$ rpki-client -vvf repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35382e302f32342d3234203d3e203436303538.roa File: 3230322e35322e35382e302f32342d3234203d3e203436303538.roa (raw, json) Hash identifier: iHGb+CX/nLKp5DJ3GjNSAEFNQO8ck1Jk0sGUBEy3iDY= Subject key identifier: 6C:D1:B5:C0:A1:6F:72:2A:E4:D4:6D:41:7A:AC:F0:64:F1:49:5A:C3 Certificate issuer: /CN=2E55483B906244D2DA357F014F9AFA606D95C345 Certificate serial: 228038B0338A46C460FD87ED74355F6D95695219 Authority key identifier: 2E:55:48:3B:90:62:44:D2:DA:35:7F:01:4F:9A:FA:60:6D:95:C3:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E55483B906244D2DA357F014F9AFA606D95C345.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35382e302f32342d3234203d3e203436303538.roa Signing time: Sat 21 Mar 2026 07:00:02 +0000 ROA not before: Sat 21 Mar 2026 06:55:02 +0000 ROA not after: Sat 20 Mar 2027 07:00:02 +0000 asID: 46058 IP address blocks: 202.52.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/2E55483B906244D2DA357F014F9AFA606D95C345.crl rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/2E55483B906244D2DA357F014F9AFA606D95C345.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E55483B906244D2DA357F014F9AFA606D95C345.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:80:38:b0:33:8a:46:c4:60:fd:87:ed:74:35:5f:6d:95:69:52:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E55483B906244D2DA357F014F9AFA606D95C345 Validity Not Before: Mar 21 06:55:02 2026 GMT Not After : Mar 20 07:00:02 2027 GMT Subject: CN=6CD1B5C0A16F722AE4D46D417AACF064F1495AC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:eb:9c:7e:cd:df:94:bb:82:47:1c:05:e6:b7: 2c:f0:88:b9:fb:23:b0:d2:cb:45:d8:40:1b:80:dd: 4a:c7:8a:dd:ea:69:c7:64:0d:5b:70:00:cf:4e:48: 10:c7:d8:ed:e4:f8:89:53:d8:46:27:05:f2:07:8e: 36:af:63:61:d6:eb:df:c0:f8:93:59:c7:a3:a3:43: df:b6:12:5c:46:ef:f6:13:01:77:6f:86:8f:ab:b1: 6c:4a:23:55:5b:2f:2c:1d:b5:03:9e:87:3f:db:9e: ef:3f:d7:12:ab:29:fe:f2:4c:e1:cf:8c:8f:0d:aa: 58:f2:21:04:88:e9:aa:7c:a2:3e:ae:6f:9d:26:23: d9:33:3d:04:69:9a:be:6c:ac:47:51:3e:3d:d7:73: aa:a6:dc:58:03:57:21:0b:1e:93:e6:cf:3c:d6:3b: 3f:69:f1:2c:75:8a:9e:52:da:dd:86:52:af:45:fd: 5f:8c:f2:92:3f:66:eb:4d:c6:82:e5:07:11:f6:db: cf:f1:ab:e3:0c:70:bf:26:6c:83:98:d9:d9:6c:17: 84:89:2e:80:bd:6e:d5:45:83:09:a9:98:dd:3e:0f: 85:fd:6d:c8:97:f5:22:ec:0f:5e:e0:fa:79:0a:22: c7:e0:0e:ef:80:75:77:b1:f3:7f:5c:f2:73:d1:53: dc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D1:B5:C0:A1:6F:72:2A:E4:D4:6D:41:7A:AC:F0:64:F1:49:5A:C3 X509v3 Authority Key Identifier: keyid:2E:55:48:3B:90:62:44:D2:DA:35:7F:01:4F:9A:FA:60:6D:95:C3:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/2E55483B906244D2DA357F014F9AFA606D95C345.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E55483B906244D2DA357F014F9AFA606D95C345.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35382e302f32342d3234203d3e203436303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.58.0/24 Signature Algorithm: sha256WithRSAEncryption 52:80:a6:ee:78:5f:01:4c:f6:16:06:32:68:82:38:8c:c1:87: 00:a8:98:fd:48:bb:7d:a1:08:54:b5:03:24:c2:93:4a:35:c3: dc:dc:ea:61:53:ab:65:42:d2:82:d0:5a:bb:b8:a7:53:68:78: 38:4e:7a:3d:45:14:33:c5:ee:2f:08:89:b7:92:37:20:09:78: 6d:7b:bd:da:79:8c:a1:04:c6:83:8f:79:ac:38:7b:3d:28:e4: bb:56:50:a8:bb:eb:52:13:92:34:02:61:5f:4c:85:67:21:6f: 2e:34:c5:8c:55:4a:14:90:48:42:66:19:06:93:e4:60:dd:25: 75:64:31:3b:96:97:2e:21:0a:e1:fb:f8:92:a7:a2:02:a1:c7: 88:34:5f:73:a7:31:92:b5:6a:62:bb:35:c4:8d:16:7f:8d:18: c8:a6:66:d9:db:5b:98:d3:1d:a6:f8:4c:fd:50:59:4d:cd:c5: e1:0b:47:0a:72:ff:38:f6:29:78:28:30:2e:53:c5:a3:e8:8a: 61:d6:a5:91:e5:e0:44:16:c6:46:6a:52:a4:73:54:68:9b:bf: a6:10:be:04:89:02:f5:50:3e:54:c6:7e:05:d1:9d:2b:db:4e: 2a:d1:d6:5c:8a:25:a8:ff:52:b6:58:10:46:ea:a7:58:3d:b8: 16:d6:65:23 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIoA4sDOKRsRg/YftdDVfbZVpUhkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU1NTQ4M0I5MDYyNDREMkRBMzU3RjAxNEY5QUZBNjA2 RDk1QzM0NTAeFw0yNjAzMjEwNjU1MDJaFw0yNzAzMjAwNzAwMDJaMDMxMTAvBgNV BAMTKDZDRDFCNUMwQTE2RjcyMkFFNEQ0NkQ0MTdBQUNGMDY0RjE0OTVBQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn65x+zd+Uu4JHHAXmtyzwiLn7 I7DSy0XYQBuA3UrHit3qacdkDVtwAM9OSBDH2O3k+IlT2EYnBfIHjjavY2HW69/A +JNZx6OjQ9+2ElxG7/YTAXdvho+rsWxKI1VbLywdtQOehz/bnu8/1xKrKf7yTOHP jI8NqljyIQSI6ap8oj6ub50mI9kzPQRpmr5srEdRPj3Xc6qm3FgDVyELHpPmzzzW Oz9p8Sx1ip5S2t2GUq9F/V+M8pI/ZutNxoLlBxH228/xq+MMcL8mbIOY2dlsF4SJ LoC9btVFgwmpmN0+D4X9bciX9SLsD17g+nkKIsfgDu+AdXex839c8nPRU9xNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbNG1wKFvcirk1G1BeqzwZPFJWsMwHwYDVR0j BBgwFoAULlVIO5BiRNLaNX8BT5r6YG2Vw0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmUyM2RjNC00ZmQ1LTQzZTItYmI2YS00ZmRjMzg3ZWJjNTgvMC8yRTU1NDgzQjkw NjI0NEQyREEzNTdGMDE0RjlBRkE2MDZEOTVDMzQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkU1NTQ4M0I5MDYyNDREMkRBMzU3RjAxNEY5QUZBNjA2RDk1 QzM0NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyZTIzZGM0LTRmZDUtNDNlMi1i YjZhLTRmZGMzODdlYmM1OC8wLzMyMzAzMjJlMzUzMjJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNDowDQYJKoZIhvcN AQELBQADggEBAFKApu54XwFM9hYGMmiCOIzBhwComP1Iu32hCFS1AyTCk0o1w9zc 6mFTq2VC0oLQWru4p1NoeDhOej1FFDPF7i8IibeSNyAJeG17vdp5jKEExoOPeaw4 ez0o5LtWUKi761ITkjQCYV9MhWchby40xYxVShSQSEJmGQaT5GDdJXVkMTuWly4h CuH7+JKnogKhx4g0X3OnMZK1amK7NcSNFn+NGMimZtnbW5jTHab4TP1QWU3NxeEL Rwpy/zj2KXgoMC5TxaPoimHWpZHl4EQWxkZqUqRzVGibv6YQvgSJAvVQPlTGfgXR nSvbTirR1lyKJaj/UrZYEEbqp1g9uBbWZSM= -----END CERTIFICATE-----Generated at Thu Mar 26 16:45:57 2026 by rpki-client