$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/32372e3131322e37372e302f32342d3234203d3e20313430343832.roa File: 32372e3131322e37372e302f32342d3234203d3e20313430343832.roa (raw, json) Hash identifier: rjc/w01l37zLAI4D1TAtAwVk+nmo3PzQu/9YBMOYPHY= Subject key identifier: 4A:6A:CF:0C:C9:02:DB:1B:80:AA:CA:37:5F:91:7A:43:8D:8C:3F:7E Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 1B61BF54F29A81B8397795484F5841AB794ED223 Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/32372e3131322e37372e302f32342d3234203d3e20313430343832.roa Signing time: Sun 29 Mar 2026 22:00:03 +0000 ROA not before: Sun 29 Mar 2026 21:55:03 +0000 ROA not after: Sun 28 Mar 2027 22:00:03 +0000 asID: 140482 IP address blocks: 27.112.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 10:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:61:bf:54:f2:9a:81:b8:39:77:95:48:4f:58:41:ab:79:4e:d2:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: Mar 29 21:55:03 2026 GMT Not After : Mar 28 22:00:03 2027 GMT Subject: CN=4A6ACF0CC902DB1B80AACA375F917A438D8C3F7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:43:be:c8:28:73:d2:66:9e:77:d3:36:d0:93: 95:8c:20:8e:a9:ee:44:12:e1:ce:28:eb:87:f0:e5: ac:c6:f1:55:fb:34:56:ec:f7:9b:1f:e7:d3:c2:95: f8:aa:12:b9:94:6b:ab:79:98:3d:ff:50:cc:80:72: b2:57:00:9e:50:e9:31:ab:d5:35:7a:63:ce:74:3a: ea:b0:e9:b9:e1:25:30:cb:5d:ee:b1:38:cb:37:31: f4:f7:36:10:3e:6e:d6:06:03:35:57:46:e4:90:12: 84:e4:3d:95:6b:2b:75:96:2d:4f:84:de:e8:f4:56: da:0b:54:23:f2:a0:30:3d:32:25:10:bc:ae:62:17: 68:99:85:20:ad:93:9c:65:39:51:22:94:51:d0:96: 78:6b:be:f0:c1:b7:5c:e4:52:d0:7d:0e:38:12:ab: 2a:d1:a5:0f:35:76:43:64:26:e1:a7:16:51:f0:b7: 53:14:5c:52:61:5e:04:66:b5:19:8c:60:c7:62:d7: 4a:ae:b3:25:38:62:ce:8b:0b:39:93:f1:9c:d8:eb: fe:28:e8:0c:f5:e3:a2:fe:a8:8f:da:21:cd:a7:e4: c8:a0:95:b6:9e:f8:6f:cb:a9:b6:9d:2e:0d:d1:52: a8:41:af:a1:8f:54:0f:42:ff:7b:0b:43:71:11:66: 8a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6A:CF:0C:C9:02:DB:1B:80:AA:CA:37:5F:91:7A:43:8D:8C:3F:7E X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/32372e3131322e37372e302f32342d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.77.0/24 Signature Algorithm: sha256WithRSAEncryption 46:04:ea:b5:c6:df:5d:98:31:69:e1:40:c9:be:65:ac:1b:cb: 7a:56:01:f1:82:0f:02:a6:79:19:05:56:f1:f0:e2:e8:e3:8d: 85:3d:a2:0c:89:f5:2f:15:08:80:ea:a7:be:37:b7:50:f8:5c: 29:43:4a:76:73:52:08:15:91:74:26:85:a7:65:8a:96:c5:5b: 96:64:d9:51:f9:95:a9:75:91:b8:fa:f9:41:a0:dc:25:6a:4d: be:5b:3d:89:74:ef:7e:b2:cd:4a:e9:d9:0a:9e:02:dd:92:aa: 3d:5f:84:90:00:93:a0:1c:70:2a:4a:6e:02:9b:7b:dd:96:8d: 7d:d1:aa:3a:ca:0b:9e:ef:9f:fd:cf:41:a5:a2:b9:e6:d8:8c: bd:b8:aa:38:38:f1:d5:84:14:02:08:ae:3c:00:1a:9c:46:4b: 3c:a2:7f:01:26:c2:8e:d9:a1:1e:df:ec:05:4e:a1:f5:72:ed: f2:ab:53:b4:93:5b:97:4a:9c:c3:71:95:1f:25:6d:eb:3c:e5: ca:85:16:c0:39:77:08:b1:5f:dd:ed:1a:dd:70:a8:43:30:43: f1:53:81:77:33:91:30:fe:ff:b8:ed:49:db:25:b4:f9:4d:27: 56:9d:10:fe:6c:1e:19:65:0d:ce:8a:67:eb:63:71:48:3d:86: ee:a4:c1:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG2G/VPKagbg5d5VIT1hBq3lO0iMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yNjAzMjkyMTU1MDNaFw0yNzAzMjgyMjAwMDNaMDMxMTAvBgNV BAMTKDRBNkFDRjBDQzkwMkRCMUI4MEFBQ0EzNzVGOTE3QTQzOEQ4QzNGN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyQ77IKHPSZp530zbQk5WMII6p 7kQS4c4o64fw5azG8VX7NFbs95sf59PClfiqErmUa6t5mD3/UMyAcrJXAJ5Q6TGr 1TV6Y850Ouqw6bnhJTDLXe6xOMs3MfT3NhA+btYGAzVXRuSQEoTkPZVrK3WWLU+E 3uj0VtoLVCPyoDA9MiUQvK5iF2iZhSCtk5xlOVEilFHQlnhrvvDBt1zkUtB9DjgS qyrRpQ81dkNkJuGnFlHwt1MUXFJhXgRmtRmMYMdi10qusyU4Ys6LCzmT8ZzY6/4o 6Az146L+qI/aIc2n5Miglbae+G/LqbadLg3RUqhBr6GPVA9C/3sLQ3ERZordAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSmrPDMkC2xuAqso3X5F6Q42MP34wHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMyMzcyZTMxMzEzMjJlMzczNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABtwTTANBgkqhkiG 9w0BAQsFAAOCAQEARgTqtcbfXZgxaeFAyb5lrBvLelYB8YIPAqZ5GQVW8fDi6OON hT2iDIn1LxUIgOqnvje3UPhcKUNKdnNSCBWRdCaFp2WKlsVblmTZUfmVqXWRuPr5 QaDcJWpNvls9iXTvfrLNSunZCp4C3ZKqPV+EkACToBxwKkpuApt73ZaNfdGqOsoL nu+f/c9BpaK55tiMvbiqODjx1YQUAgiuPAAanEZLPKJ/ASbCjtmhHt/sBU6h9XLt 8qtTtJNbl0qcw3GVHyVt6zzlyoUWwDl3CLFf3e0a3XCoQzBD8VOBdzORMP7/uO1J 2yW0+U0nVp0Q/mweGWUNzopn62NxSD2G7qTBJA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:19:28 2026 by rpki-client