$ rpki-client -vvf repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa File: 3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa (raw, json) Hash identifier: 21V3VhnP5vTGuoZJBlAnPnSOpi0hh8WGXahM4wGxnKo= Subject key identifier: 44:3B:AD:1B:18:A5:03:25:0E:CD:05:B5:33:54:D4:CB:5D:97:41:27 Certificate issuer: /CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4 Certificate serial: 287A50DA4F4207539DC270CE3792829C808220E9 Authority key identifier: DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa Signing time: Mon 23 Feb 2026 06:00:01 +0000 ROA not before: Mon 23 Feb 2026 05:55:01 +0000 ROA not after: Mon 22 Feb 2027 06:00:01 +0000 asID: 131728 IP address blocks: 203.153.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.crl rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 23:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7a:50:da:4f:42:07:53:9d:c2:70:ce:37:92:82:9c:80:82:20:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4 Validity Not Before: Feb 23 05:55:01 2026 GMT Not After : Feb 22 06:00:01 2027 GMT Subject: CN=443BAD1B18A503250ECD05B53354D4CB5D974127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:f9:6a:05:13:06:5d:5b:c7:2d:90:a4:69: 34:90:43:34:ef:e7:93:32:79:4f:de:b9:c7:46:13: c5:3d:6d:09:4f:20:f5:34:b5:38:fa:dc:91:f7:aa: 6b:a9:85:91:f2:3c:57:2b:a2:34:73:54:09:d3:7a: b8:aa:6e:9e:1b:a5:23:5b:5e:59:c0:fe:dc:61:4a: ea:56:6b:95:f0:29:e7:66:bb:c3:96:08:7a:d0:a3: f9:b1:a0:51:ac:30:5b:e4:fe:20:74:bf:d2:66:5e: 66:3e:d2:68:b6:6b:a6:43:1a:9c:29:7a:5e:20:94: 53:e2:bf:41:cf:d4:5e:9b:6e:64:11:35:74:12:37: 19:ee:b4:6f:59:cf:6e:7f:66:fc:e5:db:6f:80:c2: 41:b1:29:00:4b:73:a9:cb:7c:d7:9a:45:4c:77:79: e6:10:8b:2b:25:c0:31:d7:27:5f:10:dd:01:89:5e: 7c:c1:d4:3b:2d:c0:94:80:65:e6:7a:4d:e9:b7:32: 7d:33:12:67:84:f9:ae:27:37:a5:99:89:6e:80:a7: f5:4c:eb:e1:93:79:a4:4e:b5:64:f7:07:5e:0f:47: 52:49:f2:be:ca:af:cb:2b:91:17:5a:3e:28:d4:f2: f5:62:d9:ab:7e:ca:fd:4b:35:ff:8b:3b:20:52:57: ba:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:3B:AD:1B:18:A5:03:25:0E:CD:05:B5:33:54:D4:CB:5D:97:41:27 X509v3 Authority Key Identifier: keyid:DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.212.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:ce:ec:9a:21:d6:6e:0e:aa:64:e4:51:4b:f9:d8:31:4c:aa: f1:b5:5d:84:34:75:80:1f:60:f8:1f:d2:2f:72:fb:70:d8:36: 00:0d:88:8f:74:be:e4:a4:25:cd:63:59:c8:53:8f:9b:96:c5: 9e:ff:6a:c7:13:7e:a9:b8:33:6b:c8:46:53:40:91:6d:90:5e: 98:99:26:32:5c:6d:35:7d:58:85:2b:f6:3a:b6:4d:3f:8d:34: 7e:11:b6:3f:ce:71:62:c5:30:67:28:9a:c0:10:d2:c5:69:57: d4:88:4c:9d:f9:d7:40:60:e0:2c:34:4c:27:36:42:67:f9:b8: ba:82:59:56:fc:02:c9:52:af:f3:b6:dd:81:1e:c6:70:28:2c: 79:e1:8a:ec:b5:ee:d5:26:a9:8b:e2:8d:40:c1:03:a9:f8:97: 42:7b:8c:7d:b4:a7:cf:c1:d3:bd:51:bb:e1:6d:03:08:d1:56: a4:0e:ee:3b:bd:c1:db:55:1b:d7:6b:8f:d4:2d:88:81:80:6d: d9:b1:bc:34:6b:00:c9:c9:b6:5a:eb:b8:49:e2:bb:67:03:79: 33:bf:20:06:8a:8b:63:56:bc:73:e3:7b:a7:c4:c6:b4:a5:66: fb:b9:5f:32:e5:6a:32:39:6b:48:b2:b5:74:82:2f:9a:5e:80: 71:82:40:74 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKHpQ2k9CB1OdwnDON5KCnICCIOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI3MjVFQUMyREQxRTYyQjdBMDJDNTRBNjE4RDdBMDFC OTU4RTRDNDAeFw0yNjAyMjMwNTU1MDFaFw0yNzAyMjIwNjAwMDFaMDMxMTAvBgNV BAMTKDQ0M0JBRDFCMThBNTAzMjUwRUNEMDVCNTMzNTRENENCNUQ5NzQxMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLvflqBRMGXVvHLZCkaTSQQzTv 55MyeU/eucdGE8U9bQlPIPU0tTj63JH3qmuphZHyPFcrojRzVAnTeriqbp4bpSNb XlnA/txhSupWa5XwKedmu8OWCHrQo/mxoFGsMFvk/iB0v9JmXmY+0mi2a6ZDGpwp el4glFPiv0HP1F6bbmQRNXQSNxnutG9Zz25/Zvzl22+AwkGxKQBLc6nLfNeaRUx3 eeYQiyslwDHXJ18Q3QGJXnzB1DstwJSAZeZ6Tem3Mn0zEmeE+a4nN6WZiW6Ap/VM 6+GTeaROtWT3B14PR1JJ8r7Kr8srkRdaPijU8vVi2at+yv1LNf+LOyBSV7rdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURDutGxilAyUOzQW1M1TUy12XQScwHwYDVR0j BBgwFoAU23JerC3R5it6AsVKYY16AblY5MQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MDE1YTg1NS1iMjljLTQ1MDItYWY4MS1jYmI4YjRmN2YwZjcvMC9EQjcyNUVBQzJE RDFFNjJCN0EwMkM1NEE2MThEN0EwMUI5NThFNEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREI3MjVFQUMyREQxRTYyQjdBMDJDNTRBNjE4RDdBMDFCOTU4 RTRDNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwMTVhODU1LWIyOWMtNDUwMi1h ZjgxLWNiYjhiNGY3ZjBmNy8wLzMyMzAzMzJlMzEzNTMzMmUzMjMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALLmdQwDQYJ KoZIhvcNAQELBQADggEBAFzO7Joh1m4OqmTkUUv52DFMqvG1XYQ0dYAfYPgf0i9y +3DYNgANiI90vuSkJc1jWchTj5uWxZ7/ascTfqm4M2vIRlNAkW2QXpiZJjJcbTV9 WIUr9jq2TT+NNH4Rtj/OcWLFMGcomsAQ0sVpV9SITJ3510Bg4Cw0TCc2Qmf5uLqC WVb8AslSr/O23YEexnAoLHnhiuy17tUmqYvijUDBA6n4l0J7jH20p8/B071Ru+Ft AwjRVqQO7ju9wdtVG9drj9QtiIGAbdmxvDRrAMnJtlrruEniu2cDeTO/IAaKi2NW vHPje6fExrSlZvu5XzLlajI5a0iytXSCL5pegHGCQHQ= -----END CERTIFICATE-----Generated at Mon Mar 2 16:53:21 2026 by rpki-client