$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3230322e3135322e302e302f31382d3234203d3e2034383030.roa File: 3230322e3135322e302e302f31382d3234203d3e2034383030.roa (raw, json) Hash identifier: siA90C9oKwpnqL2tM7SKPA+wd/bAzu9e76I6W+YhBBY= Subject key identifier: 7A:7E:CC:33:6A:FB:F9:58:E9:8E:38:40:C5:3C:40:57:6E:5E:BF:75 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 4CA210B7C9C8D67015AD1A6E197B252F098F6FE0 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3230322e3135322e302e302f31382d3234203d3e2034383030.roa Signing time: Mon 02 Jun 2025 02:01:38 +0000 ROA not before: Mon 02 Jun 2025 01:56:38 +0000 ROA not after: Mon 01 Jun 2026 02:01:38 +0000 asID: 4800 IP address blocks: 202.152.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 20:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a2:10:b7:c9:c8:d6:70:15:ad:1a:6e:19:7b:25:2f:09:8f:6f:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jun 2 01:56:38 2025 GMT Not After : Jun 1 02:01:38 2026 GMT Subject: CN=7A7ECC336AFBF958E98E3840C53C40576E5EBF75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:10:37:d9:51:89:51:8e:05:c4:d3:85:92:50: df:a4:c0:82:05:5b:27:fa:b3:e4:cd:d1:f9:0c:48: a7:12:80:1f:0b:f5:4e:ee:4f:57:fd:9b:8c:f1:a6: cb:48:23:ab:98:61:7f:df:ef:39:fb:81:eb:ab:72: a8:a0:89:8e:5a:05:e5:dc:28:a8:7e:18:84:4b:b4: 84:00:74:7d:87:d7:f5:5f:61:a7:9e:c2:57:70:17: 02:9c:8f:3d:59:66:b6:32:3f:26:72:f3:67:23:3a: b7:a0:cb:b1:64:17:80:9f:b1:f5:c6:bd:24:88:ff: f7:22:19:57:21:7b:48:c7:8d:90:5e:71:d3:0d:e0: 81:c2:60:25:bc:db:8b:b0:19:90:d8:a8:90:12:eb: f1:f6:35:97:35:b4:eb:cf:a1:1d:04:6e:39:e1:fb: 99:0e:b1:59:79:10:94:44:46:61:d8:16:e7:02:dc: 9e:ff:c0:2b:7b:48:06:7e:cf:ef:5f:fc:7a:b1:59: ee:e0:88:0b:73:63:2f:ff:d9:0d:c2:16:9b:47:f7: f0:f5:59:42:56:d9:29:cf:8e:04:27:38:77:d6:60: 67:d6:2e:46:58:40:e4:91:e5:a0:8c:e2:2d:9e:fa: fc:60:39:c5:36:bd:77:f9:72:5a:9e:8b:a3:59:b0: c5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:7E:CC:33:6A:FB:F9:58:E9:8E:38:40:C5:3C:40:57:6E:5E:BF:75 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3230322e3135322e302e302f31382d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.0.0/18 Signature Algorithm: sha256WithRSAEncryption 6a:40:76:cd:35:ae:f6:43:e2:7c:b5:d9:e0:6f:da:f9:de:9a: 9a:4a:e4:db:46:9d:b4:32:b0:8b:bb:e2:6a:f4:74:58:b7:11: c9:8d:9f:94:71:d4:58:f5:e3:d7:8a:7b:9c:24:3a:20:c6:bf: d8:0a:12:e4:e4:fe:62:d8:5a:50:de:cb:e8:be:d5:df:9d:c8: 8b:d7:98:7d:e8:ac:8f:9d:71:f6:68:84:f9:60:6e:21:b9:b8: 09:18:92:4b:88:28:5d:30:f3:28:f7:72:83:19:75:46:54:d5: 25:e4:b0:1b:2d:44:12:06:4e:0c:d1:f9:9f:a3:29:79:fa:2e: f4:78:66:75:a3:a9:d0:32:53:8f:5c:27:b8:a0:fe:b2:30:9d: ec:a1:cf:30:e9:c0:aa:71:56:63:68:e9:3c:f5:f2:30:e8:20: 2c:d3:c8:23:f7:8c:4c:d6:92:2d:29:81:f7:33:a8:db:a5:10: 97:c3:5c:fd:6b:c0:b7:50:aa:83:3e:05:f6:9c:9b:f8:52:e4: 2b:96:a8:15:ee:3c:2c:24:13:74:61:04:0b:42:17:d6:d8:42: 47:4f:dc:a0:fe:58:b8:d9:f0:1a:49:dc:cd:28:b5:72:f6:ef: 61:a1:dd:c0:ab:53:26:a2:09:a7:c9:69:2c:fe:ce:2a:e1:16: 6b:69:df:8b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUTKIQt8nI1nAVrRpuGXslLwmPb+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA2MDIwMTU2MzhaFw0yNjA2MDEwMjAxMzhaMDMxMTAvBgNV BAMTKDdBN0VDQzMzNkFGQkY5NThFOThFMzg0MEM1M0M0MDU3NkU1RUJGNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpEDfZUYlRjgXE04WSUN+kwIIF Wyf6s+TN0fkMSKcSgB8L9U7uT1f9m4zxpstII6uYYX/f7zn7geurcqigiY5aBeXc KKh+GIRLtIQAdH2H1/VfYaeewldwFwKcjz1ZZrYyPyZy82cjOregy7FkF4CfsfXG vSSI//ciGVche0jHjZBecdMN4IHCYCW824uwGZDYqJAS6/H2NZc1tOvPoR0Ebjnh +5kOsVl5EJRERmHYFucC3J7/wCt7SAZ+z+9f/HqxWe7giAtzYy//2Q3CFptH9/D1 WUJW2SnPjgQnOHfWYGfWLkZYQOSR5aCM4i2e+vxgOcU2vXf5clqei6NZsMVHAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUen7MM2r7+VjpjjhAxTxAV25ev3UwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTVjZTM2ZGUtZjkyMS00Mjc0LTg0 OTctMjk4N2Q5MDk1NDNlLzAvMzIzMDMyMmUzMTM1MzIyZTMwMmUzMDJmMzEzODJk MzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbKmAAwDQYJKoZIhvcNAQEL BQADggEBAGpAds01rvZD4ny12eBv2vnemppK5NtGnbQysIu74mr0dFi3EcmNn5Rx 1Fj149eKe5wkOiDGv9gKEuTk/mLYWlDey+i+1d+dyIvXmH3orI+dcfZohPlgbiG5 uAkYkkuIKF0w8yj3coMZdUZU1SXksBstRBIGTgzR+Z+jKXn6LvR4ZnWjqdAyU49c J7ig/rIwneyhzzDpwKpxVmNo6Tz18jDoICzTyCP3jEzWki0pgfczqNulEJfDXP1r wLdQqoM+Bfacm/hS5CuWqBXuPCwkE3RhBAtCF9bYQkdP3KD+WLjZ8BpJ3M0otXL2 72Gh3cCrUyaiCafJaSz+zirhFmtp34s= -----END CERTIFICATE-----Generated at Tue Jun 17 20:15:00 2025 by rpki-client