$ rpki-client -vvf repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32342d3234203d3e20313532303532.roa File: 32372e3132342e37342e302f32342d3234203d3e20313532303532.roa (raw, json) Hash identifier: Lp4n5hU0GqHnsCDl04cpi3UeQxb1Hvr8W1wngqrT41A= Subject key identifier: BA:F7:57:7E:12:28:B9:DB:36:ED:62:7C:80:83:B9:D8:C4:34:2A:4A Certificate issuer: /CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Certificate serial: 6CE88DFA2BEA2B8556648A00945C4906FDA64450 Authority key identifier: 29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32342d3234203d3e20313532303532.roa Signing time: Fri 03 Apr 2026 14:00:00 +0000 ROA not before: Fri 03 Apr 2026 13:55:00 +0000 ROA not after: Fri 02 Apr 2027 14:00:00 +0000 asID: 152052 IP address blocks: 27.124.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 10:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e8:8d:fa:2b:ea:2b:85:56:64:8a:00:94:5c:49:06:fd:a6:44:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Validity Not Before: Apr 3 13:55:00 2026 GMT Not After : Apr 2 14:00:00 2027 GMT Subject: CN=BAF7577E1228B9DB36ED627C8083B9D8C4342A4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:99:4d:41:17:f2:2f:fc:92:4c:72:9d:22:6b: f3:d0:bf:e9:9f:bb:f6:96:b3:02:b4:16:2d:45:c7: f2:07:23:0b:0a:97:1c:f8:6b:0c:38:ff:e7:5f:4e: 05:75:c0:a1:fd:ea:fc:32:2d:47:94:a6:ab:16:62: 1e:2a:60:e3:94:f2:ea:b5:8c:e8:3c:fd:59:e1:d8: 84:ed:07:56:96:e1:83:fa:0d:f6:3c:9f:f8:c4:60: b1:98:84:20:9c:51:af:26:aa:5c:43:38:4f:5b:c0: 81:6e:3a:fb:bc:ab:a9:d3:9f:52:9c:c8:09:10:ab: 59:42:9b:5a:f4:ee:38:77:5d:db:8a:db:a3:ce:1b: e5:53:c2:d3:3d:85:fa:12:47:d0:02:8a:21:42:e1: 13:f0:37:fc:7e:3a:ba:4f:d8:c3:8b:e8:7c:92:a1: bb:06:81:88:38:7a:97:57:05:fb:98:3e:5b:4f:c0: fc:f1:59:fe:b3:77:a6:4b:f9:d3:a4:03:f0:87:93: bd:15:b2:38:f9:c1:c6:9e:6e:8e:90:7d:46:a0:c6: 62:93:48:b7:a9:20:fb:74:23:6c:59:6e:07:ce:fb: 6d:eb:9b:26:0e:42:5f:be:46:5d:63:18:23:60:d9: de:37:51:17:d6:3d:bd:a5:a4:dc:55:97:8a:f8:59: c9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F7:57:7E:12:28:B9:DB:36:ED:62:7C:80:83:B9:D8:C4:34:2A:4A X509v3 Authority Key Identifier: keyid:29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32342d3234203d3e20313532303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.74.0/24 Signature Algorithm: sha256WithRSAEncryption 70:aa:ed:8f:23:eb:93:22:ed:67:b6:2e:2b:3e:3a:41:3f:f7: c8:c3:c3:79:32:6f:33:6d:5e:8b:7f:e6:f2:0e:63:21:6d:b8: a9:58:8e:1c:17:2c:70:24:96:75:98:c3:1a:c4:38:57:18:11: 8c:7e:ba:73:1a:fd:aa:fd:36:ea:56:ab:5d:01:76:96:90:e6: 5d:6a:69:e0:d8:b8:cb:f9:1b:78:cc:ba:8e:1c:13:e0:9a:c5: fc:39:78:f6:48:01:59:d7:08:84:f2:fb:78:28:22:e2:71:5e: ed:55:46:2d:2f:3f:e7:37:d7:9d:ce:75:b5:c5:51:14:e7:07: 5e:45:fe:54:b7:d6:63:d9:c0:8b:4e:cf:e2:92:a2:b9:5d:af: e5:da:d9:f3:4d:89:e3:fe:74:55:5c:5c:66:48:f5:25:73:fb: 35:bf:9c:c7:74:6d:fd:97:db:3e:a1:67:61:29:d0:9f:ce:bd: 40:9f:14:c1:c9:f2:a6:e6:1a:ee:76:df:23:38:53:8e:6f:39: 91:2e:0a:1a:c4:e1:d2:26:1f:43:ff:63:f1:94:9d:4f:ad:91: 5e:a8:49:49:1b:97:65:e8:f3:50:98:dd:6f:f7:76:b6:48:62: db:b8:d4:c8:28:ac:49:fa:6f:11:81:af:04:8b:90:f9:4d:e4: 85:bd:8a:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbOiN+ivqK4VWZIoAlFxJBv2mRFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBF MEU3Q0Y5QTAeFw0yNjA0MDMxMzU1MDBaFw0yNzA0MDIxNDAwMDBaMDMxMTAvBgNV BAMTKEJBRjc1NzdFMTIyOEI5REIzNkVENjI3QzgwODNCOUQ4QzQzNDJBNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFmU1BF/Iv/JJMcp0ia/PQv+mf u/aWswK0Fi1Fx/IHIwsKlxz4aww4/+dfTgV1wKH96vwyLUeUpqsWYh4qYOOU8uq1 jOg8/Vnh2ITtB1aW4YP6DfY8n/jEYLGYhCCcUa8mqlxDOE9bwIFuOvu8q6nTn1Kc yAkQq1lCm1r07jh3XduK26POG+VTwtM9hfoSR9ACiiFC4RPwN/x+OrpP2MOL6HyS obsGgYg4epdXBfuYPltPwPzxWf6zd6ZL+dOkA/CHk70Vsjj5wcaebo6QfUagxmKT SLepIPt0I2xZbgfO+23rmyYOQl++Rl1jGCNg2d43URfWPb2lpNxVl4r4WckbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuvdXfhIouds27WJ8gIO52MQ0KkowHwYDVR0j BBgwFoAUKcBkDdkHbcBM+KOQ6nPfwODnz5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGFmOWYwZi00ZmIxLTQwYzAtYjM4MC01OWEzOGRiYzlhMTYvMC8yOUMwNjQwREQ5 MDc2REMwNENGOEEzOTBFQTczREZDMEUwRTdDRjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBFMEU3 Q0Y5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkYWY5ZjBmLTRmYjEtNDBjMC1i MzgwLTU5YTM4ZGJjOWExNi8wLzMyMzcyZTMxMzIzNDJlMzczNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt8SjANBgkqhkiG 9w0BAQsFAAOCAQEAcKrtjyPrkyLtZ7YuKz46QT/3yMPDeTJvM21ei3/m8g5jIW24 qViOHBcscCSWdZjDGsQ4VxgRjH66cxr9qv026larXQF2lpDmXWpp4Ni4y/kbeMy6 jhwT4JrF/Dl49kgBWdcIhPL7eCgi4nFe7VVGLS8/5zfXnc51tcVRFOcHXkX+VLfW Y9nAi07P4pKiuV2v5drZ802J4/50VVxcZkj1JXP7Nb+cx3Rt/ZfbPqFnYSnQn869 QJ8UwcnypuYa7nbfIzhTjm85kS4KGsTh0iYfQ/9j8ZSdT62RXqhJSRuXZejzUJjd b/d2tkhi27jUyCisSfpvEYGvBIuQ+U3khb2Kng== -----END CERTIFICATE-----Generated at Sun Apr 19 11:53:37 2026 by rpki-client