$ rpki-client -vvf repo-rpki.idnic.net/repo/4d9b3519-3df3-4406-828f-3ebb91d92944/0/3136302e31392e3131302e302f32332d3234203d3e20313532373733.roa File: 3136302e31392e3131302e302f32332d3234203d3e20313532373733.roa (raw, json) Hash identifier: H3T3VBAkYGZBVt4prOPaCEzHSlQDxm09XEH58hbRsm0= Subject key identifier: A4:19:05:1C:93:AC:65:29:3F:6A:9E:59:92:E2:7C:7D:D7:92:67:1A Certificate issuer: /CN=F3C45071697AB68FDEAEBF5820E70DDD1B494B58 Certificate serial: 0FAAD045F5552A2C4166022FB3DC34BB3E932894 Authority key identifier: F3:C4:50:71:69:7A:B6:8F:DE:AE:BF:58:20:E7:0D:DD:1B:49:4B:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F3C45071697AB68FDEAEBF5820E70DDD1B494B58.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d9b3519-3df3-4406-828f-3ebb91d92944/0/3136302e31392e3131302e302f32332d3234203d3e20313532373733.roa Signing time: Fri 01 Aug 2025 04:00:02 +0000 ROA not before: Fri 01 Aug 2025 03:55:02 +0000 ROA not after: Fri 31 Jul 2026 04:00:02 +0000 asID: 152773 IP address blocks: 160.19.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d9b3519-3df3-4406-828f-3ebb91d92944/0/F3C45071697AB68FDEAEBF5820E70DDD1B494B58.crl rsync://repo-rpki.idnic.net/repo/4d9b3519-3df3-4406-828f-3ebb91d92944/0/F3C45071697AB68FDEAEBF5820E70DDD1B494B58.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F3C45071697AB68FDEAEBF5820E70DDD1B494B58.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 08:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:aa:d0:45:f5:55:2a:2c:41:66:02:2f:b3:dc:34:bb:3e:93:28:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3C45071697AB68FDEAEBF5820E70DDD1B494B58 Validity Not Before: Aug 1 03:55:02 2025 GMT Not After : Jul 31 04:00:02 2026 GMT Subject: CN=A419051C93AC65293F6A9E5992E27C7DD792671A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ea:4f:43:1b:0b:56:6f:94:5c:30:23:15:56: 2a:b9:e5:20:10:c8:63:d4:18:cd:16:db:06:9f:48: b1:05:7f:f4:27:24:3c:84:49:6b:16:12:a3:5c:83: c5:48:85:3c:d3:e5:cc:f7:76:93:ee:c1:c6:90:f0: 45:bf:d4:b1:30:c1:91:a1:00:e4:44:e3:ff:33:3d: 3a:48:d2:d8:3c:26:83:17:8a:00:79:6d:41:3d:13: f6:08:7d:cc:e8:a8:bd:91:01:6e:8a:16:b7:02:41: 30:52:c1:fb:0b:d0:4e:57:cd:5d:fd:d8:15:a8:fe: cb:c5:ab:61:d0:8b:d2:2f:38:99:ca:9e:2f:11:b8: c6:ad:7b:68:ef:0a:63:10:e7:b0:b6:28:b7:a7:00: 3e:e0:c2:39:56:ca:2e:72:a1:15:f1:52:dc:3d:65: 85:80:35:ad:3c:2d:c2:7d:7f:5a:c7:bc:20:ac:15: 72:c2:3d:ec:4e:6e:7f:cf:1e:68:46:ed:65:c0:0a: f9:6f:42:fe:d8:14:4f:51:3f:10:d0:ae:a1:76:e5: 34:40:96:d3:74:e1:36:2f:b6:03:1e:8e:bc:8a:35: e8:61:fe:38:9c:dd:3d:27:b4:17:f4:f5:cb:59:ff: 8c:53:97:b5:60:0c:84:31:0a:96:ff:cb:7a:da:94: a3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:19:05:1C:93:AC:65:29:3F:6A:9E:59:92:E2:7C:7D:D7:92:67:1A X509v3 Authority Key Identifier: keyid:F3:C4:50:71:69:7A:B6:8F:DE:AE:BF:58:20:E7:0D:DD:1B:49:4B:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d9b3519-3df3-4406-828f-3ebb91d92944/0/F3C45071697AB68FDEAEBF5820E70DDD1B494B58.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F3C45071697AB68FDEAEBF5820E70DDD1B494B58.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d9b3519-3df3-4406-828f-3ebb91d92944/0/3136302e31392e3131302e302f32332d3234203d3e20313532373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.110.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:51:f7:48:74:84:92:d6:1b:4a:fa:f2:53:29:48:c7:66:76: ee:0e:e1:5c:33:f1:65:12:e7:1c:90:c8:90:9e:01:fc:dd:c6: d2:29:be:6c:23:a7:28:c3:1d:23:cd:e9:19:94:34:18:84:62: 19:ec:a6:60:06:2c:4c:74:dc:15:7a:56:c5:88:89:12:50:4c: 85:77:27:8f:4a:b2:26:e4:0d:4e:54:91:ed:d1:25:8a:e9:75: 14:3f:e0:c1:3b:98:55:90:b6:6c:f7:0d:0f:f4:71:97:8b:81: d0:04:0a:66:f1:7b:4a:9f:e0:2d:4f:a6:13:c1:0f:a3:f8:c1: bb:06:a8:fe:9e:19:f1:51:83:2e:2c:2d:64:56:53:c2:f9:6b: cf:9d:ab:f0:29:fe:d9:11:3f:70:bd:54:95:91:d4:f0:9a:54: 27:a8:18:94:8d:af:f6:9c:26:76:3d:e7:a4:df:bf:49:03:02: 72:4a:2a:9b:d5:c1:e3:de:c2:ea:1a:2c:c4:79:90:c8:5c:73: f1:13:af:a3:69:9e:dd:df:8e:9a:86:e9:3d:3c:2c:5c:e0:7e: c4:e6:03:dd:5a:af:df:6c:26:61:74:51:7f:89:9f:c0:81:34: 12:40:37:17:3d:78:06:5c:fb:3b:3b:90:ac:2f:40:a8:1f:c3: 05:89:f5:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD6rQRfVVKixBZgIvs9w0uz6TKJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNDNDUwNzE2OTdBQjY4RkRFQUVCRjU4MjBFNzBEREQx QjQ5NEI1ODAeFw0yNTA4MDEwMzU1MDJaFw0yNjA3MzEwNDAwMDJaMDMxMTAvBgNV BAMTKEE0MTkwNTFDOTNBQzY1MjkzRjZBOUU1OTkyRTI3QzdERDc5MjY3MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj6k9DGwtWb5RcMCMVViq55SAQ yGPUGM0W2wafSLEFf/QnJDyESWsWEqNcg8VIhTzT5cz3dpPuwcaQ8EW/1LEwwZGh AORE4/8zPTpI0tg8JoMXigB5bUE9E/YIfczoqL2RAW6KFrcCQTBSwfsL0E5XzV39 2BWo/svFq2HQi9IvOJnKni8RuMate2jvCmMQ57C2KLenAD7gwjlWyi5yoRXxUtw9 ZYWANa08LcJ9f1rHvCCsFXLCPexObn/PHmhG7WXACvlvQv7YFE9RPxDQrqF25TRA ltN04TYvtgMejryKNehh/jic3T0ntBf09ctZ/4xTl7VgDIQxCpb/y3ralKMrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpBkFHJOsZSk/ap5ZkuJ8fdeSZxowHwYDVR0j BBgwFoAU88RQcWl6to/err9YIOcN3RtJS1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDliMzUxOS0zZGYzLTQ0MDYtODI4Zi0zZWJiOTFkOTI5NDQvMC9GM0M0NTA3MTY5 N0FCNjhGREVBRUJGNTgyMEU3MERERDFCNDk0QjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjNDNDUwNzE2OTdBQjY4RkRFQUVCRjU4MjBFNzBEREQxQjQ5 NEI1OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkOWIzNTE5LTNkZjMtNDQwNi04 MjhmLTNlYmI5MWQ5Mjk0NC8wLzMxMzYzMDJlMzEzOTJlMzEzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBNuMA0GCSqG SIb3DQEBCwUAA4IBAQBaUfdIdISS1htK+vJTKUjHZnbuDuFcM/FlEucckMiQngH8 3cbSKb5sI6cowx0jzekZlDQYhGIZ7KZgBixMdNwVelbFiIkSUEyFdyePSrIm5A1O VJHt0SWK6XUUP+DBO5hVkLZs9w0P9HGXi4HQBApm8XtKn+AtT6YTwQ+j+MG7Bqj+ nhnxUYMuLC1kVlPC+WvPnavwKf7ZET9wvVSVkdTwmlQnqBiUja/2nCZ2Peek379J AwJySiqb1cHj3sLqGizEeZDIXHPxE6+jaZ7d346ahuk9PCxc4H7E5gPdWq/fbCZh dFF/iZ/AgTQSQDcXPXgGXPs7O5CsL0CoH8MFifWv -----END CERTIFICATE-----Generated at Fri Aug 8 00:18:49 2025 by rpki-client