$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37352e302f32342d3234203d3e203435333233.roa File: 3230322e34332e37352e302f32342d3234203d3e203435333233.roa (raw, json) Hash identifier: JNYCnaXLuy7eRtAVuMOkMNCxE2+YucQHbFQ6KU266C4= Subject key identifier: 7E:E8:05:EF:E7:06:3B:29:25:9F:D1:1A:79:D5:A7:57:BF:16:F7:9A Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 21F43AD9C06416509350D5B238C5A0ADC3234CAD Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37352e302f32342d3234203d3e203435333233.roa Signing time: Thu 26 Mar 2026 13:45:17 +0000 ROA not before: Thu 26 Mar 2026 13:40:17 +0000 ROA not after: Thu 25 Mar 2027 13:45:17 +0000 asID: 45323 IP address blocks: 202.43.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f4:3a:d9:c0:64:16:50:93:50:d5:b2:38:c5:a0:ad:c3:23:4c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Mar 26 13:40:17 2026 GMT Not After : Mar 25 13:45:17 2027 GMT Subject: CN=7EE805EFE7063B29259FD11A79D5A757BF16F79A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6e:46:d8:ea:dc:89:f9:f7:b9:ce:4c:79:b2: b0:14:8d:67:3d:e5:42:ff:44:3e:6b:2f:ad:01:75: 77:4f:a6:51:2c:35:f7:20:f6:68:a7:1e:1e:62:44: a2:ef:c9:90:96:91:6f:44:2d:a7:e5:f0:23:60:3a: 74:24:fd:21:93:48:1e:12:9d:f4:8a:38:ab:90:eb: ee:bc:0d:7f:c0:17:82:5a:71:84:4d:fc:12:c1:f2: ce:b8:be:7e:a9:9b:d6:51:e5:0c:41:39:4f:d9:9a: b8:9c:79:b0:6e:a1:f1:ba:4e:95:a2:9d:22:7c:18: ad:74:3f:a6:7f:f0:c9:82:ee:83:21:a1:18:fb:d4: c6:52:7b:cd:a5:f9:d8:29:a4:68:7f:06:c5:c3:76: 6d:62:48:8a:c4:21:26:21:00:e3:62:d4:1a:c2:d3: 1d:bd:0a:32:d3:23:fe:4e:33:ed:fd:89:39:02:47: 65:43:fa:97:f1:a6:de:51:33:96:b1:38:c1:7f:fc: 29:26:c0:22:31:7b:06:72:d2:d2:81:4c:08:09:f8: f1:15:7c:81:52:af:6d:c9:74:b0:16:7c:5f:ca:73: 89:aa:3e:38:ca:95:b1:79:3b:76:c6:3e:65:a5:45: 6b:a7:8e:01:da:94:48:44:89:91:3c:14:e7:61:3a: ad:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E8:05:EF:E7:06:3B:29:25:9F:D1:1A:79:D5:A7:57:BF:16:F7:9A X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37352e302f32342d3234203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.75.0/24 Signature Algorithm: sha256WithRSAEncryption 04:d1:18:1e:d1:87:09:4c:fe:2c:ff:49:41:75:66:93:28:d3: ff:03:ff:4e:85:f1:78:3c:5f:69:21:c5:21:f1:a9:84:2b:c0: f9:b4:20:03:f7:bc:88:0b:ff:6a:da:8a:8c:f3:ab:eb:67:4a: 0c:15:56:3b:be:34:5d:b5:71:a0:f4:34:80:b4:c8:d4:cc:f8: ac:de:ca:ee:5f:66:f6:56:46:c2:ea:72:5b:cb:55:36:a9:aa: 90:17:3a:30:0c:50:a7:d9:44:40:45:25:cb:2f:b4:39:e4:09: 0f:f8:fa:e4:4c:ed:4e:6a:4e:aa:9d:ab:41:a5:5a:a6:18:0f: f0:df:3d:aa:c2:7f:62:57:5d:30:7d:6d:c9:19:4b:d8:03:a7: 2b:e1:52:fc:ff:66:e2:f2:99:ce:b8:88:6c:7b:25:93:d9:1d: 06:bf:c0:1b:57:ee:ba:03:06:12:b2:71:a1:d5:59:51:d4:2c: 82:93:1a:69:0e:a3:7b:90:f6:6c:58:8b:d5:62:74:59:3d:01: 91:21:bd:13:34:b3:21:03:43:bd:bb:0b:a2:16:95:1c:c6:03: 53:db:51:b8:0a:31:bc:e2:13:ba:3d:02:5a:96:01:9c:f1:4f: a8:c6:3f:70:ac:e1:32:b9:57:30:bb:bb:84:a5:ff:a1:7e:da: 29:83:6b:b9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIfQ62cBkFlCTUNWyOMWgrcMjTK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNjAzMjYxMzQwMTdaFw0yNzAzMjUxMzQ1MTdaMDMxMTAvBgNV BAMTKDdFRTgwNUVGRTcwNjNCMjkyNTlGRDExQTc5RDVBNzU3QkYxNkY3OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRbkbY6tyJ+fe5zkx5srAUjWc9 5UL/RD5rL60BdXdPplEsNfcg9minHh5iRKLvyZCWkW9ELafl8CNgOnQk/SGTSB4S nfSKOKuQ6+68DX/AF4JacYRN/BLB8s64vn6pm9ZR5QxBOU/ZmricebBuofG6TpWi nSJ8GK10P6Z/8MmC7oMhoRj71MZSe82l+dgppGh/BsXDdm1iSIrEISYhAONi1BrC 0x29CjLTI/5OM+39iTkCR2VD+pfxpt5RM5axOMF//CkmwCIxewZy0tKBTAgJ+PEV fIFSr23JdLAWfF/Kc4mqPjjKlbF5O3bGPmWlRWunjgHalEhEiZE8FOdhOq1dAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfugF7+cGOykln9EaedWnV78W95owHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMyMzAzMjJlMzQzMzJlMzczNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKK0swDQYJKoZIhvcN AQELBQADggEBAATRGB7RhwlM/iz/SUF1ZpMo0/8D/06F8Xg8X2khxSHxqYQrwPm0 IAP3vIgL/2raiozzq+tnSgwVVju+NF21caD0NIC0yNTM+Kzeyu5fZvZWRsLqclvL VTapqpAXOjAMUKfZREBFJcsvtDnkCQ/4+uRM7U5qTqqdq0GlWqYYD/DfParCf2JX XTB9bckZS9gDpyvhUvz/ZuLymc64iGx7JZPZHQa/wBtX7roDBhKycaHVWVHULIKT GmkOo3uQ9mxYi9VidFk9AZEhvRM0syEDQ727C6IWlRzGA1PbUbgKMbziE7o9AlqW AZzxT6jGP3Cs4TK5VzC7u4Sl/6F+2imDa7k= -----END CERTIFICATE-----Generated at Thu Mar 26 21:09:19 2026 by rpki-client