$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa File: 3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa (raw, json) Hash identifier: Ofz0j6kC8Xcn9IXN3N7n7xXoBr9ruJDch+8awcd6RrU= Subject key identifier: A3:77:6D:67:45:02:1C:8A:D7:2D:66:B3:A7:4F:47:32:92:C2:78:4A Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 39CB39447D4F3A2967EB1882A12E69D92C5F4876 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa Signing time: Tue 07 Apr 2026 06:02:45 +0000 ROA not before: Tue 07 Apr 2026 05:57:45 +0000 ROA not after: Tue 06 Apr 2027 06:02:45 +0000 asID: 9341 IP address blocks: 220.247.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 16:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:cb:39:44:7d:4f:3a:29:67:eb:18:82:a1:2e:69:d9:2c:5f:48:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Apr 7 05:57:45 2026 GMT Not After : Apr 6 06:02:45 2027 GMT Subject: CN=A3776D6745021C8AD72D66B3A74F473292C2784A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:a4:08:25:d0:ea:58:0e:fa:f5:d8:44:6d: c9:75:43:b5:ac:f0:1d:6c:7e:f6:08:47:c6:33:56: 8c:ff:c2:67:51:54:3e:ee:fc:57:b2:e0:0c:23:dd: 44:34:8d:c4:6f:75:20:27:1f:d7:fe:3e:36:8e:aa: 71:c0:d3:24:d3:4f:6b:ce:ab:e2:08:92:4e:bc:6a: c3:86:cf:10:79:ef:b8:b6:26:96:39:95:0b:a6:81: 06:56:44:bd:cb:02:ad:12:58:49:a0:b1:6a:84:e9: f8:76:7c:b4:56:5a:a8:4a:5c:09:c4:fa:22:35:98: b8:de:e4:c1:cb:af:5c:fa:df:f2:06:29:2f:b8:27: a2:70:29:b3:74:55:f6:cb:b6:7f:5f:fb:83:2a:c3: 49:ba:e1:9b:cf:ea:8d:15:ee:f5:df:bc:8a:7d:e5: 0f:8d:8c:8a:93:d1:76:5b:01:98:a2:57:20:70:50: 0b:49:88:2f:03:38:db:10:63:05:1a:52:46:10:69: 38:8f:23:5d:3c:a1:ff:36:cc:ba:4c:3e:cb:61:f0: 3c:fe:32:2f:5d:d4:b6:ff:06:5c:1d:3f:6e:62:0e: 52:dd:ad:34:47:7b:26:72:2f:60:32:34:a5:d8:24: 3a:3b:d6:d3:7e:5c:92:64:18:c6:a6:48:66:25:03: b8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:77:6D:67:45:02:1C:8A:D7:2D:66:B3:A7:4F:47:32:92:C2:78:4A X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.247.168.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:f6:8f:af:87:fc:5e:40:3c:79:a4:19:e2:b3:28:5c:71:3d: f7:ce:1a:12:3a:28:b8:0a:e2:3e:2c:f9:a0:d0:de:52:e4:1a: 1f:64:2c:74:b0:c5:5b:cb:86:e9:e7:66:80:85:69:4b:d7:b6: 4e:a0:f8:a1:de:6a:fd:31:6e:b7:39:cd:c1:e8:8a:32:4c:85: f0:80:18:00:97:e8:f1:7f:a0:d4:af:a6:e9:e3:a3:bf:95:68: a1:4a:89:44:f0:5f:42:fd:27:d8:5e:01:79:f3:ef:78:10:74: a6:9c:30:02:93:9b:f9:c0:1e:93:57:ae:c4:bb:3f:09:7a:c6: 80:36:dd:07:3b:a6:32:94:2a:7c:92:18:41:77:be:ec:c1:05: 0a:ef:f2:7f:df:a1:dc:7b:c4:f2:50:8b:eb:77:3f:5d:fc:fc: a6:aa:c9:4f:c7:7e:3a:8a:0b:d8:78:86:72:f9:d5:cd:9d:b8: 37:ab:e5:99:b4:a2:d0:1f:f2:b0:bb:ba:6b:c7:41:d7:ed:57: a9:0a:f7:72:25:3f:08:7f:27:85:8c:c2:6f:e8:77:0a:8f:ab: af:91:61:99:e5:32:3b:4e:aa:04:37:72:95:62:fb:12:fc:e3: bb:19:51:6e:39:19:37:39:90:3c:55:65:b1:f7:e5:ed:a7:53: 9b:99:a3:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOcs5RH1POiln6xiCoS5p2SxfSHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjA0MDcwNTU3NDVaFw0yNzA0MDYwNjAyNDVaMDMxMTAvBgNV BAMTKEEzNzc2RDY3NDUwMjFDOEFENzJENjZCM0E3NEY0NzMyOTJDMjc4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD2aQIJdDqWA769dhEbcl1Q7Ws 8B1sfvYIR8YzVoz/wmdRVD7u/Fey4Awj3UQ0jcRvdSAnH9f+PjaOqnHA0yTTT2vO q+IIkk68asOGzxB577i2JpY5lQumgQZWRL3LAq0SWEmgsWqE6fh2fLRWWqhKXAnE +iI1mLje5MHLr1z63/IGKS+4J6JwKbN0VfbLtn9f+4Mqw0m64ZvP6o0V7vXfvIp9 5Q+NjIqT0XZbAZiiVyBwUAtJiC8DONsQYwUaUkYQaTiPI108of82zLpMPsth8Dz+ Mi9d1Lb/BlwdP25iDlLdrTRHeyZyL2AyNKXYJDo71tN+XJJkGMamSGYlA7iJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUo3dtZ0UCHIrXLWazp09HMpLCeEowHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMyMzIzMDJlMzIzNDM3MmUzMTM2MzgyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9z3qDANBgkqhkiG 9w0BAQsFAAOCAQEAP/aPr4f8XkA8eaQZ4rMoXHE9984aEjoouAriPiz5oNDeUuQa H2QsdLDFW8uG6edmgIVpS9e2TqD4od5q/TFutznNweiKMkyF8IAYAJfo8X+g1K+m 6eOjv5VooUqJRPBfQv0n2F4BefPveBB0ppwwApOb+cAek1euxLs/CXrGgDbdBzum MpQqfJIYQXe+7MEFCu/yf9+h3HvE8lCL63c/Xfz8pqrJT8d+OooL2HiGcvnVzZ24 N6vlmbSi0B/ysLu6a8dB1+1XqQr3ciU/CH8nhYzCb+h3Co+rr5FhmeUyO06qBDdy lWL7EvzjuxlRbjkZNzmQPFVlsffl7adTm5mj3w== -----END CERTIFICATE-----Generated at Fri Apr 17 17:54:28 2026 by rpki-client