$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa File: 3230322e35312e32302e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: 4JnfTGjY9X7X8+n4/R+zY+BatEjhdtcbcnnxtg34W0k= Subject key identifier: E3:70:17:B9:DB:B5:3E:AF:08:15:B0:0E:00:37:A2:72:42:14:A2:9D Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 11F1E37C4BC304BE05DB78BEE3B1A77795D23A3D Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa Signing time: Sun 01 Mar 2026 14:00:00 +0000 ROA not before: Sun 01 Mar 2026 13:55:00 +0000 ROA not after: Sun 28 Feb 2027 14:00:00 +0000 asID: 149409 IP address blocks: 202.51.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 15:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f1:e3:7c:4b:c3:04:be:05:db:78:be:e3:b1:a7:77:95:d2:3a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Mar 1 13:55:00 2026 GMT Not After : Feb 28 14:00:00 2027 GMT Subject: CN=E37017B9DBB53EAF0815B00E0037A2724214A29D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:61:5b:09:c4:e1:0f:60:f5:38:5d:66:dd: d2:51:70:0f:e1:00:37:51:cd:55:e5:41:ba:3c:e3: 4d:67:b8:1a:1d:c4:c4:79:f6:6c:17:2a:6d:17:58: cb:8c:b2:9b:ca:43:47:0d:67:cf:b9:b9:77:a3:ae: 77:41:8d:1c:5a:a9:29:17:f5:0f:1b:ce:7e:c1:4f: 50:9d:f5:9f:c5:f1:00:d1:e6:79:e0:3b:f9:9d:ee: 26:40:83:c0:87:60:d7:4e:fa:c1:86:36:2a:d0:86: a7:4d:2a:27:27:74:3d:50:52:54:75:62:41:13:62: 22:18:be:13:5c:43:20:60:9b:64:a6:e9:19:3e:25: e7:7e:00:b2:c9:cc:99:1c:ed:02:52:d6:f0:19:1d: 1c:4a:3d:46:a8:bf:60:91:87:4e:2f:b6:ae:8b:39: fa:23:2b:c0:44:08:b8:53:61:6a:7e:b9:2c:23:c0: a8:0c:3d:3d:48:be:9b:55:c1:f6:a5:95:7e:dd:ec: 97:d3:5c:af:60:a2:cf:40:24:81:db:53:ad:20:9e: 90:43:4f:dd:a0:2f:72:10:79:46:2a:18:ec:8a:4b: 96:cc:01:98:77:14:ea:ce:21:be:1a:c5:20:fa:86: 45:df:9e:56:0b:7f:d8:60:a7:13:4e:bb:0a:ca:04: 21:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:70:17:B9:DB:B5:3E:AF:08:15:B0:0E:00:37:A2:72:42:14:A2:9D X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.20.0/24 Signature Algorithm: sha256WithRSAEncryption 85:80:b8:a8:aa:b2:b9:42:61:0b:9c:bd:31:3a:26:6a:2c:ea: 7d:32:4c:5f:bd:1c:96:6a:a9:8f:7b:87:5f:c4:4e:d2:44:c0: 55:6b:84:87:e2:db:94:91:3e:f8:52:da:55:07:32:0e:b2:5b: bf:ce:40:08:27:6a:d1:e6:18:db:ed:8d:60:6c:a4:c2:ce:aa: e9:0f:b9:16:52:0c:05:1f:73:72:ef:91:9c:c7:41:ac:d8:4c: 7b:c7:43:20:62:95:3c:a7:f3:0f:e7:39:6f:09:bf:54:80:28: 8a:ff:d8:35:01:6e:a5:76:0c:35:76:07:3b:6e:f8:1c:57:c8: 26:66:23:ea:60:4e:bf:af:92:ea:e8:94:2a:8f:c9:96:fd:4b: f4:e0:00:49:12:cb:4b:b8:09:ce:54:32:65:f1:47:4a:f0:3b: 55:47:c5:cc:cf:13:23:7e:29:4e:68:df:ff:e9:e9:d5:16:57: 3f:a8:43:84:2c:b4:77:24:84:d5:bc:61:4f:29:49:7b:58:62: 66:b5:57:1d:3d:fd:51:2e:bc:8b:e5:2e:9c:b5:07:4e:a3:c9: 71:54:46:a8:26:20:c0:4f:37:d3:e8:6d:87:82:db:9e:31:6d: 2f:92:57:45:4e:3c:25:a6:27:24:89:93:9f:f6:9e:cc:b7:0a: 79:48:68:cf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEfHjfEvDBL4F23i+47Gnd5XSOj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yNjAzMDExMzU1MDBaFw0yNzAyMjgxNDAwMDBaMDMxMTAvBgNV BAMTKEUzNzAxN0I5REJCNTNFQUYwODE1QjAwRTAwMzdBMjcyNDIxNEEyOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2WFbCcThD2D1OF1m3dJRcA/h ADdRzVXlQbo8401nuBodxMR59mwXKm0XWMuMspvKQ0cNZ8+5uXejrndBjRxaqSkX 9Q8bzn7BT1Cd9Z/F8QDR5nngO/md7iZAg8CHYNdO+sGGNirQhqdNKicndD1QUlR1 YkETYiIYvhNcQyBgm2Sm6Rk+Jed+ALLJzJkc7QJS1vAZHRxKPUaov2CRh04vtq6L OfojK8BECLhTYWp+uSwjwKgMPT1IvptVwfallX7d7JfTXK9gos9AJIHbU60gnpBD T92gL3IQeUYqGOyKS5bMAZh3FOrOIb4axSD6hkXfnlYLf9hgpxNOuwrKBCE3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU43AXudu1Pq8IFbAOADeickIUop0wHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozFDANBgkqhkiG 9w0BAQsFAAOCAQEAhYC4qKqyuUJhC5y9MTomaizqfTJMX70clmqpj3uHX8RO0kTA VWuEh+LblJE++FLaVQcyDrJbv85ACCdq0eYY2+2NYGykws6q6Q+5FlIMBR9zcu+R nMdBrNhMe8dDIGKVPKfzD+c5bwm/VIAoiv/YNQFupXYMNXYHO274HFfIJmYj6mBO v6+S6uiUKo/Jlv1L9OAASRLLS7gJzlQyZfFHSvA7VUfFzM8TI34pTmjf/+np1RZX P6hDhCy0dySE1bxhTylJe1hiZrVXHT39US68i+UunLUHTqPJcVRGqCYgwE830+ht h4LbnjFtL5JXRU48JaYnJImTn/aezLcKeUhozw== -----END CERTIFICATE-----Generated at Mon Mar 2 17:11:18 2026 by rpki-client