$ rpki-client -vvf repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39382e302f32342d3234203d3e20313534343130.roa File: 3137352e3131312e39382e302f32342d3234203d3e20313534343130.roa (raw, json) Hash identifier: tp/Jlsq88hd2XOTMKJfCJaaLDtcVuVyDPXkT0pr4Y9I= Subject key identifier: E3:3B:23:A0:D9:C1:8F:EB:5E:EB:86:A7:9A:73:E1:D6:CA:13:BC:62 Certificate issuer: /CN=8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D Certificate serial: 21160C9B31CC6AFDD7AED36B9B3412DE788A4959 Authority key identifier: 86:50:DE:F1:B1:C8:9D:70:1C:2B:B9:9C:A9:07:9E:ED:BC:CC:04:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39382e302f32342d3234203d3e20313534343130.roa Signing time: Mon 16 Mar 2026 18:18:54 +0000 ROA not before: Mon 16 Mar 2026 18:13:54 +0000 ROA not after: Mon 15 Mar 2027 18:18:54 +0000 asID: 154410 IP address blocks: 175.111.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.crl rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:16:0c:9b:31:cc:6a:fd:d7:ae:d3:6b:9b:34:12:de:78:8a:49:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D Validity Not Before: Mar 16 18:13:54 2026 GMT Not After : Mar 15 18:18:54 2027 GMT Subject: CN=E33B23A0D9C18FEB5EEB86A79A73E1D6CA13BC62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2a:2e:3f:65:4c:d8:76:21:10:97:ab:9b:bd: a9:4a:61:b9:63:71:5c:2a:34:6c:0a:1c:ba:c2:a2: d6:c2:6f:13:ae:f2:63:25:7d:bb:ef:0a:5b:bf:e9: 78:13:a6:1b:21:63:89:db:d8:9d:81:af:b5:80:35: 7b:e0:8d:bb:13:7b:78:16:d6:ea:f0:ea:6f:e1:e7: e8:bf:13:3c:7f:fc:4a:a7:eb:74:b2:f6:0c:79:d3: c0:82:78:c4:c4:b7:a5:af:4c:68:75:0c:d2:22:8e: 0f:49:85:a4:09:75:7b:55:d8:20:0f:91:83:8d:be: 67:51:aa:3e:f9:00:a2:13:2f:7b:b5:a1:ee:08:0d: fe:22:bc:0e:cf:c8:45:35:a7:5c:39:54:ef:f1:52: 66:80:13:df:9d:c9:8e:d8:75:9c:37:ee:05:bd:25: 63:45:c6:4b:6e:ca:41:63:e1:f8:85:55:d3:ae:e3: 98:0a:43:79:d8:de:d6:88:92:a0:e1:ef:41:fe:b4: 94:5d:8d:70:b0:41:85:d2:63:b3:03:c9:6a:0b:47: 51:fb:04:ea:77:b2:cc:99:4e:70:90:8c:9f:20:2f: 82:59:d3:2d:dd:64:a3:2d:9f:33:62:58:72:8f:45: aa:3f:d4:f9:23:7c:72:66:19:75:fe:e4:08:99:37: 60:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3B:23:A0:D9:C1:8F:EB:5E:EB:86:A7:9A:73:E1:D6:CA:13:BC:62 X509v3 Authority Key Identifier: keyid:86:50:DE:F1:B1:C8:9D:70:1C:2B:B9:9C:A9:07:9E:ED:BC:CC:04:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39382e302f32342d3234203d3e20313534343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.98.0/24 Signature Algorithm: sha256WithRSAEncryption 74:99:4e:37:61:5e:52:d0:b6:f3:56:1a:0e:4f:8e:86:ef:2d: 52:27:26:9f:b7:be:8e:f9:12:c2:69:a5:1c:c9:15:a9:fc:e5: 64:40:57:df:30:b5:73:0b:ca:f0:2e:92:5b:4e:b7:06:bc:5e: 12:79:e1:1c:fb:18:7d:73:52:09:a2:9f:1f:fa:0f:d8:de:ad: 68:c5:58:61:0c:11:35:e6:d4:66:69:5b:57:03:87:14:31:d8: 29:8d:f6:f8:a3:df:69:59:0d:9c:5d:80:98:a0:37:8c:48:9d: 83:d8:37:5f:81:b6:b5:a9:84:59:8b:4b:42:a3:ba:9d:be:f6: c4:de:fd:7c:ca:c5:1b:80:12:02:9f:15:f4:ab:b5:60:01:82: e3:93:5b:9f:a7:1e:5a:fb:63:31:d8:b5:32:fb:b3:94:05:24: d6:a5:42:92:d7:06:75:96:1b:09:e2:57:f4:61:74:59:79:d5: 3a:55:cd:e4:e9:09:3e:33:9d:0c:d3:b6:70:16:9b:ad:1a:d7: 56:33:80:cd:22:40:85:1b:ee:e6:48:5b:f7:3d:19:2f:d1:75: a6:99:fd:a0:9a:0c:07:50:08:91:b2:75:fa:06:9c:ef:61:d0: 26:3d:a0:41:23:8a:01:84:d1:e0:ba:3a:59:39:0e:14:54:52: 82:a7:01:cc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIRYMmzHMav3XrtNrmzQS3niKSVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1MERFRjFCMUM4OUQ3MDFDMkJCOTlDQTkwNzlFRURC Q0NDMDQ2RDAeFw0yNjAzMTYxODEzNTRaFw0yNzAzMTUxODE4NTRaMDMxMTAvBgNV BAMTKEUzM0IyM0EwRDlDMThGRUI1RUVCODZBNzlBNzNFMUQ2Q0ExM0JDNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFKi4/ZUzYdiEQl6ubvalKYblj cVwqNGwKHLrCotbCbxOu8mMlfbvvClu/6XgTphshY4nb2J2Br7WANXvgjbsTe3gW 1urw6m/h5+i/Ezx//Eqn63Sy9gx508CCeMTEt6WvTGh1DNIijg9JhaQJdXtV2CAP kYONvmdRqj75AKITL3u1oe4IDf4ivA7PyEU1p1w5VO/xUmaAE9+dyY7YdZw37gW9 JWNFxktuykFj4fiFVdOu45gKQ3nY3taIkqDh70H+tJRdjXCwQYXSY7MDyWoLR1H7 BOp3ssyZTnCQjJ8gL4JZ0y3dZKMtnzNiWHKPRao/1PkjfHJmGXX+5AiZN2AfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4zsjoNnBj+te64anmnPh1soTvGIwHwYDVR0j BBgwFoAUhlDe8bHInXAcK7mcqQee7bzMBG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YmE4Y2Y2NS1kNDY4LTQzMDktOWYzMC05YjlmMjZkOWNlMmQvMC84NjUwREVGMUIx Qzg5RDcwMUMyQkI5OUNBOTA3OUVFREJDQ0MwNDZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1MERFRjFCMUM4OUQ3MDFDMkJCOTlDQTkwNzlFRURCQ0ND MDQ2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiYThjZjY1LWQ0NjgtNDMwOS05 ZjMwLTliOWYyNmQ5Y2UyZC8wLzMxMzczNTJlMzEzMTMxMmUzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTM0MzQzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29iMA0GCSqG SIb3DQEBCwUAA4IBAQB0mU43YV5S0LbzVhoOT46G7y1SJyaft76O+RLCaaUcyRWp /OVkQFffMLVzC8rwLpJbTrcGvF4SeeEc+xh9c1IJop8f+g/Y3q1oxVhhDBE15tRm aVtXA4cUMdgpjfb4o99pWQ2cXYCYoDeMSJ2D2Ddfgba1qYRZi0tCo7qdvvbE3v18 ysUbgBICnxX0q7VgAYLjk1ufpx5a+2Mx2LUy+7OUBSTWpUKS1wZ1lhsJ4lf0YXRZ edU6Vc3k6Qk+M50M07ZwFputGtdWM4DNIkCFG+7mSFv3PRkv0XWmmf2gmgwHUAiR snX6BpzvYdAmPaBBI4oBhNHgujpZOQ4UVFKCpwHM -----END CERTIFICATE-----Generated at Thu Mar 26 06:25:08 2026 by rpki-client