$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa File: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (raw, json) Hash identifier: Ytw+F2IuhNctJo7Mq4Aaa3GXpRtkG7WpHGa2dilsfso= Subject key identifier: 96:C6:FF:C3:80:F1:35:E4:57:53:5F:ED:CD:6C:AC:4F:48:07:85:8D Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 168CBB48B3C5729A8CC59AA6F4711685D089A974 Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa Signing time: Sun 04 Jan 2026 07:00:02 +0000 ROA not before: Sun 04 Jan 2026 06:55:02 +0000 ROA not after: Sun 03 Jan 2027 07:00:02 +0000 asID: 142375 IP address blocks: 203.145.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 05:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:8c:bb:48:b3:c5:72:9a:8c:c5:9a:a6:f4:71:16:85:d0:89:a9:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Jan 4 06:55:02 2026 GMT Not After : Jan 3 07:00:02 2027 GMT Subject: CN=96C6FFC380F135E457535FEDCD6CAC4F4807858D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1a:e9:81:5e:7a:e5:88:67:7b:2e:e1:9c:08: ed:ae:05:8c:94:1f:80:e0:30:c3:0f:70:13:38:08: bf:17:e0:43:0c:bf:08:c6:2d:b5:62:11:fa:e3:ae: b0:fc:d0:4a:36:ce:0d:58:60:01:50:9a:38:59:8c: 98:69:e6:ec:62:43:09:16:d2:a5:3e:e6:4d:b8:98: 96:e8:9b:8f:d0:48:bd:8e:51:6a:2d:be:5a:2b:be: 23:cc:1e:c4:02:a7:2b:3a:24:59:8e:e9:c2:5f:cb: 15:76:3f:61:e6:88:1d:58:c0:c6:91:6c:6a:92:77: 88:6f:32:0e:04:70:a5:d3:0f:70:1a:70:6c:f3:6b: 0c:bc:80:94:f9:a3:99:f0:34:6b:e4:4e:93:64:8d: bf:d0:4c:fe:14:2f:4e:f0:69:75:11:0d:95:24:52: d7:56:e6:34:cb:37:1f:7c:96:d4:cb:11:78:32:9b: 86:6f:05:41:f1:f1:ab:d6:b4:8f:80:92:30:88:37: b7:11:6d:9c:ec:40:79:1b:9b:40:3d:79:09:7e:d6: d2:65:90:d7:6a:f5:c3:b1:4a:1a:29:4d:f1:9f:1f: b7:86:c9:2c:7e:7b:04:c9:ce:68:7a:38:26:38:72: 26:88:12:35:a2:58:88:5f:dc:35:cb:8b:b9:fc:78: 70:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C6:FF:C3:80:F1:35:E4:57:53:5F:ED:CD:6C:AC:4F:48:07:85:8D X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.58.0/23 Signature Algorithm: sha256WithRSAEncryption 60:ae:07:83:a6:25:00:a0:2f:63:6c:06:6f:50:d0:c2:3e:a7: 70:9f:37:99:7c:c6:4f:64:5d:70:fa:38:eb:79:7e:0f:1b:4c: 90:60:b2:17:d1:c9:13:7b:6e:e2:97:4a:86:3d:ea:f6:ab:ae: 32:24:93:31:36:44:e3:8d:41:03:32:67:37:7c:9d:b5:54:97: 5b:67:4d:7b:0e:bf:f8:c3:f9:3d:3d:59:86:ee:57:ba:30:c1: d2:23:0a:f3:50:23:38:b8:49:5f:79:db:c4:05:4c:e7:fc:52: 13:08:f2:ac:40:74:a3:96:59:98:64:36:ae:94:40:1f:a3:34: 14:5f:06:14:ad:3f:5c:2f:6c:07:9a:59:1d:48:c1:ed:6b:d9: af:a5:2f:40:b2:6e:f7:a6:33:2b:47:1f:62:67:58:69:df:6b: ae:0f:ef:63:75:15:44:66:33:5e:d6:0a:64:88:54:a5:ec:8f: 96:9f:b7:74:32:3b:88:e0:92:47:df:cb:c4:cb:25:b1:15:18: cd:9c:77:c3:92:aa:33:95:34:51:10:74:3b:10:a4:85:f0:68: 7d:5c:57:fa:34:73:f9:c2:60:02:d7:54:bf:d4:75:bb:a6:59: 24:0d:15:77:2e:ea:fa:46:a0:18:31:76:d4:b5:8e:b2:7e:57: 03:5b:d3:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFoy7SLPFcpqMxZqm9HEWhdCJqXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNjAxMDQwNjU1MDJaFw0yNzAxMDMwNzAwMDJaMDMxMTAvBgNV BAMTKDk2QzZGRkMzODBGMTM1RTQ1NzUzNUZFRENENkNBQzRGNDgwNzg1OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAGumBXnrliGd7LuGcCO2uBYyU H4DgMMMPcBM4CL8X4EMMvwjGLbViEfrjrrD80Eo2zg1YYAFQmjhZjJhp5uxiQwkW 0qU+5k24mJbom4/QSL2OUWotvlorviPMHsQCpys6JFmO6cJfyxV2P2HmiB1YwMaR bGqSd4hvMg4EcKXTD3AacGzzawy8gJT5o5nwNGvkTpNkjb/QTP4UL07waXURDZUk UtdW5jTLNx98ltTLEXgym4ZvBUHx8avWtI+AkjCIN7cRbZzsQHkbm0A9eQl+1tJl kNdq9cOxShopTfGfH7eGySx+ewTJzmh6OCY4ciaIEjWiWIhf3DXLi7n8eHC5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlsb/w4DxNeRXU1/tzWysT0gHhY0wHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2YWEzYmViLTU3NjEtNGMzNC04 OGQzLTAxNWNjYzY0MDAyZi8wLzMyMzAzMzJlMzEzNDM1MmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5E6MA0GCSqG SIb3DQEBCwUAA4IBAQBgrgeDpiUAoC9jbAZvUNDCPqdwnzeZfMZPZF1w+jjreX4P G0yQYLIX0ckTe27il0qGPer2q64yJJMxNkTjjUEDMmc3fJ21VJdbZ017Dr/4w/k9 PVmG7le6MMHSIwrzUCM4uElfedvEBUzn/FITCPKsQHSjllmYZDaulEAfozQUXwYU rT9cL2wHmlkdSMHta9mvpS9Asm73pjMrRx9iZ1hp32uuD+9jdRVEZjNe1gpkiFSl 7I+Wn7d0MjuI4JJH38vEyyWxFRjNnHfDkqozlTRREHQ7EKSF8Gh9XFf6NHP5wmAC 11S/1HW7plkkDRV3Lur6RqAYMXbUtY6yflcDW9Ny -----END CERTIFICATE-----Generated at Mon Mar 2 21:56:58 2026 by rpki-client