$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 1Hll4e72ZhZJzdH20hI+jHdko+uHd8811dKprlG41Yo= Subject key identifier: 2D:33:3F:12:BA:EE:1B:85:A9:CF:AC:97:3F:C9:D9:B3:DC:DD:11:6B Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0A82A4A17FCF671AC39360BA31750A9EDA784447 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa Signing time: Sat 04 Apr 2026 09:00:01 +0000 ROA not before: Sat 04 Apr 2026 08:55:01 +0000 ROA not after: Sat 03 Apr 2027 09:00:01 +0000 asID: 24525 IP address blocks: 203.153.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 11:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:82:a4:a1:7f:cf:67:1a:c3:93:60:ba:31:75:0a:9e:da:78:44:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 4 08:55:01 2026 GMT Not After : Apr 3 09:00:01 2027 GMT Subject: CN=2D333F12BAEE1B85A9CFAC973FC9D9B3DCDD116B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c0:a0:bb:7f:49:0a:db:b0:b2:5d:90:23:a6: 9b:6f:70:fa:f7:9f:07:a7:71:f7:4d:64:a1:3e:2b: e2:ea:87:6d:4e:95:3a:3c:74:d6:af:bf:df:f3:22: 1e:a6:37:f6:59:8e:2c:5e:b5:ac:18:b7:1c:3d:4c: 05:6a:27:5f:83:f1:ff:20:94:36:97:0c:d3:f1:b4: 23:b4:fd:4f:0d:b8:ff:1d:59:6e:ee:9d:a2:50:8f: 28:aa:b2:fd:f3:1b:28:3a:26:35:68:94:fb:57:33: 08:69:e1:6a:72:0b:05:8c:f4:84:90:98:9d:cd:e7: 05:6a:2d:d8:88:d5:a9:b3:a8:fc:66:fb:0c:22:02: 7a:fd:9b:49:b4:fc:fc:84:2d:de:8e:22:78:bc:59: 8d:cf:27:80:c7:df:6a:e4:97:56:9a:c8:fd:eb:94: 5c:a6:65:f4:47:0a:e1:66:52:f1:be:fe:56:e6:02: f6:99:30:f9:85:ac:9c:f4:5f:9c:48:e1:1b:f4:f7: 5d:b5:96:5f:76:c4:e8:9e:22:ff:a5:f4:c7:32:1c: f8:5a:ed:f2:91:40:93:11:38:fe:82:b3:df:7b:b0: 99:3f:3a:44:49:3c:e8:e8:c8:c7:29:5b:46:0d:d0: 30:3d:ee:e0:95:11:5c:1e:06:72:6b:bb:7f:b4:4d: 55:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:33:3F:12:BA:EE:1B:85:A9:CF:AC:97:3F:C9:D9:B3:DC:DD:11:6B X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.25.0/24 Signature Algorithm: sha256WithRSAEncryption 32:f3:84:d6:82:69:0c:b5:66:dd:29:22:fb:26:34:58:ad:00: 06:87:24:c8:2c:ab:ad:b9:83:ea:f0:61:f1:c7:c2:a7:51:99: ce:82:97:d9:bc:63:29:13:fc:1b:7c:e6:e2:cf:b1:e4:5e:32: 22:47:8b:e8:88:b6:e7:21:2b:c8:af:99:a4:ce:69:68:3d:ac: b3:3f:52:9a:34:d1:38:f7:5b:24:8a:34:45:11:a2:bb:4c:ab: b6:fa:00:35:b4:a2:fa:fb:ee:8a:5c:14:2e:fa:0a:cf:ca:7d: 2e:68:30:6e:c3:bc:d4:8b:f0:6c:3c:ee:1e:64:a9:70:8b:e4: c5:e7:f1:b2:72:fa:a0:21:9b:d9:dd:5b:33:17:93:f3:40:a3: a6:03:c5:44:ea:f7:64:27:dc:0d:80:c5:64:89:e4:35:15:a0: bb:41:87:a8:da:cc:53:bd:f6:93:ef:fa:c8:55:92:34:d8:df: ff:0f:d1:b2:9c:40:4e:a7:57:5e:c6:42:44:cb:bb:12:71:68: c5:5d:27:b6:66:69:62:0c:05:6f:5f:a9:97:49:1f:63:d7:12: 38:cb:a0:36:2b:f4:ab:a3:63:05:d2:a6:9a:f1:0c:1c:d6:b0: 59:75:25:4d:67:bf:8c:c0:f7:57:bf:88:49:6d:f1:58:d4:c7: bc:98:68:3e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCoKkoX/PZxrDk2C6MXUKntp4REcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjA0MDQwODU1MDFaFw0yNzA0MDMwOTAwMDFaMDMxMTAvBgNV BAMTKDJEMzMzRjEyQkFFRTFCODVBOUNGQUM5NzNGQzlEOUIzRENERDExNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdwKC7f0kK27CyXZAjpptvcPr3 nwencfdNZKE+K+Lqh21OlTo8dNavv9/zIh6mN/ZZjixetawYtxw9TAVqJ1+D8f8g lDaXDNPxtCO0/U8NuP8dWW7unaJQjyiqsv3zGyg6JjVolPtXMwhp4WpyCwWM9ISQ mJ3N5wVqLdiI1amzqPxm+wwiAnr9m0m0/PyELd6OIni8WY3PJ4DH32rkl1aayP3r lFymZfRHCuFmUvG+/lbmAvaZMPmFrJz0X5xI4Rv09121ll92xOieIv+l9McyHPha 7fKRQJMROP6Cs997sJk/OkRJPOjoyMcpW0YN0DA97uCVEVweBnJru3+0TVWjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULTM/ErruG4Wpz6yXP8nZs9zdEWswHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZGTANBgkqhkiG 9w0BAQsFAAOCAQEAMvOE1oJpDLVm3Ski+yY0WK0ABockyCyrrbmD6vBh8cfCp1GZ zoKX2bxjKRP8G3zm4s+x5F4yIkeL6Ii25yEryK+ZpM5paD2ssz9SmjTROPdbJIo0 RRGiu0yrtvoANbSi+vvuilwULvoKz8p9LmgwbsO81IvwbDzuHmSpcIvkxefxsnL6 oCGb2d1bMxeT80CjpgPFROr3ZCfcDYDFZInkNRWgu0GHqNrMU732k+/6yFWSNNjf /w/RspxATqdXXsZCRMu7EnFoxV0ntmZpYgwFb1+pl0kfY9cSOMugNiv0q6NjBdKm mvEMHNawWXUlTWe/jMD3V7+ISW3xWNTHvJhoPg== -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:03 2026 by rpki-client