$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3136302e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: ZRIxMt8MlUnmvBav6vsFADyDhMYDwFi86bRWc5c9oNA= Subject key identifier: 3E:1B:04:C4:FB:76:E5:0E:62:4F:7A:64:0A:3B:5C:A9:84:D5:97:A0 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 2495DB74A1049D5B8116A0AF7865EA2AF3FFC879 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32332d3233203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:01 +0000 ROA not before: Sun 08 Mar 2026 15:55:01 +0000 ROA not after: Sun 07 Mar 2027 16:00:01 +0000 asID: 45725 IP address blocks: 202.150.160.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:95:db:74:a1:04:9d:5b:81:16:a0:af:78:65:ea:2a:f3:ff:c8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:01 2026 GMT Not After : Mar 7 16:00:01 2027 GMT Subject: CN=3E1B04C4FB76E50E624F7A640A3B5CA984D597A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:92:f8:af:73:a5:9b:49:63:48:44:90:4b:df: 91:8f:fa:41:f5:34:2b:cb:52:a4:86:57:d6:9a:0d: bf:77:99:77:1f:19:32:f9:13:27:81:b6:d2:5e:9c: 8e:16:20:de:b8:09:10:f5:17:b0:f1:66:b3:c4:42: b4:7e:d5:77:e7:f7:38:44:c3:d0:32:b3:80:71:b3: 17:55:c4:b1:fa:72:c7:98:2b:39:56:bb:f4:25:a0: dc:8c:fb:6c:cf:1a:c3:43:d1:60:e3:66:a8:34:12: 63:34:5a:0e:11:c0:eb:d1:94:73:3d:97:eb:af:39: 8b:39:3f:51:d7:fd:be:bd:cd:05:60:01:bc:bd:ca: 48:49:a8:c7:36:f6:b5:b9:16:38:74:a7:93:2a:91: fb:11:d0:08:6a:dc:a7:4e:a4:87:28:5b:2f:f5:14: 1b:e5:e8:4f:5a:10:ce:0b:cc:e0:21:2f:17:52:99: 63:40:7c:34:5a:7b:f0:d0:d9:dd:13:1a:6d:b8:a5: a2:4b:4c:9f:eb:6e:f2:1b:19:29:76:73:d9:84:82: a6:67:c8:42:0b:10:85:11:7e:dd:d8:95:88:04:19: ee:be:d6:a3:50:70:e1:c1:13:e4:c8:14:8f:fc:a7: e9:dc:9a:57:20:65:bf:ae:e4:5b:e0:92:74:5c:66: 56:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1B:04:C4:FB:76:E5:0E:62:4F:7A:64:0A:3B:5C:A9:84:D5:97:A0 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.160.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:8a:32:46:33:7a:c1:9a:f8:c2:1f:34:ff:75:eb:a1:3e:9a: d0:7b:ed:85:be:06:5e:8f:c7:40:a9:e8:28:2e:ab:99:21:0d: 05:56:8a:e6:39:d1:8f:ad:90:6a:cc:41:03:6d:44:9e:12:42: bc:79:34:24:92:9c:2d:10:e5:0e:e1:4a:3c:19:84:a7:12:aa: 2d:37:6d:57:2a:d6:ca:e7:08:78:cc:d7:35:60:49:c2:38:42: 83:2e:d7:82:d4:96:90:a8:ae:93:33:b8:7f:a2:5a:e0:e2:43: e4:3f:af:b8:e2:88:8a:1c:3f:c8:b4:67:f2:10:b1:83:36:52: 9e:28:a4:ff:85:27:83:7d:9c:3a:3c:a8:4f:92:ef:ec:a8:0f: 31:4e:73:b4:a3:54:54:98:e6:b4:41:a3:03:bb:3c:73:35:96: 9d:20:ae:a2:99:1e:66:7d:53:e7:86:ee:7b:b7:d7:1f:41:69: fd:e7:f8:a8:f0:5b:3a:cc:e7:88:14:01:e7:39:ec:ef:69:30: 8a:ad:1e:bd:9d:93:63:c4:82:09:30:96:f0:ef:ea:28:de:7a: 8a:99:35:80:a3:43:c5:fa:07:e7:78:d0:28:f6:0f:e4:1f:3e: 7a:76:e6:50:6a:22:db:ed:b9:ba:ea:a8:29:cd:f0:be:21:ae: aa:53:86:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJJXbdKEEnVuBFqCveGXqKvP/yHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDFaFw0yNzAzMDcxNjAwMDFaMDMxMTAvBgNV BAMTKDNFMUIwNEM0RkI3NkU1MEU2MjRGN0E2NDBBM0I1Q0E5ODRENTk3QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDokvivc6WbSWNIRJBL35GP+kH1 NCvLUqSGV9aaDb93mXcfGTL5EyeBttJenI4WIN64CRD1F7DxZrPEQrR+1Xfn9zhE w9Ays4BxsxdVxLH6cseYKzlWu/QloNyM+2zPGsND0WDjZqg0EmM0Wg4RwOvRlHM9 l+uvOYs5P1HX/b69zQVgAby9ykhJqMc29rW5Fjh0p5MqkfsR0Ahq3KdOpIcoWy/1 FBvl6E9aEM4LzOAhLxdSmWNAfDRae/DQ2d0TGm24paJLTJ/rbvIbGSl2c9mEgqZn yEILEIURft3YlYgEGe6+1qNQcOHBE+TIFI/8p+ncmlcgZb+u5FvgknRcZlZVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPhsExPt25Q5iT3pkCjtcqYTVl6AwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypagMA0GCSqG SIb3DQEBCwUAA4IBAQAvijJGM3rBmvjCHzT/deuhPprQe+2FvgZej8dAqegoLquZ IQ0FVormOdGPrZBqzEEDbUSeEkK8eTQkkpwtEOUO4Uo8GYSnEqotN21XKtbK5wh4 zNc1YEnCOEKDLteC1JaQqK6TM7h/olrg4kPkP6+44oiKHD/ItGfyELGDNlKeKKT/ hSeDfZw6PKhPku/sqA8xTnO0o1RUmOa0QaMDuzxzNZadIK6imR5mfVPnhu57t9cf QWn95/io8Fs6zOeIFAHnOezvaTCKrR69nZNjxIIJMJbw7+oo3nqKmTWAo0PF+gfn eNAo9g/kHz56duZQaiLb7bm66qgpzfC+Ia6qU4ap -----END CERTIFICATE-----Generated at Fri Mar 27 00:57:13 2026 by rpki-client