$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3231203d3e203233393531.roa File: 3230322e36352e3131322e302f32312d3231203d3e203233393531.roa (raw, json) Hash identifier: hfhM/jWQ9jt+ZUHNnJtrtoOuudPpKc+J350QWYXtC40= Subject key identifier: 16:D6:98:67:65:0C:B3:FD:26:A1:5D:D5:B2:8B:E0:EF:68:D8:9E:96 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 121FACD0BB59BAAA4324FFF5766C65D2DFD762B4 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3231203d3e203233393531.roa Signing time: Tue 24 Feb 2026 18:00:00 +0000 ROA not before: Tue 24 Feb 2026 17:55:00 +0000 ROA not after: Tue 23 Feb 2027 18:00:00 +0000 asID: 23951 IP address blocks: 202.65.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 15:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1f:ac:d0:bb:59:ba:aa:43:24:ff:f5:76:6c:65:d2:df:d7:62:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Feb 24 17:55:00 2026 GMT Not After : Feb 23 18:00:00 2027 GMT Subject: CN=16D69867650CB3FD26A15DD5B28BE0EF68D89E96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:03:5d:01:4d:cd:e6:d9:f8:90:18:1c:0f:d8: 7e:d0:28:80:2a:24:9d:1f:70:cd:1e:c9:04:d7:a1: 3e:dd:64:2a:97:eb:56:4d:b0:90:3f:dd:e1:7e:b3: 89:08:54:ee:c8:c8:c8:f1:bb:b7:c8:f9:3e:29:60: 74:ea:5c:dc:47:64:cf:65:8f:09:0e:6f:19:a8:c3: e7:e2:20:e9:f8:4c:d1:26:a9:33:3f:ed:8b:bc:ce: ae:bd:8f:bc:bf:4e:8c:3f:cb:aa:f9:23:72:9e:72: db:93:f0:e3:5d:d1:5b:d4:98:ea:b1:c5:91:d0:24: 6e:2f:ec:5e:99:4f:15:3a:89:80:3f:4f:19:25:49: fc:13:18:82:24:81:d0:cf:17:1b:fa:14:a4:d2:b5: 6d:f3:b8:c9:f2:f7:a4:df:ba:5f:43:36:0f:be:24: 22:18:27:98:c6:86:aa:ce:9c:52:f4:08:7f:50:95: 27:86:3e:7e:c4:6c:04:a7:b5:f9:eb:cc:e4:5a:a1: 18:84:11:e4:ca:33:9e:b6:af:50:77:43:b7:76:dd: 02:a2:0b:5b:c9:8c:fb:da:b0:83:e6:c6:c2:b9:41: bf:e5:29:e9:da:54:bc:99:11:04:a0:e5:67:a3:eb: df:3d:fd:4a:a8:c2:12:85:cc:dd:f0:1c:13:e9:95: 81:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D6:98:67:65:0C:B3:FD:26:A1:5D:D5:B2:8B:E0:EF:68:D8:9E:96 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32312d3231203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/21 Signature Algorithm: sha256WithRSAEncryption 35:97:9c:91:bc:8e:b0:a7:96:22:39:25:28:b5:df:39:16:85: 28:6a:eb:43:77:92:59:8c:57:ea:44:f6:88:09:b7:da:86:ff: 07:63:ae:63:75:b1:bb:a3:5c:1a:31:2b:9a:b4:4c:8a:11:7f: eb:98:62:5f:54:11:b4:a0:be:52:b8:e7:33:d2:e5:a9:f9:3a: 98:61:8a:35:e0:e9:dc:cd:05:c9:2c:f1:ea:7c:2f:05:0d:2e: 54:93:d0:ef:78:fc:e0:65:13:b6:24:ee:7b:da:ff:2a:f4:3c: 90:93:79:66:0b:40:1e:cd:e2:52:37:2f:3b:c7:58:72:6a:5c: 21:d8:cc:5a:41:cb:b8:27:e5:aa:40:2d:46:d6:af:e8:f0:b5: 69:75:f0:fc:f6:75:65:b9:a4:5f:f6:f0:ad:2a:75:c1:ae:a4: 7d:bf:bf:95:6e:7c:e0:41:10:9b:e8:81:c0:b5:fb:a0:bb:c1: 7d:09:a1:46:b2:d7:49:b7:73:42:8e:f8:14:1c:1b:b1:3d:ee: 13:97:dd:34:16:5b:82:60:09:0b:52:bd:b7:eb:f8:c3:f9:1e: 4a:29:64:7b:cf:7f:01:60:4c:86:7a:8f:48:30:a9:8a:19:49: a0:f0:20:09:7c:7d:0d:ec:d2:3c:09:e3:da:74:57:69:14:d0: 42:08:d5:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEh+s0LtZuqpDJP/1dmxl0t/XYrQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNjAyMjQxNzU1MDBaFw0yNzAyMjMxODAwMDBaMDMxMTAvBgNV BAMTKDE2RDY5ODY3NjUwQ0IzRkQyNkExNURENUIyOEJFMEVGNjhEODlFOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/A10BTc3m2fiQGBwP2H7QKIAq JJ0fcM0eyQTXoT7dZCqX61ZNsJA/3eF+s4kIVO7IyMjxu7fI+T4pYHTqXNxHZM9l jwkObxmow+fiIOn4TNEmqTM/7Yu8zq69j7y/Tow/y6r5I3KectuT8ONd0VvUmOqx xZHQJG4v7F6ZTxU6iYA/TxklSfwTGIIkgdDPFxv6FKTStW3zuMny96Tful9DNg++ JCIYJ5jGhqrOnFL0CH9QlSeGPn7EbASntfnrzORaoRiEEeTKM562r1B3Q7d23QKi C1vJjPvasIPmxsK5Qb/lKenaVLyZEQSg5Wej6989/UqowhKFzN3wHBPplYG7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFtaYZ2UMs/0moV3Vsovg72jYnpYwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pBcDANBgkqhkiG 9w0BAQsFAAOCAQEANZeckbyOsKeWIjklKLXfORaFKGrrQ3eSWYxX6kT2iAm32ob/ B2OuY3Wxu6NcGjErmrRMihF/65hiX1QRtKC+UrjnM9Llqfk6mGGKNeDp3M0FySzx 6nwvBQ0uVJPQ73j84GUTtiTue9r/KvQ8kJN5ZgtAHs3iUjcvO8dYcmpcIdjMWkHL uCflqkAtRtav6PC1aXXw/PZ1ZbmkX/bwrSp1wa6kfb+/lW584EEQm+iBwLX7oLvB fQmhRrLXSbdzQo74FBwbsT3uE5fdNBZbgmAJC1K9t+v4w/keSilke89/AWBMhnqP SDCpihlJoPAgCXx9DezSPAnj2nRXaRTQQgjVeg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:48:39 2026 by rpki-client