$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa File: 3230332e3135332e32342e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: iE7iRLWQwD4apcIyOalDUj3JDOjOVSR8TqxQfJLaz84= Subject key identifier: FA:24:57:8B:53:C8:37:88:E8:98:C6:BD:FD:C1:FF:FA:5E:6B:95:82 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0E59A6D1F41E767073EB9020D76D0EC28302239E Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:52 +0000 ROA not before: Tue 24 Mar 2026 08:57:52 +0000 ROA not after: Tue 23 Mar 2027 09:02:52 +0000 asID: 24525 IP address blocks: 203.153.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 20:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:59:a6:d1:f4:1e:76:70:73:eb:90:20:d7:6d:0e:c2:83:02:23:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:52 2026 GMT Not After : Mar 23 09:02:52 2027 GMT Subject: CN=FA24578B53C83788E898C6BDFDC1FFFA5E6B9582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:e3:a5:51:51:c8:fe:cd:d6:08:42:e0:15: a9:87:c3:f8:b7:dc:ec:fe:fa:3a:66:c6:53:c7:b0: 2b:1f:de:79:5b:97:bf:40:99:79:59:52:ea:71:94: e4:d1:d0:80:87:b2:bb:ad:e8:44:ba:66:d3:b4:1d: 96:3a:43:0f:ef:36:0c:8c:b3:47:8e:31:63:d3:71: 9d:b9:57:ca:29:4b:c4:c4:e9:b6:6f:d7:3d:cc:77: 42:8d:47:8b:1a:d6:42:5e:21:16:34:eb:d3:7f:5e: de:25:89:9a:e1:17:df:65:5f:7f:7c:e6:17:93:a8: f7:25:1f:d9:ec:d1:24:b5:34:cf:ea:dd:47:5a:ce: a8:22:0f:aa:ce:c5:f6:40:47:20:bb:a3:a5:f6:90: 62:fd:4e:ae:da:10:06:76:8d:e6:b1:0d:37:7f:d5: 5e:a8:91:06:80:ec:3a:d5:b3:48:88:84:8f:3b:90: da:12:97:3f:53:56:b7:79:a2:53:08:f2:d2:de:7c: e6:17:26:31:05:79:16:90:77:fc:de:6e:8c:93:8b: 8f:f3:aa:04:c7:56:4b:90:e6:5a:38:3d:24:40:d1: 1c:85:c9:1a:2c:4d:ac:aa:02:eb:ea:48:9a:69:c7: 06:3b:d5:88:45:ef:77:e3:c3:fe:5e:87:52:38:b7: 85:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:24:57:8B:53:C8:37:88:E8:98:C6:BD:FD:C1:FF:FA:5E:6B:95:82 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.24.0/21 Signature Algorithm: sha256WithRSAEncryption 17:c6:74:c4:0d:5d:57:83:93:4e:84:71:35:cb:fb:82:7c:38: 28:76:a7:03:3a:66:c8:8a:d8:01:84:75:0d:2a:16:e5:60:c4: 5c:05:13:c8:0f:f7:73:18:8c:fe:4f:b3:a4:24:21:aa:7c:00: 6a:c1:af:e2:fa:d3:0f:94:3d:0e:7a:58:7b:3a:7d:ad:94:a5: e9:8f:fb:9d:bd:c3:9c:8e:82:54:76:de:a9:8c:19:7d:60:ec: e0:a8:e6:b8:90:23:81:24:07:22:a0:61:be:d3:ef:fa:48:be: 49:d5:66:dd:e9:4a:8e:ba:dc:42:04:17:fb:bf:23:4d:87:67: 45:ea:fe:ea:d7:af:a5:7a:e6:58:1b:53:e6:ac:35:03:f7:3c: 25:1d:9a:9c:79:8b:7d:94:6a:f5:b6:e6:e4:fa:54:fd:d3:90: 21:73:67:1b:9a:16:0a:e2:9d:03:2c:95:9d:1f:38:88:b8:dc: ae:2a:a7:0f:29:ae:38:72:30:2c:34:03:02:7f:05:f1:36:c7: 05:40:71:fa:b0:90:76:02:81:d2:d8:70:ed:cb:03:fa:f5:e3: c8:96:15:a5:77:2a:5d:4a:88:dd:ea:c1:8e:4b:e5:d2:6c:f7: c8:a0:24:55:d3:44:f2:ac:77:0a:30:b1:36:3c:4d:05:85:0a: 02:df:ee:1a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDlmm0fQednBz65Ag120OwoMCI54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTJaFw0yNzAzMjMwOTAyNTJaMDMxMTAvBgNV BAMTKEZBMjQ1NzhCNTNDODM3ODhFODk4QzZCREZEQzFGRkZBNUU2Qjk1ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0sOOlUVHI/s3WCELgFamHw/i3 3Oz++jpmxlPHsCsf3nlbl79AmXlZUupxlOTR0ICHsrut6ES6ZtO0HZY6Qw/vNgyM s0eOMWPTcZ25V8opS8TE6bZv1z3Md0KNR4sa1kJeIRY069N/Xt4liZrhF99lX398 5heTqPclH9ns0SS1NM/q3UdazqgiD6rOxfZARyC7o6X2kGL9Tq7aEAZ2jeaxDTd/ 1V6okQaA7DrVs0iIhI87kNoSlz9TVrd5olMI8tLefOYXJjEFeRaQd/zeboyTi4/z qgTHVkuQ5lo4PSRA0RyFyRosTayqAuvqSJppxwY71YhF73fjw/5eh1I4t4VVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+iRXi1PIN4jomMa9/cH/+l5rlYIwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM0MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8uZGDANBgkqhkiG 9w0BAQsFAAOCAQEAF8Z0xA1dV4OTToRxNcv7gnw4KHanAzpmyIrYAYR1DSoW5WDE XAUTyA/3cxiM/k+zpCQhqnwAasGv4vrTD5Q9DnpYezp9rZSl6Y/7nb3DnI6CVHbe qYwZfWDs4KjmuJAjgSQHIqBhvtPv+ki+SdVm3elKjrrcQgQX+78jTYdnRer+6tev pXrmWBtT5qw1A/c8JR2anHmLfZRq9bbm5PpU/dOQIXNnG5oWCuKdAyyVnR84iLjc riqnDymuOHIwLDQDAn8F8TbHBUBx+rCQdgKB0thw7csD+vXjyJYVpXcqXUqI3erB jkvl0mz3yKAkVdNE8qx3CjCxNjxNBYUKAt/uGg== -----END CERTIFICATE-----Generated at Thu Mar 26 20:38:21 2026 by rpki-client