$ rpki-client -vvf repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139382e302f32342d3234203d3e20313532383336.roa File: 3136302e32322e3139382e302f32342d3234203d3e20313532383336.roa (raw, json) Hash identifier: T0SEzE9YSldItn38GmkKf92LoaZ2oQZ49jDDO4h9Pog= Subject key identifier: 5B:21:9D:93:D6:D1:F0:13:F2:EF:0B:D9:84:94:93:1B:E6:3D:01:65 Certificate issuer: /CN=A7E6C62C47C02EEA32422E135908EBF230C5B5FA Certificate serial: 1A07994FC9D38134FABE533AA0006431E3B3B933 Authority key identifier: A7:E6:C6:2C:47:C0:2E:EA:32:42:2E:13:59:08:EB:F2:30:C5:B5:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139382e302f32342d3234203d3e20313532383336.roa Signing time: Thu 31 Jul 2025 18:00:01 +0000 ROA not before: Thu 31 Jul 2025 17:55:01 +0000 ROA not after: Thu 30 Jul 2026 18:00:01 +0000 asID: 152836 IP address blocks: 160.22.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.crl rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 20:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:07:99:4f:c9:d3:81:34:fa:be:53:3a:a0:00:64:31:e3:b3:b9:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7E6C62C47C02EEA32422E135908EBF230C5B5FA Validity Not Before: Jul 31 17:55:01 2025 GMT Not After : Jul 30 18:00:01 2026 GMT Subject: CN=5B219D93D6D1F013F2EF0BD98494931BE63D0165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4e:0e:00:51:ab:75:ab:6c:fb:7d:e9:56:df: a1:c9:f2:e3:c5:ec:e3:80:db:61:21:82:dc:02:c0: a4:2c:03:8e:59:ac:76:d5:9c:ad:0f:bc:c5:9e:0a: ee:48:44:bf:1d:53:9e:55:c1:b2:e5:6a:de:3e:26: 1a:31:bd:a3:f2:b9:c8:08:d5:4f:40:91:72:e6:a7: e2:2e:a7:a9:52:29:64:db:ab:53:34:e1:e7:9f:44: fe:f1:a8:a6:95:29:2c:20:2c:7f:94:6f:8e:43:91: 10:1b:14:d6:99:bd:f2:a5:a4:7b:81:7e:b1:fb:42: aa:d9:37:5e:aa:0c:83:c8:19:94:94:b4:98:b5:bf: 3b:5f:bc:04:e2:b6:28:77:0f:a9:21:c2:ea:69:cb: d9:5b:8e:19:8a:99:37:03:18:f9:c6:18:fc:9f:f4: 47:cc:1f:da:4d:92:92:0b:d1:e4:ad:50:ee:37:41: 8a:db:19:9e:73:88:f1:38:19:95:30:50:4e:b3:90: 23:af:a7:93:d7:cf:d0:29:99:36:af:ca:23:89:83: 06:cf:8e:74:93:b6:bd:3b:77:25:45:e0:c2:01:5a: 1d:d4:b5:2c:26:ca:ee:3a:4f:16:2f:b9:62:5c:f9: f3:42:8a:e4:36:f2:42:2f:b4:2d:60:e6:48:51:00: 1f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:21:9D:93:D6:D1:F0:13:F2:EF:0B:D9:84:94:93:1B:E6:3D:01:65 X509v3 Authority Key Identifier: keyid:A7:E6:C6:2C:47:C0:2E:EA:32:42:2E:13:59:08:EB:F2:30:C5:B5:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A7E6C62C47C02EEA32422E135908EBF230C5B5FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9f30e4ae-3e47-4540-823c-53caf2267b36/0/3136302e32322e3139382e302f32342d3234203d3e20313532383336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.198.0/24 Signature Algorithm: sha256WithRSAEncryption 62:26:a4:ff:d4:ec:44:87:7e:6e:58:2e:ed:0a:e8:61:85:20: db:f4:2b:c0:b8:7b:e9:f2:c2:81:a9:60:82:30:01:94:e1:22: bc:7e:b1:9a:10:7e:48:16:d0:5e:48:f6:03:29:02:8b:37:f5: 34:d9:04:8e:52:2a:80:fe:af:67:3b:e6:06:ed:42:56:26:1a: 2d:32:4e:69:5a:38:d4:e0:fe:11:8e:3c:b0:be:8c:ca:d6:48: 85:fb:a3:64:00:4f:b0:24:52:17:b4:c6:e6:f6:23:2b:82:a1: 17:11:6d:5e:17:9c:5e:ff:fd:49:ca:02:7c:5c:26:50:52:4e: d5:10:77:ad:cf:04:c6:01:23:ba:08:ee:13:1b:46:c0:71:9d: 6f:c6:d3:2d:b2:38:0f:35:b1:62:c4:71:f2:b3:46:55:b5:2e: a6:c9:e9:b5:fd:93:dd:b9:a7:d4:c0:da:9f:81:e6:75:86:47: 82:17:df:c7:52:7b:e2:52:1b:b0:34:98:7b:22:ac:cf:92:94: d4:8b:79:84:69:bd:bb:3d:95:87:a8:81:fc:b8:36:6a:ec:c4: 7b:d5:bb:0b:20:89:b4:81:10:d1:7d:8a:aa:49:29:c2:f6:1e: a1:bd:c2:25:af:69:7b:5b:b4:98:f1:60:ad:eb:6d:58:40:f1: 9c:f7:0e:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGgeZT8nTgTT6vlM6oABkMeOzuTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdFNkM2MkM0N0MwMkVFQTMyNDIyRTEzNTkwOEVCRjIz MEM1QjVGQTAeFw0yNTA3MzExNzU1MDFaFw0yNjA3MzAxODAwMDFaMDMxMTAvBgNV BAMTKDVCMjE5RDkzRDZEMUYwMTNGMkVGMEJEOTg0OTQ5MzFCRTYzRDAxNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuTg4AUat1q2z7felW36HJ8uPF 7OOA22EhgtwCwKQsA45ZrHbVnK0PvMWeCu5IRL8dU55VwbLlat4+JhoxvaPyucgI 1U9AkXLmp+Iup6lSKWTbq1M04eefRP7xqKaVKSwgLH+Ub45DkRAbFNaZvfKlpHuB frH7QqrZN16qDIPIGZSUtJi1vztfvATitih3D6khwuppy9lbjhmKmTcDGPnGGPyf 9EfMH9pNkpIL0eStUO43QYrbGZ5ziPE4GZUwUE6zkCOvp5PXz9ApmTavyiOJgwbP jnSTtr07dyVF4MIBWh3UtSwmyu46TxYvuWJc+fNCiuQ28kIvtC1g5khRAB8NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWyGdk9bR8BPy7wvZhJSTG+Y9AWUwHwYDVR0j BBgwFoAUp+bGLEfALuoyQi4TWQjr8jDFtfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZjMwZTRhZS0zZTQ3LTQ1NDAtODIzYy01M2NhZjIyNjdiMzYvMC9BN0U2QzYyQzQ3 QzAyRUVBMzI0MjJFMTM1OTA4RUJGMjMwQzVCNUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTdFNkM2MkM0N0MwMkVFQTMyNDIyRTEzNTkwOEVCRjIzMEM1 QjVGQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmMzBlNGFlLTNlNDctNDU0MC04 MjNjLTUzY2FmMjI2N2IzNi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbGMA0GCSqG SIb3DQEBCwUAA4IBAQBiJqT/1OxEh35uWC7tCuhhhSDb9CvAuHvp8sKBqWCCMAGU 4SK8frGaEH5IFtBeSPYDKQKLN/U02QSOUiqA/q9nO+YG7UJWJhotMk5pWjjU4P4R jjywvozK1kiF+6NkAE+wJFIXtMbm9iMrgqEXEW1eF5xe//1JygJ8XCZQUk7VEHet zwTGASO6CO4TG0bAcZ1vxtMtsjgPNbFixHHys0ZVtS6myem1/ZPduafUwNqfgeZ1 hkeCF9/HUnviUhuwNJh7IqzPkpTUi3mEab27PZWHqIH8uDZq7MR71bsLIIm0gRDR fYqqSSnC9h6hvcIlr2l7W7SY8WCt621YQPGc9w6M -----END CERTIFICATE-----Generated at Thu Aug 7 13:02:31 2025 by rpki-client