$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3231203d3e203435373235.roa File: 3138302e3231312e38382e302f32312d3231203d3e203435373235.roa (raw, json) Hash identifier: YlcTORm9rnlcpVDr1T1eGBYnMWXnhbJok3s3uYdeDPQ= Subject key identifier: 17:57:7A:62:9C:C7:2F:29:35:06:52:E1:09:E2:48:6E:5D:53:B2:2A Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 4C1E9C79283C03F3BED28EE458B677BD95CC886A Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3231203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:00 +0000 ROA not before: Sun 08 Mar 2026 15:55:00 +0000 ROA not after: Sun 07 Mar 2027 16:00:00 +0000 asID: 45725 IP address blocks: 180.211.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:1e:9c:79:28:3c:03:f3:be:d2:8e:e4:58:b6:77:bd:95:cc:88:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:00 2026 GMT Not After : Mar 7 16:00:00 2027 GMT Subject: CN=17577A629CC72F29350652E109E2486E5D53B22A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f0:67:4e:22:07:39:79:b5:a7:d5:d1:c5:be: 73:fb:e9:ee:8f:73:9f:41:cf:3b:b5:c7:f1:e3:dd: 7e:bf:82:b8:e1:af:cf:9b:e3:8f:b9:13:64:b1:60: 35:67:dc:93:74:b2:10:37:ec:ea:17:79:cc:e1:c8: 0b:f7:96:32:6b:a0:b5:47:a1:07:ac:f7:b2:1e:ff: 54:a2:36:45:99:9e:b5:83:76:61:69:fb:3d:88:21: 0f:b7:cf:26:9d:df:ef:84:ee:16:19:19:bc:88:c4: 82:7e:7a:86:74:5a:ce:a5:9e:d8:69:a2:92:99:8c: 8e:cf:a5:5b:09:f6:7d:2f:a9:af:8d:a9:d6:31:d4: 7c:95:15:a0:a0:26:f1:b3:e5:64:19:26:c9:22:6d: 79:df:dc:d1:76:5a:20:4e:33:e8:f2:e1:77:64:d9: f4:0e:70:0a:49:25:bc:6d:af:b8:a0:4a:08:f0:68: aa:49:67:56:3d:57:10:21:07:1b:39:70:ad:4d:42: 97:d5:69:48:9b:d5:79:85:eb:fc:a8:8b:0d:ed:b6: e8:f0:5b:7e:21:40:95:c1:11:0b:91:b6:5d:67:b0: 84:99:fe:a4:c3:47:61:1f:4f:8e:a8:59:e2:e4:4d: c2:84:57:12:93:b2:db:32:d4:d7:5a:96:50:0b:19: ef:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:57:7A:62:9C:C7:2F:29:35:06:52:E1:09:E2:48:6E:5D:53:B2:2A X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3231203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.211.88.0/21 Signature Algorithm: sha256WithRSAEncryption 75:6d:0a:32:2b:d8:dd:16:f2:0a:7a:b3:c5:5b:9f:d6:eb:29: 64:16:99:97:83:48:b9:5d:26:1c:02:09:ea:d9:45:19:99:47: d7:f9:de:2a:c1:73:f0:15:44:16:7a:99:dc:c1:4c:50:95:ff: a6:62:22:ae:d0:52:28:81:45:ff:ee:ea:d6:09:c1:4e:df:94: 9b:7b:32:b3:9a:25:bf:e2:a2:53:58:37:9d:e9:ad:48:39:c8: bf:17:e0:c9:aa:72:f7:c4:ee:ca:63:df:43:8a:13:18:6a:8d: a1:86:8a:f2:ec:0d:45:3b:69:cb:1d:4d:23:65:98:37:b5:ff: 3f:34:04:14:b4:fa:5b:fc:d7:ea:ca:8a:ac:83:db:99:d8:21: e3:d6:d7:1e:49:20:ad:35:ce:33:6c:49:6a:6d:cc:ab:07:e9: 92:a6:44:90:43:bb:c5:90:6d:85:44:d1:80:6f:a2:76:23:23: 43:9e:f2:2a:b4:0e:cb:9a:50:6d:2a:00:b9:85:9f:00:b9:8f: ba:0c:2a:71:0e:a8:a5:1e:57:a9:cc:c2:7f:f7:aa:32:fa:38: 18:1e:6a:05:9a:78:74:01:a7:51:df:f4:bf:26:c5:8d:15:65: 48:cf:eb:81:8c:97:e4:76:66:6b:27:45:6d:6b:ef:a2:9d:12: 45:fe:23:74 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTB6ceSg8A/O+0o7kWLZ3vZXMiGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDBaFw0yNzAzMDcxNjAwMDBaMDMxMTAvBgNV BAMTKDE3NTc3QTYyOUNDNzJGMjkzNTA2NTJFMTA5RTI0ODZFNUQ1M0IyMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/8GdOIgc5ebWn1dHFvnP76e6P c59Bzzu1x/Hj3X6/grjhr8+b44+5E2SxYDVn3JN0shA37OoXeczhyAv3ljJroLVH oQes97Ie/1SiNkWZnrWDdmFp+z2IIQ+3zyad3++E7hYZGbyIxIJ+eoZ0Ws6lnthp opKZjI7PpVsJ9n0vqa+NqdYx1HyVFaCgJvGz5WQZJskibXnf3NF2WiBOM+jy4Xdk 2fQOcApJJbxtr7igSgjwaKpJZ1Y9VxAhBxs5cK1NQpfVaUib1XmF6/yoiw3ttujw W34hQJXBEQuRtl1nsISZ/qTDR2EfT46oWeLkTcKEVxKTstsy1NdallALGe93AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUF1d6YpzHLyk1BlLhCeJIbl1TsiowHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzgzMDJlMzIzMTMxMmUzODM4MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7TTWDANBgkqhkiG 9w0BAQsFAAOCAQEAdW0KMivY3RbyCnqzxVuf1uspZBaZl4NIuV0mHAIJ6tlFGZlH 1/neKsFz8BVEFnqZ3MFMUJX/pmIirtBSKIFF/+7q1gnBTt+Um3sys5olv+KiU1g3 nemtSDnIvxfgyapy98TuymPfQ4oTGGqNoYaK8uwNRTtpyx1NI2WYN7X/PzQEFLT6 W/zX6sqKrIPbmdgh49bXHkkgrTXOM2xJam3MqwfpkqZEkEO7xZBthUTRgG+idiMj Q57yKrQOy5pQbSoAuYWfALmPugwqcQ6opR5XqczCf/eqMvo4GB5qBZp4dAGnUd/0 vybFjRVlSM/rgYyX5HZmaydFbWvvop0SRf4jdA== -----END CERTIFICATE-----Generated at Thu Mar 26 21:05:13 2026 by rpki-client