$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa File: 3230332e3135332e32382e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: EvDkiwWH0HTppcdc/6IN97+/GqHTgTeVd1Ah5JQacuQ= Subject key identifier: 4A:89:10:15:69:D7:E2:BD:1D:4B:FE:FF:9B:DC:1B:78:1E:69:48:E7 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 3FB2621CFA3F9548C6FF37FE811880B98728A29F Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:51 +0000 ROA not before: Tue 24 Mar 2026 08:57:51 +0000 ROA not after: Tue 23 Mar 2027 09:02:51 +0000 asID: 24525 IP address blocks: 203.153.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b2:62:1c:fa:3f:95:48:c6:ff:37:fe:81:18:80:b9:87:28:a2:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:51 2026 GMT Not After : Mar 23 09:02:51 2027 GMT Subject: CN=4A89101569D7E2BD1D4BFEFF9BDC1B781E6948E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f7:47:91:ba:9e:37:75:af:09:6a:b4:40:5f: 48:db:f8:eb:9f:26:f5:04:61:7d:3b:53:b8:43:96: a2:45:21:e7:04:a1:0f:8e:9f:4a:d2:f6:96:3f:58: 1b:08:b1:6c:3e:20:34:4c:f9:d9:06:d8:de:d9:81: 01:8d:d0:ff:8b:b8:ef:60:03:01:35:90:80:95:08: 9f:f3:d9:32:39:70:12:28:75:8a:e8:e0:5d:2b:e5: a8:f7:79:9d:01:9f:ef:76:cc:30:85:ce:18:20:50: 3b:45:1d:c9:94:4a:f1:69:eb:f3:dc:f6:58:24:ee: 02:02:17:0e:4e:9c:fa:75:2c:22:fa:35:9a:95:5e: 94:29:86:ab:82:1b:19:b3:3f:91:2a:fe:a8:6a:30: 56:16:72:d4:60:c4:2c:a6:89:96:0e:f4:64:b6:4b: d3:d2:a7:06:53:06:19:b9:f8:52:56:dd:6b:a1:c8: 52:e0:ff:8e:a9:d5:30:1e:14:04:f9:9a:81:1f:ac: 1c:a4:b9:23:f4:de:27:39:f5:39:c2:58:ba:10:09: c3:c5:a7:a4:a0:61:a3:54:54:43:cd:6e:9d:88:e3: 45:a0:b9:d8:f2:f0:79:f6:dc:99:0b:9f:f4:ab:0a: 02:89:6e:19:c7:2f:84:30:29:ab:48:09:7e:09:02: 8c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:89:10:15:69:D7:E2:BD:1D:4B:FE:FF:9B:DC:1B:78:1E:69:48:E7 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.28.0/22 Signature Algorithm: sha256WithRSAEncryption 60:e9:2c:30:e9:2e:de:81:93:8d:de:74:72:c8:d4:82:c5:69: 95:9c:93:ef:99:9e:c3:35:17:dc:44:36:a4:cc:2a:79:fb:c3: f8:95:95:7b:5f:7b:16:2a:11:cc:81:c2:8a:a0:84:2c:94:de: 43:d9:88:ee:e6:da:26:68:05:cb:fe:5e:5c:c6:8d:6d:2e:8c: 4a:57:12:0d:cb:80:b9:9f:15:9f:5c:b0:04:9f:24:2f:72:ee: a6:5b:5e:c5:c5:aa:0d:2e:09:b6:5a:49:cb:5f:00:7c:85:f4: 5d:aa:69:84:99:c6:1e:c4:d5:78:84:d4:84:3b:bb:fe:64:07: 1f:cd:0e:69:a1:86:27:36:36:07:2b:8f:d0:f7:87:c0:fc:9e: e7:14:a8:fb:c7:a8:55:31:9e:10:b7:fe:e6:fa:5b:bb:95:d4: 0d:d9:c0:06:9e:c5:6f:05:af:00:eb:b5:7b:dd:fd:20:0b:8b: 81:67:ec:fa:b8:d0:13:d1:d2:ec:a4:25:93:25:9e:6d:97:b7: aa:fb:db:28:89:92:3f:4c:ed:8f:60:39:1f:91:83:4e:82:df: 22:1e:9b:d8:51:e0:a4:8c:35:57:8f:ed:e6:1a:2e:b4:50:7f: bd:a2:34:22:64:f2:b4:cb:d4:71:3d:11:4a:9d:bc:0b:ee:cd: bf:84:e4:be -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP7JiHPo/lUjG/zf+gRiAuYcoop8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTFaFw0yNzAzMjMwOTAyNTFaMDMxMTAvBgNV BAMTKDRBODkxMDE1NjlEN0UyQkQxRDRCRkVGRjlCREMxQjc4MUU2OTQ4RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj90eRup43da8JarRAX0jb+Ouf JvUEYX07U7hDlqJFIecEoQ+On0rS9pY/WBsIsWw+IDRM+dkG2N7ZgQGN0P+LuO9g AwE1kICVCJ/z2TI5cBIodYro4F0r5aj3eZ0Bn+92zDCFzhggUDtFHcmUSvFp6/Pc 9lgk7gICFw5OnPp1LCL6NZqVXpQphquCGxmzP5Eq/qhqMFYWctRgxCymiZYO9GS2 S9PSpwZTBhm5+FJW3WuhyFLg/46p1TAeFAT5moEfrBykuSP03ic59TnCWLoQCcPF p6SgYaNUVEPNbp2I40Wgudjy8Hn23JkLn/SrCgKJbhnHL4QwKatICX4JAoxzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSokQFWnX4r0dS/7/m9wbeB5pSOcwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM4MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsuZHDANBgkqhkiG 9w0BAQsFAAOCAQEAYOksMOku3oGTjd50csjUgsVplZyT75mewzUX3EQ2pMwqefvD +JWVe197FioRzIHCiqCELJTeQ9mI7ubaJmgFy/5eXMaNbS6MSlcSDcuAuZ8Vn1yw BJ8kL3LupltexcWqDS4JtlpJy18AfIX0XapphJnGHsTVeITUhDu7/mQHH80OaaGG JzY2ByuP0PeHwPye5xSo+8eoVTGeELf+5vpbu5XUDdnABp7FbwWvAOu1e939IAuL gWfs+rjQE9HS7KQlkyWebZe3qvvbKImSP0ztj2A5H5GDToLfIh6b2FHgpIw1V4/t 5houtFB/vaI0ImTytMvUcT0RSp28C+7Nv4Tkvg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:10:45 2026 by rpki-client