$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa File: 3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa (raw, json) Hash identifier: iYxqxCKETG50ITsXVRKqk9Q2KlYXxHTrkU3CGEHz0I4= Subject key identifier: B6:64:5B:F0:A6:0E:1A:70:77:AC:D6:D7:FD:A3:FA:5A:45:4D:75:F5 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 1BBC809A201E5F4746A8614D13B255E389749E33 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa Signing time: Fri 25 Jul 2025 06:01:30 +0000 ROA not before: Fri 25 Jul 2025 05:56:30 +0000 ROA not after: Fri 24 Jul 2026 06:01:30 +0000 asID: 138841 IP address blocks: 202.162.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bc:80:9a:20:1e:5f:47:46:a8:61:4d:13:b2:55:e3:89:74:9e:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 25 05:56:30 2025 GMT Not After : Jul 24 06:01:30 2026 GMT Subject: CN=B6645BF0A60E1A7077ACD6D7FDA3FA5A454D75F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0d:0e:ff:fc:92:4d:51:31:10:9c:f4:78:ee: f1:d2:4a:5d:78:c1:44:4c:79:2f:31:c3:e3:35:60: 1e:97:2d:71:6c:3c:e0:e1:9e:63:99:b5:fc:27:6a: 7c:c1:ce:37:72:2b:1f:e3:ef:3e:f8:51:35:2b:e9: 79:6e:49:76:4d:48:98:38:bc:24:75:90:74:a0:c8: 5e:25:6a:39:c8:6d:23:c4:c8:04:ee:d5:f3:aa:08: f0:97:72:24:fa:07:16:53:6f:67:94:5a:e5:da:f5: fc:f4:ae:a4:89:7e:e5:ae:af:4b:44:31:70:24:39: fe:33:ef:f0:f6:98:7a:e4:50:d7:5a:5d:8e:52:0f: dd:ff:7b:89:62:0e:ee:2e:81:c3:31:d7:5d:4f:04: 45:9c:94:71:f3:48:0f:b1:92:ac:11:92:15:7c:7a: 48:3f:db:92:61:9a:93:af:b4:5c:77:8b:01:a0:a1: cc:5c:70:35:42:ae:56:33:b5:48:ad:2b:51:ab:df: b8:67:af:16:d4:ee:73:9f:ef:c0:a6:ed:3e:04:a0: 58:3a:e1:79:9c:d8:7d:7c:fa:7c:55:36:8f:ed:12: 89:c9:78:ad:fd:e0:8b:42:ae:64:3d:75:a7:f4:5e: 08:9c:ed:ed:a2:96:cf:fa:a7:71:0a:9b:eb:e0:48: 14:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:64:5B:F0:A6:0E:1A:70:77:AC:D6:D7:FD:A3:FA:5A:45:4D:75:F5 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.203.0/24 Signature Algorithm: sha256WithRSAEncryption b7:08:bb:cc:38:b8:ea:b7:62:04:38:61:fe:7a:98:70:38:a8: f3:e4:ec:c7:56:31:87:bb:2c:ed:86:42:fd:40:22:a5:af:9c: 24:26:77:df:ec:19:bb:7b:fb:2b:bb:4b:e5:15:c3:30:cf:0e: eb:5a:21:2c:31:4d:86:0b:e6:c5:63:4a:ba:0e:d7:b8:78:5c: 8d:6e:c7:82:a8:e4:bc:60:b6:fd:34:02:70:d0:8c:d4:2d:f5: 3b:c0:a0:ab:22:1c:79:1a:6d:ac:d9:62:67:a1:37:c2:00:81: 1c:c7:64:fe:48:1f:e0:49:a4:2a:07:60:90:18:18:ff:37:46: d6:b0:7f:e5:d4:bd:0f:07:23:02:b3:29:50:ef:b6:71:57:c0: cb:b8:6a:8e:93:34:c9:ce:c5:74:ed:9b:d8:96:73:46:ba:bf: b3:0a:d3:a8:e2:85:bb:82:26:8f:eb:2e:d9:f2:28:0a:03:51: b0:7a:2c:d5:b7:5c:30:5a:f7:7a:dd:08:8d:a6:9b:dc:91:78: 2f:3c:15:ab:1d:07:05:48:eb:b1:64:22:61:7b:4c:c2:b7:b6: 45:54:c9:e6:58:c0:f7:49:76:2f:63:7b:b3:f2:0b:4a:d2:8b: 80:8c:37:d4:69:48:c1:e2:b0:3a:d9:20:3b:3b:29:96:59:74: dd:65:f7:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG7yAmiAeX0dGqGFNE7JV44l0njMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MjUwNTU2MzBaFw0yNjA3MjQwNjAxMzBaMDMxMTAvBgNV BAMTKEI2NjQ1QkYwQTYwRTFBNzA3N0FDRDZEN0ZEQTNGQTVBNDU0RDc1RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpDQ7//JJNUTEQnPR47vHSSl14 wURMeS8xw+M1YB6XLXFsPODhnmOZtfwnanzBzjdyKx/j7z74UTUr6XluSXZNSJg4 vCR1kHSgyF4lajnIbSPEyATu1fOqCPCXciT6BxZTb2eUWuXa9fz0rqSJfuWur0tE MXAkOf4z7/D2mHrkUNdaXY5SD93/e4liDu4ugcMx111PBEWclHHzSA+xkqwRkhV8 ekg/25JhmpOvtFx3iwGgocxccDVCrlYztUitK1Gr37hnrxbU7nOf78Cm7T4EoFg6 4Xmc2H18+nxVNo/tEonJeK394ItCrmQ9daf0Xgic7e2ils/6p3EKm+vgSBShAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtmRb8KYOGnB3rNbX/aP6WkVNdfUwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKosswDQYJ KoZIhvcNAQELBQADggEBALcIu8w4uOq3YgQ4Yf56mHA4qPPk7MdWMYe7LO2GQv1A IqWvnCQmd9/sGbt7+yu7S+UVwzDPDutaISwxTYYL5sVjSroO17h4XI1ux4Ko5Lxg tv00AnDQjNQt9TvAoKsiHHkabazZYmehN8IAgRzHZP5IH+BJpCoHYJAYGP83Rtaw f+XUvQ8HIwKzKVDvtnFXwMu4ao6TNMnOxXTtm9iWc0a6v7MK06jihbuCJo/rLtny KAoDUbB6LNW3XDBa93rdCI2mm9yReC88FasdBwVI67FkImF7TMK3tkVUyeZYwPdJ di9je7PyC0rSi4CMN9RpSMHisDrZIDs7KZZZdN1l98k= -----END CERTIFICATE-----Generated at Fri Jul 25 18:27:07 2025 by rpki-client