$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: 1sN43PDozSsWzuL3/NohJYg7shaUrgMKtdJkFgcxeUs= Subject key identifier: 99:25:E7:7E:FA:C0:B4:51:71:C8:90:13:45:93:2E:A8:9C:5E:E9:78 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 48068AF580A5FFB3BA5D94D028F1F4F6D9DBFD17 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:02 +0000 ROA not before: Sun 08 Mar 2026 15:55:02 +0000 ROA not after: Sun 07 Mar 2027 16:00:02 +0000 asID: 45725 IP address blocks: 202.150.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:06:8a:f5:80:a5:ff:b3:ba:5d:94:d0:28:f1:f4:f6:d9:db:fd:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:02 2026 GMT Not After : Mar 7 16:00:02 2027 GMT Subject: CN=9925E77EFAC0B45171C8901345932EA89C5EE978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:d8:1b:70:3b:e0:b7:90:95:41:8c:26:c9: 44:02:a7:3a:d1:e8:e4:7f:92:55:53:f5:46:b7:8c: ed:1e:28:64:c8:67:6d:dc:8c:fb:74:39:d9:90:cb: 5a:5f:b2:24:fb:1c:80:0c:3e:bf:ec:be:2f:08:c1: 00:21:7e:84:7e:9b:73:67:25:29:61:88:ef:28:8a: 6a:53:a0:32:bf:44:45:5b:0f:7c:a9:f1:85:92:b9: 91:b0:a3:26:46:07:bc:4b:08:22:b6:fe:50:32:cb: 27:95:46:9a:ab:94:a1:3c:54:52:f0:dc:f4:f9:a4: 4e:f5:7b:12:cd:ac:90:bf:76:4a:12:f5:c3:81:05: 75:52:52:b2:66:88:ba:ad:46:cf:23:8c:a1:28:55: 76:62:5e:1d:1a:56:ff:b0:97:ab:fa:08:c5:ae:cc: a3:7e:56:5a:aa:f6:a9:0f:a0:26:33:01:b4:bf:15: 83:db:af:0c:32:b7:f9:7d:e4:6d:76:18:f7:d7:da: b8:2b:21:21:41:a6:7a:7d:f2:1a:23:c4:03:8b:1e: 42:2f:85:dd:90:96:4d:3a:a0:59:4a:b0:16:3b:9c: 28:55:bb:c4:ba:bb:08:e5:1a:19:34:63:5d:fb:53: 4f:c2:d7:c6:56:90:5d:c0:98:37:0f:0d:2a:ef:84: 74:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:25:E7:7E:FA:C0:B4:51:71:C8:90:13:45:93:2E:A8:9C:5E:E9:78 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.162.0/23 Signature Algorithm: sha256WithRSAEncryption c9:e8:f3:d9:83:9e:cc:4e:3e:62:ba:15:0f:ef:b1:1d:17:a0: b9:bc:9e:90:a5:b0:c2:41:97:54:4c:76:9f:d7:88:31:fc:86: 35:b2:96:05:23:7b:ce:ba:e8:07:e1:6c:42:9d:70:c9:86:25: 89:73:1a:88:7b:19:32:71:74:c6:5e:7f:1e:22:bc:a0:57:43: c4:78:4a:f1:3a:89:b4:19:59:1a:61:29:bc:2b:fe:fe:52:8d: e1:91:7d:3f:64:e3:27:6a:fc:e8:2b:ac:a7:d0:95:0e:75:50: b7:cd:12:8a:3b:a8:be:38:ac:63:00:b0:4c:00:23:30:02:a1: 5e:c6:2f:29:e2:de:d2:5b:7c:04:cb:93:1c:e2:2c:b8:a1:c1: 19:ba:bd:cc:6e:9e:a9:ff:4f:8a:0a:7d:0b:dd:85:9b:d1:e0: 1c:50:75:43:25:9c:ec:ab:50:6d:73:d0:04:95:f2:2c:df:81: 28:76:ca:06:cf:9f:6c:98:30:b0:a2:e2:bc:de:f7:fb:ba:a6: 86:81:4c:43:12:d7:92:d1:dd:92:3c:0d:4c:68:be:90:c6:68: 59:fa:86:90:76:da:01:8a:ae:38:29:24:cf:39:5a:52:44:b8: 89:c9:39:3f:09:c2:30:04:ca:4b:f8:70:49:0e:82:5e:ab:d5: 9a:a8:e2:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSAaK9YCl/7O6XZTQKPH09tnb/RcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDJaFw0yNzAzMDcxNjAwMDJaMDMxMTAvBgNV BAMTKDk5MjVFNzdFRkFDMEI0NTE3MUM4OTAxMzQ1OTMyRUE4OUM1RUU5NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDQNgbcDvgt5CVQYwmyUQCpzrR 6OR/klVT9Ua3jO0eKGTIZ23cjPt0OdmQy1pfsiT7HIAMPr/svi8IwQAhfoR+m3Nn JSlhiO8oimpToDK/REVbD3yp8YWSuZGwoyZGB7xLCCK2/lAyyyeVRpqrlKE8VFLw 3PT5pE71exLNrJC/dkoS9cOBBXVSUrJmiLqtRs8jjKEoVXZiXh0aVv+wl6v6CMWu zKN+Vlqq9qkPoCYzAbS/FYPbrwwyt/l95G12GPfX2rgrISFBpnp98hojxAOLHkIv hd2Qlk06oFlKsBY7nChVu8S6uwjlGhk0Y137U0/C18ZWkF3AmDcPDSrvhHTpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmSXnfvrAtFFxyJATRZMuqJxe6XgwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypaiMA0GCSqG SIb3DQEBCwUAA4IBAQDJ6PPZg57MTj5iuhUP77EdF6C5vJ6QpbDCQZdUTHaf14gx /IY1spYFI3vOuugH4WxCnXDJhiWJcxqIexkycXTGXn8eIrygV0PEeErxOom0GVka YSm8K/7+Uo3hkX0/ZOMnavzoK6yn0JUOdVC3zRKKO6i+OKxjALBMACMwAqFexi8p 4t7SW3wEy5Mc4iy4ocEZur3Mbp6p/0+KCn0L3YWb0eAcUHVDJZzsq1Btc9AElfIs 34EodsoGz59smDCwouK83vf7uqaGgUxDEteS0d2SPA1MaL6QxmhZ+oaQdtoBiq44 KSTPOVpSRLiJyTk/CcIwBMpL+HBJDoJeq9WaqOLD -----END CERTIFICATE-----Generated at Thu Mar 26 18:38:07 2026 by rpki-client