$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32312e302f32342d3234203d3e20313333383430.roa File: 3230332e3136312e32312e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: DyNmKr5AT1LE77r082HwTStqKK5obICcZwlKGt1V/PE= Subject key identifier: 0F:6E:32:5E:EB:DA:3C:43:9F:E2:68:CD:F2:C0:59:F8:72:2A:18:8B Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 3D685A65FB69B0D82B3E4C0FAE628F4C03292C53 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32312e302f32342d3234203d3e20313333383430.roa Signing time: Sat 21 Feb 2026 06:00:03 +0000 ROA not before: Sat 21 Feb 2026 05:55:03 +0000 ROA not after: Sat 20 Feb 2027 06:00:03 +0000 asID: 133840 IP address blocks: 203.161.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:68:5a:65:fb:69:b0:d8:2b:3e:4c:0f:ae:62:8f:4c:03:29:2c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Feb 21 05:55:03 2026 GMT Not After : Feb 20 06:00:03 2027 GMT Subject: CN=0F6E325EEBDA3C439FE268CDF2C059F8722A188B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:ab:1b:02:77:76:f7:f5:7d:64:d9:f9:96: cf:b7:1c:5f:10:07:bb:c7:30:fa:ca:cd:b1:2d:b0: 52:39:86:ef:a0:fa:16:b3:d5:89:15:72:59:ce:00: 1e:68:5b:73:8c:4d:79:97:ed:5e:2f:db:62:1d:d1: 1c:35:fa:ee:6e:fc:01:22:1b:65:cf:9c:10:5a:d1: a0:d4:ad:02:d7:eb:76:63:f0:49:ac:ce:d3:b1:02: 1e:5a:2b:07:55:5b:c3:15:f5:74:d8:28:52:97:a0: 96:9c:54:4f:00:2d:0f:32:21:23:72:76:13:40:1d: 0b:c9:f7:65:de:e5:37:63:f1:1c:92:ea:77:7b:92: de:29:6f:0d:fc:b5:76:d3:69:e1:c4:71:ea:11:2c: 6b:f4:1d:6a:f7:3a:79:29:a6:40:13:5a:ed:c1:fe: 8b:31:11:19:7b:2e:1d:72:ee:32:c5:03:f4:ee:e9: 09:9e:b0:e5:31:88:14:1e:c5:40:c4:3b:b7:d0:f5: 47:a2:f2:40:49:65:a3:f3:ba:16:28:89:34:1f:83: 26:11:06:61:1f:92:96:b2:68:f8:8c:3f:36:96:c0: 82:cc:26:9d:42:34:ef:00:2f:1b:a6:27:4a:e7:fe: 0c:70:33:d9:c9:10:50:35:3b:81:d4:00:79:46:df: 8a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6E:32:5E:EB:DA:3C:43:9F:E2:68:CD:F2:C0:59:F8:72:2A:18:8B X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32312e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.21.0/24 Signature Algorithm: sha256WithRSAEncryption a1:9a:76:3d:99:85:59:8f:e8:a2:23:9b:18:2a:bd:98:38:54: ea:40:68:aa:d5:1d:e8:00:d4:96:f8:a2:8b:33:c6:91:26:4e: 6a:05:02:13:0c:0d:e8:6c:d6:a2:b9:16:d9:2c:cc:83:5a:23: 30:ca:1e:54:62:e4:67:50:f3:ec:a7:78:ec:18:ad:9b:2c:e5: a9:10:40:2d:97:88:be:66:16:cf:1b:5e:7d:3b:4b:cf:df:41: 05:7a:85:c0:e4:b7:6d:5d:06:39:a5:d6:b5:27:ab:d0:0c:2d: e9:8a:b8:c4:4a:06:48:e3:c3:62:50:0e:2d:95:f2:d0:24:e6: c8:fe:9f:0c:64:ca:e8:1c:27:12:a4:75:81:31:23:98:87:0f: 36:1e:53:0d:27:2c:e9:9d:08:b7:45:dd:59:01:6a:0f:98:61: 62:e2:12:c6:24:c8:f0:1f:f1:2e:75:63:41:56:af:73:99:83: 23:bd:cc:7d:a0:a3:e7:b8:25:32:e2:86:dd:ed:2b:84:55:52: 25:3f:7b:98:65:ed:f5:36:60:e8:b2:fd:17:09:90:78:42:68: 9b:fa:77:23:1f:67:89:63:96:29:fe:19:34:c6:b6:2d:15:44: bd:7d:97:7d:7d:79:65:c5:bb:44:90:1d:51:ad:b9:49:37:4f: e4:36:63:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPWhaZftpsNgrPkwPrmKPTAMpLFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNjAyMjEwNTU1MDNaFw0yNzAyMjAwNjAwMDNaMDMxMTAvBgNV BAMTKDBGNkUzMjVFRUJEQTNDNDM5RkUyNjhDREYyQzA1OUY4NzIyQTE4OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGOKsbAnd29/V9ZNn5ls+3HF8Q B7vHMPrKzbEtsFI5hu+g+haz1YkVclnOAB5oW3OMTXmX7V4v22Id0Rw1+u5u/AEi G2XPnBBa0aDUrQLX63Zj8EmsztOxAh5aKwdVW8MV9XTYKFKXoJacVE8ALQ8yISNy dhNAHQvJ92Xe5Tdj8RyS6nd7kt4pbw38tXbTaeHEceoRLGv0HWr3OnkppkATWu3B /osxERl7Lh1y7jLFA/Tu6QmesOUxiBQexUDEO7fQ9Uei8kBJZaPzuhYoiTQfgyYR BmEfkpayaPiMPzaWwILMJp1CNO8ALxumJ0rn/gxwM9nJEFA1O4HUAHlG34r9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD24yXuvaPEOf4mjN8sBZ+HIqGIswHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6EVMA0GCSqG SIb3DQEBCwUAA4IBAQChmnY9mYVZj+iiI5sYKr2YOFTqQGiq1R3oANSW+KKLM8aR Jk5qBQITDA3obNaiuRbZLMyDWiMwyh5UYuRnUPPsp3jsGK2bLOWpEEAtl4i+ZhbP G159O0vP30EFeoXA5LdtXQY5pda1J6vQDC3pirjESgZI48NiUA4tlfLQJObI/p8M ZMroHCcSpHWBMSOYhw82HlMNJyzpnQi3Rd1ZAWoPmGFi4hLGJMjwH/EudWNBVq9z mYMjvcx9oKPnuCUy4obd7SuEVVIlP3uYZe31NmDosv0XCZB4Qmib+ncjH2eJY5Yp /hk0xrYtFUS9fZd9fXllxbtEkB1RrblJN0/kNmN9 -----END CERTIFICATE-----Generated at Mon Mar 2 14:28:51 2026 by rpki-client