$ rpki-client -vvf repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa File: 3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa (raw, json) Hash identifier: 7f+WSF/qv05Nwf5ZCt2H4vcaZP85zFvyDk/p5y08ilY= Subject key identifier: 80:45:09:6A:33:32:27:45:0C:49:E4:9D:27:AB:AE:F1:55:89:F9:C4 Certificate issuer: /CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Certificate serial: 3DE3EB747CECA18A3D64B4FE092754AD7C6A63AA Authority key identifier: 9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa Signing time: Mon 28 Jul 2025 12:00:02 +0000 ROA not before: Mon 28 Jul 2025 11:55:02 +0000 ROA not after: Mon 27 Jul 2026 12:00:02 +0000 asID: 152830 IP address blocks: 160.22.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 16:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e3:eb:74:7c:ec:a1:8a:3d:64:b4:fe:09:27:54:ad:7c:6a:63:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Validity Not Before: Jul 28 11:55:02 2025 GMT Not After : Jul 27 12:00:02 2026 GMT Subject: CN=8045096A333227450C49E49D27ABAEF15589F9C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2a:33:fb:29:f5:44:f2:b6:b3:3c:5a:0d:9e: c6:b9:f2:9c:d6:29:50:b7:0d:5b:5f:f2:10:57:92: 06:97:7a:f4:bb:14:3e:48:bb:7d:12:16:e3:3b:df: 01:c3:ac:0d:bf:eb:52:87:98:99:bb:2c:45:3b:1e: 62:8b:b3:1a:13:c6:c7:bc:b0:e2:80:a7:6c:01:35: 7e:89:a7:6c:44:db:31:c5:89:8d:4c:de:83:d7:83: 1e:89:6c:4c:8d:44:06:95:72:6e:35:b4:81:f4:c0: 7a:58:63:4e:b6:c7:13:d2:a6:f7:a1:8b:0a:7d:04: d0:21:de:3b:04:5f:49:51:33:e3:b4:ee:13:2b:c0: 7b:df:1a:46:a5:79:65:24:0e:f4:57:1d:d7:b5:ac: d8:ca:a7:9d:fb:20:1c:65:7a:1d:52:6c:63:42:3d: 89:7b:20:3c:32:d0:eb:ab:95:7b:50:30:c7:15:e1: 7b:8d:11:7e:61:63:d4:f1:a2:e2:b5:83:0e:01:87: e2:1c:ae:71:79:8b:72:04:14:6f:bd:9a:2d:99:d7: ca:12:4b:c9:24:c0:aa:fb:2a:9c:33:05:bd:66:8d: 0b:ad:2b:88:21:1f:d7:f3:5f:84:c4:bc:60:df:46: 07:0a:ee:d3:4e:43:82:4d:c9:1a:31:03:f9:a7:66: 0f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:45:09:6A:33:32:27:45:0C:49:E4:9D:27:AB:AE:F1:55:89:F9:C4 X509v3 Authority Key Identifier: keyid:9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32332d3233203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.192.0/23 Signature Algorithm: sha256WithRSAEncryption 07:18:a1:cc:15:da:10:c1:2d:44:e6:b2:28:4c:25:1f:ba:3c: f9:96:27:76:05:05:a4:32:4f:e8:3d:a2:e7:3e:8c:2d:ee:d3: 28:6a:a4:a7:12:25:a5:c7:55:d5:11:25:f2:bb:88:de:c1:4c: 7d:21:90:66:2a:b4:5a:02:aa:67:72:a3:36:95:36:33:2d:07: 9f:04:49:16:7e:8c:10:38:33:7d:97:9f:76:fe:84:f3:b9:c8: e1:f9:95:fb:95:94:87:fe:e5:a9:e2:08:34:4d:a1:4e:cf:14: 69:f7:0e:be:ba:df:d1:52:f8:d9:f6:bf:b5:23:4e:63:3e:39: 68:a8:f3:b1:03:e3:07:3a:5c:80:58:c1:84:92:14:58:7c:6b: 1a:48:d5:d5:85:e6:1a:55:83:2f:74:77:3e:9c:01:95:58:d7: 9c:4a:5d:62:0e:63:58:5a:76:97:47:b6:e0:55:b0:ff:b1:91: 50:59:0c:6f:6a:e2:e1:1d:d2:10:6c:dc:18:91:6a:c1:9d:61: db:ec:17:61:68:6b:b6:b7:12:9a:68:3e:6d:4a:bc:41:d0:f9: 69:bc:ca:d2:09:ea:03:58:97:af:ec:33:9f:14:55:a0:e4:4b: c2:f2:02:1b:19:0e:2b:d4:ca:fc:ff:57:d3:8f:08:ad:ba:5e: 74:2a:22:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPePrdHzsoYo9ZLT+CSdUrXxqY6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhD MDBGQzZGNTAeFw0yNTA3MjgxMTU1MDJaFw0yNjA3MjcxMjAwMDJaMDMxMTAvBgNV BAMTKDgwNDUwOTZBMzMzMjI3NDUwQzQ5RTQ5RDI3QUJBRUYxNTU4OUY5QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/KjP7KfVE8razPFoNnsa58pzW KVC3DVtf8hBXkgaXevS7FD5Iu30SFuM73wHDrA2/61KHmJm7LEU7HmKLsxoTxse8 sOKAp2wBNX6Jp2xE2zHFiY1M3oPXgx6JbEyNRAaVcm41tIH0wHpYY062xxPSpveh iwp9BNAh3jsEX0lRM+O07hMrwHvfGkaleWUkDvRXHde1rNjKp537IBxleh1SbGNC PYl7IDwy0OurlXtQMMcV4XuNEX5hY9TxouK1gw4Bh+IcrnF5i3IEFG+9mi2Z18oS S8kkwKr7KpwzBb1mjQutK4ghH9fzX4TEvGDfRgcK7tNOQ4JNyRoxA/mnZg/NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgEUJajMyJ0UMSeSdJ6uu8VWJ+cQwHwYDVR0j BBgwFoAUn+7MRHYaE+omyjaFCLtqSMAPxvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMC85RkVFQ0M0NDc2 MUExM0VBMjZDQTM2ODUwOEJCNkE0OEMwMEZDNkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhDMDBG QzZGNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbAMA0GCSqG SIb3DQEBCwUAA4IBAQAHGKHMFdoQwS1E5rIoTCUfujz5lid2BQWkMk/oPaLnPowt 7tMoaqSnEiWlx1XVESXyu4jewUx9IZBmKrRaAqpncqM2lTYzLQefBEkWfowQODN9 l592/oTzucjh+ZX7lZSH/uWp4gg0TaFOzxRp9w6+ut/RUvjZ9r+1I05jPjloqPOx A+MHOlyAWMGEkhRYfGsaSNXVheYaVYMvdHc+nAGVWNecSl1iDmNYWnaXR7bgVbD/ sZFQWQxvauLhHdIQbNwYkWrBnWHb7BdhaGu2txKaaD5tSrxB0PlpvMrSCeoDWJev 7DOfFFWg5EvC8gIbGQ4r1Mr8/1fTjwitul50KiIC -----END CERTIFICATE-----Generated at Mon Aug 11 04:06:39 2025 by rpki-client