$ rpki-client -vvf repo-rpki.idnic.net/repo/69b53420-8c59-49cf-b3b2-f55e9890ddcd/0/3136302e32322e3233342e302f32342d3234203d3e20313533303631.roa File: 3136302e32322e3233342e302f32342d3234203d3e20313533303631.roa (raw, json) Hash identifier: NaC6OjHEbkMsjBRQmR8Tqmru4zPhSmsJN/hiJNkC18Y= Subject key identifier: 28:17:5C:61:3E:91:D7:6D:22:97:94:8D:8E:82:17:FB:14:7F:0F:BD Certificate issuer: /CN=3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A Certificate serial: 31C504058D25712D5B0657DEF8B80F239EEF97C9 Authority key identifier: 3D:DC:C4:CA:43:B4:92:F4:0C:8C:B0:6E:49:93:4E:C5:F8:9B:AB:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69b53420-8c59-49cf-b3b2-f55e9890ddcd/0/3136302e32322e3233342e302f32342d3234203d3e20313533303631.roa Signing time: Tue 24 Jun 2025 06:02:19 +0000 ROA not before: Tue 24 Jun 2025 05:57:19 +0000 ROA not after: Tue 23 Jun 2026 06:02:19 +0000 asID: 153061 IP address blocks: 160.22.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69b53420-8c59-49cf-b3b2-f55e9890ddcd/0/3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A.crl rsync://repo-rpki.idnic.net/repo/69b53420-8c59-49cf-b3b2-f55e9890ddcd/0/3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 19:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c5:04:05:8d:25:71:2d:5b:06:57:de:f8:b8:0f:23:9e:ef:97:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A Validity Not Before: Jun 24 05:57:19 2025 GMT Not After : Jun 23 06:02:19 2026 GMT Subject: CN=28175C613E91D76D2297948D8E8217FB147F0FBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5f:5b:73:71:65:a0:63:32:e6:b1:71:c5:3f: 68:72:d8:0a:f9:3a:b7:ba:e6:b6:10:85:df:9a:26: 6d:f4:88:14:3c:77:fe:b6:7b:40:f1:d3:18:79:c4: 86:bd:e5:c3:85:62:b1:c5:1e:55:53:79:1e:fd:11: 1a:75:34:c3:10:a1:d0:60:bb:04:91:e9:87:85:92: 68:24:6e:1d:35:7b:59:cd:a6:5d:13:e8:ac:8b:5a: af:5b:96:7d:7b:8b:61:60:dd:c1:3d:a5:60:ed:53: b3:8c:08:b9:8e:86:76:a0:e0:ef:ac:08:0b:04:91: e1:5c:9d:8d:45:b9:c0:0e:3e:bc:e9:0d:ae:05:cd: b7:c1:95:97:6e:bb:85:78:0b:e1:14:02:0e:8f:a5: 3d:3f:c3:76:74:f3:f1:2c:12:3e:9c:77:8c:ca:3f: 12:12:24:99:05:e2:4b:ae:8f:c0:59:10:3a:57:fc: 74:e1:04:07:dc:4e:ed:d3:90:26:1e:e0:95:68:94: cc:41:cd:4f:85:4d:42:64:66:13:c6:71:26:14:a9: b0:a0:59:e2:73:45:d7:e6:2f:d9:0b:05:1b:a2:e9: 2e:b0:d0:41:8f:17:4b:db:d0:4a:c4:59:7f:b8:8d: 16:94:22:5a:92:98:12:e9:15:d3:c8:99:90:f3:cb: 4b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:17:5C:61:3E:91:D7:6D:22:97:94:8D:8E:82:17:FB:14:7F:0F:BD X509v3 Authority Key Identifier: keyid:3D:DC:C4:CA:43:B4:92:F4:0C:8C:B0:6E:49:93:4E:C5:F8:9B:AB:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69b53420-8c59-49cf-b3b2-f55e9890ddcd/0/3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3DDCC4CA43B492F40C8CB06E49934EC5F89BAB9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69b53420-8c59-49cf-b3b2-f55e9890ddcd/0/3136302e32322e3233342e302f32342d3234203d3e20313533303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.234.0/24 Signature Algorithm: sha256WithRSAEncryption 18:8e:bc:b3:c5:d4:a3:30:73:dd:82:bd:e8:94:c3:3b:89:ae: f5:3c:4c:ad:db:28:d1:d0:23:0a:cd:c4:17:76:85:90:46:ce: 65:22:f5:e9:49:45:16:dc:d1:cd:14:2a:4e:97:3a:d9:87:ff: 10:c7:8c:88:77:ce:49:c0:9d:09:eb:f6:01:6f:68:f8:48:3a: 01:5d:36:3c:32:14:f6:2f:7d:41:4c:67:87:0a:93:11:d7:41: 38:40:5a:09:70:cd:3a:d9:f6:5e:cf:cc:2b:c1:df:a4:d6:ef: 95:a0:09:d3:d7:2b:3c:c4:fd:7d:90:5c:2a:b1:58:32:e7:58: f0:79:2c:bb:34:17:49:72:c1:21:c6:62:8b:ca:c1:71:c1:a2: 79:2e:b8:03:6c:25:93:7e:76:5d:5b:31:8c:cb:24:8a:65:99: 3d:13:2a:42:6f:57:b1:e4:9f:b0:4f:31:d6:cd:16:2c:48:32: b4:44:ac:d1:10:73:19:06:13:18:21:90:5c:88:16:51:13:6b: 8f:d8:85:70:a0:f0:18:f2:21:11:06:4a:39:a3:99:4d:97:6c: c4:d3:50:7c:13:86:bf:30:27:42:ce:28:88:db:31:2c:81:d8: 4b:14:20:9f:ab:fa:9d:e9:8e:4c:5f:ee:3f:4e:1b:c6:e8:07: f2:65:0d:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMcUEBY0lcS1bBlfe+LgPI57vl8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0REQ0M0Q0E0M0I0OTJGNDBDOENCMDZFNDk5MzRFQzVG ODlCQUI5QTAeFw0yNTA2MjQwNTU3MTlaFw0yNjA2MjMwNjAyMTlaMDMxMTAvBgNV BAMTKDI4MTc1QzYxM0U5MUQ3NkQyMjk3OTQ4RDhFODIxN0ZCMTQ3RjBGQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQX1tzcWWgYzLmsXHFP2hy2Ar5 Ore65rYQhd+aJm30iBQ8d/62e0Dx0xh5xIa95cOFYrHFHlVTeR79ERp1NMMQodBg uwSR6YeFkmgkbh01e1nNpl0T6KyLWq9bln17i2Fg3cE9pWDtU7OMCLmOhnag4O+s CAsEkeFcnY1FucAOPrzpDa4FzbfBlZduu4V4C+EUAg6PpT0/w3Z08/EsEj6cd4zK PxISJJkF4kuuj8BZEDpX/HThBAfcTu3TkCYe4JVolMxBzU+FTUJkZhPGcSYUqbCg WeJzRdfmL9kLBRui6S6w0EGPF0vb0ErEWX+4jRaUIlqSmBLpFdPImZDzy0t7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKBdcYT6R120il5SNjoIX+xR/D70wHwYDVR0j BBgwFoAUPdzEykO0kvQMjLBuSZNOxfibq5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWI1MzQyMC04YzU5LTQ5Y2YtYjNiMi1mNTVlOTg5MGRkY2QvMC8zRERDQzRDQTQz QjQ5MkY0MEM4Q0IwNkU0OTkzNEVDNUY4OUJBQjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvM0REQ0M0Q0E0M0I0OTJGNDBDOENCMDZFNDk5MzRFQzVGODlC QUI5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YjUzNDIwLThjNTktNDljZi1i M2IyLWY1NWU5ODkwZGRjZC8wLzMxMzYzMDJlMzIzMjJlMzIzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbqMA0GCSqG SIb3DQEBCwUAA4IBAQAYjryzxdSjMHPdgr3olMM7ia71PEyt2yjR0CMKzcQXdoWQ Rs5lIvXpSUUW3NHNFCpOlzrZh/8Qx4yId85JwJ0J6/YBb2j4SDoBXTY8MhT2L31B TGeHCpMR10E4QFoJcM062fZez8wrwd+k1u+VoAnT1ys8xP19kFwqsVgy51jweSy7 NBdJcsEhxmKLysFxwaJ5LrgDbCWTfnZdWzGMyySKZZk9EypCb1ex5J+wTzHWzRYs SDK0RKzREHMZBhMYIZBciBZRE2uP2IVwoPAY8iERBko5o5lNl2zE01B8E4a/MCdC ziiI2zEsgdhLFCCfq/qd6Y5MX+4/ThvG6AfyZQ3L -----END CERTIFICATE-----Generated at Mon Jun 30 16:31:05 2025 by rpki-client