$ rpki-client -vvf repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130382e302f32322d3234203d3e2039393035.roa File: 3230322e37372e3130382e302f32322d3234203d3e2039393035.roa (raw, json) Hash identifier: l1p2IuFWO/A2AtsIs015lCcBxDQvUOkJbye5xXvT25k= Subject key identifier: 8F:3C:F7:3E:AE:64:8A:5A:2D:E5:77:F3:5F:B5:F6:09:97:E2:DD:A4 Certificate issuer: /CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Certificate serial: 3733119D872EB444AD3D4C26F7D9F0F419B0414F Authority key identifier: 78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130382e302f32322d3234203d3e2039393035.roa Signing time: Tue 17 Mar 2026 23:00:01 +0000 ROA not before: Tue 17 Mar 2026 22:55:01 +0000 ROA not after: Tue 16 Mar 2027 23:00:01 +0000 asID: 9905 IP address blocks: 202.77.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 09:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:33:11:9d:87:2e:b4:44:ad:3d:4c:26:f7:d9:f0:f4:19:b0:41:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Validity Not Before: Mar 17 22:55:01 2026 GMT Not After : Mar 16 23:00:01 2027 GMT Subject: CN=8F3CF73EAE648A5A2DE577F35FB5F60997E2DDA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:63:42:05:3c:a8:6c:a9:3a:d8:31:a4:37: 52:14:b5:f3:9c:01:80:e5:05:8c:66:54:43:43:f1: 09:5e:42:02:f1:68:7f:2b:e6:86:55:f3:85:f0:f0: 0f:ab:f1:e1:7e:30:64:a1:7c:e6:64:18:44:d8:dc: 95:d8:88:c1:02:88:dd:ad:19:50:45:26:03:9e:51: e5:fd:03:a9:de:97:ec:0e:10:88:7e:da:5a:75:ec: 7f:58:e7:97:92:b9:7f:99:ff:ee:53:dd:69:c0:c5: 20:95:93:c2:74:0a:bb:61:60:97:61:95:c5:ea:c9: ac:14:56:f8:28:7b:67:5d:5c:08:ba:5a:69:7e:ba: 37:61:6b:22:2d:62:2a:01:73:33:19:85:72:24:a8: 8e:2d:41:b2:db:fe:0c:27:3c:22:61:27:18:95:b7: 13:68:bf:6c:7b:78:42:7a:26:72:a7:dc:b2:a2:3f: e2:ad:be:e4:26:04:87:af:9b:6e:fa:9d:a9:e6:c9: 1e:4b:e5:11:b6:05:19:04:d7:ea:f6:4f:ee:97:b3: 25:49:36:a8:b0:93:7f:46:11:9a:80:77:50:ae:f0: 21:54:d0:00:a0:86:fe:46:c0:22:e0:e5:89:28:a9: 32:26:a9:e2:04:56:da:32:62:2c:6d:a8:e9:e6:e1: 97:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3C:F7:3E:AE:64:8A:5A:2D:E5:77:F3:5F:B5:F6:09:97:E2:DD:A4 X509v3 Authority Key Identifier: keyid:78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130382e302f32322d3234203d3e2039393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.77.108.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:41:75:11:61:43:81:0f:b3:57:c8:18:a8:fc:5c:c4:89:a7: 0b:25:f8:aa:9a:6b:9d:56:e9:c6:08:e8:d6:ab:40:c8:c0:10: ef:74:8c:46:b6:1a:90:89:ae:44:e5:08:5e:da:f5:a3:4c:c8: a3:97:a6:da:2a:f3:bb:79:f4:06:18:b7:91:ae:49:ca:17:c7: a9:c6:0f:54:fd:81:ff:63:7c:d9:70:5f:8a:3c:78:7c:fb:84: f3:d0:fd:0f:87:bc:4d:9e:2b:06:bb:c2:68:69:c8:fc:aa:fd: db:a0:a6:08:a7:00:bd:4b:98:e8:e5:4c:73:84:9d:69:df:b5: fb:a8:6d:e0:64:16:2f:61:39:2c:5e:77:75:e8:60:d0:25:c5: 5a:f0:20:5f:c0:3e:28:be:61:3a:53:37:ab:f3:c1:0a:b7:a0: 06:8d:13:fa:92:bb:dd:e3:c0:4d:81:20:a6:92:a0:8e:29:c6: bb:52:7e:b2:47:49:38:8e:e2:00:af:fc:3c:f9:53:cc:4d:aa: 72:7e:6c:fb:80:62:1b:79:37:9e:cf:13:6a:eb:1b:43:3a:45: 51:a1:fb:96:e7:f9:d1:ca:75:c3:5e:d8:68:87:45:fa:37:01: 3f:45:52:97:c7:de:09:ec:43:c1:41:f4:4e:c3:86:18:52:12: 11:eb:96:55 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNzMRnYcutEStPUwm99nw9BmwQU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdB RjA5OTlFNzAeFw0yNjAzMTcyMjU1MDFaFw0yNzAzMTYyMzAwMDFaMDMxMTAvBgNV BAMTKDhGM0NGNzNFQUU2NDhBNUEyREU1NzdGMzVGQjVGNjA5OTdFMkREQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1PmNCBTyobKk62DGkN1IUtfOc AYDlBYxmVEND8QleQgLxaH8r5oZV84Xw8A+r8eF+MGShfOZkGETY3JXYiMECiN2t GVBFJgOeUeX9A6nel+wOEIh+2lp17H9Y55eSuX+Z/+5T3WnAxSCVk8J0CrthYJdh lcXqyawUVvgoe2ddXAi6Wml+ujdhayItYioBczMZhXIkqI4tQbLb/gwnPCJhJxiV txNov2x7eEJ6JnKn3LKiP+KtvuQmBIevm276nanmyR5L5RG2BRkE1+r2T+6XsyVJ Nqiwk39GEZqAd1Cu8CFU0ACghv5GwCLg5YkoqTImqeIEVtoyYixtqOnm4ZfLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjzz3Pq5kilot5XfzX7X2CZfi3aQwHwYDVR0j BBgwFoAUeCY3tYuOB+xkoPquF2mvF68JmecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OWMwNWVlMy03ZmM4LTQ0MDctYjJjMC1jYjQwYmZjZmI4NjYvMC83ODI2MzdCNThC OEUwN0VDNjRBMEZBQUUxNzY5QUYxN0FGMDk5OUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdBRjA5 OTlFNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5YzA1ZWUzLTdmYzgtNDQwNy1i MmMwLWNiNDBiZmNmYjg2Ni8wLzMyMzAzMjJlMzczNzJlMzEzMDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKTWwwDQYJKoZIhvcN AQELBQADggEBAB1BdRFhQ4EPs1fIGKj8XMSJpwsl+Kqaa51W6cYI6NarQMjAEO90 jEa2GpCJrkTlCF7a9aNMyKOXptoq87t59AYYt5GuScoXx6nGD1T9gf9jfNlwX4o8 eHz7hPPQ/Q+HvE2eKwa7wmhpyPyq/dugpginAL1LmOjlTHOEnWnftfuobeBkFi9h OSxed3XoYNAlxVrwIF/APii+YTpTN6vzwQq3oAaNE/qSu93jwE2BIKaSoI4pxrtS frJHSTiO4gCv/Dz5U8xNqnJ+bPuAYht5N57PE2rrG0M6RVGh+5bn+dHKdcNe2GiH Rfo3AT9FUpfH3gnsQ8FB9E7DhhhSEhHrllU= -----END CERTIFICATE-----Generated at Thu Mar 26 13:34:42 2026 by rpki-client