$ rpki-client -vvf repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa File: 32372e3132342e36362e302f32342d3234203d3e20313532303339.roa (raw, json) Hash identifier: EMSMLydCIMgCCDM5A6KpCinITeakN2yfPogDrJvRIew= Subject key identifier: 64:EC:44:2E:C1:F6:5D:35:BF:FF:F2:8E:A2:51:4F:9C:31:47:AC:EC Certificate issuer: /CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Certificate serial: 4653BF0157618F6E283157AC616CA3473A64DE2C Authority key identifier: 2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa Signing time: Fri 20 Mar 2026 16:00:01 +0000 ROA not before: Fri 20 Mar 2026 15:55:01 +0000 ROA not after: Fri 19 Mar 2027 16:00:01 +0000 asID: 152039 IP address blocks: 27.124.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 10:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:53:bf:01:57:61:8f:6e:28:31:57:ac:61:6c:a3:47:3a:64:de:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Validity Not Before: Mar 20 15:55:01 2026 GMT Not After : Mar 19 16:00:01 2027 GMT Subject: CN=64EC442EC1F65D35BFFFF28EA2514F9C3147ACEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c0:19:40:51:87:86:62:a0:a8:07:2f:c6:44: 8c:a4:bb:bb:88:ec:0c:c4:cc:e8:ba:69:65:c0:70: 56:4f:7c:98:fe:96:56:b5:97:43:24:eb:76:b6:0e: ce:77:16:28:da:fe:db:c7:9b:8b:b6:ef:5f:60:4f: 74:47:16:7d:dc:ba:31:a5:87:3f:67:32:65:5e:66: f5:cd:cb:ee:c8:1e:d1:0c:5d:92:09:ce:f1:ff:69: d4:b8:7d:fa:b4:ce:8a:dc:9c:0b:df:ab:02:d0:ac: 6a:b7:cf:ed:06:bf:c1:21:bc:f5:23:42:5c:ac:1b: 71:82:ab:bc:a3:39:b6:cd:57:c5:91:f8:05:ef:7c: 17:ca:6b:57:3a:08:d2:82:f8:eb:fb:ee:28:cc:b9: 79:54:53:58:bb:5f:df:c4:79:81:0d:15:ff:46:54: bd:86:a4:78:3f:8c:96:8d:7c:0d:f8:b7:c0:42:bb: f2:9b:c0:b0:20:76:83:41:5f:21:6c:3e:34:e8:fc: 6f:bd:72:b1:c7:00:84:fd:58:bc:7b:4f:2d:55:c6: 4a:6e:39:65:45:8b:f2:4e:86:c9:ab:39:fc:ae:39: 9b:fc:e9:4c:1e:d7:cb:68:51:a6:30:7a:4a:d4:43: f0:26:df:cd:fa:5b:37:f0:30:cc:78:55:5c:95:18: dc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:EC:44:2E:C1:F6:5D:35:BF:FF:F2:8E:A2:51:4F:9C:31:47:AC:EC X509v3 Authority Key Identifier: keyid:2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.66.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:04:7e:94:73:6d:fd:20:4c:88:95:36:cf:d9:0e:97:03:29: 5c:97:ae:69:9c:80:77:63:c8:ec:e3:d7:2b:10:b8:59:e5:1f: 23:47:61:59:8c:a5:97:b3:60:f7:f1:a9:1d:f5:6d:be:fa:cd: 35:c3:6d:8d:90:4f:3a:ed:29:cd:95:bc:24:90:c1:8b:4a:6e: d2:f0:4d:8b:ec:49:14:2a:4b:47:03:ed:d4:1c:d0:ba:df:5d: 9e:90:3c:5e:92:99:e2:27:42:10:3a:48:b3:17:dc:ac:7c:c0: 88:1b:fb:bc:1b:f8:f3:0a:e7:0a:32:95:45:8a:37:21:a5:c9: 12:e8:5f:cb:38:43:f6:4c:d7:ca:40:ad:df:59:c9:20:19:a1: 75:12:3d:fe:f0:0e:d7:0f:de:d4:e0:1f:8b:e1:25:ef:f8:cc: 79:0c:85:b5:75:c8:b4:ba:ee:7a:c1:05:24:9e:bc:d1:ad:bc: 18:68:87:b2:65:d2:31:24:97:44:b5:41:4c:02:4a:47:8d:16: 16:1c:cd:fb:83:0b:24:0c:8e:0e:6c:ac:5a:50:89:8e:36:91: 08:6a:e8:c6:c9:2f:f3:12:6c:36:1a:6d:ea:70:2c:6e:94:61: 89:c0:d1:53:22:02:07:59:59:86:f8:67:47:50:be:ad:6b:d9: 00:79:ea:38 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURlO/AVdhj24oMVesYWyjRzpk3iwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VF RUUwMTYwNTAeFw0yNjAzMjAxNTU1MDFaFw0yNzAzMTkxNjAwMDFaMDMxMTAvBgNV BAMTKDY0RUM0NDJFQzFGNjVEMzVCRkZGRjI4RUEyNTE0RjlDMzE0N0FDRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClwBlAUYeGYqCoBy/GRIyku7uI 7AzEzOi6aWXAcFZPfJj+lla1l0Mk63a2Ds53Fija/tvHm4u2719gT3RHFn3cujGl hz9nMmVeZvXNy+7IHtEMXZIJzvH/adS4ffq0zorcnAvfqwLQrGq3z+0Gv8EhvPUj QlysG3GCq7yjObbNV8WR+AXvfBfKa1c6CNKC+Ov77ijMuXlUU1i7X9/EeYENFf9G VL2GpHg/jJaNfA34t8BCu/KbwLAgdoNBXyFsPjTo/G+9crHHAIT9WLx7Ty1Vxkpu OWVFi/JOhsmrOfyuOZv86Uwe18toUaYwekrUQ/Am3836WzfwMMx4VVyVGNw1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZOxELsH2XTW///KOolFPnDFHrOwwHwYDVR0j BBgwFoAULP1b3dHbptlAKHTWIjq9fu7gFgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjdlMGJjMC03NjFiLTRlYzMtOGY0Mi04Mjk4MWI5MWE5N2EvMC8yQ0ZENUJEREQx REJBNkQ5NDAyODc0RDYyMjNBQkQ3RUVFRTAxNjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VFRUUw MTYwNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiN2UwYmMwLTc2MWItNGVjMy04 ZjQyLTgyOTgxYjkxYTk3YS8wLzMyMzcyZTMxMzIzNDJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt8QjANBgkqhkiG 9w0BAQsFAAOCAQEAfAR+lHNt/SBMiJU2z9kOlwMpXJeuaZyAd2PI7OPXKxC4WeUf I0dhWYyll7Ng9/GpHfVtvvrNNcNtjZBPOu0pzZW8JJDBi0pu0vBNi+xJFCpLRwPt 1BzQut9dnpA8XpKZ4idCEDpIsxfcrHzAiBv7vBv48wrnCjKVRYo3IaXJEuhfyzhD 9kzXykCt31nJIBmhdRI9/vAO1w/e1OAfi+El7/jMeQyFtXXItLruesEFJJ680a28 GGiHsmXSMSSXRLVBTAJKR40WFhzN+4MLJAyODmysWlCJjjaRCGroxskv8xJsNhpt 6nAsbpRhicDRUyICB1lZhvhnR1C+rWvZAHnqOA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:00:56 2026 by rpki-client