$ rpki-client -vvf repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa File: 3136302e32322e33362e302f32342d3234203d3e20313532373933.roa (raw, json) Hash identifier: qpEenk6wx4J1PVfOlTpwDMHCKC14Zk2TeAHNO3MKSc4= Subject key identifier: D6:AD:1E:D1:EE:68:86:24:F1:1C:FB:E4:A2:50:75:F7:B0:BE:B4:76 Certificate issuer: /CN=A950C0F5B830659E499444729038D5D2047859FB Certificate serial: 5338AF2D8B8096E25D9539AB0B28BA7B54CC8F62 Authority key identifier: A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa Signing time: Tue 13 May 2025 17:00:01 +0000 ROA not before: Tue 13 May 2025 16:55:01 +0000 ROA not after: Tue 12 May 2026 17:00:01 +0000 asID: 152793 IP address blocks: 160.22.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:38:af:2d:8b:80:96:e2:5d:95:39:ab:0b:28:ba:7b:54:cc:8f:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A950C0F5B830659E499444729038D5D2047859FB Validity Not Before: May 13 16:55:01 2025 GMT Not After : May 12 17:00:01 2026 GMT Subject: CN=D6AD1ED1EE688624F11CFBE4A25075F7B0BEB476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cf:6b:b3:16:10:9f:d3:b2:f1:f5:48:81:28: 2d:e3:da:55:ca:43:81:d3:db:06:34:06:7a:60:07: 3c:a5:34:0f:18:51:bf:20:18:dd:16:38:a2:56:a2: 18:d1:de:37:07:3f:67:37:04:25:aa:05:83:e0:1c: b4:41:17:f0:cb:3b:fc:ec:de:e1:29:00:00:94:3d: 15:96:de:5b:41:f7:58:03:75:4a:ed:38:28:a7:55: 6a:5c:5b:60:be:f7:4c:13:6e:68:e2:8e:24:eb:55: 54:ae:fe:b1:27:ed:f8:6f:0b:dd:6b:3c:08:28:74: 9d:be:17:a3:74:46:de:f4:4e:31:f6:ec:b0:3e:c9: c2:5a:82:01:e6:b2:28:65:4e:b0:1a:81:58:57:45: 7e:09:87:1d:2f:d2:8c:05:4f:b5:51:93:35:01:08: 5b:79:af:8b:46:b7:7e:c2:08:37:3d:0a:24:c2:20: f3:31:14:03:f7:4e:7e:8d:50:dc:db:5c:65:74:e1: 17:bf:64:7f:64:b9:55:42:49:6b:17:ca:dd:87:dd: 00:c1:54:4c:89:67:51:14:8c:72:bf:e6:d7:21:9d: a8:41:d5:70:4b:f0:5b:b9:ac:74:5a:09:5b:98:df: 44:6a:b1:6a:68:3c:b5:28:da:64:0c:08:07:9e:c7: 12:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AD:1E:D1:EE:68:86:24:F1:1C:FB:E4:A2:50:75:F7:B0:BE:B4:76 X509v3 Authority Key Identifier: keyid:A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.36.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:c8:13:a1:27:13:14:24:8c:31:25:eb:27:03:25:cf:94:c3: 82:39:42:e4:8f:eb:e0:d5:65:3c:d8:b2:e4:8f:c7:9a:d5:cc: d0:f9:f3:d0:ca:f2:93:55:44:52:bc:6f:ce:ef:fe:48:0f:df: 6c:0c:23:72:22:4c:cd:4b:8f:ab:2b:a6:5c:85:34:0c:43:71: 30:e0:f2:ee:0f:29:26:3a:1e:7d:ae:34:fb:d9:9a:af:a5:0d: 92:f9:aa:2a:ef:5e:c6:31:50:0f:36:b8:f4:b6:b2:04:12:7b: f6:ff:63:54:6c:83:f7:33:b5:c3:9d:f2:ff:ed:0f:54:dc:2b: 0f:23:d7:23:ba:e7:f6:bd:91:06:b2:b9:53:00:03:29:5e:85: 64:0a:1f:b3:03:04:ae:ff:51:28:eb:b5:5c:ec:bb:2b:b0:7c: af:d1:e9:49:e5:a5:35:73:0d:77:64:b9:4d:46:f2:cf:5b:c3: ca:ec:79:76:66:94:d9:74:54:21:58:fe:e2:3c:ad:4a:af:f4: e5:b4:f3:30:39:33:1e:ca:7b:09:ac:be:be:6e:da:61:06:4c: ac:95:11:07:d6:9b:52:06:c4:40:0a:7f:39:5a:e1:ae:0c:41: 5d:5d:6c:86:65:f8:d6:14:f1:be:13:b4:8d:d7:af:35:6d:a5: 4e:26:fc:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUzivLYuAluJdlTmrCyi6e1TMj2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIw NDc4NTlGQjAeFw0yNTA1MTMxNjU1MDFaFw0yNjA1MTIxNzAwMDFaMDMxMTAvBgNV BAMTKEQ2QUQxRUQxRUU2ODg2MjRGMTFDRkJFNEEyNTA3NUY3QjBCRUI0NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqz2uzFhCf07Lx9UiBKC3j2lXK Q4HT2wY0BnpgBzylNA8YUb8gGN0WOKJWohjR3jcHP2c3BCWqBYPgHLRBF/DLO/zs 3uEpAACUPRWW3ltB91gDdUrtOCinVWpcW2C+90wTbmjijiTrVVSu/rEn7fhvC91r PAgodJ2+F6N0Rt70TjH27LA+ycJaggHmsihlTrAagVhXRX4Jhx0v0owFT7VRkzUB CFt5r4tGt37CCDc9CiTCIPMxFAP3Tn6NUNzbXGV04Re/ZH9kuVVCSWsXyt2H3QDB VEyJZ1EUjHK/5tchnahB1XBL8Fu5rHRaCVuY30RqsWpoPLUo2mQMCAeexxLFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1q0e0e5ohiTxHPvkolB197C+tHYwHwYDVR0j BBgwFoAUqVDA9bgwZZ5JlERykDjV0gR4WfswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjU4MmYyYi04NjI1LTRmMzgtYjI2ZS00MmZiZDNjMjFjZjAvMC9BOTUwQzBGNUI4 MzA2NTlFNDk5NDQ0NzI5MDM4RDVEMjA0Nzg1OUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIwNDc4 NTlGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNTgyZjJiLTg2MjUtNGYzOC1i MjZlLTQyZmJkM2MyMWNmMC8wLzMxMzYzMDJlMzIzMjJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWJDANBgkqhkiG 9w0BAQsFAAOCAQEAXcgToScTFCSMMSXrJwMlz5TDgjlC5I/r4NVlPNiy5I/HmtXM 0Pnz0Mryk1VEUrxvzu/+SA/fbAwjciJMzUuPqyumXIU0DENxMODy7g8pJjoefa40 +9mar6UNkvmqKu9exjFQDza49LayBBJ79v9jVGyD9zO1w53y/+0PVNwrDyPXI7rn 9r2RBrK5UwADKV6FZAofswMErv9RKOu1XOy7K7B8r9HpSeWlNXMNd2S5TUbyz1vD yux5dmaU2XRUIVj+4jytSq/05bTzMDkzHsp7Cay+vm7aYQZMrJURB9abUgbEQAp/ OVrhrgxBXV1shmX41hTxvhO0jdevNW2lTib8kA== -----END CERTIFICATE-----Generated at Wed Jun 18 05:22:30 2025 by rpki-client