$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa File: 3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa (raw, json) Hash identifier: tnbdQALnvDm6P8RfZvsNO6pdsMJgHsNv53J76QIqD5s= Subject key identifier: 85:17:4F:4E:BB:D8:C4:74:74:08:9A:85:92:06:E3:28:04:08:F5:DE Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 272A54703E059DE902FE1C7F25CCEC0BCE684EB5 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa Signing time: Fri 11 Jul 2025 06:02:22 +0000 ROA not before: Fri 11 Jul 2025 05:57:22 +0000 ROA not after: Fri 10 Jul 2026 06:02:22 +0000 asID: 23679 IP address blocks: 202.162.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2a:54:70:3e:05:9d:e9:02:fe:1c:7f:25:cc:ec:0b:ce:68:4e:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 11 05:57:22 2025 GMT Not After : Jul 10 06:02:22 2026 GMT Subject: CN=85174F4EBBD8C47474089A859206E3280408F5DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ad:7c:10:b4:c2:99:4a:89:f2:bc:e7:70:10: 15:5d:c7:5e:63:eb:d0:82:1d:f2:60:67:3c:7d:8f: 84:58:cf:5a:64:d4:09:f9:b2:85:e8:ec:38:bb:e2: e4:e3:a9:03:26:83:3d:4e:9e:1f:90:9d:a3:e8:46: f2:d5:93:5f:75:7b:6e:f1:94:6b:c3:2c:7a:eb:01: de:a9:59:04:70:ec:02:40:4a:dc:cd:00:e2:4e:8f: 16:8c:81:cb:59:a4:ee:b3:eb:e3:fe:cc:61:19:1a: 49:50:9c:0d:9e:da:09:96:18:85:47:40:0e:f9:22: 6a:75:7a:0e:3d:c9:43:e8:94:d0:05:72:a4:47:40: 6f:d3:d4:e5:da:ae:6f:86:41:a9:b6:8b:73:55:7b: 8f:88:99:ab:27:a3:0f:00:b4:bf:bb:2a:6a:a8:6d: 76:39:3c:99:33:db:f0:1a:9e:c3:86:d4:0c:07:ea: 1e:f0:ee:7d:69:04:41:df:08:0f:06:2d:b3:62:3c: c0:a3:78:33:45:4f:a6:58:9e:5d:9f:fc:86:e4:89: 40:ca:49:28:c1:54:67:49:07:bc:fa:9b:72:27:bc: 45:bf:63:97:79:ea:c9:a5:00:f7:80:21:e3:dc:a1: 67:cc:98:f8:9b:6f:56:08:27:79:07:1c:43:72:31: 32:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:17:4F:4E:BB:D8:C4:74:74:08:9A:85:92:06:E3:28:04:08:F5:DE X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.192.0/21 Signature Algorithm: sha256WithRSAEncryption c8:4a:dd:42:5a:2b:f5:42:6e:93:16:8b:de:0b:dd:e8:f9:87: 27:5e:2b:6f:6f:31:72:24:bb:a2:fb:2c:df:7e:f9:b4:bf:6f: 4d:7c:dd:e8:1e:f7:6c:e9:92:56:2b:5a:f2:76:e5:35:c3:13: e9:21:14:9a:15:0a:e5:0d:b0:37:3a:b9:37:6a:0d:e3:c0:0e: fd:c3:ee:7e:0f:4c:4d:48:bf:30:04:0f:f3:ea:b6:9d:0f:d3: 7f:a6:88:cc:5f:2b:4d:57:fd:29:ae:3b:83:fa:5c:0b:3a:b8: 96:44:8f:18:60:b5:d4:22:74:87:31:ed:b8:4c:70:6b:95:b4: 26:cc:12:72:a6:b6:69:77:21:84:a4:ef:0a:73:a7:7b:63:67: 74:9e:29:15:f7:80:18:91:4e:03:c6:e4:2a:04:de:76:50:8f: 2b:50:3d:db:39:54:46:16:b5:49:5f:5b:74:60:93:f8:a9:be: 56:0b:1a:2d:44:8d:d5:50:f8:96:7c:05:e8:67:74:48:93:80: 9a:7f:5b:70:83:f1:66:91:86:52:ee:ae:88:6b:83:30:df:ef: 75:05:d2:23:48:9f:a4:46:e9:f6:66:0f:5d:03:8a:b2:a7:3e: c0:da:3e:8c:48:99:41:5b:f4:dc:9d:a0:d8:f5:13:58:27:29: 40:01:2d:0a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJypUcD4FnekC/hx/JczsC85oTrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MTEwNTU3MjJaFw0yNjA3MTAwNjAyMjJaMDMxMTAvBgNV BAMTKDg1MTc0RjRFQkJEOEM0NzQ3NDA4OUE4NTkyMDZFMzI4MDQwOEY1REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5rXwQtMKZSonyvOdwEBVdx15j 69CCHfJgZzx9j4RYz1pk1An5soXo7Di74uTjqQMmgz1Onh+QnaPoRvLVk191e27x lGvDLHrrAd6pWQRw7AJAStzNAOJOjxaMgctZpO6z6+P+zGEZGklQnA2e2gmWGIVH QA75Imp1eg49yUPolNAFcqRHQG/T1OXarm+GQam2i3NVe4+Imasnow8AtL+7Kmqo bXY5PJkz2/AansOG1AwH6h7w7n1pBEHfCA8GLbNiPMCjeDNFT6ZYnl2f/IbkiUDK SSjBVGdJB7z6m3InvEW/Y5d56smlAPeAIePcoWfMmPibb1YIJ3kHHENyMTIHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhRdPTrvYxHR0CJqFkgbjKAQI9d4wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMTM5MzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDyqLAMA0GCSqG SIb3DQEBCwUAA4IBAQDISt1CWiv1Qm6TFoveC93o+YcnXitvbzFyJLui+yzffvm0 v29NfN3oHvds6ZJWK1ryduU1wxPpIRSaFQrlDbA3Ork3ag3jwA79w+5+D0xNSL8w BA/z6radD9N/pojMXytNV/0prjuD+lwLOriWRI8YYLXUInSHMe24THBrlbQmzBJy prZpdyGEpO8Kc6d7Y2d0nikV94AYkU4DxuQqBN52UI8rUD3bOVRGFrVJX1t0YJP4 qb5WCxotRI3VUPiWfAXoZ3RIk4Caf1twg/FmkYZS7q6Ia4Mw3+91BdIjSJ+kRun2 Zg9dA4qypz7A2j6MSJlBW/TcnaDY9RNYJylAAS0K -----END CERTIFICATE-----Generated at Fri Jul 25 18:13:32 2025 by rpki-client