$ rpki-client -vvf repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e32302e302f32322d3234203d3e2039393035.roa File: 3230322e3133372e32302e302f32322d3234203d3e2039393035.roa (raw, json) Hash identifier: OeYXbEZIlcepteTULPZTVS3MVhkGqBR3TToqvNer8kY= Subject key identifier: 14:B8:00:EC:96:6A:65:27:34:97:12:23:3E:DC:99:4E:23:94:E4:28 Certificate issuer: /CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Certificate serial: 6971EF05699314AAA776A38C0D31288B3884680F Authority key identifier: 78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e32302e302f32322d3234203d3e2039393035.roa Signing time: Tue 17 Mar 2026 06:03:28 +0000 ROA not before: Tue 17 Mar 2026 05:58:28 +0000 ROA not after: Tue 16 Mar 2027 06:03:28 +0000 asID: 9905 IP address blocks: 202.137.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 09:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:71:ef:05:69:93:14:aa:a7:76:a3:8c:0d:31:28:8b:38:84:68:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Validity Not Before: Mar 17 05:58:28 2026 GMT Not After : Mar 16 06:03:28 2027 GMT Subject: CN=14B800EC966A6527349712233EDC994E2394E428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e3:25:60:63:c4:69:d8:84:02:83:cf:12:12: c7:7a:66:f6:f0:df:df:62:f7:4a:98:f9:fd:ff:ae: ec:22:66:fe:12:85:02:52:e1:57:6a:2f:b5:fb:40: 84:e1:2a:99:a9:de:95:bc:6b:7d:0c:6d:49:a5:e6: 16:33:60:2d:ff:43:d4:f4:72:e8:a1:df:09:06:a7: db:a2:7e:35:4c:a8:39:7a:33:ae:d2:5b:04:81:b3: ed:2d:e2:74:4e:f8:d1:41:ad:8b:b0:85:3b:39:24: 4b:5f:d1:06:e1:96:f2:cf:4f:8d:36:83:cb:37:31: 51:dd:77:69:a2:0d:22:f7:d3:44:5d:63:b9:2d:ea: 1e:17:a4:b7:f0:71:66:3f:e6:18:ad:df:3c:15:80: 2f:e8:a4:0a:1f:3b:37:72:97:a0:7f:c0:f1:0d:11: 94:3b:45:e0:10:09:f7:58:c6:cf:3a:73:78:db:19: 0f:66:48:dc:a3:b9:6d:c8:08:59:af:0c:8c:cd:88: c1:7e:c9:1f:1f:d1:e9:10:c9:d6:30:75:dc:c0:00: 1c:51:89:ef:f0:5d:61:b1:cc:be:c9:3f:de:44:b0: 3b:ec:d1:49:bd:26:17:ea:25:31:6c:97:10:d9:f1: 66:60:81:97:30:22:05:14:ba:e4:df:1a:e9:47:c0: 5e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B8:00:EC:96:6A:65:27:34:97:12:23:3E:DC:99:4E:23:94:E4:28 X509v3 Authority Key Identifier: keyid:78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e32302e302f32322d3234203d3e2039393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.137.20.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:58:ad:0d:f7:76:02:25:b1:5d:d6:52:bc:24:8a:35:0c:88: 84:c0:c3:b7:09:e3:54:97:52:71:eb:48:e4:a3:3b:82:8a:7a: 1e:52:97:ac:60:b9:cc:12:88:c4:0a:df:90:b6:1d:f6:4d:79: 49:81:81:96:3f:4b:a5:81:11:3c:78:24:b2:07:f9:ee:10:b3: 0c:15:a1:26:3d:96:04:a1:15:68:33:45:df:9d:a7:69:b3:82: 5d:1a:ea:48:6b:f2:2f:7e:72:6e:0a:bc:a5:e0:f1:76:ee:2e: ac:18:e0:e0:17:51:3d:52:4d:c2:e9:b0:f8:8e:10:9a:b6:c0: ab:2a:8e:86:3c:75:f6:f9:46:ff:a2:d6:66:d7:9f:39:a6:e9: 4b:a8:a5:76:c8:53:13:d5:a4:3a:a7:45:f9:39:f3:24:91:b2: d1:fb:b4:e0:17:52:b9:41:68:ed:b9:c2:6b:6c:05:d5:4e:da: ba:8f:e5:82:bb:63:84:b7:f3:6c:e2:27:e8:92:4c:e6:fc:86: ab:95:08:df:90:e6:cb:db:04:ae:8c:f2:04:a7:ae:12:51:77: ae:a3:cb:a5:ad:bf:e2:dd:e7:ef:e5:15:15:84:ea:54:3b:9e: f7:25:0c:a3:0e:c2:12:a6:68:76:53:3a:d7:e7:c8:6f:e6:ce: 14:4e:74:15 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaXHvBWmTFKqndqOMDTEoiziEaA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdB RjA5OTlFNzAeFw0yNjAzMTcwNTU4MjhaFw0yNzAzMTYwNjAzMjhaMDMxMTAvBgNV BAMTKDE0QjgwMEVDOTY2QTY1MjczNDk3MTIyMzNFREM5OTRFMjM5NEU0MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu4yVgY8Rp2IQCg88SEsd6Zvbw 399i90qY+f3/ruwiZv4ShQJS4VdqL7X7QIThKpmp3pW8a30MbUml5hYzYC3/Q9T0 cuih3wkGp9uifjVMqDl6M67SWwSBs+0t4nRO+NFBrYuwhTs5JEtf0QbhlvLPT402 g8s3MVHdd2miDSL300RdY7kt6h4XpLfwcWY/5hit3zwVgC/opAofOzdyl6B/wPEN EZQ7ReAQCfdYxs86c3jbGQ9mSNyjuW3ICFmvDIzNiMF+yR8f0ekQydYwddzAABxR ie/wXWGxzL7JP95EsDvs0Um9JhfqJTFslxDZ8WZggZcwIgUUuuTfGulHwF4dAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUFLgA7JZqZSc0lxIjPtyZTiOU5CgwHwYDVR0j BBgwFoAUeCY3tYuOB+xkoPquF2mvF68JmecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OWMwNWVlMy03ZmM4LTQ0MDctYjJjMC1jYjQwYmZjZmI4NjYvMC83ODI2MzdCNThC OEUwN0VDNjRBMEZBQUUxNzY5QUYxN0FGMDk5OUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdBRjA5 OTlFNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5YzA1ZWUzLTdmYzgtNDQwNy1i MmMwLWNiNDBiZmNmYjg2Ni8wLzMyMzAzMjJlMzEzMzM3MmUzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKiRQwDQYJKoZIhvcN AQELBQADggEBAH9YrQ33dgIlsV3WUrwkijUMiITAw7cJ41SXUnHrSOSjO4KKeh5S l6xgucwSiMQK35C2HfZNeUmBgZY/S6WBETx4JLIH+e4QswwVoSY9lgShFWgzRd+d p2mzgl0a6khr8i9+cm4KvKXg8XbuLqwY4OAXUT1STcLpsPiOEJq2wKsqjoY8dfb5 Rv+i1mbXnzmm6UuopXbIUxPVpDqnRfk58ySRstH7tOAXUrlBaO25wmtsBdVO2rqP 5YK7Y4S382ziJ+iSTOb8hquVCN+Q5svbBK6M8gSnrhJRd66jy6Wtv+Ld5+/lFRWE 6lQ7nvclDKMOwhKmaHZTOtfnyG/mzhROdBU= -----END CERTIFICATE-----Generated at Thu Mar 26 13:34:46 2026 by rpki-client