$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: NUoTKVgONpfgNdNs/2nx1oY/g/wDuojqAAaMJX8jNpA= Subject key identifier: 7D:A6:F9:FA:51:DE:61:B0:D6:A2:9D:BE:2E:A3:A4:BE:45:81:9D:F3 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 43FA974152ED3014343F712A5F1FDDA63A8BE4CE Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:01 +0000 ROA not before: Sun 08 Mar 2026 15:55:01 +0000 ROA not after: Sun 07 Mar 2027 16:00:01 +0000 asID: 45725 IP address blocks: 202.150.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:fa:97:41:52:ed:30:14:34:3f:71:2a:5f:1f:dd:a6:3a:8b:e4:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:01 2026 GMT Not After : Mar 7 16:00:01 2027 GMT Subject: CN=7DA6F9FA51DE61B0D6A29DBE2EA3A4BE45819DF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ee:42:7f:08:cf:98:6d:5a:ef:b2:1e:d6:f7: ec:57:54:15:38:06:9d:4e:8c:ac:98:cc:41:49:21: af:cc:09:c0:23:6c:cf:23:7b:05:33:a3:66:12:c2: 3e:44:56:2e:d9:5b:62:c8:3c:c0:63:2c:aa:5c:b6: cb:24:d4:79:3f:98:02:b3:fe:8d:97:70:f4:57:02: 8d:67:cf:3c:d2:74:c0:82:6d:c3:11:25:91:ce:fd: 10:5d:b5:a0:09:11:fb:bf:01:81:bf:79:c0:71:c7: 75:be:57:18:dc:c1:49:af:16:5d:de:c6:08:31:95: c2:9c:16:9f:fc:a1:66:44:43:8f:b2:3e:40:fd:e3: 41:d7:dc:83:26:7c:78:bf:fa:7d:68:d0:cc:56:2a: 6f:fe:6c:99:f0:8c:5f:e0:5e:a9:73:2f:29:55:05: 5f:e2:2b:b8:90:a6:0d:a7:bf:de:4f:f9:bf:22:5e: 35:27:fc:c8:42:9f:8c:ea:4e:32:de:27:67:2a:4f: 23:e0:ab:69:65:29:a9:1c:75:20:05:7c:0c:8e:6c: a3:62:8e:66:35:dc:88:5b:7e:9d:ce:f9:44:f8:7a: f7:a5:98:b4:51:90:e7:43:b2:71:72:03:f1:0a:b8: 7a:b5:6f:7a:13:9d:3d:67:b0:79:7b:4b:73:0b:c9: 20:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A6:F9:FA:51:DE:61:B0:D6:A2:9D:BE:2E:A3:A4:BE:45:81:9D:F3 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.172.0/23 Signature Algorithm: sha256WithRSAEncryption c7:12:19:fd:86:a4:04:44:31:72:98:83:00:ca:45:a1:bd:ff: 98:da:7f:6b:be:75:9e:9b:54:c9:0a:90:8b:b3:26:b6:5d:a7: ac:f4:1a:07:f2:0c:49:f7:67:20:4c:b5:27:b3:87:77:bd:af: 5f:e1:27:16:06:e9:67:db:0e:60:cb:b6:06:78:cb:59:2c:eb: e7:26:23:21:a2:25:56:6b:8c:3a:c9:d8:b2:6f:e8:6e:e6:0e: ce:52:4b:e0:7c:e8:bd:3f:b5:34:2b:49:f3:65:29:d4:38:0e: ec:f0:b7:62:4b:7d:75:09:83:85:1a:b6:7a:6c:2f:1e:71:ea: e7:20:05:96:20:e4:6c:93:dc:74:ad:04:58:ae:bd:0a:9f:34: c2:03:8c:a2:f7:88:87:08:f4:7b:bc:76:b7:3f:52:03:8f:08: 6c:d8:96:b3:b4:97:83:f8:a0:86:08:fd:80:26:14:26:86:73: 8e:17:26:6f:78:b2:dc:61:d2:1a:4b:d6:67:22:03:87:91:7b: 21:c5:59:42:ea:f2:21:cf:ab:d5:42:3e:fb:54:e7:3b:25:e1: b2:ad:dc:fa:80:69:ee:18:c3:3e:f9:75:2e:24:d5:ca:64:bd: 23:d8:92:d1:0e:31:60:5a:89:ac:af:38:4e:d7:ee:9e:35:93: fd:95:ae:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ/qXQVLtMBQ0P3EqXx/dpjqL5M4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDFaFw0yNzAzMDcxNjAwMDFaMDMxMTAvBgNV BAMTKDdEQTZGOUZBNTFERTYxQjBENkEyOURCRTJFQTNBNEJFNDU4MTlERjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD77kJ/CM+YbVrvsh7W9+xXVBU4 Bp1OjKyYzEFJIa/MCcAjbM8jewUzo2YSwj5EVi7ZW2LIPMBjLKpctssk1Hk/mAKz /o2XcPRXAo1nzzzSdMCCbcMRJZHO/RBdtaAJEfu/AYG/ecBxx3W+VxjcwUmvFl3e xggxlcKcFp/8oWZEQ4+yPkD940HX3IMmfHi/+n1o0MxWKm/+bJnwjF/gXqlzLylV BV/iK7iQpg2nv95P+b8iXjUn/MhCn4zqTjLeJ2cqTyPgq2llKakcdSAFfAyObKNi jmY13Ihbfp3O+UT4evelmLRRkOdDsnFyA/EKuHq1b3oTnT1nsHl7S3MLySBHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfab5+lHeYbDWop2+LqOkvkWBnfMwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM3MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypasMA0GCSqG SIb3DQEBCwUAA4IBAQDHEhn9hqQERDFymIMAykWhvf+Y2n9rvnWem1TJCpCLsya2 Xaes9BoH8gxJ92cgTLUns4d3va9f4ScWBuln2w5gy7YGeMtZLOvnJiMhoiVWa4w6 ydiyb+hu5g7OUkvgfOi9P7U0K0nzZSnUOA7s8LdiS311CYOFGrZ6bC8ecernIAWW IORsk9x0rQRYrr0KnzTCA4yi94iHCPR7vHa3P1IDjwhs2JaztJeD+KCGCP2AJhQm hnOOFyZveLLcYdIaS9ZnIgOHkXshxVlC6vIhz6vVQj77VOc7JeGyrdz6gGnuGMM+ +XUuJNXKZL0j2JLRDjFgWomsrzhO1+6eNZP9la4c -----END CERTIFICATE-----Generated at Thu Mar 26 18:35:52 2026 by rpki-client