$ rpki-client -vvf repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa File: 3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa (raw, json) Hash identifier: LgRRVJRfV+/ns4q13d+YqlNlGcgqnMAnfg10KVI19ag= Subject key identifier: 30:87:1A:43:1E:BB:47:6D:D2:56:98:37:AF:58:3C:B4:AA:BE:AA:F6 Certificate issuer: /CN=4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1 Certificate serial: 065F078E43C4C7B8496105CD4E8A98DFA65DDA76 Authority key identifier: 4D:57:27:02:D7:7E:3A:9A:4A:FA:80:33:A2:A3:DC:59:7B:2C:8D:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa Signing time: Tue 24 Mar 2026 02:00:02 +0000 ROA not before: Tue 24 Mar 2026 01:55:02 +0000 ROA not after: Tue 23 Mar 2027 02:00:02 +0000 asID: 9326 IP address blocks: 118.151.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.crl rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 13:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:5f:07:8e:43:c4:c7:b8:49:61:05:cd:4e:8a:98:df:a6:5d:da:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1 Validity Not Before: Mar 24 01:55:02 2026 GMT Not After : Mar 23 02:00:02 2027 GMT Subject: CN=30871A431EBB476DD2569837AF583CB4AABEAAF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3e:13:60:c3:77:4c:47:28:14:97:26:5a:52: 95:44:d0:18:85:94:f3:2d:c0:5f:db:18:4d:66:6b: d1:42:89:c4:37:35:aa:0b:ff:ea:9c:fa:c9:66:de: 3e:84:cd:6b:97:25:bb:cf:04:79:a2:33:02:c9:c2: 75:99:7c:d1:dc:3c:34:f1:9e:3c:b5:f1:a9:42:2e: b1:dc:00:6b:8d:83:61:eb:94:57:10:b0:72:65:23: c1:f3:1a:c8:c6:bd:20:00:18:24:9e:af:e9:3f:e9: 59:1a:fa:b3:ea:b6:e3:ce:c2:e8:d9:29:f0:31:4a: 47:12:02:68:c7:08:0b:92:39:88:b7:ce:23:58:29: 98:97:db:71:08:b5:e4:8d:01:07:19:c0:a6:e2:ed: 6b:cb:c7:09:3a:cf:1f:3a:1d:91:7c:6f:04:dc:76: bd:70:9f:05:27:1e:99:64:98:5e:2a:bb:86:f9:62: 98:a6:22:1d:4e:30:e9:73:66:05:53:8d:f0:88:a2: f4:75:61:bf:c9:73:1e:d0:39:b7:1b:0c:0e:17:b2: ce:85:fb:ab:4a:51:3a:f6:c9:7b:cf:2b:b1:45:c2: 70:28:f6:d7:34:65:11:92:0b:5e:11:f7:0f:71:1a: 96:4b:96:06:6f:84:10:1f:b9:b4:14:70:08:3d:7b: 32:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:87:1A:43:1E:BB:47:6D:D2:56:98:37:AF:58:3C:B4:AA:BE:AA:F6 X509v3 Authority Key Identifier: keyid:4D:57:27:02:D7:7E:3A:9A:4A:FA:80:33:A2:A3:DC:59:7B:2C:8D:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4D572702D77E3A9A4AFA8033A2A3DC597B2C8DA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/68184fab-0fa5-43bb-811c-2eeb0a5fe8d7/0/3131382e3135312e3232302e302f32322d3234203d3e2039333236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.220.0/22 Signature Algorithm: sha256WithRSAEncryption 70:8c:06:c9:06:99:e6:1a:21:94:29:47:cb:23:e4:7e:89:b4: bd:6a:b4:c1:b4:4a:60:ca:2f:3f:59:67:9a:85:73:16:3b:5f: 23:51:d3:48:d1:ee:a7:d0:27:70:3d:fd:d7:47:49:40:58:7f: 88:19:17:f6:54:84:eb:13:15:f9:85:85:fa:96:4d:34:ca:e4: 04:81:b9:cc:be:a3:8b:61:ac:dc:5e:4d:27:42:d6:d4:11:b1: 0b:df:5e:0d:8c:6e:1b:a0:41:50:b8:0c:29:93:a3:21:0b:22: df:7a:fc:66:05:fc:1c:47:68:ab:e8:15:43:d5:3f:69:ca:00: 6f:f9:ce:f2:f4:62:e3:09:d7:41:e8:01:8a:db:1a:89:cb:5b: 62:16:9c:89:9c:e0:3a:49:cf:d6:b7:4e:79:da:40:23:eb:ad: 6b:0a:af:56:f6:ef:af:15:6f:39:91:ec:d6:99:6f:81:15:f8: 72:94:2e:b1:a4:27:c7:d3:b7:03:bd:24:77:28:86:c2:15:40: 95:ec:66:3b:5c:30:d1:b9:8e:74:72:b3:9e:72:25:18:a2:09: 6b:30:57:c9:b0:50:fc:b2:bd:46:06:c7:e1:65:be:81:b7:8b: 50:22:f4:36:de:16:a2:8e:0f:5e:a5:5d:31:29:2d:81:5d:51: 86:3f:18:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBl8HjkPEx7hJYQXNToqY36Zd2nYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ1NzI3MDJENzdFM0E5QTRBRkE4MDMzQTJBM0RDNTk3 QjJDOERBMTAeFw0yNjAzMjQwMTU1MDJaFw0yNzAzMjMwMjAwMDJaMDMxMTAvBgNV BAMTKDMwODcxQTQzMUVCQjQ3NkREMjU2OTgzN0FGNTgzQ0I0QUFCRUFBRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmPhNgw3dMRygUlyZaUpVE0BiF lPMtwF/bGE1ma9FCicQ3NaoL/+qc+slm3j6EzWuXJbvPBHmiMwLJwnWZfNHcPDTx njy18alCLrHcAGuNg2HrlFcQsHJlI8HzGsjGvSAAGCSer+k/6Vka+rPqtuPOwujZ KfAxSkcSAmjHCAuSOYi3ziNYKZiX23EIteSNAQcZwKbi7WvLxwk6zx86HZF8bwTc dr1wnwUnHplkmF4qu4b5YpimIh1OMOlzZgVTjfCIovR1Yb/Jcx7QObcbDA4Xss6F +6tKUTr2yXvPK7FFwnAo9tc0ZRGSC14R9w9xGpZLlgZvhBAfubQUcAg9ezJzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMIcaQx67R23SVpg3r1g8tKq+qvYwHwYDVR0j BBgwFoAUTVcnAtd+OppK+oAzoqPcWXssjaEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ODE4NGZhYi0wZmE1LTQzYmItODExYy0yZWViMGE1ZmU4ZDcvMC80RDU3MjcwMkQ3 N0UzQTlBNEFGQTgwMzNBMkEzREM1OTdCMkM4REExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEQ1NzI3MDJENzdFM0E5QTRBRkE4MDMzQTJBM0RDNTk3QjJD OERBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY4MTg0ZmFiLTBmYTUtNDNiYi04 MTFjLTJlZWIwYTVmZThkNy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTMzMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnaX3DANBgkqhkiG 9w0BAQsFAAOCAQEAcIwGyQaZ5hohlClHyyPkfom0vWq0wbRKYMovP1lnmoVzFjtf I1HTSNHup9AncD3910dJQFh/iBkX9lSE6xMV+YWF+pZNNMrkBIG5zL6ji2Gs3F5N J0LW1BGxC99eDYxuG6BBULgMKZOjIQsi33r8ZgX8HEdoq+gVQ9U/acoAb/nO8vRi 4wnXQegBitsaictbYhaciZzgOknP1rdOedpAI+utawqvVvbvrxVvOZHs1plvgRX4 cpQusaQnx9O3A70kdyiGwhVAlexmO1ww0bmOdHKznnIlGKIJazBXybBQ/LK9RgbH 4WW+gbeLUCL0Nt4Woo4PXqVdMSktgV1Rhj8Ypw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:03:33 2026 by rpki-client