$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35332e302f32342d3234203d3e20313430343639.roa File: 3230322e31302e35332e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: kXAiOvUo3OyiwbR2+MvIgnc1lOkOyz9IK5Czek+Y6x0= Subject key identifier: 68:7B:DC:CA:32:F5:ED:72:EA:03:EB:DB:1F:D5:B7:75:EE:70:FD:B8 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 0FDB31369281254F5D3A626EAD7D2A5527A3C012 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35332e302f32342d3234203d3e20313430343639.roa Signing time: Mon 30 Mar 2026 08:02:42 +0000 ROA not before: Mon 30 Mar 2026 07:57:42 +0000 ROA not after: Mon 29 Mar 2027 08:02:42 +0000 asID: 140469 IP address blocks: 202.10.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 10:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:db:31:36:92:81:25:4f:5d:3a:62:6e:ad:7d:2a:55:27:a3:c0:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Mar 30 07:57:42 2026 GMT Not After : Mar 29 08:02:42 2027 GMT Subject: CN=687BDCCA32F5ED72EA03EBDB1FD5B775EE70FDB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:26:39:a8:c8:5a:aa:6c:ce:b8:a5:70:f6:1c: c7:3b:51:0a:be:4f:6a:6b:17:fb:12:a0:33:45:e7: 6d:98:ae:d5:fb:b3:c0:ec:53:68:fa:7b:b2:b2:9c: f1:c8:55:24:fc:08:c4:31:05:53:22:09:74:8c:df: 19:44:f7:c3:9d:8e:56:90:af:35:6a:97:f1:85:63: ac:71:ef:96:cc:59:76:e3:df:5c:15:21:6e:b7:5b: 1c:42:f9:d7:96:36:ca:19:b3:72:e2:54:4f:0d:7d: 44:c3:22:b6:8f:34:f3:82:79:cb:56:f5:40:28:c2: fe:a4:0d:ca:30:23:54:d4:ee:1d:59:cf:e6:f6:9b: e7:d0:30:ff:3c:87:cc:ab:6d:3c:71:76:33:2f:fe: c3:70:2f:95:ea:c6:10:62:6a:bf:a5:15:7d:aa:43: de:c0:42:30:fb:f5:66:5f:d3:5d:2d:17:f1:d9:e0: 56:6f:ed:fb:e4:6e:41:4f:6c:30:63:83:ff:93:ef: 57:16:a4:34:16:88:a7:00:6c:e3:5b:15:64:3c:1d: 47:a3:0c:3a:7a:50:00:ba:f9:b6:93:7e:2f:67:14: e2:d0:d6:60:ca:66:b0:40:63:26:b0:fd:6e:31:24: 7a:31:de:1a:f3:a6:87:eb:86:f6:09:36:6a:e6:02: 41:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7B:DC:CA:32:F5:ED:72:EA:03:EB:DB:1F:D5:B7:75:EE:70:FD:B8 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35332e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.53.0/24 Signature Algorithm: sha256WithRSAEncryption 47:40:e8:6d:3d:41:66:50:6c:32:72:9d:83:8e:43:0b:a0:65: 04:3c:84:a1:66:4d:81:74:0c:97:3e:34:b7:a8:79:41:b4:d5: 69:4a:14:19:b7:b2:a6:cb:5a:6b:28:1b:a4:b1:6a:23:7b:c1: 4f:1d:a6:c4:2c:39:c4:23:13:b2:4f:06:d1:ea:65:33:5e:6f: fa:67:8e:cb:ef:e5:ae:e1:d9:94:2f:c9:3a:cd:ee:4e:f5:f5: 9b:d6:90:60:bd:fb:90:8e:6e:15:6f:57:ff:10:0a:d2:a0:39: c1:a3:cd:f7:9e:37:b7:9f:e1:10:c8:d1:85:71:8f:7e:74:15: 94:07:f8:d2:a8:77:f1:3e:7e:3a:61:87:1c:57:42:40:b9:53: c3:5b:7e:a3:f7:36:65:9a:4b:91:33:4b:64:04:80:48:2a:12: ef:3a:d3:9b:ba:a1:b7:45:bf:5b:b5:f6:6f:96:a5:9f:7a:dc: 0c:81:76:3e:c1:8b:95:a7:48:ed:80:59:4e:76:2b:5d:04:9c: 4b:c5:94:1f:2d:c9:a3:e9:1f:c0:f5:94:04:b2:85:00:2f:33: ec:e4:da:16:45:f5:4b:0c:d8:9e:dc:52:e2:5c:97:95:a7:02: 13:71:05:d3:a7:17:7d:f8:a1:75:64:17:a9:4b:50:aa:1b:b4: a5:eb:03:3a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD9sxNpKBJU9dOmJurX0qVSejwBIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNjAzMzAwNzU3NDJaFw0yNzAzMjkwODAyNDJaMDMxMTAvBgNV BAMTKDY4N0JEQ0NBMzJGNUVENzJFQTAzRUJEQjFGRDVCNzc1RUU3MEZEQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0JjmoyFqqbM64pXD2HMc7UQq+ T2prF/sSoDNF522YrtX7s8DsU2j6e7KynPHIVST8CMQxBVMiCXSM3xlE98OdjlaQ rzVql/GFY6xx75bMWXbj31wVIW63WxxC+deWNsoZs3LiVE8NfUTDIraPNPOCectW 9UAowv6kDcowI1TU7h1Zz+b2m+fQMP88h8yrbTxxdjMv/sNwL5XqxhBiar+lFX2q Q97AQjD79WZf010tF/HZ4FZv7fvkbkFPbDBjg/+T71cWpDQWiKcAbONbFWQ8HUej DDp6UAC6+baTfi9nFOLQ1mDKZrBAYyaw/W4xJHox3hrzpofrhvYJNmrmAkF5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaHvcyjL17XLqA+vbH9W3de5w/bgwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKNTANBgkqhkiG 9w0BAQsFAAOCAQEAR0DobT1BZlBsMnKdg45DC6BlBDyEoWZNgXQMlz40t6h5QbTV aUoUGbeypstaaygbpLFqI3vBTx2mxCw5xCMTsk8G0eplM15v+meOy+/lruHZlC/J Os3uTvX1m9aQYL37kI5uFW9X/xAK0qA5waPN9543t5/hEMjRhXGPfnQVlAf40qh3 8T5+OmGHHFdCQLlTw1t+o/c2ZZpLkTNLZASASCoS7zrTm7qht0W/W7X2b5aln3rc DIF2PsGLladI7YBZTnYrXQScS8WUHy3Jo+kfwPWUBLKFAC8z7OTaFkX1SwzYntxS 4lyXlacCE3EF06cXffihdWQXqUtQqhu0pesDOg== -----END CERTIFICATE-----Generated at Sat Apr 18 04:44:17 2026 by rpki-client