$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32362e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32362e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: iT2RlmApahj1mhthFL/NVAxttDP/y/rGDJLtX/LgoqU= Subject key identifier: 97:DC:56:7A:4F:7B:69:13:A2:AB:7A:BA:92:93:F2:6F:C7:90:65:9D Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2163746EB08089E05780B1EBC8D818401F4AD5F3 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32362e302f32342d3234203d3e203234353235.roa Signing time: Sat 04 Apr 2026 10:00:03 +0000 ROA not before: Sat 04 Apr 2026 09:55:03 +0000 ROA not after: Sat 03 Apr 2027 10:00:03 +0000 asID: 24525 IP address blocks: 203.153.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 11:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:63:74:6e:b0:80:89:e0:57:80:b1:eb:c8:d8:18:40:1f:4a:d5:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 4 09:55:03 2026 GMT Not After : Apr 3 10:00:03 2027 GMT Subject: CN=97DC567A4F7B6913A2AB7ABA9293F26FC790659D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c7:2a:4e:72:2f:b5:5c:17:6a:9f:b0:3e:0d: d8:5d:2e:55:56:e1:a9:35:15:c6:4d:08:74:5d:40: 00:ed:e7:fe:d7:9f:00:58:e6:e0:e7:bb:52:f2:d8: 19:77:a9:02:2f:94:0a:d4:65:d2:87:a1:05:8e:cc: e2:75:9b:a2:5f:8e:7c:07:12:c1:40:46:5e:31:0f: f4:95:85:3a:e9:97:4a:f9:a9:29:ae:40:50:11:db: b1:8f:5f:5c:08:a9:e4:d3:86:95:21:81:e1:10:7d: 52:bb:c4:4e:fa:ba:d9:f2:27:aa:e0:98:04:64:93: 17:79:d8:ec:3c:6f:be:81:ae:02:0c:fa:df:91:3e: cd:cc:2a:dc:b5:70:14:38:00:31:76:e0:94:fb:1d: 66:c3:48:b6:01:88:f1:20:23:6f:d5:b6:75:dd:6d: 73:6d:27:9b:06:7a:37:eb:bb:23:49:75:c5:ed:2d: dc:7c:2f:63:7d:ca:36:67:d5:83:15:e8:81:1c:29: 1c:d8:d3:82:b1:0b:c3:17:9f:a7:61:ea:d9:40:b7: 0b:cb:2f:f0:ba:91:17:3c:5d:cf:7b:91:32:5d:9c: bd:f2:c5:96:fd:e0:7c:79:1a:6c:0e:00:dc:6a:07: 6d:56:92:c3:f6:ca:91:fe:fd:5f:83:03:db:96:6d: 63:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:DC:56:7A:4F:7B:69:13:A2:AB:7A:BA:92:93:F2:6F:C7:90:65:9D X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32362e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.26.0/24 Signature Algorithm: sha256WithRSAEncryption 35:27:30:f9:9a:c1:04:8d:68:97:55:59:30:ee:f8:96:33:58: 27:b2:b1:e6:f2:b5:ca:43:3c:db:3f:1f:18:20:0a:bf:76:88: 3f:e8:be:67:19:6c:f2:d8:5e:e9:f6:2a:b7:de:53:1f:6e:bf: 4c:3d:45:46:a9:a2:29:6b:54:b4:1c:1a:14:bf:76:7f:8d:c6: 73:a4:20:79:66:16:8d:6d:44:7b:21:16:3e:49:9e:c1:53:53: 44:a8:0f:70:74:4d:4a:2a:85:f2:41:81:be:1e:e3:5b:ec:05: ff:60:29:2b:15:13:b1:c8:54:3b:79:fb:4c:41:46:a4:2c:30: 7d:4a:ac:4e:66:3d:7e:a7:ad:18:8c:b4:e0:26:16:b2:d8:0c: 26:ea:77:62:cb:9a:7f:17:9d:9a:2a:f2:b2:5b:22:05:7a:c8: 8c:5a:73:25:75:f6:d7:57:89:46:12:c0:5a:6b:72:8e:e9:f5: e4:0e:9d:2f:9e:6f:cd:91:d9:8d:ee:eb:a2:28:d1:17:e9:d8: 60:72:ed:59:fa:1c:96:48:aa:11:05:52:b9:83:ac:36:b9:1b: 17:db:97:c2:2c:b2:92:2b:e9:a6:f2:35:0f:35:39:4d:47:4a: 50:f0:8b:21:d4:bd:55:45:ca:1a:1a:02:be:ad:83:3f:76:ac: 43:df:25:9f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIWN0brCAieBXgLHryNgYQB9K1fMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjA0MDQwOTU1MDNaFw0yNzA0MDMxMDAwMDNaMDMxMTAvBgNV BAMTKDk3REM1NjdBNEY3QjY5MTNBMkFCN0FCQTkyOTNGMjZGQzc5MDY1OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxypOci+1XBdqn7A+DdhdLlVW 4ak1FcZNCHRdQADt5/7XnwBY5uDnu1Ly2Bl3qQIvlArUZdKHoQWOzOJ1m6JfjnwH EsFARl4xD/SVhTrpl0r5qSmuQFAR27GPX1wIqeTThpUhgeEQfVK7xE76utnyJ6rg mARkkxd52Ow8b76BrgIM+t+RPs3MKty1cBQ4ADF24JT7HWbDSLYBiPEgI2/VtnXd bXNtJ5sGejfruyNJdcXtLdx8L2N9yjZn1YMV6IEcKRzY04KxC8MXn6dh6tlAtwvL L/C6kRc8Xc97kTJdnL3yxZb94Hx5GmwOANxqB21WksP2ypH+/V+DA9uWbWOTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl9xWek97aROiq3q6kpPyb8eQZZ0wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZGjANBgkqhkiG 9w0BAQsFAAOCAQEANScw+ZrBBI1ol1VZMO74ljNYJ7Kx5vK1ykM82z8fGCAKv3aI P+i+Zxls8the6fYqt95TH26/TD1FRqmiKWtUtBwaFL92f43Gc6QgeWYWjW1EeyEW PkmewVNTRKgPcHRNSiqF8kGBvh7jW+wF/2ApKxUTschUO3n7TEFGpCwwfUqsTmY9 fqetGIy04CYWstgMJup3YsuafxedmiryslsiBXrIjFpzJXX211eJRhLAWmtyjun1 5A6dL55vzZHZje7roijRF+nYYHLtWfoclkiqEQVSuYOsNrkbF9uXwiyykivppvI1 DzU5TUdKUPCLIdS9VUXKGhoCvq2DP3asQ98lnw== -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:06 2026 by rpki-client