$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32372e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: YLiy+0veAHjtJt/xGybGDFX2bsxaWN8s0uQ5xdmnSws= Subject key identifier: 77:E9:00:F2:60:FB:58:6A:96:73:CE:05:CD:E2:D2:13:CF:C0:99:1A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2F540BF79C3DD67695C9F45C8A985FBDD19B9DF4 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32372e302f32342d3234203d3e203234353235.roa Signing time: Sat 04 Apr 2026 10:00:02 +0000 ROA not before: Sat 04 Apr 2026 09:55:02 +0000 ROA not after: Sat 03 Apr 2027 10:00:02 +0000 asID: 24525 IP address blocks: 203.153.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 11:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:54:0b:f7:9c:3d:d6:76:95:c9:f4:5c:8a:98:5f:bd:d1:9b:9d:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 4 09:55:02 2026 GMT Not After : Apr 3 10:00:02 2027 GMT Subject: CN=77E900F260FB586A9673CE05CDE2D213CFC0991A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:97:83:68:e1:c6:ad:81:8d:9e:da:2d:f8: 0b:70:45:a1:6f:75:6e:9c:30:9d:78:ed:24:9d:d8: cf:e6:b6:8e:0e:67:ff:f4:12:e2:41:8e:f3:fa:f6: 21:85:63:ff:d6:2d:9d:83:ad:7d:db:66:6b:3e:b1: cb:a1:07:c0:cd:14:3b:bb:00:93:99:45:40:a0:63: a7:47:9f:d8:23:a5:37:bf:cb:e4:00:a4:db:b0:2b: 0f:67:bb:ac:e9:4c:d8:58:44:30:a2:56:3f:99:b5: 33:72:b6:36:bb:9d:9c:cc:d2:42:19:3a:bb:98:2e: c0:fb:d2:94:46:0b:c2:28:73:59:ab:5d:86:64:80: ff:61:cb:3a:57:8e:3a:e1:77:0b:f2:fe:e5:38:94: a1:5c:65:be:e8:bd:51:25:a2:d6:d2:92:0d:9f:4a: 87:5d:d1:93:c0:70:31:6c:eb:3e:df:af:c7:5e:1b: 90:2b:94:12:9f:6e:9a:02:89:69:bf:52:1f:1f:ba: 7e:36:7f:b2:66:9f:ac:7a:43:c3:d4:2a:c7:cf:73: 84:a6:20:01:14:8a:1a:3b:0e:ed:8f:7b:98:52:96: 2b:b1:72:f6:93:34:43:48:4a:cf:23:c8:43:0f:b4: ac:4e:17:82:cc:80:13:e7:c9:94:d3:02:b8:e7:6b: 78:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E9:00:F2:60:FB:58:6A:96:73:CE:05:CD:E2:D2:13:CF:C0:99:1A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.27.0/24 Signature Algorithm: sha256WithRSAEncryption 78:d2:29:78:1f:3a:ac:3e:84:90:b3:cb:f9:f6:aa:ed:09:a5: fe:8a:d2:34:94:47:63:0e:6a:6d:b0:6f:56:ad:24:c1:2d:74: 06:f0:22:27:51:49:1b:e8:c2:88:55:b9:27:6f:b9:6c:dc:a0: cf:7e:b6:c6:bd:70:c1:f9:32:ab:a9:29:80:95:67:02:b1:7f: d1:db:34:a3:03:73:26:be:42:b1:8e:23:84:67:82:d6:86:ee: ed:05:fe:2f:07:86:d9:b7:8f:f9:dd:50:a4:26:d3:ff:c7:a3: 7f:6c:8d:eb:6a:c0:e1:54:a1:0a:7a:4f:1f:07:e7:63:cf:d0: 12:11:3f:c0:16:70:68:00:9c:39:1c:97:d9:1c:04:2b:9c:43: ce:d8:0d:2e:01:90:77:f0:ce:cf:54:29:a1:53:21:5e:97:49: bd:05:e3:83:bc:c6:7c:60:8e:f0:1f:fb:e6:cc:00:8c:2e:43: d5:80:1a:74:2f:70:2a:48:57:b6:e3:84:98:9d:92:ec:9b:4c: a5:cf:19:ae:44:5d:84:ce:6e:09:fd:cd:8e:21:17:34:e5:ea: 87:8f:cc:1f:b2:a6:92:f7:f4:61:5c:a5:fa:04:0f:53:17:67: 9b:e9:0d:81:ef:3e:22:5b:20:e0:5b:c1:15:e1:32:42:e7:37: 9f:e4:1e:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL1QL95w91naVyfRciphfvdGbnfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjA0MDQwOTU1MDJaFw0yNzA0MDMxMDAwMDJaMDMxMTAvBgNV BAMTKDc3RTkwMEYyNjBGQjU4NkE5NjczQ0UwNUNERTJEMjEzQ0ZDMDk5MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwb5eDaOHGrYGNntot+AtwRaFv dW6cMJ147SSd2M/mto4OZ//0EuJBjvP69iGFY//WLZ2DrX3bZms+scuhB8DNFDu7 AJOZRUCgY6dHn9gjpTe/y+QApNuwKw9nu6zpTNhYRDCiVj+ZtTNytja7nZzM0kIZ OruYLsD70pRGC8Ioc1mrXYZkgP9hyzpXjjrhdwvy/uU4lKFcZb7ovVElotbSkg2f Sodd0ZPAcDFs6z7fr8deG5ArlBKfbpoCiWm/Uh8fun42f7Jmn6x6Q8PUKsfPc4Sm IAEUiho7Du2Pe5hSliuxcvaTNENISs8jyEMPtKxOF4LMgBPnyZTTArjna3gTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd+kA8mD7WGqWc84FzeLSE8/AmRowHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZGzANBgkqhkiG 9w0BAQsFAAOCAQEAeNIpeB86rD6EkLPL+faq7Qml/orSNJRHYw5qbbBvVq0kwS10 BvAiJ1FJG+jCiFW5J2+5bNygz362xr1wwfkyq6kpgJVnArF/0ds0owNzJr5CsY4j hGeC1obu7QX+LweG2beP+d1QpCbT/8ejf2yN62rA4VShCnpPHwfnY8/QEhE/wBZw aACcORyX2RwEK5xDztgNLgGQd/DOz1QpoVMhXpdJvQXjg7zGfGCO8B/75swAjC5D 1YAadC9wKkhXtuOEmJ2S7JtMpc8ZrkRdhM5uCf3NjiEXNOXqh4/MH7Kmkvf0YVyl +gQPUxdnm+kNge8+Ilsg4FvBFeEyQuc3n+Qe3g== -----END CERTIFICATE-----Generated at Sun Apr 19 14:24:07 2026 by rpki-client