$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: GcUYgwocvmQOauxtSSTYpFvHbVUKeMU0WCnL34YeijA= Subject key identifier: 57:52:29:62:E3:6C:38:B5:93:53:B2:E1:6C:B3:A6:52:52:5E:32:F9 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 716637C0C79D8A2ACBCB3C85461EBC337850D1CB Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:02 +0000 ROA not before: Sun 08 Mar 2026 15:55:02 +0000 ROA not after: Sun 07 Mar 2027 16:00:02 +0000 asID: 45725 IP address blocks: 202.150.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:66:37:c0:c7:9d:8a:2a:cb:cb:3c:85:46:1e:bc:33:78:50:d1:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:02 2026 GMT Not After : Mar 7 16:00:02 2027 GMT Subject: CN=57522962E36C38B59353B2E16CB3A652525E32F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:49:41:e6:8d:cc:b8:f6:93:55:94:e4:7e:fc: cf:36:d0:c6:5f:fa:cd:c4:55:d0:ca:02:d9:70:25: 63:2e:c9:ca:f7:36:ce:d8:ff:67:f6:22:34:cf:25: fb:5e:06:32:46:9c:0b:35:27:26:56:61:7b:7a:ad: 6a:ec:f2:36:32:a2:fc:80:2e:7e:8a:6e:3b:69:88: 21:ba:a0:c8:71:65:32:77:20:c6:07:57:3e:bd:d4: d4:e7:1e:85:7b:07:9d:1f:21:3f:fe:91:2a:57:ea: ec:5d:16:ee:98:ca:03:ed:90:c8:13:2f:62:6e:69: 7f:f9:9a:ed:80:db:9d:6b:ff:e6:1b:33:3d:ab:28: 9c:6b:45:64:54:11:e9:0e:7e:c0:8e:1e:95:f4:20: 0f:81:fe:1f:f7:e9:9e:ef:e0:3e:05:c1:14:67:62: 81:ab:06:f9:2c:42:65:04:ed:74:f3:3c:bf:e7:6f: d3:ee:1c:8e:fa:35:9f:b1:ba:13:cc:5d:8a:a3:02: 3b:4d:a4:62:42:3f:83:32:27:10:10:e7:20:6b:cf: bc:bc:ac:1a:fe:92:cd:24:da:86:ed:bc:db:fe:da: d7:e6:ea:c1:36:67:d5:83:4e:c2:48:90:78:ce:7f: 42:f3:1e:56:c7:9b:a1:60:bc:3f:85:dc:99:fc:65: e3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:52:29:62:E3:6C:38:B5:93:53:B2:E1:6C:B3:A6:52:52:5E:32:F9 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.166.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:89:39:d0:21:76:71:ea:0d:d9:d0:9e:16:e8:1e:32:3c:d7: 49:38:b0:6d:76:af:6b:65:f7:17:9a:a8:d1:e9:5b:01:b8:25: 54:c9:f7:48:ed:32:7c:62:52:0d:fd:81:ee:27:d7:d9:11:81: 0b:75:98:09:21:c5:86:77:26:ad:ac:f4:f4:86:6a:a0:b1:bd: fc:0f:2f:f3:10:37:e2:b5:a9:9f:5c:2c:ae:e0:18:0a:d8:b6: 0e:be:6f:9b:69:03:a5:bb:38:b0:c2:de:78:76:c4:d5:b9:e4: 69:d6:11:3e:12:97:21:d8:fb:4b:16:b7:15:7d:e6:54:eb:b1: 26:1d:d4:a7:57:df:58:10:16:59:a2:5f:48:11:4f:3f:79:de: ce:18:be:0f:97:31:af:7a:9f:fd:21:d8:0c:8d:a1:cf:b1:b7: cc:1c:72:4f:6c:46:24:29:c4:98:cb:85:b5:61:c7:0b:17:ac: b3:c9:7b:80:7f:d0:80:33:94:25:55:03:46:94:f2:85:26:f2: 86:83:1b:40:c9:4f:d1:18:71:85:d1:77:2c:8b:03:2f:25:3f: c2:60:d9:68:9a:1e:10:b7:24:8d:f8:59:93:c7:f0:5b:ea:e9: 16:e1:76:8a:d4:14:d4:55:2a:70:65:11:66:51:2f:1e:5a:ef: be:64:30:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcWY3wMediirLyzyFRh68M3hQ0cswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDJaFw0yNzAzMDcxNjAwMDJaMDMxMTAvBgNV BAMTKDU3NTIyOTYyRTM2QzM4QjU5MzUzQjJFMTZDQjNBNjUyNTI1RTMyRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgSUHmjcy49pNVlOR+/M820MZf +s3EVdDKAtlwJWMuycr3Ns7Y/2f2IjTPJfteBjJGnAs1JyZWYXt6rWrs8jYyovyA Ln6KbjtpiCG6oMhxZTJ3IMYHVz691NTnHoV7B50fIT/+kSpX6uxdFu6YygPtkMgT L2JuaX/5mu2A251r/+YbMz2rKJxrRWRUEekOfsCOHpX0IA+B/h/36Z7v4D4FwRRn YoGrBvksQmUE7XTzPL/nb9PuHI76NZ+xuhPMXYqjAjtNpGJCP4MyJxAQ5yBrz7y8 rBr+ks0k2obtvNv+2tfm6sE2Z9WDTsJIkHjOf0LzHlbHm6FgvD+F3Jn8ZeO7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUV1IpYuNsOLWTU7LhbLOmUlJeMvkwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypamMA0GCSqG SIb3DQEBCwUAA4IBAQB/iTnQIXZx6g3Z0J4W6B4yPNdJOLBtdq9rZfcXmqjR6VsB uCVUyfdI7TJ8YlIN/YHuJ9fZEYELdZgJIcWGdyatrPT0hmqgsb38Dy/zEDfitamf XCyu4BgK2LYOvm+baQOluziwwt54dsTVueRp1hE+Epch2PtLFrcVfeZU67EmHdSn V99YEBZZol9IEU8/ed7OGL4PlzGvep/9IdgMjaHPsbfMHHJPbEYkKcSYy4W1YccL F6yzyXuAf9CAM5QlVQNGlPKFJvKGgxtAyU/RGHGF0XcsiwMvJT/CYNlomh4QtySN +FmTx/Bb6ukW4XaK1BTUVSpwZRFmUS8eWu++ZDAQ -----END CERTIFICATE-----Generated at Thu Mar 26 20:47:13 2026 by rpki-client