$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137342e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3137342e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: 7oDZvGotX6LYDxE1W9+sTlNhZ2q2SbjrDuJf0m3mvzQ= Subject key identifier: 2C:3A:AD:28:4C:0A:03:28:76:31:B8:DE:89:68:07:72:D5:5D:81:75 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 0A7C3B941406B59BEA1B2C4DE133EEA11DE17903 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137342e302f32332d3233203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:02 +0000 ROA not before: Sun 08 Mar 2026 15:55:02 +0000 ROA not after: Sun 07 Mar 2027 16:00:02 +0000 asID: 45725 IP address blocks: 202.150.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 01:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7c:3b:94:14:06:b5:9b:ea:1b:2c:4d:e1:33:ee:a1:1d:e1:79:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:02 2026 GMT Not After : Mar 7 16:00:02 2027 GMT Subject: CN=2C3AAD284C0A03287631B8DE89680772D55D8175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:e5:08:57:6d:7b:c7:d6:86:d8:02:59:30: 80:05:9a:6f:ff:aa:78:cb:a4:27:90:64:f1:d2:89: 63:e8:2b:5a:00:d4:05:8b:85:eb:7a:79:1b:5b:0b: 9c:28:21:ad:ba:2b:77:74:11:50:de:2c:08:52:82: e4:0f:33:98:59:13:0a:8d:2a:7c:cd:99:65:6a:ab: 40:51:ba:26:49:35:18:a5:ba:78:33:68:e1:1c:ef: 9b:43:d8:46:cc:93:60:8c:18:b4:4e:6f:b6:f8:f8: 4c:6b:da:b8:1e:c4:9c:f8:22:61:92:58:c6:c1:1f: 94:7d:27:2f:42:3c:15:4a:99:8d:16:0e:87:a6:28: 23:5a:71:28:39:bc:7c:26:0b:f1:aa:0f:b1:7d:67: 8e:7d:e6:0f:2d:31:35:c4:ee:d2:d1:0b:92:1e:a2: 00:f6:13:b9:3d:d8:46:70:a5:ba:c7:ab:8f:51:98: 9a:62:8d:4a:fb:84:db:f4:9d:84:57:59:e2:0b:b2: 13:fa:56:b5:98:15:46:b2:5c:52:e4:b1:1d:7b:df: 96:6b:9c:7f:df:86:bd:d2:0e:2a:fe:1a:89:8a:ac: ab:b1:9b:74:ef:8a:bc:6c:d5:5a:55:6a:d6:b5:af: c9:47:e3:7c:f5:7f:76:2b:0f:8b:0c:0f:41:91:c9: 9c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3A:AD:28:4C:0A:03:28:76:31:B8:DE:89:68:07:72:D5:5D:81:75 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137342e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.174.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:98:01:2f:5e:d6:e1:47:0d:99:dd:80:ae:89:48:5f:a5:3d: ff:43:37:61:ba:d7:08:49:56:68:5d:75:c8:5c:4b:d3:52:d0: 8b:59:68:7e:5c:90:f1:58:f2:31:fd:36:9d:76:a1:1c:2e:e3: 98:71:83:d8:25:73:4e:e3:2e:da:06:af:b4:bd:50:46:ce:eb: e1:5d:b7:93:ba:e7:ef:f3:18:f8:a0:80:f7:5d:c2:9b:e8:b5: 6d:4a:91:12:b0:2d:25:3e:0f:3f:46:4d:ce:24:16:1e:32:f1: d9:7f:03:87:db:3d:8d:08:51:53:e6:47:a7:6a:01:2b:86:71: aa:f7:38:13:e0:47:73:ab:4e:f0:e1:6a:db:0a:19:a0:63:2b: 0c:fc:5e:ac:2b:17:cc:8c:de:39:e9:ff:92:f4:ad:03:05:4c: 39:56:b8:29:e2:7c:b0:b7:2b:10:a0:d6:03:a5:18:13:ed:5c: bd:20:7a:6d:15:80:9e:f8:e9:b1:c1:d5:ee:a9:c9:81:fe:eb: d6:34:44:b6:98:48:27:20:cd:80:7f:48:23:ee:4f:f3:f9:f8: 6b:08:9b:df:fe:b3:04:04:22:42:3e:6b:c5:49:fa:55:fc:82: 68:53:b5:62:b9:14:82:67:7a:7b:2c:63:8c:d6:97:39:15:e0: 10:5f:a2:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCnw7lBQGtZvqGyxN4TPuoR3heQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDJaFw0yNzAzMDcxNjAwMDJaMDMxMTAvBgNV BAMTKDJDM0FBRDI4NEMwQTAzMjg3NjMxQjhERTg5NjgwNzcyRDU1RDgxNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTwOUIV217x9aG2AJZMIAFmm// qnjLpCeQZPHSiWPoK1oA1AWLhet6eRtbC5woIa26K3d0EVDeLAhSguQPM5hZEwqN KnzNmWVqq0BRuiZJNRilungzaOEc75tD2EbMk2CMGLROb7b4+Exr2rgexJz4ImGS WMbBH5R9Jy9CPBVKmY0WDoemKCNacSg5vHwmC/GqD7F9Z4595g8tMTXE7tLRC5Ie ogD2E7k92EZwpbrHq49RmJpijUr7hNv0nYRXWeILshP6VrWYFUayXFLksR1735Zr nH/fhr3SDir+GomKrKuxm3Tvirxs1VpVata1r8lH43z1f3YrD4sMD0GRyZzxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULDqtKEwKAyh2MbjeiWgHctVdgXUwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM3MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypauMA0GCSqG SIb3DQEBCwUAA4IBAQANmAEvXtbhRw2Z3YCuiUhfpT3/QzdhutcISVZoXXXIXEvT UtCLWWh+XJDxWPIx/TaddqEcLuOYcYPYJXNO4y7aBq+0vVBGzuvhXbeTuufv8xj4 oID3XcKb6LVtSpESsC0lPg8/Rk3OJBYeMvHZfwOH2z2NCFFT5kenagErhnGq9zgT 4Edzq07w4WrbChmgYysM/F6sKxfMjN456f+S9K0DBUw5Vrgp4nywtysQoNYDpRgT 7Vy9IHptFYCe+OmxwdXuqcmB/uvWNES2mEgnIM2Af0gj7k/z+fhrCJvf/rMEBCJC PmvFSfpV/IJoU7ViuRSCZ3p7LGOM1pc5FeAQX6K7 -----END CERTIFICATE-----Generated at Fri Mar 27 01:17:45 2026 by rpki-client