$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa File: 3230322e35322e31322e302f32322d3234203d3e203535363533.roa (raw, json) Hash identifier: r4N7YVGjSR/vf/OS/81YrBx8jNMdTo+vkJbDS2Aeqlg= Subject key identifier: BC:FA:C6:80:B6:EC:EC:8B:BD:9A:CF:9C:E8:9B:0A:61:47:B9:D1:7F Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 0E04DAD4AD561902DF97A27912C62C921469367D Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa Signing time: Mon 02 Jun 2025 02:04:06 +0000 ROA not before: Mon 02 Jun 2025 01:59:06 +0000 ROA not after: Mon 01 Jun 2026 02:04:06 +0000 asID: 55653 IP address blocks: 202.52.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:04:da:d4:ad:56:19:02:df:97:a2:79:12:c6:2c:92:14:69:36:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jun 2 01:59:06 2025 GMT Not After : Jun 1 02:04:06 2026 GMT Subject: CN=BCFAC680B6ECEC8BBD9ACF9CE89B0A6147B9D17F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1d:bc:1a:d0:d3:7c:3b:90:8a:c6:af:1b:ef: 24:c0:10:04:15:80:0d:d8:91:b3:ea:7a:44:ab:4d: 27:6d:dc:9e:29:2b:39:a0:f8:cc:99:2e:fb:9a:34: f5:be:df:79:96:93:ff:4a:11:3c:de:fc:5d:3d:dc: c7:ac:03:24:78:e0:4c:ca:37:b7:1b:e5:32:3b:93: a0:15:27:d8:8e:60:19:ec:c7:44:ca:b6:98:07:5c: d4:8d:85:ae:a7:4a:34:04:e8:59:2d:f6:d3:d1:c9: e5:c8:fd:d1:8a:65:92:25:dc:9d:fa:5c:54:ae:67: 78:0b:a4:b2:a0:3b:de:d9:c9:37:b8:e9:72:1a:a8: 0c:49:ce:d3:b3:93:ec:ca:89:a0:9a:8f:4e:7d:46: 39:d4:9a:66:9c:a1:31:94:6d:e5:1b:0d:6a:ce:0c: 22:67:9d:14:d1:31:96:a3:cc:2f:15:84:e8:b6:5f: b7:9b:6d:08:ef:cb:45:5c:1b:fd:36:2b:9f:06:7a: 39:b4:75:77:98:97:38:77:5c:7a:f2:e7:69:46:ec: 20:bb:45:c9:4f:25:e8:61:f0:2f:dc:28:66:a9:58: 5f:56:06:6d:c2:4c:58:fd:19:46:2e:8b:dd:6b:25: 5e:6b:6c:17:b2:65:bf:4e:90:8b:d3:cd:0d:86:fa: e1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FA:C6:80:B6:EC:EC:8B:BD:9A:CF:9C:E8:9B:0A:61:47:B9:D1:7F X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.12.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:a6:c9:8c:81:3b:d3:4c:2f:dd:2a:29:2a:80:7d:2c:58:90: be:00:97:81:a8:55:f1:9f:31:54:b5:dc:60:76:ec:93:93:3e: 95:04:a5:c4:0e:8a:03:98:b5:f1:79:d5:43:de:f6:8a:0d:cb: 61:5c:6b:a1:50:9f:15:62:49:6c:e5:fa:13:e0:86:03:4d:3e: 14:15:f3:97:f5:c9:ba:b5:96:25:a5:64:c1:fe:dd:bf:86:a1: 3e:3c:77:23:ba:82:ac:c6:13:4e:28:34:0f:79:e0:5f:5f:2e: cb:14:11:51:cd:bb:8e:9b:32:d0:c7:68:44:b9:19:05:46:77: 3b:35:14:5b:94:bd:57:8e:81:b6:fd:a0:27:bf:09:7f:01:fe: a7:29:a5:9a:12:65:c7:e7:08:e9:97:03:fe:c0:0e:eb:75:97: 39:42:d1:cc:97:45:ff:12:89:fb:83:66:b8:4e:fb:0b:fe:a3: 76:38:00:03:97:38:a5:8a:e7:44:54:87:f4:f3:3d:9d:ea:61: 42:03:99:c2:67:ee:c7:e1:be:c2:9c:f2:f8:87:7c:97:b0:62: f7:8b:f9:8d:7b:57:76:5c:5c:71:d8:3d:20:5d:c5:ca:3e:69: 00:bc:e5:11:17:1c:e1:0a:67:a0:a2:65:ae:03:ea:37:2f:f5: 2f:76:99:a0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDgTa1K1WGQLfl6J5EsYskhRpNn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNTA2MDIwMTU5MDZaFw0yNjA2MDEwMjA0MDZaMDMxMTAvBgNV BAMTKEJDRkFDNjgwQjZFQ0VDOEJCRDlBQ0Y5Q0U4OUIwQTYxNDdCOUQxN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDHbwa0NN8O5CKxq8b7yTAEAQV gA3YkbPqekSrTSdt3J4pKzmg+MyZLvuaNPW+33mWk/9KETze/F093MesAyR44EzK N7cb5TI7k6AVJ9iOYBnsx0TKtpgHXNSNha6nSjQE6Fkt9tPRyeXI/dGKZZIl3J36 XFSuZ3gLpLKgO97ZyTe46XIaqAxJztOzk+zKiaCaj059RjnUmmacoTGUbeUbDWrO DCJnnRTRMZajzC8VhOi2X7ebbQjvy0VcG/02K58Gejm0dXeYlzh3XHry52lG7CC7 RclPJehh8C/cKGapWF9WBm3CTFj9GUYui91rJV5rbBeyZb9OkIvTzQ2G+uFtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvPrGgLbs7Iu9ms+c6JsKYUe50X8wHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzAzMjJlMzUzMjJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKNAwwDQYJKoZIhvcN AQELBQADggEBADymyYyBO9NML90qKSqAfSxYkL4Al4GoVfGfMVS13GB27JOTPpUE pcQOigOYtfF51UPe9ooNy2Fca6FQnxViSWzl+hPghgNNPhQV85f1ybq1liWlZMH+ 3b+GoT48dyO6gqzGE04oNA954F9fLssUEVHNu46bMtDHaES5GQVGdzs1FFuUvVeO gbb9oCe/CX8B/qcppZoSZcfnCOmXA/7ADut1lzlC0cyXRf8SifuDZrhO+wv+o3Y4 AAOXOKWK50RUh/TzPZ3qYUIDmcJn7sfhvsKc8viHfJewYveL+Y17V3ZcXHHYPSBd xco+aQC85REXHOEKZ6CiZa4D6jcv9S92maA= -----END CERTIFICATE-----Generated at Sat Jun 7 11:53:21 2025 by rpki-client