$ rpki-client -vvf repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa File: 3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa (raw, json) Hash identifier: 5RUEcjZWV4Zm8Cu7Ldj94h1BNUsKLWrbbvXJVqSNnAU= Subject key identifier: 32:81:D8:27:1E:99:DC:33:52:91:A3:E7:E7:9E:1D:C5:D8:A4:54:DF Certificate issuer: /CN=A3D74765C1F178F72C3CD0DE0B6287F4B082D819 Certificate serial: 3FF52976E2A43DADA92B649A7CFC3DDAB2A96B23 Authority key identifier: A3:D7:47:65:C1:F1:78:F7:2C:3C:D0:DE:0B:62:87:F4:B0:82:D8:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa Signing time: Mon 09 Jun 2025 10:00:02 +0000 ROA not before: Mon 09 Jun 2025 09:55:02 +0000 ROA not after: Mon 08 Jun 2026 10:00:02 +0000 asID: 152780 IP address blocks: 160.20.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.crl rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 04:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f5:29:76:e2:a4:3d:ad:a9:2b:64:9a:7c:fc:3d:da:b2:a9:6b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3D74765C1F178F72C3CD0DE0B6287F4B082D819 Validity Not Before: Jun 9 09:55:02 2025 GMT Not After : Jun 8 10:00:02 2026 GMT Subject: CN=3281D8271E99DC335291A3E7E79E1DC5D8A454DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:f2:92:03:b5:f3:04:19:3b:df:50:63:81:15: 06:cd:31:7c:0a:b3:1b:2b:f8:6a:f3:11:5d:d9:71: 37:0f:ab:e1:21:df:f1:cf:1d:6e:d7:3f:ac:63:c0: e7:fb:d2:b9:cc:cc:cd:40:78:17:b3:79:5b:07:24: f6:42:91:67:6d:50:c2:df:58:6e:06:7d:a6:75:4a: c9:1d:4f:94:09:f8:a2:d3:de:38:a9:c9:9c:6b:9c: 42:33:db:3f:44:34:22:29:95:30:0d:ed:99:ae:34: e9:eb:e3:69:db:59:3f:c2:d1:41:a9:21:61:d4:d3: c9:95:17:41:65:67:07:27:1e:a5:ad:04:5e:12:f5: ba:e5:8a:c0:88:da:76:51:b7:9b:72:80:80:ae:d7: 80:93:96:68:67:ae:59:68:ab:91:3e:a8:71:88:2f: 29:1f:e7:7d:a4:2e:c8:08:6c:7c:e0:7c:6e:24:3f: 3e:43:fa:66:8d:7f:52:13:b0:4e:d8:d9:7a:b8:2e: 6e:96:b1:4c:15:53:c6:d4:00:c4:88:94:fa:81:82: c1:d1:ff:a1:e2:55:78:da:6b:3f:7b:5f:42:41:d9: f7:ec:13:8f:bd:04:6a:ad:bc:a5:a9:f4:c5:e0:9f: 36:22:e7:63:50:cf:77:95:58:eb:b0:f8:6b:e1:c9: cb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:81:D8:27:1E:99:DC:33:52:91:A3:E7:E7:9E:1D:C5:D8:A4:54:DF X509v3 Authority Key Identifier: keyid:A3:D7:47:65:C1:F1:78:F7:2C:3C:D0:DE:0B:62:87:F4:B0:82:D8:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.124.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:67:9d:a0:08:c1:cc:12:5b:77:5d:d3:d5:7d:ea:6f:8e:2f: 7f:fd:6e:e9:a9:51:63:24:77:7a:da:00:bd:da:cc:76:43:80: ad:04:b1:69:f3:07:27:90:57:0f:2c:25:70:84:e4:4e:c6:c0: 0e:2a:a1:e0:10:96:76:9c:93:94:b7:5e:48:d6:e9:7b:02:f1: 94:c1:d7:fc:3a:07:57:5a:e8:bc:dc:01:c7:e2:94:96:d9:a2: df:af:7e:8d:c9:0b:de:1a:d6:37:94:00:11:22:c1:6a:55:fe: 6b:65:b5:31:5a:a8:22:6b:d9:02:10:81:87:a8:31:2d:67:d8: b3:23:b8:7c:77:de:b0:27:83:c1:dd:81:3a:87:c6:f7:43:d0: 28:c7:57:6c:d6:14:4c:6f:37:4a:8e:a4:b0:a3:82:54:46:6e: 3c:d4:ed:91:37:fb:1b:0d:d7:b1:0e:c6:ad:b6:cb:65:2d:c1: d1:52:ce:8b:8c:82:ec:4e:3e:f3:d0:28:a9:32:0c:74:21:28: cf:52:04:46:bf:21:85:99:9e:95:3b:53:05:e9:7b:b9:fd:dc: de:e9:e8:31:4b:c7:ac:29:df:11:a1:b2:f0:10:87:95:6f:32: 38:c1:cf:56:3e:b6:f1:d7:a3:48:4e:26:d2:d0:65:6e:9e:de: c7:68:d1:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP/UpduKkPa2pK2SafPw92rKpayMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTNENzQ3NjVDMUYxNzhGNzJDM0NEMERFMEI2Mjg3RjRC MDgyRDgxOTAeFw0yNTA2MDkwOTU1MDJaFw0yNjA2MDgxMDAwMDJaMDMxMTAvBgNV BAMTKDMyODFEODI3MUU5OURDMzM1MjkxQTNFN0U3OUUxREM1RDhBNDU0REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD+8pIDtfMEGTvfUGOBFQbNMXwK sxsr+GrzEV3ZcTcPq+Eh3/HPHW7XP6xjwOf70rnMzM1AeBezeVsHJPZCkWdtUMLf WG4GfaZ1SskdT5QJ+KLT3jipyZxrnEIz2z9ENCIplTAN7ZmuNOnr42nbWT/C0UGp IWHU08mVF0FlZwcnHqWtBF4S9brlisCI2nZRt5tygICu14CTlmhnrlloq5E+qHGI Lykf532kLsgIbHzgfG4kPz5D+maNf1ITsE7Y2Xq4Lm6WsUwVU8bUAMSIlPqBgsHR /6HiVXjaaz97X0JB2ffsE4+9BGqtvKWp9MXgnzYi52NQz3eVWOuw+Gvhycs9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMoHYJx6Z3DNSkaPn554dxdikVN8wHwYDVR0j BBgwFoAUo9dHZcHxePcsPNDeC2KH9LCC2BkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MzU3OTIxZC1lZTE4LTQzNWMtOGI2ZS1lYmEyMjQxYjgzYWIvMC9BM0Q3NDc2NUMx RjE3OEY3MkMzQ0QwREUwQjYyODdGNEIwODJEODE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTNENzQ3NjVDMUYxNzhGNzJDM0NEMERFMEI2Mjg3RjRCMDgy RDgxOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNTc5MjFkLWVlMTgtNDM1Yy04 YjZlLWViYTIyNDFiODNhYi8wLzMxMzYzMDJlMzIzMDJlMzEzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBR8MA0GCSqG SIb3DQEBCwUAA4IBAQA9Z52gCMHMElt3XdPVfepvji9//W7pqVFjJHd62gC92sx2 Q4CtBLFp8wcnkFcPLCVwhOROxsAOKqHgEJZ2nJOUt15I1ul7AvGUwdf8OgdXWui8 3AHH4pSW2aLfr36NyQveGtY3lAARIsFqVf5rZbUxWqgia9kCEIGHqDEtZ9izI7h8 d96wJ4PB3YE6h8b3Q9Aox1ds1hRMbzdKjqSwo4JURm481O2RN/sbDdexDsattstl LcHRUs6LjILsTj7z0CipMgx0ISjPUgRGvyGFmZ6VO1MF6Xu5/dze6egxS8esKd8R obLwEIeVbzI4wc9WPrbx16NITibS0GVunt7HaNHx -----END CERTIFICATE-----Generated at Thu Jul 3 09:59:38 2025 by rpki-client