1 Py4E75+Jp6/g24qekO+FyCTmKz6RU0R7tQrEnHCf3qE2GFfas8AXz6YIw8/XmWlC oEW2MNo7gdtbR2wXKQR6Po46GnWvHWkAPrveijy25oLyLFFSRcyPi9A8L/X9/T6Q 67k8Ks+0Vsh0DXmM/LDmkrYGMPYNOosNGgdgRjqihtYkdopU/nh7xOh5Ex4LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXsZcBMoefnVPqSFANwRs1z9qClgwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYjVmYTRhLWJlYTYtNDY0Zi1i NDA5LTExZDlhMzc2MWE2Yy8wLzMxMzYzMDJlMzIzMDJlMzEzMDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBRoMA0GCSqG SIb3DQEBCwUAA4IBAQAxE75uEqZ2+nTJmoAq+rIW8ClkO5+reUsSdR+Sod1b+Q1Z p+8xib3yyHInFrlwbaEKFCUHmMjDBwW1SBox8hUsHXW0B1jLZXIZ2efEiV482QgY yHHZfEoINf5MFf6bKC5AoZtO2FP7AKf1uMqfUA+WAMMjjDKVCY65xNPpauGbmc/q mOk/KqFXxdcuiRCG/lLe43hCxbbqzxtXVKgJAeiZzhbCxsKIAa5KijxfHLzfXe/K gmxq7xr3BupsAP9oRaih/dUtRTBDR0nNx1EPdhNlT+5j+jTtuTpsA3kx9poj9kxs J99dgExVzFclknvjNgkFwLW/rrypxA8CVCfx3AqF -----END CERTIFICATE-----Generated at Sat Jun 7 04:05:12 2025 by rpki-client