$ rpki-client -vvf repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/3136302e32302e37362e302f32332d3234203d3e20313532383133.roa File: 3136302e32302e37362e302f32332d3234203d3e20313532383133.roa (raw, json) Hash identifier: 2gWgTQ4Z+tGyRrEoZsoKq4rQS9QUc5mKoFU6ARsUw8Y= Subject key identifier: EC:10:E1:FB:FB:44:D1:C3:CC:96:55:1E:6A:E6:87:08:D3:A0:F7:B2 Certificate issuer: /CN=8137472FE4C7D48501352601D84D624E0EC41C19 Certificate serial: 170054EDDAF6CF8815D8FA7F0A3FCF7C4FE5333C Authority key identifier: 81:37:47:2F:E4:C7:D4:85:01:35:26:01:D8:4D:62:4E:0E:C4:1C:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8137472FE4C7D48501352601D84D624E0EC41C19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/3136302e32302e37362e302f32332d3234203d3e20313532383133.roa Signing time: Wed 13 Aug 2025 07:00:01 +0000 ROA not before: Wed 13 Aug 2025 06:55:01 +0000 ROA not after: Wed 12 Aug 2026 07:00:01 +0000 asID: 152813 IP address blocks: 160.20.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/8137472FE4C7D48501352601D84D624E0EC41C19.crl rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/8137472FE4C7D48501352601D84D624E0EC41C19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8137472FE4C7D48501352601D84D624E0EC41C19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 00:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:00:54:ed:da:f6:cf:88:15:d8:fa:7f:0a:3f:cf:7c:4f:e5:33:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8137472FE4C7D48501352601D84D624E0EC41C19 Validity Not Before: Aug 13 06:55:01 2025 GMT Not After : Aug 12 07:00:01 2026 GMT Subject: CN=EC10E1FBFB44D1C3CC96551E6AE68708D3A0F7B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:26:74:ee:e1:91:9b:b9:15:22:90:16:f5:b8: 14:29:ac:ff:5f:3e:e4:1c:2c:8e:f3:fe:b1:5c:eb: c4:d6:41:d7:14:77:dd:b6:68:61:4f:e0:ae:c4:a1: c0:1c:31:97:53:1f:70:f1:56:c4:7d:51:00:ab:2f: d4:e8:2c:19:39:0c:3e:be:15:c9:e1:03:a0:50:f5: 47:eb:10:84:55:81:34:e8:78:51:d0:34:88:8e:35: 78:6a:df:56:a7:8f:be:e0:33:13:a8:63:be:16:5d: 07:a3:9a:66:08:71:d8:bc:df:34:bd:bc:39:f8:ba: 14:72:07:04:a4:e6:97:8a:75:44:04:f0:d4:fc:22: 79:d9:ad:62:9c:ee:aa:e2:61:29:3d:91:cf:d1:73: 11:5c:c3:c1:dc:05:c2:9b:07:06:ee:04:26:97:de: 90:dc:f3:77:50:5e:19:a6:7a:91:2e:30:a7:16:27: 02:d4:5a:42:94:08:91:89:af:ab:77:db:34:81:17: 2f:b7:b6:f8:8f:ab:14:b0:63:fe:de:75:b0:aa:6a: ee:7f:ef:af:58:c2:ef:22:26:6e:e8:aa:08:b6:ba: 40:32:20:c3:15:05:4e:b4:16:54:5e:8d:11:f2:4b: af:4b:0c:2d:03:79:32:18:4d:2d:f4:13:4c:60:2b: e2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:10:E1:FB:FB:44:D1:C3:CC:96:55:1E:6A:E6:87:08:D3:A0:F7:B2 X509v3 Authority Key Identifier: keyid:81:37:47:2F:E4:C7:D4:85:01:35:26:01:D8:4D:62:4E:0E:C4:1C:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/8137472FE4C7D48501352601D84D624E0EC41C19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8137472FE4C7D48501352601D84D624E0EC41C19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81c09c9e-fe8a-4989-b5bb-ae419338f873/0/3136302e32302e37362e302f32332d3234203d3e20313532383133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.76.0/23 Signature Algorithm: sha256WithRSAEncryption af:d3:e1:97:b7:0e:1b:de:8b:d1:f9:50:db:20:4b:46:5e:5b: 8f:13:cd:45:ce:4d:59:4e:f8:bb:9a:38:c6:d6:8b:06:ec:6d: b7:a9:5b:06:0a:37:32:4a:80:a8:e2:c8:9b:a1:e9:45:3a:9b: c6:c0:61:c1:ba:71:a7:33:54:62:22:55:96:8e:c8:9e:23:05: 67:f1:ef:c9:92:fb:b6:a9:2b:32:79:7e:43:fe:75:68:15:e5: c1:3a:ef:e5:6e:79:ef:36:17:d6:b4:a6:1e:d5:8d:99:38:56: f4:93:42:3e:c5:75:e3:ef:34:56:ad:68:8b:cc:62:54:3c:30: 78:62:12:25:ab:65:96:7d:83:f9:0d:76:c6:eb:58:7d:28:87: bd:47:d3:9f:e1:96:9f:9f:64:9e:4d:79:be:4a:34:b3:1d:bd: b0:4f:c3:70:5d:77:37:1c:08:d0:cb:bc:bb:4f:74:8b:72:68: c3:7a:af:9e:ee:6f:41:ac:b2:9e:5b:1d:f5:46:3b:13:b8:cc: 6c:cf:18:15:6c:4b:8d:78:c2:16:1d:ae:8d:6c:b4:e9:10:de: 0d:f9:be:0f:bc:c1:2c:2e:e9:4d:9f:36:4b:eb:14:82:cb:1a: 3e:ad:b8:d8:35:56:bc:ce:12:32:69:39:24:cb:9b:c3:68:00: b5:cc:53:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFwBU7dr2z4gV2Pp/Cj/PfE/lMzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODEzNzQ3MkZFNEM3RDQ4NTAxMzUyNjAxRDg0RDYyNEUw RUM0MUMxOTAeFw0yNTA4MTMwNjU1MDFaFw0yNjA4MTIwNzAwMDFaMDMxMTAvBgNV BAMTKEVDMTBFMUZCRkI0NEQxQzNDQzk2NTUxRTZBRTY4NzA4RDNBMEY3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKJnTu4ZGbuRUikBb1uBQprP9f PuQcLI7z/rFc68TWQdcUd922aGFP4K7EocAcMZdTH3DxVsR9UQCrL9ToLBk5DD6+ FcnhA6BQ9UfrEIRVgTToeFHQNIiONXhq31anj77gMxOoY74WXQejmmYIcdi83zS9 vDn4uhRyBwSk5peKdUQE8NT8InnZrWKc7qriYSk9kc/RcxFcw8HcBcKbBwbuBCaX 3pDc83dQXhmmepEuMKcWJwLUWkKUCJGJr6t32zSBFy+3tviPqxSwY/7edbCqau5/ 769Ywu8iJm7oqgi2ukAyIMMVBU60FlRejRHyS69LDC0DeTIYTS30E0xgK+LFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7BDh+/tE0cPMllUeauaHCNOg97IwHwYDVR0j BBgwFoAUgTdHL+TH1IUBNSYB2E1iTg7EHBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWMwOWM5ZS1mZThhLTQ5ODktYjViYi1hZTQxOTMzOGY4NzMvMC84MTM3NDcyRkU0 QzdENDg1MDEzNTI2MDFEODRENjI0RTBFQzQxQzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODEzNzQ3MkZFNEM3RDQ4NTAxMzUyNjAxRDg0RDYyNEUwRUM0 MUMxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYzA5YzllLWZlOGEtNDk4OS1i NWJiLWFlNDE5MzM4Zjg3My8wLzMxMzYzMDJlMzIzMDJlMzczNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAUTDANBgkqhkiG 9w0BAQsFAAOCAQEAr9Phl7cOG96L0flQ2yBLRl5bjxPNRc5NWU74u5o4xtaLBuxt t6lbBgo3MkqAqOLIm6HpRTqbxsBhwbpxpzNUYiJVlo7IniMFZ/HvyZL7tqkrMnl+ Q/51aBXlwTrv5W557zYX1rSmHtWNmThW9JNCPsV14+80Vq1oi8xiVDwweGISJatl ln2D+Q12xutYfSiHvUfTn+GWn59knk15vko0sx29sE/DcF13NxwI0Mu8u090i3Jo w3qvnu5vQayynlsd9UY7E7jMbM8YFWxLjXjCFh2ujWy06RDeDfm+D7zBLC7pTZ82 S+sUgssaPq242DVWvM4SMmk5JMubw2gAtcxTYQ== -----END CERTIFICATE-----Generated at Sun Aug 24 08:11:12 2025 by rpki-client