$ rpki-client -vvf repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32332d3233203d3e20313532383134.roa File: 3136302e32322e36362e302f32332d3233203d3e20313532383134.roa (raw, json) Hash identifier: n4Oi/nBqUvnEfpPYXXTcmZ2bFem4wR2z3sm1N0yX44M= Subject key identifier: 61:21:D0:A3:9F:84:16:09:97:05:A4:09:94:89:43:30:15:C9:A1:26 Certificate issuer: /CN=9EE9E8715DE7A995273D27BD16FBF33DC09CF652 Certificate serial: 0F9122F6CC703B72484A65B55646DFC692F62CD8 Authority key identifier: 9E:E9:E8:71:5D:E7:A9:95:27:3D:27:BD:16:FB:F3:3D:C0:9C:F6:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32332d3233203d3e20313532383134.roa Signing time: Tue 17 Jun 2025 09:00:08 +0000 ROA not before: Tue 17 Jun 2025 08:55:08 +0000 ROA not after: Tue 16 Jun 2026 09:00:08 +0000 asID: 152814 IP address blocks: 160.22.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.crl rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:10:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:91:22:f6:cc:70:3b:72:48:4a:65:b5:56:46:df:c6:92:f6:2c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EE9E8715DE7A995273D27BD16FBF33DC09CF652 Validity Not Before: Jun 17 08:55:08 2025 GMT Not After : Jun 16 09:00:08 2026 GMT Subject: CN=6121D0A39F8416099705A4099489433015C9A126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:1b:87:0e:2a:3f:11:e0:5f:7f:02:10:84: a8:ef:f8:c7:4d:69:ae:5b:ad:a4:01:8a:c3:9b:7f: a4:96:f0:e6:86:24:41:2b:6f:85:eb:18:d3:87:e7: 0e:59:21:9b:28:49:4b:5e:09:22:2a:b6:b8:60:0c: 3d:18:15:a2:f7:14:e4:32:09:f1:d0:c9:c0:91:41: 4d:6a:bb:2c:aa:07:45:c0:e1:01:3f:a6:76:0e:c1: 78:84:b2:c8:da:51:4e:5f:f8:c8:65:d8:7b:57:58: 97:d8:33:ad:c8:d3:6a:df:89:af:7e:e2:90:f4:6c: ec:a8:ad:4c:96:66:92:54:4a:2a:42:d5:9a:0d:39: bf:4a:53:a5:c6:07:94:2e:27:61:68:e0:88:ad:a2: 7f:06:20:02:fa:c2:6b:64:a2:37:56:91:1c:bc:8c: 69:cc:ba:e7:8d:4b:94:16:95:0b:fd:20:28:04:e7: 12:d6:36:96:6a:7c:a8:7b:d2:1a:e6:bf:58:e2:4f: 58:b6:d5:39:1b:db:fb:81:16:da:ba:fd:7c:db:e5: 07:7c:b6:c7:b6:60:7a:55:d7:c0:e7:44:70:1d:ae: 48:2f:20:b0:63:67:fc:ab:e3:36:d7:b6:55:0f:ea: e8:44:70:43:5c:81:19:56:70:de:39:bf:cf:f1:72: f2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:21:D0:A3:9F:84:16:09:97:05:A4:09:94:89:43:30:15:C9:A1:26 X509v3 Authority Key Identifier: keyid:9E:E9:E8:71:5D:E7:A9:95:27:3D:27:BD:16:FB:F3:3D:C0:9C:F6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32332d3233203d3e20313532383134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.66.0/23 Signature Algorithm: sha256WithRSAEncryption c5:a2:ab:1a:6e:a9:46:a4:9f:4c:9e:5b:d4:7a:05:11:a9:95: 4a:1b:f9:6f:26:6e:40:2c:52:f5:2d:79:da:20:65:7a:2d:87: 99:9a:be:4b:6c:2e:d0:36:74:e9:f0:b3:e1:a4:00:ea:3d:40: 83:ff:bb:9d:cf:bb:b9:5c:bf:f4:78:3e:97:81:8f:fe:37:ed: d3:4f:3f:ec:3b:4e:cc:b2:53:18:4e:9f:09:c1:0c:6c:f8:2e: ad:04:c3:dc:2c:2e:94:c9:a1:e1:35:76:30:40:e0:b7:d3:14: 1a:eb:9f:60:57:65:8b:d7:d6:59:ec:a0:9e:db:10:7d:97:c4: 95:d3:8a:ce:25:65:68:f5:5c:0e:1b:3e:5b:43:87:a5:26:c8: 7b:8b:e9:2c:16:fd:8b:77:45:f2:08:d7:5b:8c:d9:98:e7:70: d6:1d:b6:23:21:8e:a8:e4:8b:11:2b:d7:ab:dc:1c:b0:fc:c2: c0:9f:00:95:b9:40:ef:4b:72:88:a5:8b:c8:56:2d:85:82:c3: f8:36:8c:28:a3:de:c4:47:66:c9:7e:b1:0d:93:2c:fe:5d:ad: 0b:4c:72:32:37:fb:8c:58:72:e2:8f:ca:7d:f9:10:6b:53:6b: bc:b9:5f:03:e6:0a:13:da:28:6d:ec:18:8f:c8:c3:3b:26:30: 09:ec:6d:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD5Ei9sxwO3JISmW1VkbfxpL2LNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVFOUU4NzE1REU3QTk5NTI3M0QyN0JEMTZGQkYzM0RD MDlDRjY1MjAeFw0yNTA2MTcwODU1MDhaFw0yNjA2MTYwOTAwMDhaMDMxMTAvBgNV BAMTKDYxMjFEMEEzOUY4NDE2MDk5NzA1QTQwOTk0ODk0MzMwMTVDOUExMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMoxuHDio/EeBffwIQhKjv+MdN aa5braQBisObf6SW8OaGJEErb4XrGNOH5w5ZIZsoSUteCSIqtrhgDD0YFaL3FOQy CfHQycCRQU1quyyqB0XA4QE/pnYOwXiEssjaUU5f+Mhl2HtXWJfYM63I02rfia9+ 4pD0bOyorUyWZpJUSipC1ZoNOb9KU6XGB5QuJ2Fo4Iiton8GIAL6wmtkojdWkRy8 jGnMuueNS5QWlQv9ICgE5xLWNpZqfKh70hrmv1jiT1i21Tkb2/uBFtq6/Xzb5Qd8 tse2YHpV18DnRHAdrkgvILBjZ/yr4zbXtlUP6uhEcENcgRlWcN45v8/xcvJrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYSHQo5+EFgmXBaQJlIlDMBXJoSYwHwYDVR0j BBgwFoAUnunocV3nqZUnPSe9FvvzPcCc9lIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGI5MjdkZi1iYzljLTRiZTYtYTFmYS0yZTEyNWM0NjlmNzEvMC85RUU5RTg3MTVE RTdBOTk1MjczRDI3QkQxNkZCRjMzREMwOUNGNjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUVFOUU4NzE1REU3QTk5NTI3M0QyN0JEMTZGQkYzM0RDMDlD RjY1Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYjkyN2RmLWJjOWMtNGJlNi1h MWZhLTJlMTI1YzQ2OWY3MS8wLzMxMzYzMDJlMzIzMjJlMzYzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM4MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWQjANBgkqhkiG 9w0BAQsFAAOCAQEAxaKrGm6pRqSfTJ5b1HoFEamVShv5byZuQCxS9S152iBlei2H mZq+S2wu0DZ06fCz4aQA6j1Ag/+7nc+7uVy/9Hg+l4GP/jft008/7DtOzLJTGE6f CcEMbPgurQTD3CwulMmh4TV2MEDgt9MUGuufYFdli9fWWeygntsQfZfEldOKziVl aPVcDhs+W0OHpSbIe4vpLBb9i3dF8gjXW4zZmOdw1h22IyGOqOSLESvXq9wcsPzC wJ8AlblA70tyiKWLyFYthYLD+DaMKKPexEdmyX6xDZMs/l2tC0xyMjf7jFhy4o/K ffkQa1NrvLlfA+YKE9oobewYj8jDOyYwCext8Q== -----END CERTIFICATE-----Generated at Sun Jul 6 08:46:56 2025 by rpki-client