$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37332e302f32342d3234203d3e203435323938.roa File: 3230322e34332e37332e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: 61f7Q97t84VkVRF5YTtz7buXAr4BZUrQSVIeifN3UC4= Subject key identifier: 43:72:63:C3:A3:4F:F9:A4:EA:1E:D1:42:C4:D9:06:FF:F8:21:1C:F6 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 6951AA7226DD19C8F3292F3F22F37CEFC972D135 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37332e302f32342d3234203d3e203435323938.roa Signing time: Tue 03 Feb 2026 10:02:36 +0000 ROA not before: Tue 03 Feb 2026 09:57:36 +0000 ROA not after: Tue 02 Feb 2027 10:02:36 +0000 asID: 45298 IP address blocks: 202.43.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 04:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:51:aa:72:26:dd:19:c8:f3:29:2f:3f:22:f3:7c:ef:c9:72:d1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Feb 3 09:57:36 2026 GMT Not After : Feb 2 10:02:36 2027 GMT Subject: CN=437263C3A34FF9A4EA1ED142C4D906FFF8211CF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b0:3c:a7:a2:af:30:4b:05:02:0c:cf:e3:5d: a3:a2:db:32:56:2c:08:70:58:6c:fb:f8:c7:dd:1d: 02:27:77:9e:0c:23:c9:2c:36:7f:c5:f7:72:27:6e: 05:43:e8:57:d0:4d:73:fe:3b:c2:6e:a6:3c:e8:5e: da:9d:1b:9d:36:41:3d:63:ad:59:38:fe:ba:93:d0: 9f:8e:b5:29:46:9a:4c:c4:41:9e:ae:cf:ab:1c:aa: b3:be:51:3d:76:c2:e1:43:c3:e8:c7:ab:70:bc:df: be:63:38:17:8f:6a:53:49:4e:28:8d:f7:90:11:66: 4c:46:4b:8e:e9:25:62:a4:08:fa:73:01:86:9f:90: 1c:20:d4:9b:3a:a5:ce:4c:1e:b5:ee:cc:99:4e:b1: 99:3f:0e:21:bf:5b:bd:42:c2:12:44:08:f7:f5:35: 1e:2a:21:57:82:2e:bb:3c:f3:55:d1:ce:f4:b8:17: ab:01:55:9d:2b:02:46:d1:0f:a4:4d:b2:2d:cf:d2: ef:c3:83:50:b0:5e:ef:be:15:48:66:20:57:95:ff: f9:28:00:30:f8:f8:b2:bb:c4:8c:42:4f:bd:9c:9f: ff:b9:25:bd:0f:dc:35:5f:5d:4f:4f:0e:b2:60:b1: 88:45:af:31:b7:a4:70:e2:7f:e5:72:23:e1:38:c7: af:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:72:63:C3:A3:4F:F9:A4:EA:1E:D1:42:C4:D9:06:FF:F8:21:1C:F6 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37332e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.73.0/24 Signature Algorithm: sha256WithRSAEncryption 11:82:76:49:f1:5c:b0:1c:6e:b0:e4:32:b2:21:51:a0:3b:95: 94:e1:c4:bc:de:c3:9a:86:b1:dd:df:50:5d:99:2c:05:cd:73: 4e:98:db:68:b6:72:ba:3a:0c:a0:34:d7:09:60:05:b5:1c:fd: 3d:36:b3:e0:63:a5:3b:92:e4:b0:3b:98:c1:e6:ce:b4:15:cf: b2:ca:7c:9d:f8:c2:48:9c:71:d5:30:f3:c5:ab:1c:4d:55:b8: 65:44:f0:7d:36:47:f7:ec:ef:16:d9:77:0f:e3:2e:d8:17:2e: 42:2d:52:be:74:04:22:37:e8:c8:55:89:b8:28:85:d8:85:93: dc:88:67:1e:cf:4e:68:89:b2:d2:d4:7f:a9:7a:1e:5b:1a:0a: b5:b3:e7:06:f1:92:67:74:8a:12:08:13:94:94:0c:b7:14:2c: 5e:35:f2:dd:ae:ee:ef:aa:d5:0c:34:97:72:84:50:6b:bd:65: 73:56:61:4c:8d:cc:13:e0:c4:f8:bc:a6:e6:a2:b8:e9:a8:d2: 0a:98:d2:b5:46:4b:82:e7:c1:8f:0a:20:f7:80:bd:6d:c4:29: 4a:c5:97:20:9b:8f:cb:bc:e4:9a:02:bf:bc:61:5a:c5:19:40: 26:8e:d7:52:63:0f:d4:4f:16:8a:b7:fd:a7:bc:34:92:d4:a5: 25:23:26:30 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaVGqcibdGcjzKS8/IvN878ly0TUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNjAyMDMwOTU3MzZaFw0yNzAyMDIxMDAyMzZaMDMxMTAvBgNV BAMTKDQzNzI2M0MzQTM0RkY5QTRFQTFFRDE0MkM0RDkwNkZGRjgyMTFDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMsDynoq8wSwUCDM/jXaOi2zJW LAhwWGz7+MfdHQInd54MI8ksNn/F93InbgVD6FfQTXP+O8JupjzoXtqdG502QT1j rVk4/rqT0J+OtSlGmkzEQZ6uz6scqrO+UT12wuFDw+jHq3C8375jOBePalNJTiiN 95ARZkxGS47pJWKkCPpzAYafkBwg1Js6pc5MHrXuzJlOsZk/DiG/W71CwhJECPf1 NR4qIVeCLrs881XRzvS4F6sBVZ0rAkbRD6RNsi3P0u/Dg1CwXu++FUhmIFeV//ko ADD4+LK7xIxCT72cn/+5Jb0P3DVfXU9PDrJgsYhFrzG3pHDif+VyI+E4x68DAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQ3Jjw6NP+aTqHtFCxNkG//ghHPYwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMyMzAzMjJlMzQzMzJlMzczMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMjM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKK0kwDQYJKoZIhvcN AQELBQADggEBABGCdknxXLAcbrDkMrIhUaA7lZThxLzew5qGsd3fUF2ZLAXNc06Y 22i2cro6DKA01wlgBbUc/T02s+BjpTuS5LA7mMHmzrQVz7LKfJ34wkiccdUw88Wr HE1VuGVE8H02R/fs7xbZdw/jLtgXLkItUr50BCI36MhVibgohdiFk9yIZx7PTmiJ stLUf6l6HlsaCrWz5wbxkmd0ihIIE5SUDLcULF418t2u7u+q1Qw0l3KEUGu9ZXNW YUyNzBPgxPi8puaiuOmo0gqY0rVGS4LnwY8KIPeAvW3EKUrFlyCbj8u85JoCv7xh WsUZQCaO11JjD9RPFoq3/ae8NJLUpSUjJjA= -----END CERTIFICATE-----Generated at Mon Mar 2 15:44:50 2026 by rpki-client