$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: 8ko5KnU2O3UImPaaQPj6kwQ2SIJ+vnIwwyyfVJf7KZc= Subject key identifier: F4:6D:27:7F:A6:34:61:DC:B8:BA:F7:C2:88:9D:D2:96:E6:66:CC:82 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 47C8496A21F40619CBA26397F7A666D21F565B18 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa Signing time: Wed 04 Mar 2026 03:00:53 +0000 ROA not before: Wed 04 Mar 2026 02:55:53 +0000 ROA not after: Wed 03 Mar 2027 03:00:53 +0000 asID: 138128 IP address blocks: 223.130.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 10:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c8:49:6a:21:f4:06:19:cb:a2:63:97:f7:a6:66:d2:1f:56:5b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Mar 4 02:55:53 2026 GMT Not After : Mar 3 03:00:53 2027 GMT Subject: CN=F46D277FA63461DCB8BAF7C2889DD296E666CC82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ba:76:fb:df:75:1b:53:c1:33:6c:cb:49:2b: 0d:69:61:96:6a:2f:88:53:ba:f1:23:68:97:b6:32: 59:ba:6d:12:bd:46:2e:34:7a:79:88:da:03:a9:c5: 6f:a0:ce:94:59:e1:d2:e7:fe:f5:05:f3:4d:78:0f: fd:26:29:84:9b:a2:27:86:04:ca:c8:1f:8b:fc:ac: 61:a2:c3:aa:9d:e6:00:47:b2:59:01:61:8d:9a:48: 31:6d:93:94:e9:c3:83:d1:ac:11:b4:59:91:f2:34: 96:33:d3:56:b3:36:1b:42:4d:0b:d9:37:61:03:f2: 20:b7:a4:64:39:24:55:35:7f:28:c9:9b:9e:52:44: dc:c7:3d:ab:24:ed:1f:54:c6:12:8a:07:ce:c4:1c: 68:f1:72:f2:93:25:15:e2:4f:81:c2:6e:40:5e:1c: 8d:ae:7b:67:f9:f3:a9:13:7f:e2:bb:9b:90:41:ec: f1:64:d6:e0:14:72:78:63:c3:74:8b:4f:45:ac:ed: c4:0e:87:da:0c:ff:69:9e:26:65:fa:77:bd:7f:01: e0:8b:07:41:fa:02:16:cd:7f:40:2c:0a:9f:9f:0b: 9c:8f:4a:f8:58:6a:05:87:42:41:03:c1:fd:4b:27: b0:0f:9c:fb:91:80:14:17:b9:86:37:d8:d5:20:a5: 52:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:6D:27:7F:A6:34:61:DC:B8:BA:F7:C2:88:9D:D2:96:E6:66:CC:82 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.20.0/24 Signature Algorithm: sha256WithRSAEncryption 45:56:f8:bd:48:da:e0:c0:82:cb:fc:6d:6c:11:aa:8b:91:55: 8d:7a:eb:7b:df:8b:28:3b:30:cf:26:8a:25:61:d0:d6:3b:2a: 98:6f:f7:f8:8a:26:80:af:4d:46:ed:41:ff:2b:75:d7:c2:71: dc:2b:8a:75:69:4c:42:36:10:7f:7a:ad:06:6a:0f:aa:1a:4a: 5b:ec:44:99:0c:0e:81:a8:3c:88:ec:01:54:0e:76:4c:a5:20: 69:2d:54:3a:b8:6f:31:76:a4:8e:f8:29:72:ea:44:a2:21:a4: 89:3a:8d:05:3a:1c:25:a8:e4:49:cf:8c:ae:dc:35:29:e6:28: 98:d6:7f:33:e4:38:df:78:f6:07:b8:df:7a:b2:8c:c9:61:57: 17:76:f5:0f:eb:8e:c0:66:99:e0:94:ad:45:f4:81:81:96:d1: 7a:10:e9:48:ab:a8:a9:92:0f:43:03:9a:c8:12:41:2f:00:4d: 17:cf:28:f5:d0:d4:f0:6e:e7:08:8a:c0:7f:d0:b0:b2:c7:1d: 4a:8d:65:bf:83:12:95:51:97:85:2c:f6:0f:2e:06:46:ce:79: 0f:95:6e:7f:97:28:21:37:40:a8:2c:76:3d:1f:2b:0b:69:c6: c0:14:88:65:70:0b:a3:44:83:27:b0:09:30:50:bb:c0:98:53: a9:98:75:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR8hJaiH0BhnLomOX96Zm0h9WWxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNjAzMDQwMjU1NTNaFw0yNzAzMDMwMzAwNTNaMDMxMTAvBgNV BAMTKEY0NkQyNzdGQTYzNDYxRENCOEJBRjdDMjg4OUREMjk2RTY2NkNDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdunb733UbU8EzbMtJKw1pYZZq L4hTuvEjaJe2Mlm6bRK9Ri40enmI2gOpxW+gzpRZ4dLn/vUF8014D/0mKYSboieG BMrIH4v8rGGiw6qd5gBHslkBYY2aSDFtk5Tpw4PRrBG0WZHyNJYz01azNhtCTQvZ N2ED8iC3pGQ5JFU1fyjJm55SRNzHPask7R9UxhKKB87EHGjxcvKTJRXiT4HCbkBe HI2ue2f586kTf+K7m5BB7PFk1uAUcnhjw3SLT0Ws7cQOh9oM/2meJmX6d71/AeCL B0H6AhbNf0AsCp+fC5yPSvhYagWHQkEDwf1LJ7APnPuRgBQXuYY32NUgpVKlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9G0nf6Y0Ydy4uvfCiJ3SluZmzIIwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IUMA0GCSqG SIb3DQEBCwUAA4IBAQBFVvi9SNrgwILL/G1sEaqLkVWNeut734soOzDPJoolYdDW OyqYb/f4iiaAr01G7UH/K3XXwnHcK4p1aUxCNhB/eq0Gag+qGkpb7ESZDA6BqDyI 7AFUDnZMpSBpLVQ6uG8xdqSO+Cly6kSiIaSJOo0FOhwlqORJz4yu3DUp5iiY1n8z 5DjfePYHuN96sozJYVcXdvUP647AZpnglK1F9IGBltF6EOlIq6ipkg9DA5rIEkEv AE0Xzyj10NTwbucIisB/0LCyxx1KjWW/gxKVUZeFLPYPLgZGznkPlW5/lyghN0Co LHY9HysLacbAFIhlcAujRIMnsAkwULvAmFOpmHXy -----END CERTIFICATE-----Generated at Thu Mar 26 22:34:28 2026 by rpki-client