$ rpki-client -vvf repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa File: 3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa (raw, json) Hash identifier: 3zFHdm3a8hen194UbcBYniDHOiNEWgsX3k3vf+2U2C0= Subject key identifier: 53:4E:15:87:2A:FF:15:B6:40:18:2F:1A:6E:29:0E:B1:44:20:AD:CC Certificate issuer: /CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017 Certificate serial: 30F8E846F4287E6A66073FF1FDF2100ADA7DA188 Authority key identifier: 9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa Signing time: Thu 19 Jun 2025 20:00:00 +0000 ROA not before: Thu 19 Jun 2025 19:55:00 +0000 ROA not after: Thu 18 Jun 2026 20:00:00 +0000 asID: 153063 IP address blocks: 160.22.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.crl rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:f8:e8:46:f4:28:7e:6a:66:07:3f:f1:fd:f2:10:0a:da:7d:a1:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017 Validity Not Before: Jun 19 19:55:00 2025 GMT Not After : Jun 18 20:00:00 2026 GMT Subject: CN=534E15872AFF15B640182F1A6E290EB14420ADCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c0:9d:5e:ff:68:83:ce:e1:a5:60:23:4a:db: 8f:22:30:42:2e:f9:cf:a9:e4:1d:be:c7:fd:88:5b: 82:44:11:aa:b6:0c:e7:4e:72:4d:8b:cc:18:7d:d7: 7a:23:18:f0:c4:99:b9:92:3a:69:22:78:a3:ed:19: bb:9c:a5:3c:4b:b2:73:a9:d3:a7:0b:54:21:91:17: 16:8f:d4:6a:da:ce:95:c9:50:64:72:44:f8:02:da: 31:1a:fa:0b:37:72:35:e7:21:1a:2d:6d:42:fc:68: b5:c5:53:6e:58:c2:bd:c1:bd:c3:71:b8:43:57:5b: 12:37:80:c4:bc:5c:f3:d9:ab:46:e9:00:2c:a6:10: f8:51:f1:67:18:3e:d9:f6:c4:62:2d:8d:83:7d:59: 05:e1:df:c6:9b:af:f9:88:23:df:95:b6:ed:7d:82: eb:28:95:27:3e:7b:dd:ac:77:82:ed:14:65:ad:96: fa:d9:59:16:02:29:91:63:88:dc:5e:e0:70:f7:93: 3e:78:62:f8:f2:3f:8b:43:a4:8f:ad:c7:38:60:cc: 71:18:93:5d:b6:0d:be:9c:67:51:53:dd:73:6a:bb: 6a:12:c6:05:ea:dc:8d:08:47:b0:bc:24:fc:af:bb: f3:f5:d6:64:fc:c3:c1:fc:9a:7a:27:42:5b:25:79: f8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:4E:15:87:2A:FF:15:B6:40:18:2F:1A:6E:29:0E:B1:44:20:AD:CC X509v3 Authority Key Identifier: keyid:9F:FC:F0:AD:AE:CD:BD:1C:C5:6C:FE:B6:8D:9D:CA:F9:53:5A:10:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9FFCF0ADAECDBD1CC56CFEB68D9DCAF9535A1017.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232332e302f32342d3234203d3e20313533303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.223.0/24 Signature Algorithm: sha256WithRSAEncryption 57:bb:fb:67:92:35:f8:a3:ba:30:c5:aa:d0:c8:36:31:d4:02: 4c:d3:a8:38:4e:6e:66:16:22:83:17:92:c9:c4:48:f8:b1:6d: 63:b8:e2:8e:8f:34:ba:4e:25:40:75:e9:a6:a8:05:f5:9b:a7: 3c:64:38:59:25:5a:ea:70:a4:a6:b3:ec:05:47:13:30:57:44: b8:6d:51:e3:17:55:ba:e3:47:e3:95:5b:77:a1:6d:5f:50:bc: 71:68:af:57:2e:2c:5b:b0:90:eb:47:7c:05:13:60:73:f9:bf: b4:d0:5e:19:24:64:c1:c2:5e:ab:d6:8c:87:6b:2b:a2:b4:b0: 27:06:73:4a:a0:d2:de:af:ad:35:71:4c:c2:03:0d:23:41:de: 4e:0c:56:79:e8:49:7f:7e:fd:68:23:43:6d:bd:5d:23:d0:4b: 5b:0f:86:7c:83:e0:13:d0:98:99:8b:2c:00:85:92:a5:a9:c2: a9:00:08:34:8d:7e:e7:58:c1:6c:de:c7:18:43:91:dc:31:71: 72:47:77:30:ec:4e:60:1f:95:5f:ae:ee:fe:92:88:20:ad:26: 33:c5:c4:3b:08:0d:f2:e3:f9:3e:0c:bb:22:b8:f2:cd:42:e0: 82:af:75:d7:1c:64:c8:3b:22:d2:f5:b4:25:93:0d:42:7e:f6: 28:35:7c:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMPjoRvQofmpmBz/x/fIQCtp9oYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQ0YwQURBRUNEQkQxQ0M1NkNGRUI2OEQ5RENBRjk1 MzVBMTAxNzAeFw0yNTA2MTkxOTU1MDBaFw0yNjA2MTgyMDAwMDBaMDMxMTAvBgNV BAMTKDUzNEUxNTg3MkFGRjE1QjY0MDE4MkYxQTZFMjkwRUIxNDQyMEFEQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAwJ1e/2iDzuGlYCNK248iMEIu +c+p5B2+x/2IW4JEEaq2DOdOck2LzBh913ojGPDEmbmSOmkieKPtGbucpTxLsnOp 06cLVCGRFxaP1GrazpXJUGRyRPgC2jEa+gs3cjXnIRotbUL8aLXFU25Ywr3BvcNx uENXWxI3gMS8XPPZq0bpACymEPhR8WcYPtn2xGItjYN9WQXh38abr/mII9+Vtu19 gusolSc+e92sd4LtFGWtlvrZWRYCKZFjiNxe4HD3kz54YvjyP4tDpI+txzhgzHEY k122Db6cZ1FT3XNqu2oSxgXq3I0IR7C8JPyvu/P11mT8w8H8mnonQlslefg/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU04Vhyr/FbZAGC8abikOsUQgrcwwHwYDVR0j BBgwFoAUn/zwra7NvRzFbP62jZ3K+VNaEBcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjI5ZTkxMi0zNWM2LTQ4MGYtYjg2OS0yYTBmOGFlZjMwZDIvMC85RkZDRjBBREFF Q0RCRDFDQzU2Q0ZFQjY4RDlEQ0FGOTUzNUExMDE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUZGQ0YwQURBRUNEQkQxQ0M1NkNGRUI2OEQ5RENBRjk1MzVB MTAxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMjllOTEyLTM1YzYtNDgwZi1i ODY5LTJhMGY4YWVmMzBkMi8wLzMxMzYzMDJlMzIzMjJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbfMA0GCSqG SIb3DQEBCwUAA4IBAQBXu/tnkjX4o7owxarQyDYx1AJM06g4Tm5mFiKDF5LJxEj4 sW1juOKOjzS6TiVAdemmqAX1m6c8ZDhZJVrqcKSms+wFRxMwV0S4bVHjF1W640fj lVt3oW1fULxxaK9XLixbsJDrR3wFE2Bz+b+00F4ZJGTBwl6r1oyHayuitLAnBnNK oNLer601cUzCAw0jQd5ODFZ56El/fv1oI0NtvV0j0EtbD4Z8g+AT0JiZiywAhZKl qcKpAAg0jX7nWMFs3scYQ5HcMXFyR3cw7E5gH5Vfru7+koggrSYzxcQ7CA3y4/k+ DLsiuPLNQuCCr3XXHGTIOyLS9bQlkw1CfvYoNXwu -----END CERTIFICATE-----Generated at Mon Jun 30 10:27:04 2025 by rpki-client