$ rpki-client -vvf repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33372e302f32342d3234203d3e20313532373933.roa File: 3136302e32322e33372e302f32342d3234203d3e20313532373933.roa (raw, json) Hash identifier: p0Gix7kk0dJdR+0SrzqwZk1UXDcM7trhKt9LXa5iNvk= Subject key identifier: FC:24:37:74:21:79:7E:F7:A0:09:C0:47:7F:38:51:0A:38:83:35:6D Certificate issuer: /CN=A950C0F5B830659E499444729038D5D2047859FB Certificate serial: 356E62E32E493218EA3C0907EE054B886E418EB3 Authority key identifier: A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33372e302f32342d3234203d3e20313532373933.roa Signing time: Tue 13 May 2025 17:00:01 +0000 ROA not before: Tue 13 May 2025 16:55:01 +0000 ROA not after: Tue 12 May 2026 17:00:01 +0000 asID: 152793 IP address blocks: 160.22.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 05:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:6e:62:e3:2e:49:32:18:ea:3c:09:07:ee:05:4b:88:6e:41:8e:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A950C0F5B830659E499444729038D5D2047859FB Validity Not Before: May 13 16:55:01 2025 GMT Not After : May 12 17:00:01 2026 GMT Subject: CN=FC24377421797EF7A009C0477F38510A3883356D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:73:ef:a9:a2:80:ef:f9:8c:88:a7:b5:9b: 90:48:53:22:01:16:1f:ff:b0:ba:f6:9d:24:c0:b1: 19:f2:21:6e:c7:8e:18:3d:de:e8:a6:63:36:d0:42: d9:24:8b:57:26:28:09:56:94:0e:82:8b:5b:1c:05: d9:21:a5:15:0e:b9:40:b3:7b:63:1a:0c:2c:5c:9f: 26:a5:86:84:90:d5:46:b0:68:b6:f6:57:32:3a:6f: 73:67:56:65:ab:bb:2d:57:e1:c4:44:95:b6:95:88: 89:df:11:6e:fe:70:42:00:0f:f8:7d:fb:5b:aa:b0: 2d:53:8b:1d:0e:a4:78:78:a8:d3:e1:16:95:b0:d4: b6:13:85:fb:4e:7d:5b:33:d1:01:a0:af:6d:01:5d: f6:15:6e:75:8d:a7:8d:bd:f1:3a:c8:44:b7:77:b2: 99:15:0c:d4:0e:9a:cd:e4:6c:25:4b:33:35:c5:91: ef:a9:f8:e3:59:f3:ea:28:ee:36:01:09:17:f2:69: e3:ef:d9:42:c8:ac:c5:d2:33:44:7a:04:66:28:74: f9:87:59:03:7c:87:28:9c:b7:2d:4d:c9:bf:b7:1e: 26:b0:38:f4:b6:73:b6:32:43:f0:92:4f:e4:8e:60: 9d:2a:a0:0a:bd:51:18:b6:1c:dd:7d:88:34:49:e5: d7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:24:37:74:21:79:7E:F7:A0:09:C0:47:7F:38:51:0A:38:83:35:6D X509v3 Authority Key Identifier: keyid:A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33372e302f32342d3234203d3e20313532373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.37.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:7c:ce:da:54:84:94:cd:e4:d7:91:9c:94:20:1c:1e:25:97: 81:0a:75:82:35:e6:a5:71:e0:b0:f2:fb:a2:e4:1f:4b:05:9c: 03:6b:8b:b3:21:5d:8d:1c:ad:7a:94:ef:84:12:5f:f8:22:df: fa:02:69:b7:3e:56:66:e5:00:e8:e1:0b:48:60:72:72:28:ce: 6c:57:ad:9e:9f:1a:39:3b:05:5b:09:e2:d7:f4:54:0a:f9:fe: ce:5c:25:a0:8b:8f:48:fc:7c:28:52:61:e9:61:22:6c:b7:a9: 80:f8:0c:84:fd:fe:0f:44:99:35:b8:86:b5:15:73:70:72:d4: cb:24:65:f9:a7:70:bc:84:7d:66:18:3e:d8:c9:b8:57:c7:53: d5:ce:9a:91:d1:a6:da:a0:bd:c6:1d:11:31:7e:59:f8:11:b0: 51:eb:3d:dd:76:53:d1:6e:53:55:20:ef:89:75:1b:93:42:ca: 37:49:7b:42:10:29:ec:bf:cd:65:86:35:e4:ce:13:2d:b4:e4: 78:13:87:dd:a7:88:ca:e2:28:60:ea:d6:e8:93:64:ee:d9:2a: b3:f3:cb:36:92:22:85:be:ce:10:80:8b:08:96:c2:36:d8:14: 71:f0:13:ea:ae:18:a2:08:fd:76:56:ea:80:41:3d:59:90:28: 94:fd:cc:25 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNW5i4y5JMhjqPAkH7gVLiG5BjrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIw NDc4NTlGQjAeFw0yNTA1MTMxNjU1MDFaFw0yNjA1MTIxNzAwMDFaMDMxMTAvBgNV BAMTKEZDMjQzNzc0MjE3OTdFRjdBMDA5QzA0NzdGMzg1MTBBMzg4MzM1NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKcHPvqaKA7/mMiKe1m5BIUyIB Fh//sLr2nSTAsRnyIW7Hjhg93uimYzbQQtkki1cmKAlWlA6Ci1scBdkhpRUOuUCz e2MaDCxcnyalhoSQ1UawaLb2VzI6b3NnVmWruy1X4cRElbaViInfEW7+cEIAD/h9 +1uqsC1Tix0OpHh4qNPhFpWw1LYThftOfVsz0QGgr20BXfYVbnWNp4298TrIRLd3 spkVDNQOms3kbCVLMzXFke+p+ONZ8+oo7jYBCRfyaePv2ULIrMXSM0R6BGYodPmH WQN8hyicty1Nyb+3HiawOPS2c7YyQ/CST+SOYJ0qoAq9URi2HN19iDRJ5df9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/CQ3dCF5fvegCcBHfzhRCjiDNW0wHwYDVR0j BBgwFoAUqVDA9bgwZZ5JlERykDjV0gR4WfswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjU4MmYyYi04NjI1LTRmMzgtYjI2ZS00MmZiZDNjMjFjZjAvMC9BOTUwQzBGNUI4 MzA2NTlFNDk5NDQ0NzI5MDM4RDVEMjA0Nzg1OUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIwNDc4 NTlGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNTgyZjJiLTg2MjUtNGYzOC1i MjZlLTQyZmJkM2MyMWNmMC8wLzMxMzYzMDJlMzIzMjJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWJTANBgkqhkiG 9w0BAQsFAAOCAQEAm3zO2lSElM3k15GclCAcHiWXgQp1gjXmpXHgsPL7ouQfSwWc A2uLsyFdjRytepTvhBJf+CLf+gJptz5WZuUA6OELSGBycijObFetnp8aOTsFWwni 1/RUCvn+zlwloIuPSPx8KFJh6WEibLepgPgMhP3+D0SZNbiGtRVzcHLUyyRl+adw vIR9Zhg+2Mm4V8dT1c6akdGm2qC9xh0RMX5Z+BGwUes93XZT0W5TVSDviXUbk0LK N0l7QhAp7L/NZYY15M4TLbTkeBOH3aeIyuIoYOrW6JNk7tkqs/PLNpIihb7OEICL CJbCNtgUcfAT6q4Yogj9dlbqgEE9WZAolP3MJQ== -----END CERTIFICATE-----Generated at Wed Nov 5 04:57:25 2025 by rpki-client