$ rpki-client -vvf repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa File: 3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: 8dognkJ+3KqI8Zy3SbY9osu6X0L9/9P5xv+FtLtMt+4= Subject key identifier: BE:71:F2:C1:77:F0:FC:62:B8:58:26:53:10:FC:06:7A:6F:3C:04:81 Certificate issuer: /CN=0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612 Certificate serial: 32829C3F198C232198F6002D6A8056C5A5FB29BC Authority key identifier: 0A:1B:FC:E6:76:1D:8B:7F:B2:09:F7:CF:9E:D1:B3:DA:F0:60:36:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa Signing time: Tue 17 Jun 2025 03:16:40 +0000 ROA not before: Tue 17 Jun 2025 03:11:40 +0000 ROA not after: Tue 16 Jun 2026 03:16:40 +0000 asID: 137316 IP address blocks: 160.22.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.crl rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:82:9c:3f:19:8c:23:21:98:f6:00:2d:6a:80:56:c5:a5:fb:29:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612 Validity Not Before: Jun 17 03:11:40 2025 GMT Not After : Jun 16 03:16:40 2026 GMT Subject: CN=BE71F2C177F0FC62B858265310FC067A6F3C0481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:62:cd:66:22:2f:54:b8:1c:c8:bc:06:ec:be: 26:b4:67:23:f9:bb:06:e2:43:7d:23:17:35:fc:6f: ec:ee:46:72:13:45:2f:20:d5:27:5f:7c:b0:fb:45: ab:f8:e2:34:73:28:68:28:c6:29:18:17:94:a3:80: 3a:af:89:c1:e6:13:a6:a9:97:76:9c:2e:a6:02:6b: 3a:be:61:0a:ba:8e:61:7a:f6:9c:0d:e8:77:11:34: 0e:2a:57:53:94:c6:c1:0b:7b:91:b4:81:ca:25:29: 9b:c6:7d:ec:d7:82:e6:4b:d5:49:6c:7d:e9:e3:d8: 2f:73:37:50:45:f9:4f:61:7b:fc:d5:47:59:41:ee: 86:06:07:b6:23:bd:e9:1c:40:53:ff:b3:69:22:2c: 4f:10:13:41:a0:16:05:2b:df:d6:ed:2d:89:08:b8: b9:a8:52:57:ee:d5:d2:f0:7a:ad:b1:eb:ed:8f:eb: 73:05:ce:e1:99:ae:4e:54:68:fe:c0:60:2d:1d:26: 94:32:e5:0f:ed:ac:5f:fd:82:ff:e1:eb:53:f1:a4: 72:9c:3b:05:02:2b:3b:74:2f:95:e3:bc:86:04:a4: c6:3f:a4:2c:00:34:0d:98:d1:74:40:e9:20:1e:a5: 7a:e5:65:6d:c5:05:a3:ae:6b:9b:dc:f4:9b:c5:8c: 86:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:71:F2:C1:77:F0:FC:62:B8:58:26:53:10:FC:06:7A:6F:3C:04:81 X509v3 Authority Key Identifier: keyid:0A:1B:FC:E6:76:1D:8B:7F:B2:09:F7:CF:9E:D1:B3:DA:F0:60:36:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0A1BFCE6761D8B7FB209F7CF9ED1B3DAF0603612.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.205.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:a9:4d:4d:b7:77:c7:7d:92:cc:95:84:7f:73:b8:85:59:01: b7:e6:b4:0f:de:b9:e6:c2:2d:b9:aa:49:df:5c:9f:d8:6d:8b: 37:95:16:56:2f:a8:10:4d:e3:39:da:57:e0:df:f4:67:6a:58: 48:8e:42:73:a7:5b:9e:47:51:a1:be:1e:ca:53:90:19:6e:2d: d3:09:9e:3c:56:38:8c:21:d7:6d:43:5f:18:96:f8:07:f5:19: 2f:eb:38:a2:5e:80:de:fd:43:ef:3c:5f:45:6c:d8:2b:0e:1d: 06:02:d4:ed:2c:c5:7b:49:d0:0d:d7:1f:8a:ad:ad:0d:c9:3d: 34:1d:76:4e:dd:34:f0:6c:7a:b0:b9:cf:f8:2f:57:66:05:d2: 6a:5d:56:9c:b2:fa:f2:21:ae:76:b1:32:c4:29:21:dd:8b:f5: 9f:15:ac:a0:3a:04:62:10:17:29:3d:06:d4:90:90:67:ed:e0: 08:2b:30:65:61:38:59:8e:8a:24:09:0d:c0:dc:ef:8e:2b:31: 11:9e:a2:f0:8a:74:d4:ee:93:dc:22:ed:db:85:81:9e:c0:70: 63:1f:b9:8f:36:53:0c:a8:2d:6b:44:77:f9:22:fd:14:ca:77: 20:fb:6c:ef:b9:c2:af:05:7f:fd:eb:33:c7:20:7e:dc:78:29: ad:72:d4:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMoKcPxmMIyGY9gAtaoBWxaX7KbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEExQkZDRTY3NjFEOEI3RkIyMDlGN0NGOUVEMUIzREFG MDYwMzYxMjAeFw0yNTA2MTcwMzExNDBaFw0yNjA2MTYwMzE2NDBaMDMxMTAvBgNV BAMTKEJFNzFGMkMxNzdGMEZDNjJCODU4MjY1MzEwRkMwNjdBNkYzQzA0ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkYs1mIi9UuBzIvAbsvia0ZyP5 uwbiQ30jFzX8b+zuRnITRS8g1SdffLD7Rav44jRzKGgoxikYF5SjgDqvicHmE6ap l3acLqYCazq+YQq6jmF69pwN6HcRNA4qV1OUxsELe5G0gcolKZvGfezXguZL1Uls fenj2C9zN1BF+U9he/zVR1lB7oYGB7YjvekcQFP/s2kiLE8QE0GgFgUr39btLYkI uLmoUlfu1dLweq2x6+2P63MFzuGZrk5UaP7AYC0dJpQy5Q/trF/9gv/h61PxpHKc OwUCKzt0L5XjvIYEpMY/pCwANA2Y0XRA6SAepXrlZW3FBaOua5vc9JvFjIYRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvnHywXfw/GK4WCZTEPwGem88BIEwHwYDVR0j BBgwFoAUChv85nYdi3+yCffPntGz2vBgNhIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YzFiNGMzOC03NzQ3LTQ1ZmMtYTU5MC1jYWM1MjE2M2Q1MzgvMC8wQTFCRkNFNjc2 MUQ4QjdGQjIwOUY3Q0Y5RUQxQjNEQUYwNjAzNjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEExQkZDRTY3NjFEOEI3RkIyMDlGN0NGOUVEMUIzREFGMDYw MzYxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljMWI0YzM4LTc3NDctNDVmYy1h NTkwLWNhYzUyMTYzZDUzOC8wLzMxMzYzMDJlMzIzMjJlMzIzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbNMA0GCSqG SIb3DQEBCwUAA4IBAQAfqU1Nt3fHfZLMlYR/c7iFWQG35rQP3rnmwi25qknfXJ/Y bYs3lRZWL6gQTeM52lfg3/RnalhIjkJzp1ueR1Ghvh7KU5AZbi3TCZ48VjiMIddt Q18YlvgH9Rkv6ziiXoDe/UPvPF9FbNgrDh0GAtTtLMV7SdAN1x+Kra0NyT00HXZO 3TTwbHqwuc/4L1dmBdJqXVacsvryIa52sTLEKSHdi/WfFaygOgRiEBcpPQbUkJBn 7eAIKzBlYThZjookCQ3A3O+OKzERnqLwinTU7pPcIu3bhYGewHBjH7mPNlMMqC1r RHf5Iv0Uyncg+2zvucKvBX/96zPHIH7ceCmtctRU -----END CERTIFICATE-----Generated at Wed Jun 18 07:23:57 2025 by rpki-client