$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa File: 3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa (raw, json) Hash identifier: bcb47SdtlV0+rUuQrP25krobOWV4dOeRjxtP0NJ6Hg0= Subject key identifier: 03:47:C5:5E:78:36:76:41:D1:56:B4:B3:08:AC:63:E5:56:B8:C4:EA Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 1F79C4AE38E9E58D5F30DF5E080CD3CF208D5D18 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa Signing time: Tue 27 May 2025 11:00:00 +0000 ROA not before: Tue 27 May 2025 10:55:00 +0000 ROA not after: Tue 26 May 2026 11:00:00 +0000 asID: 45725 IP address blocks: 202.150.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:79:c4:ae:38:e9:e5:8d:5f:30:df:5e:08:0c:d3:cf:20:8d:5d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: May 27 10:55:00 2025 GMT Not After : May 26 11:00:00 2026 GMT Subject: CN=0347C55E78367641D156B4B308AC63E556B8C4EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d0:36:0e:c4:bd:3e:c7:3d:e2:58:f8:c4:1f: aa:c7:25:84:7d:68:35:5e:8f:5d:f8:54:e7:c1:8b: 6c:5d:d5:a0:a4:b1:bd:cd:7d:68:72:2f:6e:1d:3a: de:ca:4f:4a:81:1a:bb:1f:e8:2d:c2:c6:8c:d9:3c: 54:47:a0:b8:21:26:61:24:0c:02:43:7e:e9:c0:d7: b9:38:60:8b:2a:70:4a:57:4a:a6:19:19:a0:67:88: 54:b3:34:c4:97:2b:a3:be:93:05:f5:05:3f:d6:0e: bd:57:eb:b1:0e:0b:0a:b7:ea:5f:a0:91:48:21:fb: 34:ea:93:aa:d6:24:9f:69:9f:6c:58:b3:05:ae:fa: ee:45:11:bb:d0:68:6b:98:d8:8b:10:b3:55:bf:98: 8e:8a:95:8b:9d:26:ee:b7:17:e8:f0:4d:d5:09:82: c6:aa:f4:6e:8e:cf:d3:fb:6f:a8:6f:b0:ba:99:17: 75:12:db:73:21:56:7c:36:0a:ba:84:1d:4c:5c:43: db:5d:93:ef:40:ab:6c:ec:0b:e1:2b:4f:6f:c2:2a: bb:26:a8:1e:50:b8:11:7b:e2:aa:68:0b:bc:12:f6: 10:d4:ce:12:55:86:ec:26:79:18:f9:6b:08:38:66: 85:f9:1b:e0:62:c5:54:ab:65:f0:18:65:8c:d4:48: a2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:47:C5:5E:78:36:76:41:D1:56:B4:B3:08:AC:63:E5:56:B8:C4:EA X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.160.0/20 Signature Algorithm: sha256WithRSAEncryption 9e:d5:4e:86:11:d9:c1:58:4f:25:16:be:9e:7f:24:97:38:8c: 94:c0:44:2e:4d:73:1d:e1:3b:00:ea:87:b4:d0:e0:3b:0e:19: f8:53:9b:71:cb:07:95:40:c1:59:26:21:b0:c9:59:98:a8:e0: 98:1d:32:55:dd:ba:49:e2:98:73:5d:e2:69:02:71:3c:62:af: ab:da:05:dd:eb:ca:a8:23:7a:71:2c:d1:5f:2e:1b:55:ba:a0: 7c:b5:51:63:07:d5:fd:95:c8:30:8b:38:fd:79:a4:50:47:d1: c4:2c:97:f3:50:45:36:30:e5:7b:b9:d8:a6:24:59:3c:70:c4: c8:70:d5:e4:12:8d:18:ad:19:78:73:60:50:da:ea:70:f6:22: 35:de:25:9d:c8:b9:d9:82:93:8f:39:58:19:1a:f6:33:b1:9d: d0:ad:ab:74:21:82:c0:8d:fe:ec:eb:14:21:04:b3:58:d7:0d: 35:41:a0:89:47:b9:9b:73:30:41:81:7e:0b:2b:77:9b:f8:ea: e4:91:13:5c:37:c0:5c:bc:ad:42:4b:c8:b4:2f:ef:6a:4b:6e: 30:97:3e:f8:e1:b8:33:3a:bd:74:77:45:a5:d2:91:bc:81:41: 34:55:01:a3:54:85:04:c6:a6:d7:c8:3d:db:a0:99:b8:d3:9e: 08:f0:df:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH3nErjjp5Y1fMN9eCAzTzyCNXRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA1MjcxMDU1MDBaFw0yNjA1MjYxMTAwMDBaMDMxMTAvBgNV BAMTKDAzNDdDNTVFNzgzNjc2NDFEMTU2QjRCMzA4QUM2M0U1NTZCOEM0RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN0DYOxL0+xz3iWPjEH6rHJYR9 aDVej134VOfBi2xd1aCksb3NfWhyL24dOt7KT0qBGrsf6C3CxozZPFRHoLghJmEk DAJDfunA17k4YIsqcEpXSqYZGaBniFSzNMSXK6O+kwX1BT/WDr1X67EOCwq36l+g kUgh+zTqk6rWJJ9pn2xYswWu+u5FEbvQaGuY2IsQs1W/mI6KlYudJu63F+jwTdUJ gsaq9G6Oz9P7b6hvsLqZF3US23MhVnw2CrqEHUxcQ9tdk+9Aq2zsC+ErT2/CKrsm qB5QuBF74qpoC7wS9hDUzhJVhuwmeRj5awg4ZoX5G+BixVSrZfAYZYzUSKKNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA0fFXng2dkHRVrSzCKxj5Va4xOowHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzAyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypagMA0GCSqG SIb3DQEBCwUAA4IBAQCe1U6GEdnBWE8lFr6efySXOIyUwEQuTXMd4TsA6oe00OA7 Dhn4U5txyweVQMFZJiGwyVmYqOCYHTJV3bpJ4phzXeJpAnE8Yq+r2gXd68qoI3px LNFfLhtVuqB8tVFjB9X9lcgwizj9eaRQR9HELJfzUEU2MOV7udimJFk8cMTIcNXk Eo0YrRl4c2BQ2upw9iI13iWdyLnZgpOPOVgZGvYzsZ3Qrat0IYLAjf7s6xQhBLNY 1w01QaCJR7mbczBBgX4LK3eb+OrkkRNcN8BcvK1CS8i0L+9qS24wlz744bgzOr10 d0Wl0pG8gUE0VQGjVIUExqbXyD3boJm4054I8N/4 -----END CERTIFICATE-----Generated at Sat Jun 7 04:30:15 2025 by rpki-client