$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa File: 3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: NLewDnDNZHCpyuL6iCjzSla1E3+jzLgC/C8GKUm9fZs= Subject key identifier: 23:15:D6:75:E9:EA:EE:16:17:AD:CD:1C:81:42:31:DA:91:F4:FD:DB Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 74C1732DD77C157E7A43312B98F7A45217C5EA17 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa Signing time: Tue 17 Mar 2026 06:00:01 +0000 ROA not before: Tue 17 Mar 2026 05:55:01 +0000 ROA not after: Tue 16 Mar 2027 06:00:01 +0000 asID: 140443 IP address blocks: 202.125.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 11:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c1:73:2d:d7:7c:15:7e:7a:43:31:2b:98:f7:a4:52:17:c5:ea:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Mar 17 05:55:01 2026 GMT Not After : Mar 16 06:00:01 2027 GMT Subject: CN=2315D675E9EAEE1617ADCD1C814231DA91F4FDDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:ad:34:fb:c9:8a:d4:32:44:a8:3b:ac:7a: 53:3b:8c:7e:8a:7e:48:ae:e4:50:e2:60:e5:2a:ad: a3:46:4a:3a:96:60:eb:9f:e6:8a:2c:ec:14:b0:fc: 51:5e:b4:e4:97:b7:fa:f2:01:e7:00:e2:06:0b:1e: 80:cd:48:9a:76:94:f1:94:c6:cf:83:5e:a5:d5:1b: 4b:2e:ff:5f:10:ff:d2:9b:1f:53:19:76:24:1b:11: 71:9e:9b:12:87:69:b2:09:18:8d:a7:71:00:ad:eb: 17:a6:9f:27:ae:88:4e:52:47:db:c1:71:66:49:2d: 20:a9:e6:70:34:ff:37:e2:52:33:0a:6d:b9:f5:86: dc:e7:ae:86:11:b8:77:e3:94:85:9b:05:91:41:87: 0c:7e:19:ee:72:2c:ea:6f:4a:fb:57:a9:14:e3:b0: e6:38:af:dc:11:b4:10:97:ad:95:4b:11:d2:17:3a: 0e:95:6e:74:7f:34:cc:b7:76:43:ca:98:c2:04:a4: 1a:28:02:a3:37:1a:01:4c:a9:eb:28:51:5c:77:03: 30:93:4c:a7:4d:35:2e:23:38:a0:64:8b:88:5a:d6: 6f:1e:7c:6f:2a:23:68:19:ed:3c:43:b3:21:61:89: 3b:36:30:c6:8d:11:14:e7:a0:d5:d4:08:97:84:64: 2f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:15:D6:75:E9:EA:EE:16:17:AD:CD:1C:81:42:31:DA:91:F4:FD:DB X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.125.83.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:e0:4d:ae:89:75:13:91:e0:7d:24:b4:6b:ba:ed:bc:a8:a4: 72:d7:34:5d:94:03:23:df:6b:a8:51:7d:fb:7a:eb:a8:4c:01: 49:1c:58:d7:d9:ee:08:d7:ba:bb:ee:f5:fa:22:a6:37:66:5f: 65:30:92:8b:01:71:55:98:54:c8:c2:98:96:37:6f:02:75:56: 4e:a6:1e:aa:95:f1:8e:51:b1:2f:e1:47:7f:80:12:34:27:df: b8:18:49:12:5e:9e:3f:81:34:f5:53:0f:b5:f5:ca:6e:f9:a8: 45:79:93:26:18:74:8f:87:42:48:88:67:83:3d:df:6c:a2:eb: 76:ef:0e:cb:9c:0c:2d:09:f9:d3:08:e0:b4:0c:09:18:37:84: 99:6a:3a:89:de:db:f9:93:7d:f6:a2:97:1a:09:95:19:8b:a2: bc:40:74:19:39:20:a2:12:9d:d7:eb:bd:0e:be:f3:00:27:34: 21:74:5b:8e:1a:f9:90:f8:82:ea:39:f4:17:96:dd:d9:6e:6c: 73:52:02:0b:f5:c1:f4:74:98:d4:e8:38:24:8a:0a:17:2f:89: 9d:71:78:9f:db:7f:d6:90:e5:33:1c:74:d3:3e:92:78:8a:13: 2b:7c:6b:a7:c2:46:da:da:b5:2d:fc:72:b3:98:08:8a:c9:8f: 91:4a:db:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdMFzLdd8FX56QzErmPekUhfF6hcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNjAzMTcwNTU1MDFaFw0yNzAzMTYwNjAwMDFaMDMxMTAvBgNV BAMTKDIzMTVENjc1RTlFQUVFMTYxN0FEQ0QxQzgxNDIzMURBOTFGNEZEREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsZK00+8mK1DJEqDuselM7jH6K fkiu5FDiYOUqraNGSjqWYOuf5oos7BSw/FFetOSXt/ryAecA4gYLHoDNSJp2lPGU xs+DXqXVG0su/18Q/9KbH1MZdiQbEXGemxKHabIJGI2ncQCt6xemnyeuiE5SR9vB cWZJLSCp5nA0/zfiUjMKbbn1htznroYRuHfjlIWbBZFBhwx+Ge5yLOpvSvtXqRTj sOY4r9wRtBCXrZVLEdIXOg6VbnR/NMy3dkPKmMIEpBooAqM3GgFMqesoUVx3AzCT TKdNNS4jOKBki4ha1m8efG8qI2gZ7TxDsyFhiTs2MMaNERTnoNXUCJeEZC93AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIxXWdenq7hYXrc0cgUIx2pH0/dswHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzEzMjM1MmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyn1TMA0GCSqG SIb3DQEBCwUAA4IBAQB64E2uiXUTkeB9JLRruu28qKRy1zRdlAMj32uoUX37euuo TAFJHFjX2e4I17q77vX6IqY3Zl9lMJKLAXFVmFTIwpiWN28CdVZOph6qlfGOUbEv 4Ud/gBI0J9+4GEkSXp4/gTT1Uw+19cpu+ahFeZMmGHSPh0JIiGeDPd9sout27w7L nAwtCfnTCOC0DAkYN4SZajqJ3tv5k332opcaCZUZi6K8QHQZOSCiEp3X670OvvMA JzQhdFuOGvmQ+ILqOfQXlt3ZbmxzUgIL9cH0dJjU6DgkigoXL4mdcXif23/WkOUz HHTTPpJ4ihMrfGunwkba2rUt/HKzmAiKyY+RStuj -----END CERTIFICATE-----Generated at Fri Mar 27 01:17:29 2026 by rpki-client