$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa File: 3232332e32352e39362e302f32312d3234203d3e2039333431.roa (raw, json) Hash identifier: ci+leQjY09eABwmnKxlr/iaiD5pwVQknT1GtJPm5v30= Subject key identifier: 41:EA:E4:CF:39:D0:C1:90:71:5A:41:63:73:05:C6:04:DE:BD:18:BE Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 6E1B98DF9D94A830CBEADE4E7DDFE0E650ABB9A6 Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa Signing time: Tue 14 Apr 2026 12:01:47 +0000 ROA not before: Tue 14 Apr 2026 11:56:47 +0000 ROA not after: Tue 13 Apr 2027 12:01:47 +0000 asID: 9341 IP address blocks: 223.25.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 23:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:1b:98:df:9d:94:a8:30:cb:ea:de:4e:7d:df:e0:e6:50:ab:b9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Apr 14 11:56:47 2026 GMT Not After : Apr 13 12:01:47 2027 GMT Subject: CN=41EAE4CF39D0C190715A41637305C604DEBD18BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:86:c7:9f:03:fa:22:7c:b8:c1:30:06:db:31: e8:a0:a3:fb:36:8b:82:f7:ea:1e:0d:51:a4:05:f9: 87:ed:51:8e:27:35:4b:38:7a:d0:d9:32:54:40:9a: 44:89:cd:6c:80:f2:45:a3:87:4c:50:97:7e:fe:9d: df:4f:bd:18:ea:f5:e4:19:bb:e1:b5:02:1d:d2:16: df:c8:fc:90:aa:3f:77:6f:de:0f:9f:9d:be:91:fa: 3d:07:49:c8:80:76:09:33:f4:0a:50:4a:9b:8c:63: 5d:19:db:be:bd:51:aa:8c:59:24:5e:c8:f0:2c:1c: d2:a5:e9:65:62:39:5d:27:a1:33:73:6c:e3:10:36: f6:99:74:3f:ac:03:92:9f:c5:ff:0a:fe:40:53:ca: 9c:88:3a:39:68:85:aa:1b:24:56:46:1d:9c:96:e2: 44:3f:b3:c8:4e:90:f5:db:1d:01:36:bd:5d:41:fb: 49:87:a3:9b:cd:c7:34:96:4a:50:99:f1:cd:17:6c: 2f:84:4d:f6:f5:68:36:d5:b8:6d:d0:93:8c:61:28: 3f:9b:c1:f8:e0:04:c9:ba:71:25:48:4c:b1:ee:d1: d9:26:84:c7:97:ad:ed:95:99:7c:f8:33:57:c9:a4: 0b:f8:38:cb:69:f9:25:d5:cb:49:ea:88:5e:c3:ec: 18:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:EA:E4:CF:39:D0:C1:90:71:5A:41:63:73:05:C6:04:DE:BD:18:BE X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.96.0/21 Signature Algorithm: sha256WithRSAEncryption 57:1a:0f:f4:7b:98:dc:50:30:c0:23:e8:61:7d:69:75:ed:7a: 2d:99:c5:73:72:48:67:40:15:07:f5:a2:08:8d:5c:28:f0:0e: 39:67:12:6e:6f:f1:ba:a9:79:37:1b:f1:f5:6d:af:e7:1d:7b: 66:c4:0a:53:18:5f:f1:3a:04:9b:f3:d7:db:24:8e:e5:e0:32: db:08:5a:cf:8c:7e:36:30:ce:a5:47:76:a5:97:44:13:b0:6c: 70:f8:82:ea:38:f3:3b:db:e1:b8:fe:86:42:13:da:c1:3a:fd: 74:95:4e:6f:e5:69:12:4a:b0:2a:e5:31:b0:69:af:d2:03:3d: ac:b6:be:5f:81:fb:1c:f0:69:49:88:30:9e:0c:19:1b:90:1c: 41:82:97:b2:3a:0a:6c:d9:59:cf:ba:67:13:9b:a8:af:64:0c: 64:95:28:93:da:1b:37:86:7f:1e:a0:a0:39:ff:b3:60:c7:a9: 9d:0e:e6:82:5c:bd:60:ab:b3:6e:2a:f9:58:22:8a:be:4c:9b: 8b:0f:ba:95:e5:d9:c0:9c:22:7a:fa:91:68:5e:fb:0f:37:5b: 04:89:1c:5e:cb:8c:1c:04:f2:8b:b9:06:81:ed:42:46:03:c0: e5:a9:e1:92:e2:a6:71:bf:8b:ce:53:1d:dd:6c:c6:45:53:6d: 70:f0:b7:ac -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUbhuY352UqDDL6t5Ofd/g5lCruaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNjA0MTQxMTU2NDdaFw0yNzA0MTMxMjAxNDdaMDMxMTAvBgNV BAMTKDQxRUFFNENGMzlEMEMxOTA3MTVBNDE2MzczMDVDNjA0REVCRDE4QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIhsefA/oifLjBMAbbMeigo/s2 i4L36h4NUaQF+YftUY4nNUs4etDZMlRAmkSJzWyA8kWjh0xQl37+nd9PvRjq9eQZ u+G1Ah3SFt/I/JCqP3dv3g+fnb6R+j0HSciAdgkz9ApQSpuMY10Z2769UaqMWSRe yPAsHNKl6WViOV0noTNzbOMQNvaZdD+sA5Kfxf8K/kBTypyIOjlohaobJFZGHZyW 4kQ/s8hOkPXbHQE2vV1B+0mHo5vNxzSWSlCZ8c0XbC+ETfb1aDbVuG3Qk4xhKD+b wfjgBMm6cSVITLHu0dkmhMeXre2VmXz4M1fJpAv4OMtp+SXVy0nqiF7D7BifAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUQerkzznQwZBxWkFjcwXGBN69GL4wHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzMjMzMmUzMjM1MmUzOTM2MmUzMDJmMzIzMTJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPfGWAwDQYJKoZIhvcNAQEL BQADggEBAFcaD/R7mNxQMMAj6GF9aXXtei2ZxXNySGdAFQf1ogiNXCjwDjlnEm5v 8bqpeTcb8fVtr+cde2bEClMYX/E6BJvz19skjuXgMtsIWs+MfjYwzqVHdqWXRBOw bHD4guo48zvb4bj+hkIT2sE6/XSVTm/laRJKsCrlMbBpr9IDPay2vl+B+xzwaUmI MJ4MGRuQHEGCl7I6CmzZWc+6ZxObqK9kDGSVKJPaGzeGfx6goDn/s2DHqZ0O5oJc vWCrs24q+Vgiir5Mm4sPupXl2cCcInr6kWhe+w83WwSJHF7LjBwE8ou5BoHtQkYD wOWp4ZLipnG/i85THd1sxkVTbXDwt6w= -----END CERTIFICATE-----Generated at Fri Apr 17 19:51:10 2026 by rpki-client