$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e302e302f32342d3234203d3e2037353837.roa File: 3230322e3138302e302e302f32342d3234203d3e2037353837.roa (raw, json) Hash identifier: cje0RNSx9P/cOPpCtYQDwkY1I+kc9+6oUoy5ingJOIs= Subject key identifier: 46:1D:60:B4:50:D3:C1:09:59:9D:71:B8:A0:52:61:5B:27:BA:E0:5F Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 43B994D4618FFC61DEA338AA4D44A339DE1B27E4 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e302e302f32342d3234203d3e2037353837.roa Signing time: Tue 17 Jun 2025 14:00:00 +0000 ROA not before: Tue 17 Jun 2025 13:55:00 +0000 ROA not after: Tue 16 Jun 2026 14:00:00 +0000 asID: 7587 IP address blocks: 202.180.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b9:94:d4:61:8f:fc:61:de:a3:38:aa:4d:44:a3:39:de:1b:27:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jun 17 13:55:00 2025 GMT Not After : Jun 16 14:00:00 2026 GMT Subject: CN=461D60B450D3C109599D71B8A052615B27BAE05F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d2:70:d0:b4:68:96:f0:7a:40:9e:04:36:a2: b9:fa:cb:3a:a0:f4:e9:2b:93:51:94:f1:ea:81:66: 6f:5c:ce:eb:72:64:d9:48:a6:d6:39:96:33:2f:4d: da:af:51:fa:8d:a1:37:5d:bc:0f:ab:66:f9:90:98: 28:d7:0f:b5:ad:ef:35:00:b4:4a:35:ee:09:b4:7c: a4:30:82:f8:a9:9e:c4:ca:f7:a4:6d:8b:65:31:2f: 56:a4:7a:a1:6f:f9:6d:bf:8f:15:4d:ab:5e:22:d5: 1f:7d:f3:e7:7c:4a:4f:90:b3:2e:f9:ce:e5:5d:c4: ff:de:a6:ff:d1:61:a2:32:38:71:17:31:57:b5:90: 7d:51:33:79:40:fe:78:b2:94:f4:56:9c:e1:39:97: fe:0b:af:a4:c7:b6:0f:50:4e:1a:1e:06:a9:c0:a3: b0:37:f1:45:0c:29:6c:0a:0e:32:f7:33:41:6b:33: 1e:87:b4:3d:1c:02:a2:79:7c:c4:a7:13:e8:81:45: 92:e9:32:d1:6e:bd:8c:77:00:6b:42:98:95:ac:81: e8:75:22:27:26:80:b2:0b:33:70:ff:55:9b:d3:68: 95:56:4d:a6:99:6c:56:f1:ae:a5:8e:a2:4e:f3:fb: bf:4b:0d:61:12:f3:1e:ec:e0:2a:e5:ea:9d:fa:6b: a1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1D:60:B4:50:D3:C1:09:59:9D:71:B8:A0:52:61:5B:27:BA:E0:5F X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e302e302f32342d3234203d3e2037353837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.0.0/24 Signature Algorithm: sha256WithRSAEncryption 34:50:7e:c6:b8:44:b6:ab:22:76:33:e9:95:c2:aa:09:f9:40: b7:a7:ac:32:76:c4:10:52:d1:28:bd:d5:62:9f:8d:97:d8:63: 4c:21:cd:65:d7:5f:eb:bc:35:1c:4d:2b:ba:b9:31:b8:80:44: fe:0e:50:d4:7c:a1:7d:bc:2b:9f:2c:a4:8f:8e:2f:e8:b3:80: e3:be:49:2e:54:87:61:82:03:33:18:f5:c9:c4:7f:7f:af:6a: 80:7a:6c:56:13:78:38:9f:99:05:61:9d:13:a5:2b:5b:44:94: 33:1f:94:ee:ba:ef:76:a5:eb:98:1d:73:fd:de:bb:d5:3a:7f: 5e:64:ae:4d:51:73:f1:87:84:09:2f:0b:01:66:00:1f:9d:22: 9e:5d:b2:ca:e1:d1:02:05:9c:a7:14:1f:f2:da:fd:6a:b8:8d: 77:ca:19:ea:94:cf:60:af:5f:cd:6b:79:52:6d:7f:b8:1c:3b: 56:61:06:f1:1c:88:bc:dc:78:49:c0:5b:d8:96:86:fd:10:80: 52:2f:3d:de:69:20:6a:71:10:62:db:f6:81:35:c7:e5:be:06: ea:71:d1:c4:53:11:2d:dd:16:54:b1:29:7c:e6:c3:38:df:05: 0c:1e:3c:bd:71:66:4b:d5:50:ab:db:17:aa:62:e8:44:1c:5c: dd:b1:fb:5b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQ7mU1GGP/GHeoziqTUSjOd4bJ+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNTA2MTcxMzU1MDBaFw0yNjA2MTYxNDAwMDBaMDMxMTAvBgNV BAMTKDQ2MUQ2MEI0NTBEM0MxMDk1OTlENzFCOEEwNTI2MTVCMjdCQUUwNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe0nDQtGiW8HpAngQ2orn6yzqg 9Okrk1GU8eqBZm9czutyZNlIptY5ljMvTdqvUfqNoTddvA+rZvmQmCjXD7Wt7zUA tEo17gm0fKQwgvipnsTK96Rti2UxL1akeqFv+W2/jxVNq14i1R998+d8Sk+Qsy75 zuVdxP/epv/RYaIyOHEXMVe1kH1RM3lA/niylPRWnOE5l/4Lr6THtg9QThoeBqnA o7A38UUMKWwKDjL3M0FrMx6HtD0cAqJ5fMSnE+iBRZLpMtFuvYx3AGtCmJWsgeh1 IicmgLILM3D/VZvTaJVWTaaZbFbxrqWOok7z+79LDWES8x7s4Crl6p36a6GVAgMB AAGjggItMIICKTAdBgNVHQ4EFgQURh1gtFDTwQlZnXG4oFJhWye64F8wHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTEyZjIyOGMtZGYyMC00NzI4LTlm OTYtOGZhYTEzNDAwMTdhLzAvMzIzMDMyMmUzMTM4MzAyZTMwMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzczNTM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKtAAwDQYJKoZIhvcNAQEL BQADggEBADRQfsa4RLarInYz6ZXCqgn5QLenrDJ2xBBS0Si91WKfjZfYY0whzWXX X+u8NRxNK7q5MbiARP4OUNR8oX28K58spI+OL+izgOO+SS5Uh2GCAzMY9cnEf3+v aoB6bFYTeDifmQVhnROlK1tElDMflO6673al65gdc/3eu9U6f15krk1Rc/GHhAkv CwFmAB+dIp5dssrh0QIFnKcUH/La/Wq4jXfKGeqUz2CvX81reVJtf7gcO1ZhBvEc iLzceEnAW9iWhv0QgFIvPd5pIGpxEGLb9oE1x+W+Bupx0cRTES3dFlSxKXzmwzjf BQwePL1xZkvVUKvbF6pi6EQcXN2x+1s= -----END CERTIFICATE-----Generated at Mon Jun 30 13:32:34 2025 by rpki-client