$ rpki-client -vvf repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32332d3233203d3e203435333233.roa File: 3230322e34332e36342e302f32332d3233203d3e203435333233.roa (raw, json) Hash identifier: R1BApOZiP80MX6CZbFZb/y1Snxa1IgmqoJi9dsGzcJk= Subject key identifier: 94:62:9D:C6:56:E3:C1:03:F6:51:17:0E:D8:30:F4:77:DD:0C:C2:E6 Certificate issuer: /CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Certificate serial: 03DEBFF7DD87DC4596D38D4ECAD3E07A77BF2A16 Authority key identifier: 86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32332d3233203d3e203435333233.roa Signing time: Mon 30 Mar 2026 17:25:57 +0000 ROA not before: Mon 30 Mar 2026 17:20:57 +0000 ROA not after: Mon 29 Mar 2027 17:25:57 +0000 asID: 45323 IP address blocks: 202.43.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 05:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:de:bf:f7:dd:87:dc:45:96:d3:8d:4e:ca:d3:e0:7a:77:bf:2a:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Validity Not Before: Mar 30 17:20:57 2026 GMT Not After : Mar 29 17:25:57 2027 GMT Subject: CN=94629DC656E3C103F651170ED830F477DD0CC2E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ce:b0:f7:d7:75:76:34:80:f9:3e:65:15:2e: af:78:4e:16:60:ff:e9:27:17:74:cf:9a:14:23:82: 87:58:f5:66:ba:26:f1:bd:09:fb:7a:c9:73:11:f5: af:38:2b:4c:59:66:da:81:cf:0b:90:3b:e7:bd:8d: d9:4e:4a:c7:ac:6e:b6:84:91:38:eb:b5:b6:b1:2c: a1:72:03:46:4d:d6:58:00:b0:20:67:5f:82:dc:0e: b1:bf:dc:67:40:ba:ee:26:c3:63:33:ac:0b:76:c0: 1f:73:b3:28:2c:a7:85:4d:ed:95:1b:75:02:fe:af: cc:12:48:a4:89:95:12:db:04:1b:97:d6:58:95:f6: 4a:ac:7f:0b:f3:d6:b0:a9:43:62:81:63:a5:3a:78: 7c:59:01:ee:01:4f:a5:25:cf:b9:66:5d:32:5a:fd: 18:bc:5e:9c:48:3d:87:71:d2:f5:a7:ed:76:55:31: 4b:df:81:29:1b:43:61:48:12:03:c5:3f:28:71:7e: 9d:ea:00:d4:20:a5:7b:e5:63:41:11:2e:58:69:e9: 5a:be:c6:73:b5:a5:17:1d:6b:e1:c8:97:a8:9b:fd: 14:ad:23:af:9c:c9:fe:94:e0:81:71:7b:70:b0:4f: 0f:73:fc:4e:fc:23:14:e3:42:24:1b:10:f4:d6:2b: 54:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:62:9D:C6:56:E3:C1:03:F6:51:17:0E:D8:30:F4:77:DD:0C:C2:E6 X509v3 Authority Key Identifier: keyid:86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32332d3233203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.64.0/23 Signature Algorithm: sha256WithRSAEncryption a9:1f:e6:09:9b:0f:7b:52:12:cf:ec:5d:b6:d5:f9:14:cf:58: b1:c1:61:cd:ec:bb:82:74:9a:f1:07:97:ac:3f:ec:1e:d0:4f: db:63:53:42:3c:e6:34:1b:3b:a1:0c:da:85:54:3d:91:e9:c5: b8:aa:76:ae:b0:ca:3e:92:9b:e1:60:b9:dd:20:72:5f:07:81: ed:80:33:ee:e1:60:d2:ea:0d:65:77:a3:63:fd:30:80:3b:33: 22:c4:d6:8b:88:2d:fc:d1:70:1a:33:03:4c:a0:cc:63:82:1e: 6e:8f:97:18:b7:8c:a7:38:b6:b3:58:09:23:c1:dc:c3:5f:61: b6:cf:32:de:69:56:72:83:a1:41:3e:ca:88:19:55:2f:13:3e: 0b:ce:3f:19:7a:43:c7:2e:16:3f:76:98:9d:38:cd:71:42:9a: 66:77:0d:81:f9:0a:4f:b0:93:ca:1a:74:cd:8e:9f:c1:a9:95: 9f:6c:8c:e7:db:2d:91:b8:cd:7c:38:01:c9:c8:cf:7e:0c:58: 53:30:3f:a2:30:3b:69:e0:8a:2a:b4:92:13:08:a1:a9:61:a9: c4:c4:52:fe:aa:58:76:de:b9:43:ea:fa:b2:18:5e:21:e8:3f: d6:35:01:dd:d4:e9:58:84:b8:9e:12:5e:03:f0:56:0f:ed:54: 93:67:29:7a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUA96/992H3EWW041OytPgene/KhYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5 NzNENzMwMjAeFw0yNjAzMzAxNzIwNTdaFw0yNzAzMjkxNzI1NTdaMDMxMTAvBgNV BAMTKDk0NjI5REM2NTZFM0MxMDNGNjUxMTcwRUQ4MzBGNDc3REQwQ0MyRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCczrD313V2NID5PmUVLq94ThZg /+knF3TPmhQjgodY9Wa6JvG9Cft6yXMR9a84K0xZZtqBzwuQO+e9jdlOSsesbraE kTjrtbaxLKFyA0ZN1lgAsCBnX4LcDrG/3GdAuu4mw2MzrAt2wB9zsygsp4VN7ZUb dQL+r8wSSKSJlRLbBBuX1liV9kqsfwvz1rCpQ2KBY6U6eHxZAe4BT6Ulz7lmXTJa /Ri8XpxIPYdx0vWn7XZVMUvfgSkbQ2FIEgPFPyhxfp3qANQgpXvlY0ERLlhp6Vq+ xnO1pRcda+HIl6ib/RStI6+cyf6U4IFxe3CwTw9z/E78IxTjQiQbEPTWK1TRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUlGKdxlbjwQP2URcO2DD0d90MwuYwHwYDVR0j BBgwFoAUhpTNu1L0rqia9Gylv6WmOZc9cwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2YwMGY4YS01Y2JkLTQ2MGYtYmZjNi1iZDg5NDJiNjUzN2MvMC84Njk0Q0RCQjUy RjRBRUE4OUFGNDZDQTVCRkE1QTYzOTk3M0Q3MzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5NzNE NzMwMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjZjAwZjhhLTVjYmQtNDYwZi1i ZmM2LWJkODk0MmI2NTM3Yy8wLzMyMzAzMjJlMzQzMzJlMzYzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzUzMzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKK0AwDQYJKoZIhvcN AQELBQADggEBAKkf5gmbD3tSEs/sXbbV+RTPWLHBYc3su4J0mvEHl6w/7B7QT9tj U0I85jQbO6EM2oVUPZHpxbiqdq6wyj6Sm+Fgud0gcl8Hge2AM+7hYNLqDWV3o2P9 MIA7MyLE1ouILfzRcBozA0ygzGOCHm6Plxi3jKc4trNYCSPB3MNfYbbPMt5pVnKD oUE+yogZVS8TPgvOPxl6Q8cuFj92mJ04zXFCmmZ3DYH5Ck+wk8oadM2On8GplZ9s jOfbLZG4zXw4AcnIz34MWFMwP6IwO2ngiiq0khMIoalhqcTEUv6qWHbeuUPq+rIY XiHoP9Y1Ad3U6ViEuJ4SXgPwVg/tVJNnKXo= -----END CERTIFICATE-----Generated at Sat Apr 18 05:45:48 2026 by rpki-client