$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34392e302f32342d3234203d3e203435333132.roa File: 3230322e38312e34392e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: 2BsP72/PropnwpH+STQ7Swn8LEWW4lD8zaRGoxTA15Y= Subject key identifier: 80:32:11:C8:82:44:0A:FB:E0:43:69:13:B6:4B:39:AD:28:90:8A:C5 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 0CC2B0D522BBA4F46EB7FB6DAE0412F4A8105302 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34392e302f32342d3234203d3e203435333132.roa Signing time: Mon 02 Jun 2025 02:03:14 +0000 ROA not before: Mon 02 Jun 2025 01:58:14 +0000 ROA not after: Mon 01 Jun 2026 02:03:14 +0000 asID: 45312 IP address blocks: 202.81.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 21:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c2:b0:d5:22:bb:a4:f4:6e:b7:fb:6d:ae:04:12:f4:a8:10:53:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Jun 2 01:58:14 2025 GMT Not After : Jun 1 02:03:14 2026 GMT Subject: CN=803211C882440AFBE0436913B64B39AD28908AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:19:f3:d6:89:e1:7c:0e:23:3a:d8:df:0e:96: a3:1f:f4:08:35:77:84:e9:53:b0:49:78:c7:04:db: 38:de:93:77:22:15:36:d8:33:3f:11:49:36:47:4b: 90:4d:0d:4d:ac:fa:b1:84:2f:ff:b8:77:27:79:d3: 94:b6:00:ea:9d:35:fc:2b:92:73:a9:48:65:2d:e1: cd:da:16:51:e3:bf:96:44:e6:4c:62:93:c9:93:4d: dd:34:8b:67:96:56:16:d8:ed:08:d6:58:06:44:34: a3:47:38:f3:1b:cb:b2:69:13:5f:59:2b:40:ee:84: ed:aa:e8:ca:6d:66:87:31:f5:bf:10:4f:3a:c0:58: cd:cb:9c:98:fd:f2:bb:ac:ea:9b:cc:2c:e5:80:24: d3:e0:91:d3:ba:b8:83:dd:5f:2b:37:d9:07:d4:92: fa:75:14:f9:d1:cb:94:5e:5c:de:ca:63:9a:4b:62: 43:2c:5a:a0:2a:0d:86:f9:29:51:f4:57:32:96:e2: 89:c5:ef:6f:cf:27:62:c2:8c:be:1c:f0:65:85:de: 0b:5b:3c:87:88:3e:47:2f:e0:85:63:2f:83:73:1f: 35:8e:80:4f:37:62:d4:d5:15:bc:13:7b:6a:84:30: 69:37:ee:0c:15:5e:ef:ac:d6:d5:e0:eb:92:6e:cd: cc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:32:11:C8:82:44:0A:FB:E0:43:69:13:B6:4B:39:AD:28:90:8A:C5 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e34392e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.81.49.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:c4:f2:d0:47:29:53:92:6f:5b:c8:d8:77:9d:ca:a4:a8:70: e6:2d:ba:21:81:d0:52:4f:e5:e7:64:f8:ff:12:ee:07:0b:1d: bb:3b:20:25:b7:55:d7:f0:d1:2d:1d:55:e5:5b:f8:ea:00:dc: 90:79:6c:23:42:cc:3c:60:3a:d6:41:54:fe:5b:8b:52:3e:cc: 47:ab:52:8f:9f:bf:1f:89:02:9e:ed:66:6d:55:ba:47:59:b3: b2:09:2b:b2:34:87:39:a9:39:05:a8:1a:12:99:ef:ff:77:79: 98:65:6b:83:11:7c:da:9f:28:5e:05:1b:81:25:04:21:6e:8d: d4:b5:28:79:a3:c4:01:15:eb:8c:7e:fc:40:fc:59:2e:f7:1a: bd:a9:8a:9f:b4:b7:bd:23:d0:2c:c7:f5:e7:dd:9d:98:58:ec: b1:ff:52:a1:0c:92:d4:4e:4b:c8:1f:46:50:fd:19:84:27:1d: ff:ba:6c:ca:5d:a9:60:dc:8b:4b:f8:cd:bc:46:52:5a:60:0e: 22:a8:8b:32:6f:61:65:92:6e:a7:41:d1:f1:9b:97:07:5b:b0: 6e:7e:7c:54:d2:aa:94:35:dd:e8:38:8d:76:04:72:ce:c7:01: 8e:5d:cc:d8:8f:3a:fd:41:f0:7a:55:b8:63:94:59:8b:03:7b: f8:96:ed:7d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDMKw1SK7pPRut/ttrgQS9KgQUwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTA2MDIwMTU4MTRaFw0yNjA2MDEwMjAzMTRaMDMxMTAvBgNV BAMTKDgwMzIxMUM4ODI0NDBBRkJFMDQzNjkxM0I2NEIzOUFEMjg5MDhBQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeGfPWieF8DiM62N8OlqMf9Ag1 d4TpU7BJeMcE2zjek3ciFTbYMz8RSTZHS5BNDU2s+rGEL/+4dyd505S2AOqdNfwr knOpSGUt4c3aFlHjv5ZE5kxik8mTTd00i2eWVhbY7QjWWAZENKNHOPMby7JpE19Z K0DuhO2q6MptZocx9b8QTzrAWM3LnJj98rus6pvMLOWAJNPgkdO6uIPdXys32QfU kvp1FPnRy5ReXN7KY5pLYkMsWqAqDYb5KVH0VzKW4onF72/PJ2LCjL4c8GWF3gtb PIeIPkcv4IVjL4NzHzWOgE83YtTVFbwTe2qEMGk37gwVXu+s1tXg65JuzcxtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUgDIRyIJECvvgQ2kTtks5rSiQisUwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzAzMjJlMzgzMTJlMzQzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKUTEwDQYJKoZIhvcN AQELBQADggEBAH/E8tBHKVOSb1vI2HedyqSocOYtuiGB0FJP5edk+P8S7gcLHbs7 ICW3Vdfw0S0dVeVb+OoA3JB5bCNCzDxgOtZBVP5bi1I+zEerUo+fvx+JAp7tZm1V ukdZs7IJK7I0hzmpOQWoGhKZ7/93eZhla4MRfNqfKF4FG4ElBCFujdS1KHmjxAEV 64x+/ED8WS73Gr2pip+0t70j0CzH9efdnZhY7LH/UqEMktROS8gfRlD9GYQnHf+6 bMpdqWDci0v4zbxGUlpgDiKoizJvYWWSbqdB0fGblwdbsG5+fFTSqpQ13eg4jXYE cs7HAY5dzNiPOv1B8HpVuGOUWYsDe/iW7X0= -----END CERTIFICATE-----Generated at Mon Nov 3 03:56:19 2025 by rpki-client