$ rpki-client -vvf repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132352e302f32342d3234203d3e20313532373830.roa File: 3136302e32302e3132352e302f32342d3234203d3e20313532373830.roa (raw, json) Hash identifier: aD8d9MEtPA6KCQQfGq4r1uZ3wsc7mkQ1NJevQSM4M3Q= Subject key identifier: 76:95:92:B5:77:E0:A9:08:90:E3:37:40:54:4F:9A:16:EF:44:EA:E1 Certificate issuer: /CN=A3D74765C1F178F72C3CD0DE0B6287F4B082D819 Certificate serial: 4BF4C10CA3697D77CB47AEE665A38E4808007880 Authority key identifier: A3:D7:47:65:C1:F1:78:F7:2C:3C:D0:DE:0B:62:87:F4:B0:82:D8:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132352e302f32342d3234203d3e20313532373830.roa Signing time: Mon 09 Jun 2025 10:00:01 +0000 ROA not before: Mon 09 Jun 2025 09:55:01 +0000 ROA not after: Mon 08 Jun 2026 10:00:01 +0000 asID: 152780 IP address blocks: 160.20.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.crl rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 04:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:f4:c1:0c:a3:69:7d:77:cb:47:ae:e6:65:a3:8e:48:08:00:78:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3D74765C1F178F72C3CD0DE0B6287F4B082D819 Validity Not Before: Jun 9 09:55:01 2025 GMT Not After : Jun 8 10:00:01 2026 GMT Subject: CN=769592B577E0A90890E33740544F9A16EF44EAE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d8:11:78:4c:92:a5:38:b7:5b:b3:2f:94:df: bf:4d:3c:17:d0:ef:3f:62:45:fc:ed:1d:2f:54:0f: b8:28:66:d0:13:18:47:52:25:8d:0d:b4:15:09:9f: a0:c8:0c:2d:3e:1a:a6:85:56:0b:8b:71:57:95:12: b9:df:9d:5e:ce:93:9a:bd:d0:69:82:9a:6e:aa:07: 03:fd:3a:01:52:0d:d6:d7:2d:90:44:81:23:11:03: a4:e1:52:ea:91:6f:47:6f:2b:08:c9:c7:dd:91:c2: dc:e2:60:6c:22:7b:1c:34:c6:27:57:56:34:59:e0: fe:46:69:15:13:fd:92:32:d6:db:7b:e0:da:a6:80: 20:04:47:fb:33:c8:d2:a0:56:42:94:79:95:cd:90: 67:84:3f:f9:f9:18:83:15:09:4d:f3:52:1a:2e:93: 7a:cc:6e:38:6f:75:f2:ca:61:f2:23:03:8b:21:52: a0:42:5f:31:0a:e6:62:10:61:71:2f:2c:bb:1c:67: 43:21:e2:0a:f5:e5:ce:db:7d:7c:27:a5:a0:2c:b9: 18:e0:68:d4:82:7d:f4:11:23:94:ac:cd:e7:80:b1: f0:67:77:50:62:3b:5b:09:3b:3f:a4:63:80:eb:78: 40:38:0c:28:ee:e2:f8:73:1b:f7:e6:ad:37:6c:7d: 05:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:95:92:B5:77:E0:A9:08:90:E3:37:40:54:4F:9A:16:EF:44:EA:E1 X509v3 Authority Key Identifier: keyid:A3:D7:47:65:C1:F1:78:F7:2C:3C:D0:DE:0B:62:87:F4:B0:82:D8:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132352e302f32342d3234203d3e20313532373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.125.0/24 Signature Algorithm: sha256WithRSAEncryption 36:15:c5:d1:68:a7:65:15:63:ff:82:20:e6:d7:04:40:9a:4c: 17:65:9f:f8:6f:ad:eb:ec:fe:06:99:f3:04:9e:3d:63:97:f8: 91:8b:d7:40:e8:31:fa:b5:83:f4:54:b1:09:c0:40:cb:32:dd: b9:91:ab:82:fa:80:b1:45:bb:ef:55:5a:40:44:c4:e7:fa:f8: 38:c8:1f:91:63:95:df:a0:a4:52:74:06:62:25:f1:b4:ae:35: ed:7d:0f:29:d8:9e:f0:c5:1f:c9:b9:02:35:6c:7c:57:17:96: 6d:06:57:dd:0f:81:ca:e8:98:a0:ab:e5:38:05:0e:83:58:64: 09:f5:cc:03:79:fc:fb:5d:07:a5:27:c5:e7:4e:7e:3e:8a:b4: 03:c5:b0:f0:1c:6a:08:b8:82:5d:a0:a0:6a:f7:d7:e1:01:a4: f3:44:71:67:d4:fe:da:d6:c3:e4:6f:00:88:0e:fd:06:06:66: 72:6d:31:03:52:e0:36:ac:4a:c1:4d:7c:51:46:6c:14:de:ea: 42:20:04:44:94:fd:76:cb:38:19:c4:07:a2:5f:7a:54:8f:cc: f0:08:49:86:93:10:c1:00:e9:34:fc:0d:73:88:30:2f:03:91: 6b:65:7a:fc:37:c6:46:6d:69:39:9a:9f:46:5b:e3:42:65:69: 8c:66:63:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS/TBDKNpfXfLR67mZaOOSAgAeIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTNENzQ3NjVDMUYxNzhGNzJDM0NEMERFMEI2Mjg3RjRC MDgyRDgxOTAeFw0yNTA2MDkwOTU1MDFaFw0yNjA2MDgxMDAwMDFaMDMxMTAvBgNV BAMTKDc2OTU5MkI1NzdFMEE5MDg5MEUzMzc0MDU0NEY5QTE2RUY0NEVBRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS2BF4TJKlOLdbsy+U379NPBfQ 7z9iRfztHS9UD7goZtATGEdSJY0NtBUJn6DIDC0+GqaFVguLcVeVErnfnV7Ok5q9 0GmCmm6qBwP9OgFSDdbXLZBEgSMRA6ThUuqRb0dvKwjJx92RwtziYGwiexw0xidX VjRZ4P5GaRUT/ZIy1tt74NqmgCAER/szyNKgVkKUeZXNkGeEP/n5GIMVCU3zUhou k3rMbjhvdfLKYfIjA4shUqBCXzEK5mIQYXEvLLscZ0Mh4gr15c7bfXwnpaAsuRjg aNSCffQRI5SszeeAsfBnd1BiO1sJOz+kY4DreEA4DCju4vhzG/fmrTdsfQUJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdpWStXfgqQiQ4zdAVE+aFu9E6uEwHwYDVR0j BBgwFoAUo9dHZcHxePcsPNDeC2KH9LCC2BkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MzU3OTIxZC1lZTE4LTQzNWMtOGI2ZS1lYmEyMjQxYjgzYWIvMC9BM0Q3NDc2NUMx RjE3OEY3MkMzQ0QwREUwQjYyODdGNEIwODJEODE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTNENzQ3NjVDMUYxNzhGNzJDM0NEMERFMEI2Mjg3RjRCMDgy RDgxOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNTc5MjFkLWVlMTgtNDM1Yy04 YjZlLWViYTIyNDFiODNhYi8wLzMxMzYzMDJlMzIzMDJlMzEzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBR9MA0GCSqG SIb3DQEBCwUAA4IBAQA2FcXRaKdlFWP/giDm1wRAmkwXZZ/4b63r7P4GmfMEnj1j l/iRi9dA6DH6tYP0VLEJwEDLMt25kauC+oCxRbvvVVpARMTn+vg4yB+RY5XfoKRS dAZiJfG0rjXtfQ8p2J7wxR/JuQI1bHxXF5ZtBlfdD4HK6Jigq+U4BQ6DWGQJ9cwD efz7XQelJ8XnTn4+irQDxbDwHGoIuIJdoKBq99fhAaTzRHFn1P7a1sPkbwCIDv0G BmZybTEDUuA2rErBTXxRRmwU3upCIARElP12yzgZxAeiX3pUj8zwCEmGkxDBAOk0 /A1ziDAvA5FrZXr8N8ZGbWk5mp9GW+NCZWmMZmM/ -----END CERTIFICATE-----Generated at Thu Jul 3 09:59:31 2025 by rpki-client