$ rpki-client -vvf repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32342d3234203d3e20313532383134.roa File: 3136302e32322e36362e302f32342d3234203d3e20313532383134.roa (raw, json) Hash identifier: JUUaehnloKhTb4CXmYBNJbFrHSQ9nWl3U3tWDUYZLk4= Subject key identifier: 79:AA:FB:E8:1A:A2:25:06:8E:C6:94:7E:51:A5:CB:35:3C:70:67:A6 Certificate issuer: /CN=9EE9E8715DE7A995273D27BD16FBF33DC09CF652 Certificate serial: 04F2F1BB554CC939008572B13C0680F54EE1F200 Authority key identifier: 9E:E9:E8:71:5D:E7:A9:95:27:3D:27:BD:16:FB:F3:3D:C0:9C:F6:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32342d3234203d3e20313532383134.roa Signing time: Tue 17 Jun 2025 09:00:07 +0000 ROA not before: Tue 17 Jun 2025 08:55:07 +0000 ROA not after: Tue 16 Jun 2026 09:00:07 +0000 asID: 152814 IP address blocks: 160.22.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.crl rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:10:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f2:f1:bb:55:4c:c9:39:00:85:72:b1:3c:06:80:f5:4e:e1:f2:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EE9E8715DE7A995273D27BD16FBF33DC09CF652 Validity Not Before: Jun 17 08:55:07 2025 GMT Not After : Jun 16 09:00:07 2026 GMT Subject: CN=79AAFBE81AA225068EC6947E51A5CB353C7067A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:14:78:da:92:ae:26:d8:ea:17:e1:99:e9:28: aa:14:ee:90:f0:b7:70:2c:c2:fe:45:ba:61:d7:c3: 8d:80:86:63:24:bb:ca:5b:a7:e9:70:25:78:b4:ae: cf:1a:7b:96:61:0f:17:57:d8:60:10:ff:6c:e4:27: 8a:51:57:64:1b:57:6c:68:fc:0d:08:30:44:12:38: 3c:cb:9e:0b:80:4f:46:d2:2c:30:c4:cc:78:5a:3e: 04:42:28:ca:e1:6c:9a:11:1a:8d:dd:de:0f:ab:9a: e5:27:57:94:fd:c0:58:41:6c:8c:cc:b4:6f:2a:eb: 5b:89:a9:0f:5e:db:58:90:2e:fb:a9:d2:0d:b6:5f: 85:c9:70:8d:53:8c:8e:1f:b2:37:db:2c:1b:ec:c9: d9:66:8d:d7:d2:8f:6a:62:1d:6a:5e:7d:16:3a:64: 69:8a:41:b8:88:f9:25:ed:fc:82:55:39:b9:39:0d: 98:8b:44:7d:3b:d5:a0:70:93:f6:5a:23:53:95:30: 5f:ce:54:6d:a7:ae:51:e7:44:d4:0f:1f:25:71:db: 6c:52:53:79:a4:a6:b7:06:7a:13:fe:cc:d1:f3:c3: c0:f8:93:83:47:d4:f3:e7:b2:a1:37:59:23:d6:86: 2b:bb:94:16:de:67:57:da:c6:5a:11:76:6b:b0:77: d1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:AA:FB:E8:1A:A2:25:06:8E:C6:94:7E:51:A5:CB:35:3C:70:67:A6 X509v3 Authority Key Identifier: keyid:9E:E9:E8:71:5D:E7:A9:95:27:3D:27:BD:16:FB:F3:3D:C0:9C:F6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9EE9E8715DE7A995273D27BD16FBF33DC09CF652.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32342d3234203d3e20313532383134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.66.0/24 Signature Algorithm: sha256WithRSAEncryption 69:6f:83:19:74:2f:b8:a2:5f:67:98:d6:fc:30:28:55:84:96: 59:7c:c9:a8:1a:c1:e8:78:10:5d:14:f1:2f:46:a2:36:dc:70: 6e:d0:45:4b:5c:ec:35:f9:09:2f:7c:dd:a3:e6:7d:e0:04:bb: dd:46:d3:52:27:0b:d2:c5:df:13:f6:cb:4b:09:96:f4:aa:9c: 59:27:b4:6a:fe:65:aa:13:01:7f:f4:fb:c1:e0:b3:0e:10:65: 29:2b:81:eb:8a:ed:ac:57:01:bb:89:00:52:57:b4:07:bb:68: a9:99:28:18:b9:ca:b7:de:17:9a:0a:85:33:44:8f:1e:a5:59: 91:70:30:fe:45:e5:20:5c:02:ec:1f:73:5b:28:af:5d:9e:e5: b5:6b:93:57:42:a2:85:06:c6:02:a0:c4:45:91:32:40:1f:b3: a2:0a:40:2f:65:91:be:54:e4:c5:de:77:df:a7:35:47:0a:91: eb:f1:33:84:a8:4b:41:82:9e:b2:2f:4a:ca:bb:04:86:4d:0c: f4:a1:60:70:80:72:d5:c1:8c:b5:aa:a8:03:5e:05:3f:e7:5c: 13:31:bb:f1:5b:6a:c9:19:d7:ed:ce:35:ea:38:65:9b:03:e2: eb:ac:c0:a5:f1:17:af:39:35:c4:33:b3:f8:3d:7e:c5:32:5b: fa:28:6e:f0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBPLxu1VMyTkAhXKxPAaA9U7h8gAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVFOUU4NzE1REU3QTk5NTI3M0QyN0JEMTZGQkYzM0RD MDlDRjY1MjAeFw0yNTA2MTcwODU1MDdaFw0yNjA2MTYwOTAwMDdaMDMxMTAvBgNV BAMTKDc5QUFGQkU4MUFBMjI1MDY4RUM2OTQ3RTUxQTVDQjM1M0M3MDY3QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvFHjakq4m2OoX4ZnpKKoU7pDw t3Aswv5FumHXw42AhmMku8pbp+lwJXi0rs8ae5ZhDxdX2GAQ/2zkJ4pRV2QbV2xo /A0IMEQSODzLnguAT0bSLDDEzHhaPgRCKMrhbJoRGo3d3g+rmuUnV5T9wFhBbIzM tG8q61uJqQ9e21iQLvup0g22X4XJcI1TjI4fsjfbLBvsydlmjdfSj2piHWpefRY6 ZGmKQbiI+SXt/IJVObk5DZiLRH071aBwk/ZaI1OVMF/OVG2nrlHnRNQPHyVx22xS U3mkprcGehP+zNHzw8D4k4NH1PPnsqE3WSPWhiu7lBbeZ1faxloRdmuwd9FvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUear76BqiJQaOxpR+UaXLNTxwZ6YwHwYDVR0j BBgwFoAUnunocV3nqZUnPSe9FvvzPcCc9lIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGI5MjdkZi1iYzljLTRiZTYtYTFmYS0yZTEyNWM0NjlmNzEvMC85RUU5RTg3MTVE RTdBOTk1MjczRDI3QkQxNkZCRjMzREMwOUNGNjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUVFOUU4NzE1REU3QTk5NTI3M0QyN0JEMTZGQkYzM0RDMDlD RjY1Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYjkyN2RmLWJjOWMtNGJlNi1h MWZhLTJlMTI1YzQ2OWY3MS8wLzMxMzYzMDJlMzIzMjJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWQjANBgkqhkiG 9w0BAQsFAAOCAQEAaW+DGXQvuKJfZ5jW/DAoVYSWWXzJqBrB6HgQXRTxL0aiNtxw btBFS1zsNfkJL3zdo+Z94AS73UbTUicL0sXfE/bLSwmW9KqcWSe0av5lqhMBf/T7 weCzDhBlKSuB64rtrFcBu4kAUle0B7toqZkoGLnKt94XmgqFM0SPHqVZkXAw/kXl IFwC7B9zWyivXZ7ltWuTV0KihQbGAqDERZEyQB+zogpAL2WRvlTkxd5336c1RwqR 6/EzhKhLQYKesi9KyrsEhk0M9KFgcIBy1cGMtaqoA14FP+dcEzG78VtqyRnX7c41 6jhlmwPi66zApfEXrzk1xDOz+D1+xTJb+ihu8A== -----END CERTIFICATE-----Generated at Sun Jul 6 08:55:02 2025 by rpki-client