$ rpki-client -vvf repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/33362e35302e34342e302f32332d3234203d3e20313532303130.roa File: 33362e35302e34342e302f32332d3234203d3e20313532303130.roa (raw, json) Hash identifier: homg5w1o8Ac7RkByH0/Fbb96kiXTeJPDkxjgg7Q4x1k= Subject key identifier: 12:A3:EF:69:37:4A:E1:F7:B2:55:DC:99:04:27:14:43:0B:B6:09:8A Certificate issuer: /CN=3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4 Certificate serial: 7F6A2FC28F36EC131F6B2AFB4B63803455A9E25A Authority key identifier: 3C:EC:A6:A5:D2:B1:38:F5:E0:5C:E8:15:D6:A9:D9:05:E9:E0:7B:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/33362e35302e34342e302f32332d3234203d3e20313532303130.roa Signing time: Tue 30 Sep 2025 09:00:01 +0000 ROA not before: Tue 30 Sep 2025 08:55:01 +0000 ROA not after: Tue 29 Sep 2026 09:00:01 +0000 asID: 152010 IP address blocks: 36.50.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.crl rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6a:2f:c2:8f:36:ec:13:1f:6b:2a:fb:4b:63:80:34:55:a9:e2:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4 Validity Not Before: Sep 30 08:55:01 2025 GMT Not After : Sep 29 09:00:01 2026 GMT Subject: CN=12A3EF69374AE1F7B255DC99042714430BB6098A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3f:bb:38:c5:68:92:70:15:a3:0f:e7:22:b2: 4f:c7:3a:ee:ee:e6:3c:dd:3f:a2:fc:c0:e5:03:c5: 03:ed:99:49:ad:8b:60:7f:a3:96:1e:d2:ef:a8:29: 55:a8:81:b5:a4:04:b7:58:0f:b9:73:72:c7:fd:01: 48:c0:00:ee:f8:25:44:f5:7a:dc:52:d2:db:21:19: 04:19:ff:e4:20:65:5a:a9:c5:19:62:06:ca:18:d2: 90:67:ef:48:ce:02:d1:1e:2f:3d:68:74:73:02:0d: b0:e8:cb:f5:8b:f2:07:3c:09:bc:d1:03:07:54:e5: 75:bb:ff:f9:43:f0:bf:77:18:c0:42:ec:4b:df:ff: b3:c7:5a:53:df:7a:0b:8f:13:e8:4b:b9:34:26:30: 2f:8c:a4:4f:c0:35:5d:e8:8e:ec:fa:2f:a4:42:30: 2a:20:17:7b:5f:bb:55:13:ef:d2:e9:6d:ff:7d:4a: ac:99:f2:c9:22:bc:a5:12:1c:34:7f:06:6a:3c:09: fb:57:5d:d5:4e:10:4d:7c:c6:f3:b3:9b:d4:a0:08: 49:1d:ec:9d:5f:63:df:99:e0:88:c4:2b:64:7c:64: 35:83:24:7f:83:da:7f:30:41:77:ba:f0:87:ec:2d: e3:82:a5:eb:6f:8a:cc:13:db:d5:9e:30:4c:e0:ed: 61:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A3:EF:69:37:4A:E1:F7:B2:55:DC:99:04:27:14:43:0B:B6:09:8A X509v3 Authority Key Identifier: keyid:3C:EC:A6:A5:D2:B1:38:F5:E0:5C:E8:15:D6:A9:D9:05:E9:E0:7B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CECA6A5D2B138F5E05CE815D6A9D905E9E07BF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/248ec5eb-0354-4d87-b2be-08ffad4aa06a/0/33362e35302e34342e302f32332d3234203d3e20313532303130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.44.0/23 Signature Algorithm: sha256WithRSAEncryption c9:c9:06:9c:42:7c:a5:e6:39:3e:2f:d6:38:34:d0:bf:10:6f: 2d:4c:49:13:bb:e5:d8:09:3e:91:45:82:15:47:fc:e2:37:f5: eb:d2:ba:12:69:04:05:59:a0:73:84:d4:95:8d:e8:f1:c8:81: 84:3c:5c:41:ac:a2:a4:ef:b6:b1:61:b7:dc:a2:54:d6:e3:b1: 87:7b:f0:14:2d:fb:b9:64:c1:8a:e8:44:2a:c6:17:92:47:cf: 5a:2f:a0:a5:f5:51:d0:62:07:b8:77:49:c6:7d:d9:9d:e8:12: 90:94:fe:3e:b7:91:4c:19:41:9f:4c:b9:12:2b:f1:c9:5b:70: 73:63:53:c0:af:41:92:3f:08:e7:b4:4f:fa:73:0f:70:0e:80: d4:4e:79:ee:e1:cb:b7:f6:49:37:e4:d6:dd:b2:4c:e0:2d:b7: 47:74:9d:4f:df:3f:23:c4:4b:83:a0:ee:3c:91:6a:e0:fc:86: 5a:59:7c:df:d8:84:41:e7:e7:54:95:e7:ed:53:1e:c0:57:3e: 71:b6:b3:f4:4e:3a:88:0a:0d:43:c2:fe:27:72:e1:c1:85:8f: 56:44:cc:f5:56:ba:1e:50:74:a0:37:e8:c5:7c:cb:2e:b6:38: 44:cc:e5:0a:00:a8:6b:61:1d:bd:7e:e4:96:56:89:08:68:56: 74:f3:78:cd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUf2ovwo827BMfayr7S2OANFWp4lowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NFQ0E2QTVEMkIxMzhGNUUwNUNFODE1RDZBOUQ5MDVF OUUwN0JGNDAeFw0yNTA5MzAwODU1MDFaFw0yNjA5MjkwOTAwMDFaMDMxMTAvBgNV BAMTKDEyQTNFRjY5Mzc0QUUxRjdCMjU1REM5OTA0MjcxNDQzMEJCNjA5OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClP7s4xWiScBWjD+cisk/HOu7u 5jzdP6L8wOUDxQPtmUmti2B/o5Ye0u+oKVWogbWkBLdYD7lzcsf9AUjAAO74JUT1 etxS0tshGQQZ/+QgZVqpxRliBsoY0pBn70jOAtEeLz1odHMCDbDoy/WL8gc8CbzR AwdU5XW7//lD8L93GMBC7Evf/7PHWlPfeguPE+hLuTQmMC+MpE/ANV3ojuz6L6RC MCogF3tfu1UT79Lpbf99SqyZ8skivKUSHDR/Bmo8CftXXdVOEE18xvOzm9SgCEkd 7J1fY9+Z4IjEK2R8ZDWDJH+D2n8wQXe68IfsLeOCpetviswT29WeMEzg7WHZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEqPvaTdK4feyVdyZBCcUQwu2CYowHwYDVR0j BBgwFoAUPOympdKxOPXgXOgV1qnZBenge/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDhlYzVlYi0wMzU0LTRkODctYjJiZS0wOGZmYWQ0YWEwNmEvMC8zQ0VDQTZBNUQy QjEzOEY1RTA1Q0U4MTVENkE5RDkwNUU5RTA3QkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0NFQ0E2QTVEMkIxMzhGNUUwNUNFODE1RDZBOUQ5MDVFOUUw N0JGNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OGVjNWViLTAzNTQtNGQ4Ny1i MmJlLTA4ZmZhZDRhYTA2YS8wLzMzMzYyZTM1MzAyZTM0MzQyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM1MzIzMDMxMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEkMiwwDQYJKoZIhvcN AQELBQADggEBAMnJBpxCfKXmOT4v1jg00L8Qby1MSRO75dgJPpFFghVH/OI39evS uhJpBAVZoHOE1JWN6PHIgYQ8XEGsoqTvtrFht9yiVNbjsYd78BQt+7lkwYroRCrG F5JHz1ovoKX1UdBiB7h3ScZ92Z3oEpCU/j63kUwZQZ9MuRIr8clbcHNjU8CvQZI/ COe0T/pzD3AOgNROee7hy7f2STfk1t2yTOAtt0d0nU/fPyPES4Og7jyRauD8hlpZ fN/YhEHn51SV5+1THsBXPnG2s/ROOogKDUPC/idy4cGFj1ZEzPVWuh5QdKA36MV8 yy62OETM5QoAqGthHb1+5JZWiQhoVnTzeM0= -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:58 2025 by rpki-client