$ rpki-client -vvf repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa File: 3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa (raw, json) Hash identifier: EXKyIgdBdrm+oqB+8w3BPQbiAqGZ9xP3DtOQeOsYD5U= Subject key identifier: 41:49:CA:43:4A:84:50:FD:DA:FE:D8:D1:D9:50:76:68:F1:E2:30:C2 Certificate issuer: /CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Certificate serial: 5A9E028E94311FF75D537357D810FD860FE872FF Authority key identifier: 9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa Signing time: Mon 28 Jul 2025 12:00:01 +0000 ROA not before: Mon 28 Jul 2025 11:55:01 +0000 ROA not after: Mon 27 Jul 2026 12:00:01 +0000 asID: 152830 IP address blocks: 160.22.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 16:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:9e:02:8e:94:31:1f:f7:5d:53:73:57:d8:10:fd:86:0f:e8:72:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEECC44761A13EA26CA368508BB6A48C00FC6F5 Validity Not Before: Jul 28 11:55:01 2025 GMT Not After : Jul 27 12:00:01 2026 GMT Subject: CN=4149CA434A8450FDDAFED8D1D9507668F1E230C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b5:a4:ba:6f:84:b9:c2:00:f8:6c:70:ec:4c: 06:b6:7f:f2:54:27:3b:b9:3f:2a:7a:3a:57:52:da: 6c:06:af:80:91:08:93:a0:cd:97:66:90:39:1e:1c: 15:28:62:af:56:d7:5a:63:38:40:b7:63:3e:5d:61: 5f:db:6d:ad:2a:df:f6:3f:27:20:c7:70:2f:2f:03: b6:be:6f:2e:8d:8b:ce:5b:27:54:28:bd:b4:b5:8a: b4:18:c1:9d:b0:c8:0a:f3:ab:94:93:e2:21:06:fc: b3:a5:8e:21:3b:19:ea:59:ce:80:90:35:89:3f:0b: 81:0c:7e:3b:7d:28:78:bb:37:00:b8:9f:80:fd:41: a1:1d:e1:90:a5:a4:1c:74:d1:e3:97:50:fa:3f:69: ab:3c:05:81:b4:c7:43:a3:e8:8e:90:71:0b:04:8a: 92:f3:6b:b2:1a:49:7d:e0:c4:9d:75:f4:a9:33:94: b7:e6:6d:66:3f:28:a4:0c:cd:66:83:78:96:6e:0c: 2d:ab:7e:74:86:9a:2a:29:34:59:e9:40:e8:12:4a: b3:65:47:45:73:88:03:db:33:aa:38:cc:d5:b1:27: 41:c3:cb:d3:62:a1:66:6e:37:63:2a:2b:4c:c7:1a: f2:29:1a:06:5d:29:ae:90:72:8e:fc:45:c0:ea:4d: 6c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:49:CA:43:4A:84:50:FD:DA:FE:D8:D1:D9:50:76:68:F1:E2:30:C2 X509v3 Authority Key Identifier: keyid:9F:EE:CC:44:76:1A:13:EA:26:CA:36:85:08:BB:6A:48:C0:0F:C6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FEECC44761A13EA26CA368508BB6A48C00FC6F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.192.0/24 Signature Algorithm: sha256WithRSAEncryption 42:07:90:c0:64:a8:ac:37:0d:23:02:ff:e1:a7:b3:24:71:a1: 08:29:d8:0d:b9:e4:ea:60:2d:0c:e2:00:87:36:ee:e7:b7:3c: 99:67:88:3f:f6:c4:df:2a:b4:28:51:ea:83:c0:ec:dd:32:a1: bf:53:2e:06:d9:54:17:0f:af:30:71:a1:f8:02:b8:0c:62:9c: 75:11:1c:e8:52:a8:4b:93:7e:dc:24:46:86:93:10:8e:e0:7c: c0:08:6e:21:c3:29:a4:cf:67:3f:56:ae:1e:f8:09:a1:7d:32: 90:5a:23:81:13:ae:d9:98:f7:ab:87:bc:24:0d:f3:9f:05:df: 9b:1e:8c:11:d4:0e:52:8c:ab:88:ea:bc:a6:e6:99:d6:50:87: 1a:2a:82:af:64:6c:f7:a6:8a:17:6c:64:9f:6e:a9:c8:5b:3e: 3f:84:66:aa:4e:e5:97:34:c8:3f:cf:d1:5b:61:96:a9:fe:e3: 3c:85:92:13:32:81:ce:c8:d5:e4:34:34:b1:a1:4b:bd:f3:6d: 03:87:fc:d8:0f:44:ea:96:e6:97:82:bb:cc:ae:a6:68:5f:3c: 63:61:91:bd:f8:19:46:97:d9:0b:ff:14:c2:4f:71:e2:99:c1: b5:e5:ee:f9:c2:60:62:fb:6a:0b:1a:ba:90:78:61:c0:27:5c: 09:b6:9b:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWp4CjpQxH/ddU3NX2BD9hg/ocv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhD MDBGQzZGNTAeFw0yNTA3MjgxMTU1MDFaFw0yNjA3MjcxMjAwMDFaMDMxMTAvBgNV BAMTKDQxNDlDQTQzNEE4NDUwRkREQUZFRDhEMUQ5NTA3NjY4RjFFMjMwQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXtaS6b4S5wgD4bHDsTAa2f/JU Jzu5Pyp6OldS2mwGr4CRCJOgzZdmkDkeHBUoYq9W11pjOEC3Yz5dYV/bba0q3/Y/ JyDHcC8vA7a+by6Ni85bJ1QovbS1irQYwZ2wyArzq5ST4iEG/LOljiE7GepZzoCQ NYk/C4EMfjt9KHi7NwC4n4D9QaEd4ZClpBx00eOXUPo/aas8BYG0x0Oj6I6QcQsE ipLza7IaSX3gxJ119KkzlLfmbWY/KKQMzWaDeJZuDC2rfnSGmiopNFnpQOgSSrNl R0VziAPbM6o4zNWxJ0HDy9NioWZuN2MqK0zHGvIpGgZdKa6Qco78RcDqTWyLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQUnKQ0qEUP3a/tjR2VB2aPHiMMIwHwYDVR0j BBgwFoAUn+7MRHYaE+omyjaFCLtqSMAPxvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMC85RkVFQ0M0NDc2 MUExM0VBMjZDQTM2ODUwOEJCNkE0OEMwMEZDNkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZFRUNDNDQ3NjFBMTNFQTI2Q0EzNjg1MDhCQjZBNDhDMDBG QzZGNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbAMA0GCSqG SIb3DQEBCwUAA4IBAQBCB5DAZKisNw0jAv/hp7MkcaEIKdgNueTqYC0M4gCHNu7n tzyZZ4g/9sTfKrQoUeqDwOzdMqG/Uy4G2VQXD68wcaH4ArgMYpx1ERzoUqhLk37c JEaGkxCO4HzACG4hwymkz2c/Vq4e+AmhfTKQWiOBE67ZmPerh7wkDfOfBd+bHowR 1A5SjKuI6rym5pnWUIcaKoKvZGz3pooXbGSfbqnIWz4/hGaqTuWXNMg/z9FbYZap /uM8hZITMoHOyNXkNDSxoUu9820Dh/zYD0TqluaXgrvMrqZoXzxjYZG9+BlGl9kL /xTCT3HimcG15e75wmBi+2oLGrqQeGHAJ1wJtpt4 -----END CERTIFICATE-----Generated at Mon Aug 11 04:06:19 2025 by rpki-client