$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa File: 3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa (raw, json) Hash identifier: /bnLnIy8GDXjm2zx4Zt9UsnQQ9nSjmepO48VkqeHQX8= Subject key identifier: 15:B6:A2:44:E0:C3:42:BC:FC:E6:86:79:90:B9:B2:D2:0B:4C:F4:09 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 6387F984B7FF1DFE2BB74D4B36EB718BF46E09E2 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa Signing time: Fri 20 Feb 2026 10:00:01 +0000 ROA not before: Fri 20 Feb 2026 09:55:01 +0000 ROA not after: Fri 19 Feb 2027 10:00:01 +0000 asID: 18059 IP address blocks: 203.134.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 14:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:87:f9:84:b7:ff:1d:fe:2b:b7:4d:4b:36:eb:71:8b:f4:6e:09:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Feb 20 09:55:01 2026 GMT Not After : Feb 19 10:00:01 2027 GMT Subject: CN=15B6A244E0C342BCFCE6867990B9B2D20B4CF409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e2:ae:a9:25:0d:49:14:b4:25:20:59:e4:ca: ef:1b:08:0e:a9:fd:49:3e:62:5b:45:98:af:c1:3b: 80:cb:11:c6:aa:2d:a2:93:f6:22:e3:2b:ca:75:14: d3:77:f5:7b:83:6b:71:0a:35:d4:0e:af:58:6a:93: aa:9c:91:ed:14:bf:2f:5c:88:34:93:26:ea:1b:35: df:a3:be:36:65:5e:48:05:65:00:ed:78:39:4c:02: 39:b0:50:83:6a:6f:42:d5:71:62:46:81:53:5d:6e: 5f:c4:29:4e:72:0d:1b:fb:40:35:5f:e1:9e:9f:98: 3e:d3:08:a0:55:0d:e5:42:d2:52:0f:c9:1b:37:e4: 4f:96:ae:18:81:2b:42:e3:13:9a:af:d8:7f:3a:d9: 60:dd:1a:c6:83:0d:21:7a:c6:c3:33:57:8d:fe:d5: 91:fa:f7:97:24:64:85:dc:18:79:5a:25:f5:8b:89: dd:64:77:f9:92:82:8f:e4:97:e1:d9:ff:cb:1b:f0: ed:ff:28:86:46:3a:91:72:12:e6:35:6b:9a:12:0d: f7:d3:52:29:b3:10:48:2f:d3:c5:9a:ab:2f:00:46: ae:22:0f:4d:c7:b4:cb:21:9f:94:18:42:1c:bd:d9: 4f:53:95:bb:7b:a3:27:0e:6a:5d:2e:52:bc:a8:42: 5c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B6:A2:44:E0:C3:42:BC:FC:E6:86:79:90:B9:B2:D2:0B:4C:F4:09 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233322e302f32312d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.232.0/21 Signature Algorithm: sha256WithRSAEncryption 21:89:68:3d:54:e8:d7:8b:1d:0e:05:dd:f8:28:46:fd:d6:1b: 1c:0a:56:4c:8f:87:f1:7e:a7:3a:44:d8:2a:97:2a:38:34:0a: f2:16:cd:e5:b5:da:67:28:8b:e6:30:2c:70:57:33:f6:20:8b: 69:e7:9b:b7:fc:11:0e:5b:cf:6c:0e:f7:17:a9:ad:39:71:4d: 47:3c:45:a7:8c:00:4f:f8:39:bc:af:31:97:a8:7c:ce:3d:a2: 33:b7:a9:6e:7a:4d:2e:80:af:fd:24:e5:be:aa:e7:64:e6:88: b5:4f:cf:27:06:34:f7:71:31:21:79:b5:fb:b1:9d:ef:3a:01: fc:7d:ad:74:d3:5b:bf:28:f5:8c:6e:18:3c:92:d0:9b:4f:ad: 05:a1:c6:1c:d0:f7:f5:6c:06:55:72:b0:ab:ae:8b:da:bb:c5: 0d:d1:6d:e6:c6:35:72:10:26:ea:0a:95:63:2e:1e:c4:fd:f1: e5:56:94:e2:df:19:95:86:8c:8a:e0:af:89:17:3f:6c:a3:15: 8f:de:9c:e7:0e:bc:36:6e:44:c4:fc:32:c3:5d:08:44:a9:0f: 67:6e:e0:1e:4b:44:46:cf:1e:ff:9c:67:0a:b1:84:c4:ef:1a: dc:c9:38:cc:f4:05:dd:67:2b:05:43:95:4f:83:35:3c:b0:08: e2:16:1b:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY4f5hLf/Hf4rt01LNutxi/RuCeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNjAyMjAwOTU1MDFaFw0yNzAyMTkxMDAwMDFaMDMxMTAvBgNV BAMTKDE1QjZBMjQ0RTBDMzQyQkNGQ0U2ODY3OTkwQjlCMkQyMEI0Q0Y0MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC24q6pJQ1JFLQlIFnkyu8bCA6p /Uk+YltFmK/BO4DLEcaqLaKT9iLjK8p1FNN39XuDa3EKNdQOr1hqk6qcke0Uvy9c iDSTJuobNd+jvjZlXkgFZQDteDlMAjmwUINqb0LVcWJGgVNdbl/EKU5yDRv7QDVf 4Z6fmD7TCKBVDeVC0lIPyRs35E+WrhiBK0LjE5qv2H862WDdGsaDDSF6xsMzV43+ 1ZH695ckZIXcGHlaJfWLid1kd/mSgo/kl+HZ/8sb8O3/KIZGOpFyEuY1a5oSDffT UimzEEgv08Waqy8ARq4iD03HtMshn5QYQhy92U9Tlbt7oycOal0uUryoQlwVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFbaiRODDQrz85oZ5kLmy0gtM9AkwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy4boMA0GCSqG SIb3DQEBCwUAA4IBAQAhiWg9VOjXix0OBd34KEb91hscClZMj4fxfqc6RNgqlyo4 NAryFs3ltdpnKIvmMCxwVzP2IItp55u3/BEOW89sDvcXqa05cU1HPEWnjABP+Dm8 rzGXqHzOPaIzt6luek0ugK/9JOW+qudk5oi1T88nBjT3cTEhebX7sZ3vOgH8fa10 01u/KPWMbhg8ktCbT60FocYc0Pf1bAZVcrCrrovau8UN0W3mxjVyECbqCpVjLh7E /fHlVpTi3xmVhoyK4K+JFz9soxWP3pznDrw2bkTE/DLDXQhEqQ9nbuAeS0RGzx7/ nGcKsYTE7xrcyTjM9AXdZysFQ5VPgzU8sAjiFhsN -----END CERTIFICATE-----Generated at Mon Mar 2 10:21:52 2026 by rpki-client