$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa File: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: 94uZfDP3/cmZBGyV4igX6qKqeZFUHxxCGuoH16tPVQk= Subject key identifier: A1:8D:82:35:5C:5E:5B:6F:8B:B2:F5:18:51:36:09:18:D2:58:95:94 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 53AD45EE2E159F9F9B56060DB48FD224FA55C83C Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa Signing time: Wed 18 Mar 2026 14:00:03 +0000 ROA not before: Wed 18 Mar 2026 13:55:03 +0000 ROA not after: Wed 17 Mar 2027 14:00:03 +0000 asID: 55701 IP address blocks: 202.73.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 04:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ad:45:ee:2e:15:9f:9f:9b:56:06:0d:b4:8f:d2:24:fa:55:c8:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Mar 18 13:55:03 2026 GMT Not After : Mar 17 14:00:03 2027 GMT Subject: CN=A18D82355C5E5B6F8BB2F51851360918D2589594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0d:f5:45:a9:cc:f0:e3:cb:1a:d7:af:f5:4d: 80:39:02:0f:b8:b1:b5:bc:0b:aa:cf:3c:a2:b3:df: ad:9f:41:66:86:60:f9:88:ea:64:88:c5:dd:7b:f0: d5:43:71:9e:85:cc:d6:86:de:1d:33:4e:48:6b:ab: 78:6d:86:eb:55:15:48:b2:a2:bd:e6:ea:24:2a:c5: 08:c6:17:61:40:92:74:ac:30:96:63:bb:7b:30:5e: 64:35:ef:a2:31:34:8c:10:e7:67:3c:d0:f4:11:3c: 8e:1d:ec:37:84:2e:95:6e:c6:21:d7:08:3f:c9:99: b9:f1:e8:6d:74:7e:a2:9d:66:f1:6a:ba:80:5a:74: b0:e5:ed:4b:cc:15:38:28:3b:ff:3a:d0:c7:98:03: 9e:01:07:fd:d7:08:88:c4:6a:91:d3:0f:ae:46:cd: 83:10:72:26:ba:6e:b1:0f:a8:31:e5:e6:2f:95:43: e7:0a:ae:78:c8:b0:73:60:3e:a7:5c:b6:5d:f3:66: 0e:4d:2c:49:54:ca:e7:95:0e:23:4e:e3:1a:fb:18: 94:fa:01:c7:ef:a3:f7:ad:03:6f:a3:76:7f:be:4a: 34:07:e4:de:4e:d7:9a:1f:50:98:c0:ce:31:59:61: 76:79:20:18:e4:dc:26:af:f3:37:fb:42:e7:8d:b5: 7d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8D:82:35:5C:5E:5B:6F:8B:B2:F5:18:51:36:09:18:D2:58:95:94 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.24.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:66:f9:b4:f7:59:e1:de:f2:81:3e:b7:cf:ee:c9:91:70:e6: 9a:8f:31:f6:30:54:80:f9:93:a1:52:26:ed:9e:94:de:c5:c0: 0b:98:54:5c:43:74:c3:de:df:d9:4c:8b:58:96:a7:b0:6b:12: 56:3f:34:b3:7c:97:d9:a4:e7:92:cf:de:4c:53:a3:6e:ab:97: 9b:0a:3b:8e:0d:e8:fc:cc:9d:2b:ea:46:16:f6:7b:01:31:dd: b6:25:38:57:e8:1e:00:8b:1e:14:75:7c:90:6d:4c:5f:eb:0d: c8:a1:f8:13:9d:0b:7e:c8:2f:56:f4:b7:8a:58:f0:d0:27:35: 33:6a:36:5b:98:cf:d7:3a:42:ca:ad:48:82:47:57:74:aa:de: a8:4e:1d:bf:d9:8d:8d:79:f3:16:c1:2e:0d:12:e2:00:ee:34: ca:3d:cc:29:e2:90:b5:ef:50:87:b4:3b:3d:92:c5:ba:2d:d7: d9:06:f1:00:72:69:d7:b9:c0:9c:ac:00:a3:eb:cf:56:b6:09: 52:5c:b9:4c:3a:b4:bf:42:49:50:5e:86:0d:0a:3c:bf:d1:14: c9:ed:37:ce:42:1a:50:81:b8:35:ef:52:59:b5:75:c5:47:8b: aa:4f:00:41:e6:1a:fb:89:f9:35:6a:aa:fe:b2:9b:0a:89:56: 62:bc:14:4e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUU61F7i4Vn5+bVgYNtI/SJPpVyDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNjAzMTgxMzU1MDNaFw0yNzAzMTcxNDAwMDNaMDMxMTAvBgNV BAMTKEExOEQ4MjM1NUM1RTVCNkY4QkIyRjUxODUxMzYwOTE4RDI1ODk1OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8DfVFqczw48sa16/1TYA5Ag+4 sbW8C6rPPKKz362fQWaGYPmI6mSIxd178NVDcZ6FzNaG3h0zTkhrq3hthutVFUiy or3m6iQqxQjGF2FAknSsMJZju3swXmQ176IxNIwQ52c80PQRPI4d7DeELpVuxiHX CD/Jmbnx6G10fqKdZvFquoBadLDl7UvMFTgoO/860MeYA54BB/3XCIjEapHTD65G zYMQcia6brEPqDHl5i+VQ+cKrnjIsHNgPqdctl3zZg5NLElUyueVDiNO4xr7GJT6 Acfvo/etA2+jdn++SjQH5N5O15ofUJjAzjFZYXZ5IBjk3Cav8zf7QueNtX1VAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUoY2CNVxeW2+LsvUYUTYJGNJYlZQwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRgwDQYJKoZIhvcN AQELBQADggEBAAtm+bT3WeHe8oE+t8/uyZFw5pqPMfYwVID5k6FSJu2elN7FwAuY VFxDdMPe39lMi1iWp7BrElY/NLN8l9mk55LP3kxTo26rl5sKO44N6PzMnSvqRhb2 ewEx3bYlOFfoHgCLHhR1fJBtTF/rDcih+BOdC37IL1b0t4pY8NAnNTNqNluYz9c6 QsqtSIJHV3Sq3qhOHb/ZjY158xbBLg0S4gDuNMo9zCnikLXvUIe0Oz2Sxbot19kG 8QByade5wJysAKPrz1a2CVJcuUw6tL9CSVBehg0KPL/RFMntN85CGlCBuDXvUlm1 dcVHi6pPAEHmGvuJ+TVqqv6ymwqJVmK8FE4= -----END CERTIFICATE-----Generated at Thu Mar 26 13:58:07 2026 by rpki-client