$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3230203d3e203435373235.roa File: 3230322e3135302e3136302e302f32302d3230203d3e203435373235.roa (raw, json) Hash identifier: xQ4Ul97jwoDNyJ2eG9oO4TTlF8xSqcDLgnke6Urqw3k= Subject key identifier: E1:46:95:D3:A0:03:D2:28:BB:18:56:D2:E1:4C:D4:DE:0A:5C:8D:1E Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 1134707EF4B1E5D846C436C9DA12451811077A74 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3230203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:16:41 +0000 ROA not before: Sun 06 Apr 2025 15:11:41 +0000 ROA not after: Sun 05 Apr 2026 15:16:41 +0000 asID: 45725 IP address blocks: 202.150.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 21:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:34:70:7e:f4:b1:e5:d8:46:c4:36:c9:da:12:45:18:11:07:7a:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:11:41 2025 GMT Not After : Apr 5 15:16:41 2026 GMT Subject: CN=E14695D3A003D228BB1856D2E14CD4DE0A5C8D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:58:72:a8:bd:9c:87:ef:d0:bf:83:a8:a0:17: 56:52:61:39:00:8d:48:c6:3c:68:40:56:d3:76:8c: af:61:28:e8:bb:af:6e:6f:22:af:88:e1:5a:18:77: 5a:01:46:5b:39:41:0e:e5:76:61:dd:13:6f:c4:50: 01:03:81:f0:26:22:7d:29:63:18:4f:26:aa:13:96: a1:e3:5a:c7:90:1a:e8:9b:46:d9:89:93:d5:91:85: 14:e7:b5:95:6b:d6:53:c4:b9:d7:e0:08:ee:69:8b: 91:2c:a6:17:da:cc:37:38:85:dd:a6:61:4b:fc:01: 25:50:80:21:36:95:1d:37:0d:77:e6:e8:45:e9:62: 53:ce:c5:54:d6:f9:f2:9f:73:fa:74:85:03:dc:37: 72:2d:2a:e0:a4:cb:a8:86:23:ea:26:64:14:34:d2: 37:8c:73:c5:bd:1e:6d:2a:83:8b:ad:2e:d3:9e:6d: fd:f5:42:d9:a5:30:a3:2f:18:ab:f4:3f:8b:eb:92: a7:08:30:50:6b:d0:7f:18:e6:22:97:84:56:7f:89: 9a:6a:ca:f8:54:3f:5e:a3:53:27:05:a3:ad:42:9f: 58:ca:4a:9b:58:c3:a3:ed:35:4f:22:c2:b4:9c:25: 59:06:30:62:c1:65:9b:1d:df:58:43:75:c7:37:e4: bd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:46:95:D3:A0:03:D2:28:BB:18:56:D2:E1:4C:D4:DE:0A:5C:8D:1E X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3230203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.160.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:5a:6c:1f:4d:9c:26:22:50:ec:10:4c:78:05:ce:37:5b:89: 40:12:44:d0:ee:64:71:5b:63:77:02:3f:94:e2:e8:03:51:1c: 3d:5a:07:61:9d:49:c4:6d:cc:ba:86:75:58:69:36:34:4b:cc: 5e:68:4f:b8:92:b9:5b:45:1f:ea:38:36:37:4d:38:00:50:f9: 1c:74:5c:31:8c:ac:d9:e4:7c:42:5d:78:18:7c:e9:10:aa:63: 73:cd:05:ac:28:69:07:6e:0a:23:51:ba:78:f0:ce:7f:eb:96: ab:6b:a6:ee:d8:6b:14:24:6c:42:53:ba:e3:f6:c2:41:eb:4b: 01:0d:7f:51:80:5c:56:32:5f:12:98:c1:59:a7:cb:09:0d:49: 4b:bf:93:5d:6d:e9:08:de:f7:d3:f3:ab:88:a4:27:ea:a4:76: 46:4c:7c:29:27:cb:12:42:b9:2b:cb:e0:28:2f:01:19:b1:65: 84:06:83:d7:4a:9e:ea:60:23:35:6c:64:81:b6:68:d7:59:5e: 32:a3:97:e3:ba:0d:1a:a7:d1:2b:4c:93:4a:61:af:7f:0f:f0: 20:7f:e8:75:41:52:b5:6c:e5:81:74:b6:95:23:32:cd:a4:67: 23:b1:29:81:d2:4f:dd:e7:d7:f1:37:6d:52:6e:44:c2:34:9b: f0:94:9e:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUETRwfvSx5dhGxDbJ2hJFGBEHenQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTExNDFaFw0yNjA0MDUxNTE2NDFaMDMxMTAvBgNV BAMTKEUxNDY5NUQzQTAwM0QyMjhCQjE4NTZEMkUxNENENERFMEE1QzhEMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiWHKovZyH79C/g6igF1ZSYTkA jUjGPGhAVtN2jK9hKOi7r25vIq+I4VoYd1oBRls5QQ7ldmHdE2/EUAEDgfAmIn0p YxhPJqoTlqHjWseQGuibRtmJk9WRhRTntZVr1lPEudfgCO5pi5EsphfazDc4hd2m YUv8ASVQgCE2lR03DXfm6EXpYlPOxVTW+fKfc/p0hQPcN3ItKuCky6iGI+omZBQ0 0jeMc8W9Hm0qg4utLtOebf31QtmlMKMvGKv0P4vrkqcIMFBr0H8Y5iKXhFZ/iZpq yvhUP16jUycFo61Cn1jKSptYw6PtNU8iwrScJVkGMGLBZZsd31hDdcc35L1hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4UaV06AD0ii7GFbS4UzU3gpcjR4wHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzAyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypagMA0GCSqG SIb3DQEBCwUAA4IBAQCKWmwfTZwmIlDsEEx4Bc43W4lAEkTQ7mRxW2N3Aj+U4ugD URw9WgdhnUnEbcy6hnVYaTY0S8xeaE+4krlbRR/qODY3TTgAUPkcdFwxjKzZ5HxC XXgYfOkQqmNzzQWsKGkHbgojUbp48M5/65ara6bu2GsUJGxCU7rj9sJB60sBDX9R gFxWMl8SmMFZp8sJDUlLv5NdbekI3vfT86uIpCfqpHZGTHwpJ8sSQrkry+AoLwEZ sWWEBoPXSp7qYCM1bGSBtmjXWV4yo5fjug0ap9ErTJNKYa9/D/Agf+h1QVK1bOWB dLaVIzLNpGcjsSmB0k/d59fxN21SbkTCNJvwlJ6g -----END CERTIFICATE-----Generated at Thu Apr 17 22:37:08 2025 by rpki-client