$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3234203d3e2039333431.roa File: 3232302e3234372e3136382e302f32312d3234203d3e2039333431.roa (raw, json) Hash identifier: MABKD+WzOfSxyI7nxN9kW2RNCACUEjzGVujEHZ77tfo= Subject key identifier: C9:7A:4C:FF:D1:09:6A:AC:85:65:02:66:41:E6:14:D0:85:51:AE:BE Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 288592248EC20CCE1C0B3479F4B3402DF63C5C0C Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3234203d3e2039333431.roa Signing time: Tue 24 Feb 2026 04:00:38 +0000 ROA not before: Tue 24 Feb 2026 03:55:38 +0000 ROA not after: Tue 23 Feb 2027 04:00:38 +0000 asID: 9341 IP address blocks: 220.247.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:85:92:24:8e:c2:0c:ce:1c:0b:34:79:f4:b3:40:2d:f6:3c:5c:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Feb 24 03:55:38 2026 GMT Not After : Feb 23 04:00:38 2027 GMT Subject: CN=C97A4CFFD1096AAC8565026641E614D08551AEBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:63:fb:b3:38:df:e4:d1:55:12:ba:5e:80:91: 12:06:0e:5c:e4:c8:76:e6:db:ec:2d:30:8e:80:ee: 2c:66:65:db:da:9c:2f:52:1f:b6:4a:d8:21:5d:73: 8d:f3:6b:15:13:2a:cf:22:9a:7d:31:d5:4b:f5:11: 6b:52:73:ae:6c:a7:2b:f1:ef:52:20:e2:56:07:29: 29:8c:b4:4a:18:b9:05:e2:d7:8e:24:d9:7a:d1:6b: d8:76:70:d8:98:76:8f:97:79:8e:4f:06:06:1e:14: 24:ac:63:23:06:4a:80:d8:c8:a6:ed:b4:9e:15:ff: 1d:5e:6a:45:b8:2f:46:cd:a1:2e:57:16:68:34:19: 32:4f:49:d9:e5:27:7c:94:28:74:3c:e0:1f:54:39: f2:69:c5:e1:4b:28:d5:97:c2:ba:07:08:68:38:d4: ac:f8:70:47:d6:d3:7e:e7:24:61:be:b0:a4:ef:e5: 65:d4:ce:7f:19:de:77:e3:6a:07:1b:b8:11:80:d1: 54:77:a4:b3:7b:64:44:69:0e:04:50:49:6c:37:24: 40:44:fd:5b:f2:0b:4b:64:50:76:eb:39:55:8e:13: 28:7c:1e:9f:cf:bd:23:d0:ff:c7:3e:5e:27:96:92: 73:57:bb:32:ad:cc:de:35:e3:9c:c5:63:4b:ad:7e: 29:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7A:4C:FF:D1:09:6A:AC:85:65:02:66:41:E6:14:D0:85:51:AE:BE X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.247.168.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:83:93:83:63:99:ae:9e:f8:4a:06:2e:35:53:40:9a:a0:d3: 1e:be:18:57:f2:2e:e1:00:c3:da:66:9b:f5:4e:6e:55:c3:2d: 65:6d:85:ef:3b:1c:0f:16:53:0c:16:86:6b:b2:90:5e:72:47: b5:f3:f5:a8:1c:10:20:a5:15:ca:4a:22:90:07:4e:b6:af:39: 63:73:a4:d8:db:58:eb:27:a7:61:43:7d:7a:da:9a:2f:44:f5: a0:f2:8b:bf:78:44:6d:a7:e2:dd:67:44:ce:e3:36:65:21:5e: 5e:d4:4b:c5:81:68:a8:28:9b:56:76:60:0c:0f:ba:3b:e9:a1: 3b:20:0b:e1:f4:23:86:94:00:8c:bc:7e:3d:47:45:70:79:07: 30:56:67:fb:09:2f:f1:ab:f3:e8:87:e8:72:e7:3b:79:d1:b1: 7b:32:d8:39:19:d8:99:17:9a:be:b8:51:17:5f:23:69:a4:c7: a0:20:c3:2a:21:fe:d1:e2:a5:5a:57:19:c3:77:99:aa:36:20: 0e:be:5d:b5:e3:af:69:d1:fc:4d:ca:92:b9:cf:9a:25:26:c0: 83:3f:12:ca:10:a1:29:f6:b5:dd:74:0e:48:0b:37:43:27:4d: 11:4a:ac:a2:cb:00:38:e3:e7:94:f3:7c:2c:7d:af:f4:f5:ce: 93:f3:f0:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKIWSJI7CDM4cCzR59LNALfY8XAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjAyMjQwMzU1MzhaFw0yNzAyMjMwNDAwMzhaMDMxMTAvBgNV BAMTKEM5N0E0Q0ZGRDEwOTZBQUM4NTY1MDI2NjQxRTYxNEQwODU1MUFFQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZY/uzON/k0VUSul6AkRIGDlzk yHbm2+wtMI6A7ixmZdvanC9SH7ZK2CFdc43zaxUTKs8imn0x1Uv1EWtSc65spyvx 71Ig4lYHKSmMtEoYuQXi144k2XrRa9h2cNiYdo+XeY5PBgYeFCSsYyMGSoDYyKbt tJ4V/x1eakW4L0bNoS5XFmg0GTJPSdnlJ3yUKHQ84B9UOfJpxeFLKNWXwroHCGg4 1Kz4cEfW037nJGG+sKTv5WXUzn8Z3nfjagcbuBGA0VR3pLN7ZERpDgRQSWw3JEBE /VvyC0tkUHbrOVWOEyh8Hp/PvSPQ/8c+XieWknNXuzKtzN4145zFY0utfikHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyXpM/9EJaqyFZQJmQeYU0IVRrr4wHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMyMzIzMDJlMzIzNDM3MmUzMTM2MzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9z3qDANBgkqhkiG 9w0BAQsFAAOCAQEAmoOTg2OZrp74SgYuNVNAmqDTHr4YV/Iu4QDD2mab9U5uVcMt ZW2F7zscDxZTDBaGa7KQXnJHtfP1qBwQIKUVykoikAdOtq85Y3Ok2NtY6yenYUN9 etqaL0T1oPKLv3hEbafi3WdEzuM2ZSFeXtRLxYFoqCibVnZgDA+6O+mhOyAL4fQj hpQAjLx+PUdFcHkHMFZn+wkv8avz6Ifocuc7edGxezLYORnYmReavrhRF18jaaTH oCDDKiH+0eKlWlcZw3eZqjYgDr5dteOvadH8TcqSuc+aJSbAgz8SyhChKfa13XQO SAs3QydNEUqsossAOOPnlPN8LH2v9PXOk/Pwxg== -----END CERTIFICATE-----Generated at Mon Mar 2 18:25:03 2026 by rpki-client