$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32332d3234203d3e20313337333633.roa File: 3230322e31302e35322e302f32332d3234203d3e20313337333633.roa (raw, json) Hash identifier: 4zz/94NJcIK0amLl8sTkt5ruAIcKrjJ6R1IUb4m0Uoc= Subject key identifier: DE:64:0C:86:C1:77:7A:C1:C9:81:DC:3D:0A:49:EF:2D:3E:18:00:54 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 3AA04DFAE0A62DF6205973B0DA9FCB6A5A48CD58 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32332d3234203d3e20313337333633.roa Signing time: Tue 10 Feb 2026 10:00:01 +0000 ROA not before: Tue 10 Feb 2026 09:55:01 +0000 ROA not after: Tue 09 Feb 2027 10:00:01 +0000 asID: 137363 IP address blocks: 202.10.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 17:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a0:4d:fa:e0:a6:2d:f6:20:59:73:b0:da:9f:cb:6a:5a:48:cd:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Feb 10 09:55:01 2026 GMT Not After : Feb 9 10:00:01 2027 GMT Subject: CN=DE640C86C1777AC1C981DC3D0A49EF2D3E180054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:44:cc:00:ff:e6:a6:72:19:f0:89:f2:89:b1: 21:9b:10:ee:24:63:95:49:6b:b2:07:af:9a:38:f3: c7:9d:72:f6:2e:63:b1:69:6a:1d:5e:9b:ba:9f:a9: e9:e9:b1:cc:c3:38:44:90:34:0b:10:c9:b6:5b:3c: 92:fa:a0:cb:65:e8:5a:e6:de:4d:a4:fb:ec:d1:a2: 23:93:2e:b9:8b:e2:f7:62:ea:ce:66:81:e9:7b:01: 6b:6e:6b:10:31:02:88:f0:23:8b:69:25:60:f9:f8: b1:03:75:a2:c9:fd:4c:aa:d9:d0:13:7d:0d:a4:7c: 10:27:aa:35:70:e8:a4:9c:11:f5:f4:b4:0b:e7:ee: 40:59:54:29:52:6c:47:1f:2b:1f:1f:a4:2f:0d:ee: 7d:ee:0d:a1:0a:54:bc:3d:fc:ac:dc:1c:b2:e6:12: 03:78:20:c4:4d:98:d6:57:b4:bf:c9:c9:96:82:23: ec:27:7c:7a:46:36:8b:fb:84:0d:0f:38:94:b2:a7: 60:8c:4d:0c:58:e3:2b:4f:d7:f4:f7:8a:2c:2d:37: 57:c2:54:b7:72:ce:bd:6f:59:e1:26:71:f4:af:ef: 8a:33:99:80:0f:70:0d:cd:b0:9d:6f:0c:86:8e:29: 27:f7:ac:22:c0:44:90:83:16:c9:c9:19:68:05:ad: 40:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:64:0C:86:C1:77:7A:C1:C9:81:DC:3D:0A:49:EF:2D:3E:18:00:54 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32332d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.52.0/23 Signature Algorithm: sha256WithRSAEncryption b8:10:ae:81:d7:4d:a6:af:40:0b:b9:4a:2d:2a:00:8d:dd:99: c4:75:17:25:ed:35:c4:3e:ce:4e:ca:23:b7:c3:41:be:a1:e0: 2d:24:19:ac:8b:0b:f7:44:2c:a3:67:ad:08:1b:5c:c5:35:cb: a8:e4:0e:67:f4:da:d6:3d:ea:59:2d:22:37:d5:86:79:e5:c1: 96:75:1c:0a:f5:81:8f:c7:a8:04:f3:5a:66:89:6f:25:75:77: 9e:5f:75:03:ad:07:70:0e:a0:d6:0a:e6:32:65:76:02:80:ae: 6c:34:08:ce:e3:1e:8e:2c:d7:0e:9b:ce:bb:c6:60:39:0b:18: 84:aa:9a:17:42:5e:7a:c6:a8:09:c0:bc:e7:8c:3d:03:2e:26: 1c:d7:d1:2e:16:fc:04:53:97:a3:d7:95:55:9d:10:19:b1:a7: 74:60:84:83:2c:cb:91:ea:b7:b6:b7:87:ae:d4:a3:5c:7e:50: cb:d1:92:dd:a2:44:dc:c9:c2:4c:cb:f8:f0:63:3f:37:5d:96: 72:ea:58:88:3f:9a:a0:22:e7:22:ee:72:06:49:33:e0:da:22: 71:d1:fe:ed:fd:ac:37:a6:c6:05:cb:1d:34:7c:9d:04:d4:dc: 92:0a:ee:cd:26:60:76:63:26:08:3b:46:92:e1:75:4e:03:2a: 1e:d9:96:2c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOqBN+uCmLfYgWXOw2p/LalpIzVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNjAyMTAwOTU1MDFaFw0yNzAyMDkxMDAwMDFaMDMxMTAvBgNV BAMTKERFNjQwQzg2QzE3NzdBQzFDOTgxREMzRDBBNDlFRjJEM0UxODAwNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+RMwA/+amchnwifKJsSGbEO4k Y5VJa7IHr5o488edcvYuY7Fpah1em7qfqenpsczDOESQNAsQybZbPJL6oMtl6Frm 3k2k++zRoiOTLrmL4vdi6s5mgel7AWtuaxAxAojwI4tpJWD5+LEDdaLJ/Uyq2dAT fQ2kfBAnqjVw6KScEfX0tAvn7kBZVClSbEcfKx8fpC8N7n3uDaEKVLw9/KzcHLLm EgN4IMRNmNZXtL/JyZaCI+wnfHpGNov7hA0POJSyp2CMTQxY4ytP1/T3iiwtN1fC VLdyzr1vWeEmcfSv74ozmYAPcA3NsJ1vDIaOKSf3rCLARJCDFsnJGWgFrUBnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3mQMhsF3esHJgdw9CknvLT4YAFQwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcoKNDANBgkqhkiG 9w0BAQsFAAOCAQEAuBCugddNpq9AC7lKLSoAjd2ZxHUXJe01xD7OTsojt8NBvqHg LSQZrIsL90Qso2etCBtcxTXLqOQOZ/Ta1j3qWS0iN9WGeeXBlnUcCvWBj8eoBPNa ZolvJXV3nl91A60HcA6g1grmMmV2AoCubDQIzuMejizXDpvOu8ZgOQsYhKqaF0Je esaoCcC854w9Ay4mHNfRLhb8BFOXo9eVVZ0QGbGndGCEgyzLkeq3treHrtSjXH5Q y9GS3aJE3MnCTMv48GM/N12WcupYiD+aoCLnIu5yBkkz4NoicdH+7f2sN6bGBcsd NHydBNTckgruzSZgdmMmCDtGkuF1TgMqHtmWLA== -----END CERTIFICATE-----Generated at Mon Mar 2 16:13:15 2026 by rpki-client