$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa File: 3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa (raw, json) Hash identifier: SOvdkRsNy9wo38KZAcA1o3QtpLmvL0lvkdB+LWt/pOs= Subject key identifier: 3A:9B:D5:F6:24:D1:C0:8B:74:5B:8C:4A:FE:E5:8A:C8:A3:82:3B:83 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 05BB613D6C7FA52A4B9A6937A59DFA7584A51AF2 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa Signing time: Tue 24 Feb 2026 03:00:02 +0000 ROA not before: Tue 24 Feb 2026 02:55:02 +0000 ROA not after: Tue 23 Feb 2027 03:00:02 +0000 asID: 9341 IP address blocks: 202.162.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:bb:61:3d:6c:7f:a5:2a:4b:9a:69:37:a5:9d:fa:75:84:a5:1a:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Feb 24 02:55:02 2026 GMT Not After : Feb 23 03:00:02 2027 GMT Subject: CN=3A9BD5F624D1C08B745B8C4AFEE58AC8A3823B83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:11:a6:ce:68:0d:3f:28:b8:f6:9a:89:6f:5c: de:a3:98:0a:cd:41:2b:97:92:cd:d7:38:cd:13:a2: 8d:f4:ad:a5:a5:e9:3b:67:86:8c:bf:15:49:fd:2c: 4b:99:07:66:c2:5c:5b:70:3d:8a:28:4e:f8:b3:0d: 61:1b:c5:f8:43:bc:a4:01:d2:33:7c:64:6c:7c:3b: 1e:21:3d:15:aa:5d:b2:f2:a9:f3:19:59:f2:b1:06: 9d:70:fe:29:23:e4:fe:1c:e7:5b:dd:70:78:68:57: a2:ea:e8:fc:23:8d:5d:8c:93:15:6c:f5:4c:79:c9: 84:e3:35:ed:b3:dd:7d:4e:4c:85:5a:e5:2f:3a:e5: 0a:cb:ce:5d:5c:58:17:d8:a1:ad:6f:c0:4d:93:b3: 07:a6:57:57:b0:51:cf:4c:b4:d9:ef:16:cd:10:81: 98:ff:09:5b:0c:2d:5d:94:c7:b5:6f:0c:e8:60:35: bf:ba:56:61:11:80:cc:44:4b:a8:34:43:c7:87:17: af:1e:b8:97:3d:94:bd:0d:4e:68:ff:0e:2f:51:f4: 96:e7:6e:e1:99:4e:b6:26:a3:fa:2d:b4:6d:59:7b: c4:a7:13:af:d9:be:32:7f:c8:8c:ba:05:08:94:e2: 50:43:34:73:9a:c5:d2:56:8a:6f:5b:52:7a:71:0e: 17:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9B:D5:F6:24:D1:C0:8B:74:5B:8C:4A:FE:E5:8A:C8:A3:82:3B:83 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e3136322e3230382e302f32302d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.208.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:14:9d:1b:9e:67:f4:72:e3:a7:bf:a3:3d:6a:e1:fc:7b:16: da:15:34:93:a4:aa:30:f3:e9:5c:a0:fd:bc:47:c0:1e:fc:0c: 52:a0:bf:10:9c:b8:0f:34:51:15:01:2f:78:d8:86:fa:22:ae: ef:f6:2f:5c:d4:7a:e7:0b:bb:49:d7:a3:f7:46:e2:0f:cd:73: 49:05:e8:61:86:41:b3:41:ff:fd:a3:b1:59:4c:cd:9d:ed:1c: 31:79:db:59:41:64:45:d8:9f:d0:7d:59:1e:0d:7f:3c:43:22: 4d:49:c2:77:42:78:1d:fb:05:b3:a4:cd:aa:39:9e:91:d5:fb: 7f:49:b2:d7:38:1f:41:00:5e:bd:9c:25:e1:2e:2f:7b:21:09: 6a:76:73:04:e3:8b:6d:eb:1c:eb:db:6e:b2:77:2a:6a:99:4e: 8f:2d:b0:a6:97:78:b5:c3:ca:4d:50:f1:16:33:83:98:54:1a: 81:f7:f0:6e:ff:38:5f:d0:d7:18:54:23:d5:e1:3c:f2:f8:dc: ac:a6:e8:df:e7:eb:a8:4b:ea:06:ae:bf:05:2c:98:1d:fd:52: 88:34:65:db:b5:9f:87:a6:7b:ce:c6:a1:b9:44:f2:60:10:cd: c7:e8:23:d4:1c:1a:cc:98:51:a9:7a:b8:e4:7e:ee:51:bb:ae: c0:43:4d:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBbthPWx/pSpLmmk3pZ36dYSlGvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjAyMjQwMjU1MDJaFw0yNzAyMjMwMzAwMDJaMDMxMTAvBgNV BAMTKDNBOUJENUY2MjREMUMwOEI3NDVCOEM0QUZFRTU4QUM4QTM4MjNCODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBEabOaA0/KLj2molvXN6jmArN QSuXks3XOM0Too30raWl6Ttnhoy/FUn9LEuZB2bCXFtwPYooTvizDWEbxfhDvKQB 0jN8ZGx8Ox4hPRWqXbLyqfMZWfKxBp1w/ikj5P4c51vdcHhoV6Lq6PwjjV2MkxVs 9Ux5yYTjNe2z3X1OTIVa5S865QrLzl1cWBfYoa1vwE2TswemV1ewUc9MtNnvFs0Q gZj/CVsMLV2Ux7VvDOhgNb+6VmERgMxES6g0Q8eHF68euJc9lL0NTmj/Di9R9Jbn buGZTrYmo/ottG1Ze8SnE6/ZvjJ/yIy6BQiU4lBDNHOaxdJWim9bUnpxDhcfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOpvV9iTRwIt0W4xK/uWKyKOCO4MwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzgyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqi0DANBgkqhkiG 9w0BAQsFAAOCAQEAaxSdG55n9HLjp7+jPWrh/HsW2hU0k6SqMPPpXKD9vEfAHvwM UqC/EJy4DzRRFQEveNiG+iKu7/YvXNR65wu7Sdej90biD81zSQXoYYZBs0H//aOx WUzNne0cMXnbWUFkRdif0H1ZHg1/PEMiTUnCd0J4HfsFs6TNqjmekdX7f0my1zgf QQBevZwl4S4veyEJanZzBOOLbesc69tusncqaplOjy2wppd4tcPKTVDxFjODmFQa gffwbv84X9DXGFQj1eE88vjcrKbo3+frqEvqBq6/BSyYHf1SiDRl27Wfh6Z7zsah uUTyYBDNx+gj1BwazJhRqXq45H7uUbuuwENNuw== -----END CERTIFICATE-----Generated at Mon Mar 2 08:07:05 2026 by rpki-client