$ rpki-client -vvf repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa File: 3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa (raw, json) Hash identifier: QebFHOgQ6Y6iqs+N9tLedNksBf2KalmN3Y5g3VmK7ug= Subject key identifier: 8C:0E:9E:CA:1E:FD:2E:B3:8B:2B:B2:AE:0A:9C:6E:02:FE:15:93:63 Certificate issuer: /CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Certificate serial: 15C79CB625578BB148325CC8370344397CBEA829 Authority key identifier: B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa Signing time: Fri 17 Apr 2026 04:00:00 +0000 ROA not before: Fri 17 Apr 2026 03:55:00 +0000 ROA not after: Fri 16 Apr 2027 04:00:00 +0000 asID: 45703 IP address blocks: 203.114.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 14:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c7:9c:b6:25:57:8b:b1:48:32:5c:c8:37:03:44:39:7c:be:a8:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Validity Not Before: Apr 17 03:55:00 2026 GMT Not After : Apr 16 04:00:00 2027 GMT Subject: CN=8C0E9ECA1EFD2EB38B2BB2AE0A9C6E02FE159363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d4:a9:b3:52:44:d5:89:43:38:8f:d1:5f:eb: 20:bf:83:b3:8d:5f:35:b2:10:83:b0:ab:6f:39:48: e7:54:c5:c1:72:54:92:5a:75:85:ab:54:b2:da:5e: dd:6d:e2:57:5a:13:d4:fc:68:56:4d:62:16:07:bc: ac:44:35:1f:9a:b8:3a:27:66:e0:15:4d:c7:17:fb: 69:10:74:84:42:6b:a0:4a:6b:25:d1:b4:69:82:4b: e7:59:d1:35:e4:1a:85:79:a0:ba:22:28:17:6c:78: 62:c3:f5:d5:fd:2b:60:7e:7c:d4:de:7b:67:92:10: 04:2c:10:a2:03:c5:c2:24:b8:90:41:90:13:55:f2: 11:72:f3:2b:ed:3b:14:c1:01:27:cd:7a:9d:b7:91: c3:ce:7a:c7:28:3a:f9:30:05:30:81:71:89:41:68: 86:5f:1b:c4:b0:86:92:2a:d1:45:69:7c:77:82:46: 0d:37:54:23:69:b2:9c:9b:5e:27:95:91:85:f6:72: 4a:8b:31:38:1e:fc:f3:17:9c:a1:bf:cf:ad:c5:7b: 7c:a6:df:b7:1d:71:c8:a8:a6:d2:5a:02:f0:ae:8f: ce:c8:fc:28:9b:61:6e:38:b2:d8:01:19:2e:67:42: 6a:eb:dc:f0:b6:56:60:6c:ea:bf:67:7c:aa:f2:6b: 38:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0E:9E:CA:1E:FD:2E:B3:8B:2B:B2:AE:0A:9C:6E:02:FE:15:93:63 X509v3 Authority Key Identifier: keyid:B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.226.0/24 Signature Algorithm: sha256WithRSAEncryption c2:bd:52:ac:ff:cc:e2:4c:e8:25:3e:17:cc:8b:b8:9e:b1:17: 8b:ab:37:c2:75:b2:70:b1:f7:78:5d:f6:d6:2e:d5:b7:99:b0: c6:40:59:d3:e4:27:00:6d:15:ad:c7:42:f6:50:e0:72:77:54: 7e:94:4f:5e:b1:74:39:05:2b:b0:83:83:2b:ee:3a:89:f7:8f: 5a:b9:f6:24:cd:b2:6b:0c:db:a3:c7:82:67:f1:f5:4b:0e:0e: e3:2e:c2:09:b5:00:16:93:37:ce:37:64:04:bf:da:4a:2c:00: 9f:9f:80:6f:39:db:79:47:cb:82:cc:24:08:93:61:8f:03:c0: 9a:77:e7:15:d7:0c:ef:5a:70:e9:8e:b6:f7:4b:be:8b:81:81: 51:ee:e3:f7:fb:ff:72:5f:ab:77:d2:64:a4:38:80:8e:03:94: b8:03:d4:b1:c5:d9:a8:fe:91:da:68:d5:bf:a5:69:23:43:06: 6e:e0:57:d6:e1:2e:d1:fa:4e:65:c4:4f:70:91:5b:f0:76:94: 2e:9d:81:b4:19:96:45:9d:9c:2c:40:d9:88:ef:cd:25:31:e7: 00:ab:9f:d4:5e:85:f7:be:85:ab:84:a1:b4:c4:0f:1b:79:88: d3:9b:06:f5:75:85:f7:72:f9:8c:c7:cb:5a:a2:0c:3a:fb:d2: 2e:d8:79:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFcectiVXi7FIMlzINwNEOXy+qCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdB RjJFRjgxQjAeFw0yNjA0MTcwMzU1MDBaFw0yNzA0MTYwNDAwMDBaMDMxMTAvBgNV BAMTKDhDMEU5RUNBMUVGRDJFQjM4QjJCQjJBRTBBOUM2RTAyRkUxNTkzNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj1KmzUkTViUM4j9Ff6yC/g7ON XzWyEIOwq285SOdUxcFyVJJadYWrVLLaXt1t4ldaE9T8aFZNYhYHvKxENR+auDon ZuAVTccX+2kQdIRCa6BKayXRtGmCS+dZ0TXkGoV5oLoiKBdseGLD9dX9K2B+fNTe e2eSEAQsEKIDxcIkuJBBkBNV8hFy8yvtOxTBASfNep23kcPOescoOvkwBTCBcYlB aIZfG8SwhpIq0UVpfHeCRg03VCNpspybXieVkYX2ckqLMTge/PMXnKG/z63Fe3ym 37cdccioptJaAvCuj87I/CibYW44stgBGS5nQmrr3PC2VmBs6r9nfKryaziHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjA6eyh79LrOLK7KuCpxuAv4Vk2MwHwYDVR0j BBgwFoAUt5WeBO8JCAE5XOU+CZ0J968u+BswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYzYWU3Yy1hNmZmLTRmZDgtOTZmMi0wYmExODgwMTMzYzcvMC9CNzk1OUUwNEVG MDkwODAxMzk1Q0U1M0UwOTlEMDlGN0FGMkVGODFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdBRjJF RjgxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjNhZTdjLWE2ZmYtNGZkOC05 NmYyLTBiYTE4ODAxMzNjNy8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3LiMA0GCSqG SIb3DQEBCwUAA4IBAQDCvVKs/8ziTOglPhfMi7iesReLqzfCdbJwsfd4XfbWLtW3 mbDGQFnT5CcAbRWtx0L2UOByd1R+lE9esXQ5BSuwg4Mr7jqJ949aufYkzbJrDNuj x4Jn8fVLDg7jLsIJtQAWkzfON2QEv9pKLACfn4BvOdt5R8uCzCQIk2GPA8Cad+cV 1wzvWnDpjrb3S76LgYFR7uP3+/9yX6t30mSkOICOA5S4A9Sxxdmo/pHaaNW/pWkj QwZu4FfW4S7R+k5lxE9wkVvwdpQunYG0GZZFnZwsQNmI780lMecAq5/UXoX3voWr hKG0xA8beYjTmwb1dYX3cvmMx8taogw6+9Iu2Hll -----END CERTIFICATE-----Generated at Sun Apr 19 15:32:45 2026 by rpki-client