$ rpki-client -vvf repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31322e302f32342d3234203d3e20313532373935.roa File: 3136302e32322e31322e302f32342d3234203d3e20313532373935.roa (raw, json) Hash identifier: kSF1VyQJjpek8Mf3gy+lWICO98IQh62K2L543jgKTUA= Subject key identifier: A4:AC:A5:06:FC:3A:AB:B7:FD:B6:73:24:C9:3B:E6:45:F8:58:E5:47 Certificate issuer: /CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Certificate serial: 389B45F5EE80ADABBC1263E60DE9132E7274F637 Authority key identifier: 58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31322e302f32342d3234203d3e20313532373935.roa Signing time: Fri 25 Jul 2025 06:00:00 +0000 ROA not before: Fri 25 Jul 2025 05:55:00 +0000 ROA not after: Fri 24 Jul 2026 06:00:00 +0000 asID: 152795 IP address blocks: 160.22.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9b:45:f5:ee:80:ad:ab:bc:12:63:e6:0d:e9:13:2e:72:74:f6:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Validity Not Before: Jul 25 05:55:00 2025 GMT Not After : Jul 24 06:00:00 2026 GMT Subject: CN=A4ACA506FC3AABB7FDB67324C93BE645F858E547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:68:30:6f:e5:9c:1d:0d:f3:bf:80:24:f3:60: ed:ba:d8:34:36:fb:6d:e8:8c:bb:ed:2d:f2:0b:f5: 2b:29:10:df:23:ce:b4:32:f2:23:5b:d3:1c:b7:0a: 27:4f:34:2d:d6:1a:0d:51:ec:b1:a1:6a:1d:5c:38: 06:99:3a:e2:c8:03:b0:df:29:c4:7f:14:6f:fe:e5: 76:89:bb:6f:42:f7:cd:7d:1c:33:ad:bb:de:13:cd: d1:75:50:1d:2d:a7:39:e8:84:63:f4:fe:07:7f:c8: 35:3f:47:ba:42:c2:a0:b0:f5:1b:05:99:b0:0b:70: f0:25:4e:78:20:37:a0:28:54:47:71:ed:ac:00:9a: a0:74:55:f4:4a:c2:88:34:81:a1:e8:5a:19:e3:d1: 8b:e2:c5:48:61:8b:01:fd:57:23:22:b8:91:52:2a: 1c:c1:db:5f:2b:8c:4f:a6:3a:83:76:5e:8b:91:df: d2:5c:6a:bc:e9:35:89:41:5a:2a:bf:85:7a:cc:76: b1:ec:96:da:53:a1:9a:92:ba:e4:d9:e6:0c:a0:54: 10:8b:46:c4:84:f5:d8:a8:46:ef:14:ab:87:f4:a8: b9:1e:cf:fe:2c:86:02:01:96:1f:a4:1d:99:3b:a8: 69:f5:f6:f2:4a:32:46:81:83:9b:0d:d6:df:d7:f5: be:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AC:A5:06:FC:3A:AB:B7:FD:B6:73:24:C9:3B:E6:45:F8:58:E5:47 X509v3 Authority Key Identifier: keyid:58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31322e302f32342d3234203d3e20313532373935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.12.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:5b:87:5c:88:1e:de:90:83:1e:e5:92:4f:82:be:ab:48:70: 55:ea:99:15:da:14:94:6f:15:d6:34:43:66:a3:77:cc:1a:7a: 60:f3:46:80:b4:aa:78:0f:7d:e4:08:62:fc:85:38:81:96:c8: af:5a:e1:98:6e:3e:71:83:d0:3f:e9:0c:0c:a7:85:35:8c:0c: ea:93:30:21:15:dd:af:05:98:43:16:94:b9:63:97:6b:00:72: 03:d1:e4:e2:7d:0a:da:27:e2:28:52:f4:7e:ae:da:d2:71:0e: 1c:29:d3:df:02:f5:b5:9d:26:ae:b9:c0:32:63:58:10:06:b5: 64:f1:bf:fa:31:61:9f:e5:cb:91:02:13:b7:1c:8e:97:51:a7: d1:80:0c:c1:a5:31:f8:94:23:f8:b7:56:0e:e9:1b:88:e4:ea: a8:df:ea:ad:b6:bb:1e:dd:77:75:be:61:17:a2:ea:4f:39:6a: 9e:fa:95:54:5e:64:92:cf:00:5a:de:90:37:de:a8:a0:41:26: 78:87:57:81:6a:11:a4:40:e0:dc:a5:e2:ab:97:2e:c0:5f:21: 50:c8:57:ad:f3:b0:0c:ce:01:12:7f:51:2c:68:35:1e:8d:82: 20:30:48:b1:22:af:3c:7e:ff:7d:34:45:0a:3c:25:eb:da:5b: bb:87:ed:b4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOJtF9e6Arau8EmPmDekTLnJ09jcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdF MEU0RDA2OTAeFw0yNTA3MjUwNTU1MDBaFw0yNjA3MjQwNjAwMDBaMDMxMTAvBgNV BAMTKEE0QUNBNTA2RkMzQUFCQjdGREI2NzMyNEM5M0JFNjQ1Rjg1OEU1NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSaDBv5ZwdDfO/gCTzYO262DQ2 +23ojLvtLfIL9SspEN8jzrQy8iNb0xy3CidPNC3WGg1R7LGhah1cOAaZOuLIA7Df KcR/FG/+5XaJu29C9819HDOtu94TzdF1UB0tpznohGP0/gd/yDU/R7pCwqCw9RsF mbALcPAlTnggN6AoVEdx7awAmqB0VfRKwog0gaHoWhnj0YvixUhhiwH9VyMiuJFS KhzB218rjE+mOoN2XouR39JcarzpNYlBWiq/hXrMdrHsltpToZqSuuTZ5gygVBCL RsSE9dioRu8Uq4f0qLkez/4shgIBlh+kHZk7qGn19vJKMkaBg5sN1t/X9b5dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpKylBvw6q7f9tnMkyTvmRfhY5UcwHwYDVR0j BBgwFoAUWI3Q/OS8JDzJxtaK4E6EZ+Dk0GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTk5ZTU0MS0xODYxLTRkNmEtOGUyOC1iMDI4NDU4NjE0OTYvMC81ODhERDBGQ0U0 QkMyNDNDQzlDNkQ2OEFFMDRFODQ2N0UwRTREMDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdFMEU0 RDA2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxOTllNTQxLTE4NjEtNGQ2YS04 ZTI4LWIwMjg0NTg2MTQ5Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWDDANBgkqhkiG 9w0BAQsFAAOCAQEAa1uHXIge3pCDHuWST4K+q0hwVeqZFdoUlG8V1jRDZqN3zBp6 YPNGgLSqeA995Ahi/IU4gZbIr1rhmG4+cYPQP+kMDKeFNYwM6pMwIRXdrwWYQxaU uWOXawByA9Hk4n0K2ifiKFL0fq7a0nEOHCnT3wL1tZ0mrrnAMmNYEAa1ZPG/+jFh n+XLkQITtxyOl1Gn0YAMwaUx+JQj+LdWDukbiOTqqN/qrba7Ht13db5hF6LqTzlq nvqVVF5kks8AWt6QN96ooEEmeIdXgWoRpEDg3KXiq5cuwF8hUMhXrfOwDM4BEn9R LGg1Ho2CIDBIsSKvPH7/fTRFCjwl69pbu4fttA== -----END CERTIFICATE-----Generated at Sun Aug 24 08:47:50 2025 by rpki-client