$ rpki-client -vvf repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa File: 33362e35302e3231372e302f32342d3234203d3e20313437313238.roa (raw, json) Hash identifier: /IqnhWNrPsgnuT8v2xs7EC269ADw6nH5t0+DgUzbkxE= Subject key identifier: 0F:14:2B:33:62:2D:F7:D2:CB:4D:7E:66:E0:3A:2B:19:42:3E:A2:17 Certificate issuer: /CN=6DBB100D8D4669AB8A5C7EE057228ED67A98099E Certificate serial: 1185C9DA740853F2C54CE24B0AA8222C3CF07BEB Authority key identifier: 6D:BB:10:0D:8D:46:69:AB:8A:5C:7E:E0:57:22:8E:D6:7A:98:09:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa Signing time: Sat 14 Mar 2026 13:00:02 +0000 ROA not before: Sat 14 Mar 2026 12:55:02 +0000 ROA not after: Sat 13 Mar 2027 13:00:02 +0000 asID: 147128 IP address blocks: 36.50.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.crl rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 04:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:85:c9:da:74:08:53:f2:c5:4c:e2:4b:0a:a8:22:2c:3c:f0:7b:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DBB100D8D4669AB8A5C7EE057228ED67A98099E Validity Not Before: Mar 14 12:55:02 2026 GMT Not After : Mar 13 13:00:02 2027 GMT Subject: CN=0F142B33622DF7D2CB4D7E66E03A2B19423EA217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:09:2c:63:94:92:bf:46:0c:71:d3:8a:16:b6: c4:c3:0c:46:04:44:04:3f:02:23:45:cd:e5:1b:c4: a5:93:b6:37:28:c6:a6:52:9d:70:19:dd:3c:43:32: 81:4e:0c:61:6c:59:a4:d6:b2:04:cf:f8:f4:68:56: 47:19:8c:05:bc:aa:99:09:74:ca:7d:bb:56:aa:cd: 17:82:dc:c8:10:0e:0e:d9:90:7d:e1:df:66:f7:88: 96:4e:fe:10:bf:ea:8c:54:0f:15:59:4d:e1:e6:cc: 57:33:d4:71:53:ff:1a:5b:d0:bb:42:7c:77:a4:57: 83:76:cf:fc:77:49:12:9e:0e:0c:89:55:d1:61:aa: 86:3a:46:90:16:fa:9c:06:74:60:46:0c:f5:c9:ac: 0b:1a:97:f0:8e:e1:b0:c5:cc:bb:17:31:ff:8f:6f: 54:6a:62:80:11:d9:5b:ff:79:2f:4b:11:78:37:62: 2d:b4:82:63:d9:83:e6:29:e1:ed:28:15:ba:8d:4c: 61:ee:6c:2a:bd:b6:f7:54:65:92:69:6d:87:1c:b9: f7:a9:2e:26:26:a5:78:7d:07:e7:14:dd:91:15:60: 7b:a6:94:79:b8:5e:b8:69:ab:76:4f:58:bb:df:77: 23:87:86:54:b2:d6:2f:97:49:61:ef:ef:36:e8:a2: bc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:14:2B:33:62:2D:F7:D2:CB:4D:7E:66:E0:3A:2B:19:42:3E:A2:17 X509v3 Authority Key Identifier: keyid:6D:BB:10:0D:8D:46:69:AB:8A:5C:7E:E0:57:22:8E:D6:7A:98:09:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.217.0/24 Signature Algorithm: sha256WithRSAEncryption 85:fe:6e:58:84:19:0e:5a:6d:c9:0d:62:1f:84:62:d2:48:1b: 3b:9c:58:19:46:43:06:8a:94:27:b4:84:2a:b2:7f:fa:ac:a9: 4a:ac:ce:d7:96:b1:fa:3d:09:61:d2:50:09:49:ec:4b:96:ad: cd:07:46:15:69:25:cd:d5:76:e2:7c:d0:5d:fd:9f:28:a4:e9: 58:dd:25:8b:59:5f:27:b2:76:42:0d:1c:c3:a3:59:9d:a5:a3: d9:88:63:6c:7d:87:c8:fb:93:4f:81:78:b0:ab:85:4b:0b:88: 37:62:c1:89:b6:63:f2:5c:76:46:67:9f:6d:96:e2:e8:7b:f5: 34:74:7e:63:5f:97:10:cd:a0:9f:e2:28:bb:62:6c:9f:ca:36: ee:6f:5c:6e:cb:f6:a5:52:e1:08:21:ee:d7:a0:7e:4b:24:a1: df:aa:c4:80:29:35:72:9b:5a:6c:f6:92:5c:bc:f4:cf:69:ba: 6e:22:09:92:57:67:9b:ea:94:ed:3d:5a:02:37:dc:68:b7:9b: 5e:0d:7b:b7:fa:00:55:f8:f8:d2:36:cf:e0:d1:7d:ba:18:88: 90:55:b9:ff:2a:fd:a6:b7:d2:0c:8b:ab:13:22:48:04:91:d6: fa:2a:68:29:71:9e:57:91:cb:51:4f:12:57:d1:72:68:ad:d9: 2e:76:d4:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEYXJ2nQIU/LFTOJLCqgiLDzwe+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRCQjEwMEQ4RDQ2NjlBQjhBNUM3RUUwNTcyMjhFRDY3 QTk4MDk5RTAeFw0yNjAzMTQxMjU1MDJaFw0yNzAzMTMxMzAwMDJaMDMxMTAvBgNV BAMTKDBGMTQyQjMzNjIyREY3RDJDQjREN0U2NkUwM0EyQjE5NDIzRUEyMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9CSxjlJK/Rgxx04oWtsTDDEYE RAQ/AiNFzeUbxKWTtjcoxqZSnXAZ3TxDMoFODGFsWaTWsgTP+PRoVkcZjAW8qpkJ dMp9u1aqzReC3MgQDg7ZkH3h32b3iJZO/hC/6oxUDxVZTeHmzFcz1HFT/xpb0LtC fHekV4N2z/x3SRKeDgyJVdFhqoY6RpAW+pwGdGBGDPXJrAsal/CO4bDFzLsXMf+P b1RqYoAR2Vv/eS9LEXg3Yi20gmPZg+Yp4e0oFbqNTGHubCq9tvdUZZJpbYccufep LiYmpXh9B+cU3ZEVYHumlHm4Xrhpq3ZPWLvfdyOHhlSy1i+XSWHv7zboorwPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDxQrM2It99LLTX5m4DorGUI+ohcwHwYDVR0j BBgwFoAUbbsQDY1GaauKXH7gVyKO1nqYCZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTk4OWZhZi00OGZiLTRmNDAtOWU3Ny0yNDNkNzhhNWI1YzQvMC82REJCMTAwRDhE NDY2OUFCOEE1QzdFRTA1NzIyOEVENjdBOTgwOTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRCQjEwMEQ4RDQ2NjlBQjhBNUM3RUUwNTcyMjhFRDY3QTk4 MDk5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1OTg5ZmFmLTQ4ZmItNGY0MC05 ZTc3LTI0M2Q3OGE1YjVjNC8wLzMzMzYyZTM1MzAyZTMyMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzNzMxMzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACQy2TANBgkqhkiG 9w0BAQsFAAOCAQEAhf5uWIQZDlptyQ1iH4Ri0kgbO5xYGUZDBoqUJ7SEKrJ/+qyp SqzO15ax+j0JYdJQCUnsS5atzQdGFWklzdV24nzQXf2fKKTpWN0li1lfJ7J2Qg0c w6NZnaWj2YhjbH2HyPuTT4F4sKuFSwuIN2LBibZj8lx2RmefbZbi6Hv1NHR+Y1+X EM2gn+Iou2Jsn8o27m9cbsv2pVLhCCHu16B+SySh36rEgCk1cptabPaSXLz0z2m6 biIJkldnm+qU7T1aAjfcaLebXg17t/oAVfj40jbP4NF9uhiIkFW5/yr9prfSDIur EyJIBJHW+ipoKXGeV5HLUU8SV9FyaK3ZLnbU6w== -----END CERTIFICATE-----Generated at Thu Mar 26 16:11:00 2026 by rpki-client