$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3131322e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: PLDNLWRC4Np5IJQ9gJkzQFwg5d2Imd+U4PVSM94Wh9c= Subject key identifier: 0B:BA:B7:5A:E8:8F:D0:CF:A1:3A:52:86:8A:38:DE:8C:4F:D0:E9:3A Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 1BDE9D01C99349E90F13F157BB42B31114870A5D Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32342d3234203d3e203233393531.roa Signing time: Tue 24 Feb 2026 18:00:00 +0000 ROA not before: Tue 24 Feb 2026 17:55:00 +0000 ROA not after: Tue 23 Feb 2027 18:00:00 +0000 asID: 23951 IP address blocks: 202.65.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 15:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:de:9d:01:c9:93:49:e9:0f:13:f1:57:bb:42:b3:11:14:87:0a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Feb 24 17:55:00 2026 GMT Not After : Feb 23 18:00:00 2027 GMT Subject: CN=0BBAB75AE88FD0CFA13A52868A38DE8C4FD0E93A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dd:df:17:c0:c4:c3:f9:99:ac:fd:f8:c1:bb: 84:9f:50:67:8c:aa:9f:2d:a1:f5:ab:71:9c:8b:b5: bd:42:1e:55:6f:c1:82:11:c9:21:88:f8:0c:56:0b: 73:48:07:27:61:f9:82:c8:08:58:29:7d:6e:d5:2b: c0:38:1f:e9:e2:94:f5:57:80:69:30:4d:c4:4f:76: 79:8f:a7:40:66:b9:7b:77:94:85:e7:3c:8f:0e:ab: 2b:35:80:63:5b:15:7d:ce:27:e0:dd:e5:36:25:57: 88:9e:e3:98:85:e2:91:bf:8c:20:83:72:8d:d4:69: 9d:05:4b:f1:20:5a:f0:14:d3:eb:34:9d:51:34:af: dc:0e:a1:9f:27:da:dd:d8:64:2b:c4:ed:d5:c5:88: 85:15:a1:5f:f7:53:99:e3:84:7b:39:50:f2:31:45: cc:c5:be:0e:46:44:f4:3f:ac:ce:e2:0f:d8:f5:33: b1:48:41:8f:82:b8:1a:30:cb:93:ea:17:41:ee:c0: c0:63:f7:16:88:87:0b:5b:b8:8a:87:2d:e0:fb:2c: ca:54:6e:b3:8e:bd:27:62:3f:19:af:b4:c6:92:d8: a8:f2:59:9e:24:79:d2:7f:71:b2:05:71:9e:46:4a: be:7f:9d:8c:fe:b1:d7:b9:80:02:1d:03:32:60:0c: e4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BA:B7:5A:E8:8F:D0:CF:A1:3A:52:86:8A:38:DE:8C:4F:D0:E9:3A X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/24 Signature Algorithm: sha256WithRSAEncryption 03:2b:47:90:47:46:50:a7:84:99:82:63:98:0d:4d:a8:af:65: 9d:92:c1:2e:07:2d:be:9b:98:b4:6f:b3:f8:88:54:b2:09:e5: 5f:a7:3f:0d:35:5e:6e:ee:c3:e7:6b:aa:de:6c:40:62:86:3e: 61:42:19:3c:3c:5a:66:1b:fb:0e:d3:e9:a7:28:2d:b8:15:f5: a3:ef:cf:9d:c5:f3:c1:da:8c:d9:69:30:51:e4:84:ba:6b:05: c3:42:56:38:9d:01:3e:de:69:23:74:ac:fe:45:a9:c0:3a:fd: 49:14:ed:b2:11:11:8e:b0:8e:23:bd:a5:6b:a3:35:cb:a8:ef: fd:68:2b:4b:c1:a7:52:46:15:2f:7b:79:49:f9:83:26:66:83: c6:2e:82:53:ad:ae:0e:c4:35:3c:0f:0f:0d:81:e2:6f:ac:4e: 63:e1:41:50:66:45:5b:b0:32:41:60:a3:88:de:a1:17:64:05: d9:b1:bc:37:fb:0e:3f:14:45:a7:b2:16:21:31:6c:17:c6:0f: 54:e0:34:b9:6b:00:2e:23:93:94:c8:ab:d2:0d:95:c4:91:42: c8:1f:67:f4:8e:ae:56:b3:1c:a8:89:4b:91:f1:b0:b3:12:80: 8c:2c:3b:41:58:55:59:7b:8c:79:ac:a2:e9:19:dc:af:38:1c: b2:aa:34:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG96dAcmTSekPE/FXu0KzERSHCl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNjAyMjQxNzU1MDBaFw0yNzAyMjMxODAwMDBaMDMxMTAvBgNV BAMTKDBCQkFCNzVBRTg4RkQwQ0ZBMTNBNTI4NjhBMzhERThDNEZEMEU5M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC63d8XwMTD+Zms/fjBu4SfUGeM qp8tofWrcZyLtb1CHlVvwYIRySGI+AxWC3NIBydh+YLICFgpfW7VK8A4H+nilPVX gGkwTcRPdnmPp0BmuXt3lIXnPI8Oqys1gGNbFX3OJ+Dd5TYlV4ie45iF4pG/jCCD co3UaZ0FS/EgWvAU0+s0nVE0r9wOoZ8n2t3YZCvE7dXFiIUVoV/3U5njhHs5UPIx RczFvg5GRPQ/rM7iD9j1M7FIQY+CuBowy5PqF0HuwMBj9xaIhwtbuIqHLeD7LMpU brOOvSdiPxmvtMaS2KjyWZ4kedJ/cbIFcZ5GSr5/nYz+sde5gAIdAzJgDOQlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUC7q3WuiP0M+hOlKGijjejE/Q6TowHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBcDANBgkqhkiG 9w0BAQsFAAOCAQEAAytHkEdGUKeEmYJjmA1NqK9lnZLBLgctvpuYtG+z+IhUsgnl X6c/DTVebu7D52uq3mxAYoY+YUIZPDxaZhv7DtPppygtuBX1o+/PncXzwdqM2Wkw UeSEumsFw0JWOJ0BPt5pI3Ss/kWpwDr9SRTtshERjrCOI72la6M1y6jv/WgrS8Gn UkYVL3t5SfmDJmaDxi6CU62uDsQ1PA8PDYHib6xOY+FBUGZFW7AyQWCjiN6hF2QF 2bG8N/sOPxRFp7IWITFsF8YPVOA0uWsALiOTlMir0g2VxJFCyB9n9I6uVrMcqIlL kfGwsxKAjCw7QVhVWXuMeayi6Rncrzgcsqo0ew== -----END CERTIFICATE-----Generated at Mon Mar 2 12:43:38 2026 by rpki-client