$ rpki-client -vvf repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130342e302f32322d3234203d3e2039393035.roa File: 3230322e37372e3130342e302f32322d3234203d3e2039393035.roa (raw, json) Hash identifier: If21Cxv1MJ71wN/4eWmbzpa/cRzwknul3YoMd+Czpk4= Subject key identifier: EC:5A:2E:19:79:A9:99:EE:94:B5:EB:72:03:3A:D8:D0:97:B6:60:3D Certificate issuer: /CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Certificate serial: 5D560EDAC190DD19524B802BD4EA98B119F0CA7F Authority key identifier: 78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130342e302f32322d3234203d3e2039393035.roa Signing time: Wed 18 Mar 2026 00:00:02 +0000 ROA not before: Tue 17 Mar 2026 23:55:02 +0000 ROA not after: Wed 17 Mar 2027 00:00:02 +0000 asID: 9905 IP address blocks: 202.77.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 09:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:56:0e:da:c1:90:dd:19:52:4b:80:2b:d4:ea:98:b1:19:f0:ca:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Validity Not Before: Mar 17 23:55:02 2026 GMT Not After : Mar 17 00:00:02 2027 GMT Subject: CN=EC5A2E1979A999EE94B5EB72033AD8D097B6603D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:52:46:f1:f5:6e:6a:9d:b0:45:30:61:e5:fe: 4e:f8:13:6d:a8:df:28:5f:c8:c0:d8:9f:f4:39:61: df:74:a6:0e:df:af:18:8c:7c:45:e3:56:74:76:3c: 94:60:25:13:c3:78:70:07:6b:38:cd:53:dd:e7:98: 74:f3:8e:c6:61:00:56:50:ac:88:60:87:b7:e1:5d: a0:6a:ab:fe:6b:98:d1:bf:07:02:05:e1:d1:b2:47: d9:43:60:8a:43:fa:68:ed:3c:cf:14:2a:c5:52:a0: 1c:8e:5b:f4:24:56:d3:89:cb:5a:9c:20:91:2e:18: 84:91:a7:ba:c9:5a:ad:12:86:2d:dc:a4:16:44:c0: 89:99:10:fd:c3:0d:00:7b:cc:0a:37:39:56:5f:4c: 10:14:ea:71:68:7f:18:48:1c:de:e9:21:eb:7f:8b: 79:40:1d:2d:03:57:e9:c2:2d:a3:ea:37:4b:7f:17: e4:09:50:63:3c:71:8e:38:55:d2:9c:bc:9b:67:46: a5:ce:f6:27:1a:26:72:8a:e1:9b:e0:90:20:b3:20: 97:85:c5:d4:e4:09:0e:ef:ad:0b:7e:0e:0a:70:8d: a9:02:d9:fb:f0:27:ed:46:98:a2:eb:52:7e:d0:54: 5b:20:ae:5e:e6:df:c7:c3:cf:e9:08:e3:89:f7:ed: e5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5A:2E:19:79:A9:99:EE:94:B5:EB:72:03:3A:D8:D0:97:B6:60:3D X509v3 Authority Key Identifier: keyid:78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130342e302f32322d3234203d3e2039393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.77.104.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:0c:f1:4a:ab:0b:64:33:b5:ce:17:ee:5d:7f:a7:d7:c4:f9: 14:68:ce:0b:cf:43:20:f5:26:bd:92:44:f7:87:79:b0:bc:4c: 10:e2:7f:03:de:5f:9f:0d:56:05:f9:22:62:42:b3:55:08:06: bc:9d:87:96:de:a9:31:da:e8:b1:29:64:69:f0:8a:c3:0d:df: bb:de:2f:e0:9f:5f:21:59:bb:3a:c5:f8:b9:4f:84:b3:af:76: 86:17:f4:57:e5:56:72:1d:8b:55:41:f0:70:f3:b0:53:c2:35: 66:ee:ea:4b:10:28:2c:e2:d7:f3:b2:50:56:a6:df:14:d0:03: 4e:70:cc:3b:fb:d1:70:22:58:7a:a2:ea:8c:d5:7d:2f:4b:8b: fe:d1:a6:15:0e:3b:da:1b:56:60:f0:25:d7:5b:f4:e4:d9:1c: f9:10:ff:80:9e:d0:4e:84:1f:73:62:c1:37:1a:73:2a:09:31: a2:9f:9c:c9:aa:8d:6a:11:82:96:68:2b:08:4a:23:77:af:9d: 50:94:73:2f:50:f0:9a:a9:42:7e:02:38:a8:7e:87:39:a1:cd: da:92:d0:74:be:10:92:58:98:18:99:40:e1:a5:b5:56:f3:9a: e0:de:0c:dd:21:d5:1b:11:f6:ef:1d:55:62:2f:79:15:74:24: ca:51:40:16 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXVYO2sGQ3RlSS4Ar1OqYsRnwyn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdB RjA5OTlFNzAeFw0yNjAzMTcyMzU1MDJaFw0yNzAzMTcwMDAwMDJaMDMxMTAvBgNV BAMTKEVDNUEyRTE5NzlBOTk5RUU5NEI1RUI3MjAzM0FEOEQwOTdCNjYwM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaUkbx9W5qnbBFMGHl/k74E22o 3yhfyMDYn/Q5Yd90pg7frxiMfEXjVnR2PJRgJRPDeHAHazjNU93nmHTzjsZhAFZQ rIhgh7fhXaBqq/5rmNG/BwIF4dGyR9lDYIpD+mjtPM8UKsVSoByOW/QkVtOJy1qc IJEuGISRp7rJWq0Shi3cpBZEwImZEP3DDQB7zAo3OVZfTBAU6nFofxhIHN7pIet/ i3lAHS0DV+nCLaPqN0t/F+QJUGM8cY44VdKcvJtnRqXO9icaJnKK4ZvgkCCzIJeF xdTkCQ7vrQt+DgpwjakC2fvwJ+1GmKLrUn7QVFsgrl7m38fDz+kI44n37eW7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7FouGXmpme6UtetyAzrY0Je2YD0wHwYDVR0j BBgwFoAUeCY3tYuOB+xkoPquF2mvF68JmecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OWMwNWVlMy03ZmM4LTQ0MDctYjJjMC1jYjQwYmZjZmI4NjYvMC83ODI2MzdCNThC OEUwN0VDNjRBMEZBQUUxNzY5QUYxN0FGMDk5OUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdBRjA5 OTlFNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5YzA1ZWUzLTdmYzgtNDQwNy1i MmMwLWNiNDBiZmNmYjg2Ni8wLzMyMzAzMjJlMzczNzJlMzEzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKTWgwDQYJKoZIhvcN AQELBQADggEBABoM8UqrC2Qztc4X7l1/p9fE+RRozgvPQyD1Jr2SRPeHebC8TBDi fwPeX58NVgX5ImJCs1UIBrydh5beqTHa6LEpZGnwisMN37veL+CfXyFZuzrF+LlP hLOvdoYX9FflVnIdi1VB8HDzsFPCNWbu6ksQKCzi1/OyUFam3xTQA05wzDv70XAi WHqi6ozVfS9Li/7RphUOO9obVmDwJddb9OTZHPkQ/4Ce0E6EH3NiwTcacyoJMaKf nMmqjWoRgpZoKwhKI3evnVCUcy9Q8JqpQn4COKh+hzmhzdqS0HS+EJJYmBiZQOGl tVbzmuDeDN0h1RsR9u8dVWIveRV0JMpRQBY= -----END CERTIFICATE-----Generated at Thu Mar 26 17:02:27 2026 by rpki-client