$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa File: 34332e3233302e3135322e302f32322d3232203d3e203435373235.roa (raw, json) Hash identifier: Qh2wNfBNRO07qhUrAwaySh37383d1knyF+rQE1kkvDs= Subject key identifier: 49:C6:A2:2C:7D:6A:DA:64:CE:58:AA:E5:3E:17:F5:70:82:35:E9:42 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 5EF65E8928DF9301D628548CF2C7578F8222B266 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa Signing time: Sun 08 Mar 2026 15:00:00 +0000 ROA not before: Sun 08 Mar 2026 14:55:00 +0000 ROA not after: Sun 07 Mar 2027 15:00:00 +0000 asID: 45725 IP address blocks: 43.230.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:f6:5e:89:28:df:93:01:d6:28:54:8c:f2:c7:57:8f:82:22:b2:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 14:55:00 2026 GMT Not After : Mar 7 15:00:00 2027 GMT Subject: CN=49C6A22C7D6ADA64CE58AAE53E17F5708235E942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:48:32:26:2c:75:1a:e4:5a:b6:7a:59:a7:e4: 1c:9e:97:73:51:aa:00:47:63:88:87:af:e4:ac:e4: 1f:92:32:ec:f0:bb:28:0e:28:36:2c:4e:ed:d6:91: 62:87:55:79:d7:72:2c:a5:2e:84:f1:8c:02:d8:9a: 15:ba:b0:04:db:4c:11:90:4a:43:55:ba:cc:8b:0f: 3e:8f:a0:82:17:84:aa:25:17:07:98:e0:c9:b8:73: 14:7f:84:f6:36:fe:19:b1:7f:3c:2c:55:ec:45:16: a5:10:84:18:c2:3b:81:45:b9:4a:f2:41:79:31:ca: a9:5b:fc:ba:0d:7f:fa:bd:67:23:9c:03:b9:46:d5: 14:ed:a8:ad:6a:96:9b:0d:9c:45:07:ce:1f:d0:63: 5d:2f:9d:c1:ad:61:98:d3:93:e3:aa:2f:d0:95:11: 9c:fd:75:e8:34:98:16:8c:70:8b:d5:99:32:0e:85: 9a:1b:90:4b:e2:55:12:a4:e7:38:16:d2:8c:70:5a: b8:45:e9:89:df:ff:62:8a:c4:95:af:e6:26:38:fa: fe:b4:f5:27:b6:5f:7b:aa:47:3c:dd:a8:31:6b:a2: f6:4a:6c:7a:77:eb:6f:64:6b:dd:e3:75:8e:8a:3a: 08:d0:8c:34:7d:f0:4e:9a:c0:74:51:1b:99:eb:a7: 00:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C6:A2:2C:7D:6A:DA:64:CE:58:AA:E5:3E:17:F5:70:82:35:E9:42 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:38:af:82:d1:d0:c1:e9:e7:e4:67:3a:80:a6:03:68:d8:b3: 6a:04:4f:5f:1c:3f:03:97:06:3c:68:6c:1a:35:27:a6:32:a9: da:e9:2d:1e:de:78:30:16:f6:f0:66:cb:7b:d2:33:5b:7b:31: 30:41:60:3f:c3:bb:22:12:90:d2:f0:b7:4e:67:3c:92:dd:06: 41:bf:cb:e2:a5:7e:eb:4a:b5:67:18:aa:8a:1a:26:fd:fa:25: ff:12:46:50:98:8d:e5:ed:fc:4b:f0:aa:8e:58:b2:a6:4e:74: c9:95:05:f3:f9:b9:d6:ad:66:8f:55:83:87:db:8e:35:b3:7d: c2:38:01:12:2c:80:b6:3a:37:95:02:e5:f7:88:b9:ef:d8:b9: 52:ec:af:8f:6d:11:ce:68:dc:d7:72:36:28:a7:83:84:73:f5: 6d:7d:9d:95:00:f5:b6:69:f9:a5:85:b8:e2:e3:4a:26:04:8a: 67:ef:20:98:fe:15:9e:4c:ca:58:6f:80:39:20:68:cf:5b:bf: 2d:54:3c:29:23:21:65:6c:2d:89:fd:e7:c9:4d:d3:73:ce:bb: 2a:e3:8c:30:68:8a:aa:41:f1:fd:33:76:c6:42:d6:49:43:c2: e1:fa:1a:e1:1c:81:56:48:f0:53:40:4b:a2:c2:81:06:58:f7: 01:04:58:23 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXvZeiSjfkwHWKFSM8sdXj4IismYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNDU1MDBaFw0yNzAzMDcxNTAwMDBaMDMxMTAvBgNV BAMTKDQ5QzZBMjJDN0Q2QURBNjRDRTU4QUFFNTNFMTdGNTcwODIzNUU5NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUSDImLHUa5Fq2elmn5Byel3NR qgBHY4iHr+Ss5B+SMuzwuygOKDYsTu3WkWKHVXnXciylLoTxjALYmhW6sATbTBGQ SkNVusyLDz6PoIIXhKolFweY4Mm4cxR/hPY2/hmxfzwsVexFFqUQhBjCO4FFuUry QXkxyqlb/LoNf/q9ZyOcA7lG1RTtqK1qlpsNnEUHzh/QY10vncGtYZjTk+OqL9CV EZz9deg0mBaMcIvVmTIOhZobkEviVRKk5zgW0oxwWrhF6Ynf/2KKxJWv5iY4+v60 9Se2X3uqRzzdqDFrovZKbHp3629ka93jdY6KOgjQjDR98E6awHRRG5nrpwDZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUScaiLH1q2mTOWKrlPhf1cII16UIwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzM0MzMyZTMyMzMzMDJlMzEzNTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivmmDANBgkqhkiG 9w0BAQsFAAOCAQEAezivgtHQwenn5Gc6gKYDaNizagRPXxw/A5cGPGhsGjUnpjKp 2uktHt54MBb28GbLe9IzW3sxMEFgP8O7IhKQ0vC3Tmc8kt0GQb/L4qV+60q1Zxiq ihom/fol/xJGUJiN5e38S/Cqjliypk50yZUF8/m51q1mj1WDh9uONbN9wjgBEiyA tjo3lQLl94i579i5Uuyvj20Rzmjc13I2KKeDhHP1bX2dlQD1tmn5pYW44uNKJgSK Z+8gmP4VnkzKWG+AOSBoz1u/LVQ8KSMhZWwtif3nyU3Tc867KuOMMGiKqkHx/TN2 xkLWSUPC4foa4RyBVkjwU0BLosKBBlj3AQRYIw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:43:14 2026 by rpki-client