$ rpki-client -vvf repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa File: 3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa (raw, json) Hash identifier: 6ip4+xbbDeofUG+ImQAjGF3LZjxSXQSHBlQ4teR8Qj4= Subject key identifier: CA:8E:8E:C5:07:A1:83:CA:70:0F:C8:40:27:76:CE:F5:C6:44:48:7E Certificate issuer: /CN=9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5 Certificate serial: 4CD7C1390C340432227BE0F3C73CBACAC1755D2B Authority key identifier: 9C:94:8B:B5:F7:C6:53:9D:B5:D4:58:5D:BE:EA:F3:5A:E2:3D:DC:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa Signing time: Thu 05 Jun 2025 19:01:51 +0000 ROA not before: Thu 05 Jun 2025 18:56:51 +0000 ROA not after: Thu 04 Jun 2026 19:01:51 +0000 asID: 152825 IP address blocks: 160.22.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.crl rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 01:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d7:c1:39:0c:34:04:32:22:7b:e0:f3:c7:3c:ba:ca:c1:75:5d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5 Validity Not Before: Jun 5 18:56:51 2025 GMT Not After : Jun 4 19:01:51 2026 GMT Subject: CN=CA8E8EC507A183CA700FC8402776CEF5C644487E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:6b:5f:5e:ce:a2:11:cf:61:b9:36:27:05: d9:d2:a2:b5:10:24:b6:b9:48:08:92:c6:bb:19:be: 02:35:bb:02:19:3e:60:ee:d6:3d:d7:ce:5e:72:29: 7b:06:3b:a5:0c:b4:44:b9:b3:c1:40:ef:b4:64:bf: 82:d3:cc:d7:d7:18:c7:2e:ef:1e:cc:85:58:b2:04: 80:3e:6b:76:f7:c2:09:d2:ee:97:65:df:8d:da:c6: b2:3c:47:25:ab:c0:af:bc:1d:f9:83:9f:b5:9d:e0: c5:fb:fc:a9:7d:dc:5b:04:72:49:49:97:86:14:88: 16:bb:7b:84:8c:18:35:ee:ab:dc:4c:ae:ed:3a:6b: 34:b3:57:c8:9a:0f:07:96:55:aa:a8:37:13:a3:fc: e2:92:8b:3a:b7:bd:e0:a9:8c:22:03:b8:bb:85:1e: 31:38:7b:3f:fa:e7:c6:88:8e:14:c6:c2:91:1e:73: 09:b6:45:80:76:0b:b6:ca:81:85:1b:2b:f2:94:4d: e7:36:f3:02:50:88:75:86:1a:3f:5f:8a:a2:50:38: 25:b0:3c:e6:d3:51:56:02:4e:d9:0b:b9:57:73:14: 69:68:93:8e:71:1d:2a:8f:db:9c:93:ab:f4:51:e3: ea:13:05:de:42:7a:cd:7e:18:66:d0:1c:44:c3:0a: 40:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8E:8E:C5:07:A1:83:CA:70:0F:C8:40:27:76:CE:F5:C6:44:48:7E X509v3 Authority Key Identifier: keyid:9C:94:8B:B5:F7:C6:53:9D:B5:D4:58:5D:BE:EA:F3:5A:E2:3D:DC:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C948BB5F7C6539DB5D4585DBEEAF35AE23DDCA5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/356e42e6-c6cd-4ccd-bda7-5ae9a246044a/0/3136302e32322e3230362e302f32342d3234203d3e20313532383235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.206.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:1c:20:dd:d8:b5:a6:64:42:f2:d3:8d:d5:c5:39:4d:f4:d1: 9b:b0:3f:8b:6f:83:85:4c:25:74:3b:a3:76:95:f1:35:36:8d: ab:3e:d6:3c:2e:e6:83:f7:bd:7d:8f:67:f8:49:32:30:f2:5d: 12:c3:5f:60:71:54:ab:39:68:9b:9c:a8:72:52:bd:be:e7:58: b1:95:f5:5d:2a:5d:7b:7d:58:72:75:33:de:5a:74:05:fa:dc: 6b:74:c0:72:3d:a2:f6:13:2e:92:4f:37:09:e2:2f:ec:b5:10: b0:0a:21:d7:01:bb:cb:c1:fe:d3:3f:4d:39:e9:7a:dc:57:52: a5:b0:f9:b9:fe:87:d5:ac:b9:13:61:39:7e:0f:c4:1f:9f:6e: 8f:39:ae:0c:28:79:18:3c:42:18:7f:c1:54:2c:79:83:c3:fa: 5b:01:d5:43:49:fb:5b:f9:ff:cb:b2:b7:7f:e7:e6:49:1c:ad: bd:2c:b8:27:dd:a1:67:d5:23:5b:e0:0f:de:c2:0b:a3:0f:dd: 2a:03:0e:33:93:df:2d:6f:ea:d5:55:b7:28:84:a8:52:95:86: db:46:dd:5e:1f:94:88:d4:6c:af:b2:63:18:88:8e:fb:a0:c2: e5:04:56:a5:b9:27:79:21:7a:f7:60:5a:2b:12:45:f5:27:81: 06:47:a5:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTNfBOQw0BDIie+Dzxzy6ysF1XSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM5NDhCQjVGN0M2NTM5REI1RDQ1ODVEQkVFQUYzNUFF MjNERENBNTAeFw0yNTA2MDUxODU2NTFaFw0yNjA2MDQxOTAxNTFaMDMxMTAvBgNV BAMTKENBOEU4RUM1MDdBMTgzQ0E3MDBGQzg0MDI3NzZDRUY1QzY0NDQ4N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHa2tfXs6iEc9huTYnBdnSorUQ JLa5SAiSxrsZvgI1uwIZPmDu1j3Xzl5yKXsGO6UMtES5s8FA77Rkv4LTzNfXGMcu 7x7MhViyBIA+a3b3wgnS7pdl343axrI8RyWrwK+8HfmDn7Wd4MX7/Kl93FsEcklJ l4YUiBa7e4SMGDXuq9xMru06azSzV8iaDweWVaqoNxOj/OKSizq3veCpjCIDuLuF HjE4ez/658aIjhTGwpEecwm2RYB2C7bKgYUbK/KUTec28wJQiHWGGj9fiqJQOCWw PObTUVYCTtkLuVdzFGlok45xHSqP25yTq/RR4+oTBd5Ces1+GGbQHETDCkCjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyo6OxQehg8pwD8hAJ3bO9cZESH4wHwYDVR0j BBgwFoAUnJSLtffGU5211FhdvurzWuI93KUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTZlNDJlNi1jNmNkLTRjY2QtYmRhNy01YWU5YTI0NjA0NGEvMC85Qzk0OEJCNUY3 QzY1MzlEQjVENDU4NURCRUVBRjM1QUUyM0REQ0E1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUM5NDhCQjVGN0M2NTM5REI1RDQ1ODVEQkVFQUYzNUFFMjNE RENBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NmU0MmU2LWM2Y2QtNGNjZC1i ZGE3LTVhZTlhMjQ2MDQ0YS8wLzMxMzYzMDJlMzIzMjJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbOMA0GCSqG SIb3DQEBCwUAA4IBAQB8HCDd2LWmZELy043VxTlN9NGbsD+Lb4OFTCV0O6N2lfE1 No2rPtY8LuaD9719j2f4STIw8l0Sw19gcVSrOWibnKhyUr2+51ixlfVdKl17fVhy dTPeWnQF+txrdMByPaL2Ey6STzcJ4i/stRCwCiHXAbvLwf7TP0056XrcV1KlsPm5 /ofVrLkTYTl+D8Qfn26POa4MKHkYPEIYf8FULHmDw/pbAdVDSftb+f/Lsrd/5+ZJ HK29LLgn3aFn1SNb4A/ewgujD90qAw4zk98tb+rVVbcohKhSlYbbRt1eH5SI1Gyv smMYiI77oMLlBFaluSd5IXr3YForEkX1J4EGR6Xs -----END CERTIFICATE-----Generated at Mon Jun 16 13:20:24 2025 by rpki-client