$ rpki-client -vvf repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa File: 3136302e31392e38382e302f32342d3234203d3e20313437303838.roa (raw, json) Hash identifier: +Xk0mxGkc/lCxZDeUptrpwZhCqCSnBV/uCVgeNZ+WpY= Subject key identifier: F2:84:E6:7D:47:2A:EC:95:82:85:3E:8B:D0:DE:FD:96:71:C5:B3:84 Certificate issuer: /CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Certificate serial: 3388C5A1E57360EE6CED27161EEEE0B74308F0C4 Authority key identifier: 95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject info access: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa Signing time: Thu 08 May 2025 08:00:00 +0000 ROA not before: Thu 08 May 2025 07:55:00 +0000 ROA not after: Thu 07 May 2026 08:00:00 +0000 asID: 147088 IP address blocks: 160.19.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 00:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:88:c5:a1:e5:73:60:ee:6c:ed:27:16:1e:ee:e0:b7:43:08:f0:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Validity Not Before: May 8 07:55:00 2025 GMT Not After : May 7 08:00:00 2026 GMT Subject: CN=F284E67D472AEC9582853E8BD0DEFD9671C5B384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:29:d9:ee:57:52:55:27:58:32:4a:8c:f8:d5: 20:d2:88:a1:ac:19:4f:ec:a0:ed:a3:e5:1c:a0:a7: ec:55:43:e0:92:35:79:37:80:62:ef:a3:b5:f8:de: df:d9:e3:ae:c0:f0:6d:fd:84:67:48:b3:68:4d:2a: 70:5c:e9:71:a6:18:a0:26:58:a3:ae:88:38:ee:d6: 81:bb:7b:16:74:1d:43:f7:b3:f1:d6:1e:8a:01:b8: bb:98:e9:24:16:f8:e7:76:b8:b9:dc:b3:51:65:7c: ae:34:ec:91:82:47:78:19:1a:33:5c:2e:6d:aa:b4: af:5b:e7:06:0c:6e:8f:d4:73:1f:84:04:04:30:f5: 72:04:45:76:5e:7c:37:86:a7:66:03:c8:2c:42:91: dd:e9:11:35:f6:95:34:dd:a1:85:f5:ab:3d:6c:a8: 74:27:13:30:e6:11:63:aa:d6:04:b5:d0:54:e1:b7: fc:f3:5b:e9:48:d3:c0:5f:56:e8:8c:43:be:ba:e0: 1b:69:b8:1d:cd:9b:fe:82:e8:dd:03:4c:00:41:10: bb:ed:21:ab:f5:91:ba:5a:e4:8f:28:3c:ad:de:77: c6:19:d9:20:59:45:5a:be:23:79:ea:1e:6f:02:70: 01:d5:c9:ec:5e:dc:14:b0:75:16:65:a6:eb:75:57: 6d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:84:E6:7D:47:2A:EC:95:82:85:3E:8B:D0:DE:FD:96:71:C5:B3:84 X509v3 Authority Key Identifier: keyid:95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.88.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:9a:02:19:8b:9c:5e:f0:40:f4:1b:be:0b:78:03:70:9f:29: 7c:38:02:3c:05:a0:3c:4b:59:76:53:d6:4f:f8:7c:8f:72:4c: ef:b5:32:df:b1:8d:d8:e4:ed:3d:0c:a5:16:83:2e:25:a1:75: d9:5e:67:61:84:3e:f5:f4:5e:16:72:a2:d2:b7:dd:ba:e0:4e: 1b:cd:8f:f9:26:7a:85:3c:6d:f6:c2:f7:94:a9:4b:13:da:30: df:f7:ec:ce:fc:f1:20:13:d5:e8:1b:7a:da:bd:b0:9d:3b:c8: 0e:b7:21:34:bf:e5:7f:e5:0b:8e:76:e2:67:48:07:b7:b9:aa: 4f:d9:12:66:5c:49:1a:45:97:54:a9:6c:ea:e9:19:fe:5e:81: 67:a5:c5:67:4d:a8:77:1f:a8:1f:58:3c:9e:c4:10:c5:9f:59: d3:8f:a4:a4:8c:90:c7:1b:2f:44:6a:84:d8:3e:2f:18:7b:c0: 74:f7:4d:4d:41:30:4c:a9:ed:31:d9:6a:1d:9f:02:26:d6:7e: 7b:29:23:fa:00:f9:76:dc:fb:62:6c:f8:51:6c:ff:43:83:2a: 6f:f6:9d:51:79:48:ae:72:16:2f:d1:e8:be:6b:ff:cb:52:f7: e3:65:9f:80:33:86:75:15:e0:55:0d:e7:1b:25:75:72:cd:fb: ed:69:d7:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM4jFoeVzYO5s7ScWHu7gt0MI8MQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVB MzI4RDY4OTAeFw0yNTA1MDgwNzU1MDBaFw0yNjA1MDcwODAwMDBaMDMxMTAvBgNV BAMTKEYyODRFNjdENDcyQUVDOTU4Mjg1M0U4QkQwREVGRDk2NzFDNUIzODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqKdnuV1JVJ1gySoz41SDSiKGs GU/soO2j5Rygp+xVQ+CSNXk3gGLvo7X43t/Z467A8G39hGdIs2hNKnBc6XGmGKAm WKOuiDju1oG7exZ0HUP3s/HWHooBuLuY6SQW+Od2uLncs1FlfK407JGCR3gZGjNc Lm2qtK9b5wYMbo/Ucx+EBAQw9XIERXZefDeGp2YDyCxCkd3pETX2lTTdoYX1qz1s qHQnEzDmEWOq1gS10FTht/zzW+lI08BfVuiMQ7664BtpuB3Nm/6C6N0DTABBELvt Iav1kbpa5I8oPK3ed8YZ2SBZRVq+I3nqHm8CcAHVyexe3BSwdRZlput1V21FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8oTmfUcq7JWChT6L0N79lnHFs4QwHwYDVR0j BBgwFoAUlfrDilyyzqPl/+JJVianvqMo1okwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NGRhNDE1Yi01ZjE3LTQ2MDItOWJkOS1mZDg0YWMyY2FlODYvMC85NUZBQzM4QTVD QjJDRUEzRTVGRkUyNDk1NjI2QTdCRUEzMjhENjg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVBMzI4 RDY4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg0ZGE0MTViLTVmMTctNDYwMi05 YmQ5LWZkODRhYzJjYWU4Ni8wLzMxMzYzMDJlMzEzOTJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzNzMwMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATWDANBgkqhkiG 9w0BAQsFAAOCAQEAjJoCGYucXvBA9Bu+C3gDcJ8pfDgCPAWgPEtZdlPWT/h8j3JM 77Uy37GN2OTtPQylFoMuJaF12V5nYYQ+9fReFnKi0rfduuBOG82P+SZ6hTxt9sL3 lKlLE9ow3/fszvzxIBPV6Bt62r2wnTvIDrchNL/lf+ULjnbiZ0gHt7mqT9kSZlxJ GkWXVKls6ukZ/l6BZ6XFZ02odx+oH1g8nsQQxZ9Z04+kpIyQxxsvRGqE2D4vGHvA dPdNTUEwTKntMdlqHZ8CJtZ+eykj+gD5dtz7Ymz4UWz/Q4Mqb/adUXlIrnIWL9Ho vmv/y1L342WfgDOGdRXgVQ3nGyV1cs377WnXGA== -----END CERTIFICATE-----Generated at Tue May 13 16:49:38 2025 by rpki-client