$ rpki-client -vvf repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e203435333035.roa File: 3230322e34372e3138382e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: u6NRgOLzgOUCm1Zj649ux1O3b7myB85gGFfTRWnDtUc= Subject key identifier: 42:45:E6:2D:CB:70:C3:B4:06:F7:01:93:64:31:27:81:E9:6E:48:98 Certificate issuer: /CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Certificate serial: 7195A581AA33FE6B08016393A61236B8FB7AC267 Authority key identifier: 79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e203435333035.roa Signing time: Wed 08 Apr 2026 03:02:46 +0000 ROA not before: Wed 08 Apr 2026 02:57:46 +0000 ROA not after: Wed 07 Apr 2027 03:02:46 +0000 asID: 45305 IP address blocks: 202.47.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:95:a5:81:aa:33:fe:6b:08:01:63:93:a6:12:36:b8:fb:7a:c2:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Validity Not Before: Apr 8 02:57:46 2026 GMT Not After : Apr 7 03:02:46 2027 GMT Subject: CN=4245E62DCB70C3B406F7019364312781E96E4898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:99:83:2f:67:f4:a3:17:5d:39:60:6d:6c: bb:bd:43:4d:ba:50:c1:24:27:9f:ff:62:55:8f:43: 83:87:33:15:b7:df:88:27:c2:67:c3:36:51:d6:d4: 7a:c1:f4:40:b0:dc:91:bb:24:99:09:08:21:b0:39: ae:39:99:47:8e:70:64:7c:8b:20:d1:f4:39:52:12: 79:b6:10:af:6f:d6:7e:d8:e0:c6:85:2e:ba:4b:e6: 20:f7:b3:55:3a:73:e6:bb:48:ac:4c:58:fe:69:5d: 8c:ec:d0:ca:bd:e7:a0:22:fc:60:de:c3:3b:16:35: a1:a9:ee:85:6c:92:ec:da:1a:fc:da:32:4f:0d:8c: 24:16:0a:26:e1:be:92:11:41:a9:26:ec:c6:e3:0c: 06:cc:75:a8:72:b8:1f:5e:5d:9f:a9:a9:c7:17:f6: 28:85:12:b9:58:75:19:c0:c9:ae:23:e1:97:8a:cc: 59:4c:fb:a0:c8:c3:31:29:b8:b3:f2:02:3c:3a:ba: 10:19:8c:44:f0:67:84:e9:7c:fd:fe:68:b4:fe:5e: b2:42:c7:98:dc:3f:0e:ca:3d:c6:46:01:3e:a9:8f: f3:8b:1f:42:2c:7c:da:91:ce:f7:2a:ca:5f:53:91: 63:0c:84:18:41:97:c2:f5:b9:70:fb:47:10:2a:49: 85:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:45:E6:2D:CB:70:C3:B4:06:F7:01:93:64:31:27:81:E9:6E:48:98 X509v3 Authority Key Identifier: keyid:79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/24 Signature Algorithm: sha256WithRSAEncryption 86:60:3c:85:ec:93:48:93:12:b5:d5:6d:de:bd:17:24:0b:17: d2:45:6d:ed:8d:b9:75:18:d2:cf:dd:67:bf:be:e9:5c:e5:43: 3f:75:a2:16:d9:e1:f9:56:43:40:59:6e:e2:c6:f1:af:c6:e8: 06:62:35:9c:c3:69:b6:23:9a:4d:ee:6f:a8:5f:1d:df:74:88: 7b:53:a6:ee:23:9a:e8:7b:e5:00:1b:a2:8d:07:90:22:ef:32: c4:cb:73:99:98:c1:6b:df:80:c2:93:b9:48:b2:68:21:02:f4: 7e:aa:b8:4e:95:9a:79:11:29:7a:45:35:f1:6d:a2:9e:77:ce: 85:d8:7c:49:e6:64:1b:b8:06:33:b2:88:ca:79:05:89:da:d1: 51:4b:0c:c8:c9:f7:b3:56:60:5b:5f:a1:a3:db:13:95:10:b7: 8b:5d:35:ec:a4:65:ae:56:67:e6:f0:1a:ff:ad:c3:bb:98:32: 4d:53:1f:73:ac:47:96:a4:7d:31:10:03:6f:f7:02:e9:d2:88: 99:cc:8e:66:d2:2c:6c:1c:94:fd:32:32:69:10:16:9f:a9:c4: 72:de:84:31:d1:81:c4:51:22:09:cb:34:ea:8a:10:26:5a:21: 27:b9:a7:3e:06:18:54:e4:2b:70:f5:8c:74:01:4c:c8:79:0d: 94:fe:ce:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcZWlgaoz/msIAWOTphI2uPt6wmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NG NkVGRjY1RTAeFw0yNjA0MDgwMjU3NDZaFw0yNzA0MDcwMzAyNDZaMDMxMTAvBgNV BAMTKDQyNDVFNjJEQ0I3MEMzQjQwNkY3MDE5MzY0MzEyNzgxRTk2RTQ4OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMepmDL2f0oxddOWBtbLu9Q026 UMEkJ5//YlWPQ4OHMxW334gnwmfDNlHW1HrB9ECw3JG7JJkJCCGwOa45mUeOcGR8 iyDR9DlSEnm2EK9v1n7Y4MaFLrpL5iD3s1U6c+a7SKxMWP5pXYzs0Mq956Ai/GDe wzsWNaGp7oVskuzaGvzaMk8NjCQWCibhvpIRQakm7MbjDAbMdahyuB9eXZ+pqccX 9iiFErlYdRnAya4j4ZeKzFlM+6DIwzEpuLPyAjw6uhAZjETwZ4TpfP3+aLT+XrJC x5jcPw7KPcZGAT6pj/OLH0IsfNqRzvcqyl9TkWMMhBhBl8L1uXD7RxAqSYVzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQkXmLctww7QG9wGTZDEngeluSJgwHwYDVR0j BBgwFoAUeb0HXRvEvYrgwm79LTcizPbv9l4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWU5NDAxNC04N2ZhLTRiYzItYjFjNi03ZmQyYTg5NDc2ZjMvMC83OUJEMDc1RDFC QzRCRDhBRTBDMjZFRkQyRDM3MjJDQ0Y2RUZGNjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NGNkVG RjY1RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlZTk0MDE0LTg3ZmEtNGJjMi1i MWM2LTdmZDJhODk0NzZmMy8wLzMyMzAzMjJlMzQzNzJlMzEzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovvDANBgkqhkiG 9w0BAQsFAAOCAQEAhmA8heyTSJMStdVt3r0XJAsX0kVt7Y25dRjSz91nv77pXOVD P3WiFtnh+VZDQFlu4sbxr8boBmI1nMNptiOaTe5vqF8d33SIe1Om7iOa6HvlABui jQeQIu8yxMtzmZjBa9+AwpO5SLJoIQL0fqq4TpWaeREpekU18W2innfOhdh8SeZk G7gGM7KIynkFidrRUUsMyMn3s1ZgW1+ho9sTlRC3i1017KRlrlZn5vAa/63Du5gy TVMfc6xHlqR9MRADb/cC6dKImcyOZtIsbByU/TIyaRAWn6nEct6EMdGBxFEiCcs0 6ooQJlohJ7mnPgYYVOQrcPWMdAFMyHkNlP7OmQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:20:59 2026 by rpki-client