$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/33362e33372e36342e302f32342d3234203d3e2034383030.roa File: 33362e33372e36342e302f32342d3234203d3e2034383030.roa (raw, json) Hash identifier: eJ5VhuPBacI/3QrxI8BxJpmtV+2mBRYLCIu8hFx6rjk= Subject key identifier: 2C:56:9C:1D:F0:54:C0:68:92:E2:30:1A:07:97:FB:BB:34:2D:3B:A1 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 4963A962CC659AE5012A23EA4E4D10B24CFA8AB6 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/33362e33372e36342e302f32342d3234203d3e2034383030.roa Signing time: Thu 12 Mar 2026 04:04:24 +0000 ROA not before: Thu 12 Mar 2026 03:59:24 +0000 ROA not after: Thu 11 Mar 2027 04:04:24 +0000 asID: 4800 IP address blocks: 36.37.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 11:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:63:a9:62:cc:65:9a:e5:01:2a:23:ea:4e:4d:10:b2:4c:fa:8a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Mar 12 03:59:24 2026 GMT Not After : Mar 11 04:04:24 2027 GMT Subject: CN=2C569C1DF054C06892E2301A0797FBBB342D3BA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7a:a7:26:ab:62:0f:4d:ee:0f:a1:0e:ca:1f: 90:c0:28:7d:76:3f:d3:3c:16:57:d9:9e:98:eb:1f: 5b:05:eb:c3:48:78:26:f3:33:d9:ff:1e:5d:69:07: 83:70:c5:a8:f0:17:db:8f:7a:2e:4f:bf:6c:93:72: 1d:11:fe:c3:f3:77:ed:ab:4f:e7:43:71:8a:49:30: 4b:b3:d5:4b:21:22:fa:25:75:62:97:3f:4a:ae:51: f7:87:44:ba:8a:2c:c2:50:fb:b5:6f:2a:14:ad:97: e0:6a:29:90:8f:b9:99:58:3d:a7:55:71:93:93:c5: d0:83:cc:41:8a:8e:23:c6:92:58:5e:15:ce:e8:b3: ea:db:4b:39:df:ba:7c:b5:a4:07:fb:d3:df:8e:57: 2f:94:18:01:81:c5:1d:c2:5f:e7:3b:8f:15:b0:91: 2f:b5:91:6b:66:d0:b0:ea:97:37:34:47:b7:9c:23: 22:12:a0:ef:2e:b5:64:40:65:01:6a:2d:53:d1:3f: 99:1d:0b:fd:ba:c3:6c:36:5f:3e:c0:6b:26:65:f1: 30:c2:58:0f:f2:3f:9c:44:89:68:90:d1:c0:e8:8d: ab:21:cc:ff:c3:8f:91:8b:d8:35:b5:01:fa:76:2a: 1c:4c:8b:9b:65:9e:e2:bd:66:7c:63:5a:00:22:48: 78:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:56:9C:1D:F0:54:C0:68:92:E2:30:1A:07:97:FB:BB:34:2D:3B:A1 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/33362e33372e36342e302f32342d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.37.64.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:a7:86:ff:29:12:21:ec:e2:d7:79:71:e3:df:c7:b6:c7:aa: ac:e9:f7:34:a6:08:45:0f:31:f9:02:e7:61:70:55:88:96:6f: f9:64:74:68:6e:25:83:0a:7f:da:fa:4e:0c:3d:6e:ea:4a:b1: 93:3b:f9:d5:6f:34:9d:60:c1:6e:da:59:f7:bb:4c:79:85:4b: 20:2c:e1:8a:c1:f4:96:19:ae:da:33:76:7b:b6:55:29:d3:05: 3b:34:7b:25:3e:d1:04:dc:7d:99:d6:52:08:bc:73:73:38:6b: aa:36:1d:d6:8e:41:ee:ee:6c:08:e4:89:8d:23:fc:0b:10:a1: 15:82:d4:9e:81:ac:e8:9f:10:d9:12:7e:ab:e4:97:c0:36:47: df:d3:29:32:0a:dc:de:36:90:3d:d0:19:1d:cc:02:7f:1c:7a: 85:23:f0:a0:c7:09:e6:5b:03:18:e8:0e:41:85:d1:35:6f:2b: 59:3e:3a:37:ef:7a:9d:62:4e:84:51:0c:76:f6:26:01:9e:a7: d6:c8:b5:30:32:1d:4d:29:00:a0:67:23:ff:8f:d5:9e:4e:73: e6:08:88:5e:8e:2b:a9:dc:ed:d8:10:87:f5:f7:5e:70:6a:7c: d2:98:8d:d9:3e:95:11:dd:62:17:30:ff:09:f4:7c:6b:32:2d: 23:29:d9:d8 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUSWOpYsxlmuUBKiPqTk0Qskz6irYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNjAzMTIwMzU5MjRaFw0yNzAzMTEwNDA0MjRaMDMxMTAvBgNV BAMTKDJDNTY5QzFERjA1NEMwNjg5MkUyMzAxQTA3OTdGQkJCMzQyRDNCQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaeqcmq2IPTe4PoQ7KH5DAKH12 P9M8FlfZnpjrH1sF68NIeCbzM9n/Hl1pB4NwxajwF9uPei5Pv2yTch0R/sPzd+2r T+dDcYpJMEuz1UshIvoldWKXP0quUfeHRLqKLMJQ+7VvKhStl+BqKZCPuZlYPadV cZOTxdCDzEGKjiPGklheFc7os+rbSznfuny1pAf709+OVy+UGAGBxR3CX+c7jxWw kS+1kWtm0LDqlzc0R7ecIyISoO8utWRAZQFqLVPRP5kdC/26w2w2Xz7AayZl8TDC WA/yP5xEiWiQ0cDojashzP/Dj5GL2DW1Afp2KhxMi5tlnuK9ZnxjWgAiSHi1AgMB AAGjggIrMIICJzAdBgNVHQ4EFgQULFacHfBUwGiS4jAaB5f7uzQtO6EwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTVjZTM2ZGUtZjkyMS00Mjc0LTg0 OTctMjk4N2Q5MDk1NDNlLzAvMzMzNjJlMzMzNzJlMzYzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJCVAMA0GCSqGSIb3DQEBCwUA A4IBAQA6p4b/KRIh7OLXeXHj38e2x6qs6fc0pghFDzH5AudhcFWIlm/5ZHRobiWD Cn/a+k4MPW7qSrGTO/nVbzSdYMFu2ln3u0x5hUsgLOGKwfSWGa7aM3Z7tlUp0wU7 NHslPtEE3H2Z1lIIvHNzOGuqNh3WjkHu7mwI5ImNI/wLEKEVgtSegazonxDZEn6r 5JfANkff0ykyCtzeNpA90BkdzAJ/HHqFI/CgxwnmWwMY6A5BhdE1bytZPjo373qd Yk6EUQx29iYBnqfWyLUwMh1NKQCgZyP/j9WeTnPmCIhejiup3O3YEIf1915wanzS mI3ZPpUR3WIXMP8J9HxrMi0jKdnY -----END CERTIFICATE-----Generated at Thu Mar 26 18:58:48 2026 by rpki-client