$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e35352e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: i8tvPVoOum4nG9XrD2ntRcWq9sGCP+uCSaIJBxU6rDw= Subject key identifier: 63:C0:8E:73:0A:BD:28:07:39:08:63:D2:1B:9A:A2:84:C9:51:F9:54 Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 1ACAF275C82F585F83FA5817DF89B1B91BC33F4B Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa Signing time: Thu 14 Aug 2025 06:00:00 +0000 ROA not before: Thu 14 Aug 2025 05:55:00 +0000 ROA not after: Thu 13 Aug 2026 06:00:00 +0000 asID: 38145 IP address blocks: 202.180.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 03:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ca:f2:75:c8:2f:58:5f:83:fa:58:17:df:89:b1:b9:1b:c3:3f:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Aug 14 05:55:00 2025 GMT Not After : Aug 13 06:00:00 2026 GMT Subject: CN=63C08E730ABD2807390863D21B9AA284C951F954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7f:4d:40:17:71:82:31:b2:65:96:0e:9e:8e: 14:76:c6:57:b5:9d:b5:51:9b:88:bf:89:96:75:71: 02:aa:15:75:83:0e:29:c3:81:46:d6:76:d5:44:97: 19:f4:96:f4:7b:09:99:ed:a0:a9:33:14:d3:88:c6: 92:35:96:7d:0f:e3:b4:47:43:8d:93:ae:74:d7:87: 52:d4:a2:e9:3d:6b:9f:3e:c0:99:8b:a2:65:40:2a: 3b:96:d3:60:90:8b:0b:62:b9:99:b9:20:03:b1:1f: 4e:94:a4:f0:d0:8e:57:74:cc:a7:16:a4:4d:81:3a: 43:9b:ca:0f:0d:45:d0:72:64:5e:d3:d1:12:18:a0: 48:0a:1d:89:f6:4b:d9:4b:14:33:5d:29:91:04:cf: 85:e5:73:cd:eb:4b:23:a8:46:f0:b4:81:6e:3d:65: a6:0b:48:06:ff:00:4c:bd:a2:a3:5e:14:ef:17:74: 2f:39:45:a3:53:ae:bd:7a:90:09:55:96:66:42:55: 84:90:a2:54:1e:40:c0:da:24:ed:26:4f:2f:1c:10: 17:5a:d9:50:2d:35:bd:11:21:29:88:b8:87:2c:00: c5:32:7c:9f:5a:3c:2c:40:d5:af:9e:98:5a:b3:a1: 4f:db:32:a1:b1:5d:79:ab:d9:b1:69:24:7e:09:3d: b5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C0:8E:73:0A:BD:28:07:39:08:63:D2:1B:9A:A2:84:C9:51:F9:54 X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.55.0/24 Signature Algorithm: sha256WithRSAEncryption ae:80:6a:dc:1d:69:b6:38:35:b7:e8:e3:a4:75:90:f9:ce:12: 32:ff:91:7b:9c:af:fa:6b:41:19:07:da:97:ac:8d:14:91:9d: d6:18:02:dc:30:94:2f:b8:77:01:81:c6:80:0a:97:c4:8b:53: 87:97:69:c5:24:c6:5d:12:33:ce:79:a3:b9:72:20:68:75:5a: 58:82:fe:d8:7a:49:32:de:bf:c9:14:dd:c7:29:8e:4e:83:68: eb:3c:76:21:9d:1a:29:6c:5c:48:3e:c6:53:53:0b:5c:22:b8: 83:ba:22:5c:f1:ed:0e:46:9a:32:66:ea:cd:41:e5:9a:dc:cc: 05:53:aa:c6:70:1d:a6:dc:0a:99:c5:16:5a:7e:cb:c1:24:11: 4f:31:73:76:f0:be:53:a9:fd:5b:cc:7b:fe:e6:9a:86:48:38: d5:b0:fe:af:4b:28:3b:0f:e5:b1:80:a7:00:76:ab:06:36:59: 47:1e:a7:38:81:93:5e:b1:62:6b:3a:a5:45:31:87:a9:03:4b: 5c:91:b8:9c:8e:fc:6c:59:a0:92:1f:90:6e:83:06:d8:08:e7: e6:6e:9c:cc:e1:53:b8:15:72:63:0e:b2:44:f8:65:93:63:c4: 40:f9:d9:a0:33:dd:4d:b6:29:ef:59:4d:5d:21:00:1b:f6:de: 44:ba:18:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGsrydcgvWF+D+lgX34mxuRvDP0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yNTA4MTQwNTU1MDBaFw0yNjA4MTMwNjAwMDBaMDMxMTAvBgNV BAMTKDYzQzA4RTczMEFCRDI4MDczOTA4NjNEMjFCOUFBMjg0Qzk1MUY5NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrf01AF3GCMbJllg6ejhR2xle1 nbVRm4i/iZZ1cQKqFXWDDinDgUbWdtVElxn0lvR7CZntoKkzFNOIxpI1ln0P47RH Q42TrnTXh1LUouk9a58+wJmLomVAKjuW02CQiwtiuZm5IAOxH06UpPDQjld0zKcW pE2BOkObyg8NRdByZF7T0RIYoEgKHYn2S9lLFDNdKZEEz4Xlc83rSyOoRvC0gW49 ZaYLSAb/AEy9oqNeFO8XdC85RaNTrr16kAlVlmZCVYSQolQeQMDaJO0mTy8cEBda 2VAtNb0RISmIuIcsAMUyfJ9aPCxA1a+emFqzoU/bMqGxXXmr2bFpJH4JPbW7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY8COcwq9KAc5CGPSG5qihMlR+VQwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0NzANBgkqhkiG 9w0BAQsFAAOCAQEAroBq3B1ptjg1t+jjpHWQ+c4SMv+Re5yv+mtBGQfal6yNFJGd 1hgC3DCUL7h3AYHGgAqXxItTh5dpxSTGXRIzznmjuXIgaHVaWIL+2HpJMt6/yRTd xymOToNo6zx2IZ0aKWxcSD7GU1MLXCK4g7oiXPHtDkaaMmbqzUHlmtzMBVOqxnAd ptwKmcUWWn7LwSQRTzFzdvC+U6n9W8x7/uaahkg41bD+r0soOw/lsYCnAHarBjZZ Rx6nOIGTXrFiazqlRTGHqQNLXJG4nI78bFmgkh+QboMG2Ajn5m6czOFTuBVyYw6y RPhlk2PEQPnZoDPdTbYp71lNXSEAG/beRLoY1A== -----END CERTIFICATE-----Generated at Sat Aug 23 15:55:54 2025 by rpki-client