$ rpki-client -vvf repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32342d3234203d3e203435333233.roa File: 3230322e34332e36342e302f32342d3234203d3e203435333233.roa (raw, json) Hash identifier: QMLhhMof4VF5mj1KbH8X8D62Tgsr930WAMkn5u0Mz/k= Subject key identifier: D3:AE:0D:0F:92:8D:9A:74:1E:50:6A:C7:29:31:BF:02:D0:B5:FD:7E Certificate issuer: /CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Certificate serial: 782DF6E06E4D34AF51A49D7D0FF349D6BE5CA06A Authority key identifier: 86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32342d3234203d3e203435333233.roa Signing time: Mon 30 Mar 2026 17:15:42 +0000 ROA not before: Mon 30 Mar 2026 17:10:42 +0000 ROA not after: Mon 29 Mar 2027 17:15:42 +0000 asID: 45323 IP address blocks: 202.43.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 05:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:2d:f6:e0:6e:4d:34:af:51:a4:9d:7d:0f:f3:49:d6:be:5c:a0:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Validity Not Before: Mar 30 17:10:42 2026 GMT Not After : Mar 29 17:15:42 2027 GMT Subject: CN=D3AE0D0F928D9A741E506AC72931BF02D0B5FD7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4a:af:72:9d:08:ed:d5:d5:ae:7f:48:47:aa: a9:d0:77:a2:ce:94:75:ed:e9:5b:e1:4c:87:55:7b: 1e:61:db:6b:b4:fb:1f:2c:76:c1:5a:57:29:1a:f9: e5:a2:e2:dc:a1:3c:ba:1a:e9:31:7e:ba:3d:3e:1e: 88:b0:d5:6c:1e:ad:63:b2:1b:42:fb:95:14:bf:d6: 8f:cd:28:72:06:88:b8:59:6c:30:54:2d:94:b5:31: 9e:57:a1:64:af:4d:1d:f4:40:1f:b1:3a:b6:1e:c7: a5:c9:a7:02:94:48:d9:77:b3:38:5f:07:00:13:f0: 61:93:95:7c:81:39:aa:cb:a3:1f:84:4d:dd:55:0a: 99:3e:8e:69:b9:45:12:40:b4:fd:15:4e:8d:71:1f: 83:1d:6c:11:81:be:db:de:42:32:fe:2c:bc:b4:fd: c1:0a:71:39:08:44:c4:57:a0:89:5a:43:0f:2a:03: 02:f7:b3:fb:3f:75:ad:bf:74:fd:8c:5d:b7:5d:da: 85:e4:94:73:1c:85:02:89:1a:77:71:c5:fd:78:e7: 16:3d:51:a7:c6:fd:e3:41:9e:ea:41:70:df:9f:46: 91:4f:f6:1c:d9:bf:07:65:db:2b:c2:bf:28:93:56: e6:61:26:9e:11:79:bd:43:48:3a:a4:72:09:1e:92: f1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AE:0D:0F:92:8D:9A:74:1E:50:6A:C7:29:31:BF:02:D0:B5:FD:7E X509v3 Authority Key Identifier: keyid:86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32342d3234203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.64.0/24 Signature Algorithm: sha256WithRSAEncryption 95:0d:d7:21:d4:28:e8:e7:55:98:a7:23:7e:65:95:48:d9:74: f4:e2:bd:0e:8b:4c:16:6d:5e:89:32:f8:81:c7:c8:e1:fe:a1: 6b:ed:db:ab:38:fc:fa:91:90:fd:96:e0:47:ec:fd:52:56:9f: 57:d4:3a:8b:03:be:1b:66:cc:5b:af:57:e4:f6:50:91:a9:df: 31:e4:59:19:74:98:10:5a:e1:8f:aa:8c:9f:79:3b:f0:99:f9: c2:b2:53:08:a2:37:45:3d:28:30:da:9c:40:bf:10:b1:41:ca: 1e:30:56:e5:1e:e4:dc:24:2f:64:70:e5:ae:06:bc:72:15:2d: 59:ce:24:3f:49:3b:b2:dc:f5:7f:7e:85:81:81:c9:66:21:6a: f7:b3:43:2a:37:5c:a2:b6:b6:63:f7:a7:87:1d:1d:91:4e:e9: 0a:a1:77:fc:92:52:bd:f6:38:e1:3d:5e:6d:15:7e:9f:53:25: c6:39:70:15:8a:5d:f4:cf:8c:9d:31:a7:6e:c5:85:18:c7:91: 60:24:7b:d1:63:9f:55:f9:30:ea:0f:24:41:cf:f0:ff:35:11: 77:9f:58:d4:61:d1:d1:be:0f:40:b3:46:8f:b0:df:f7:7a:9c: d6:6e:be:ec:ac:bf:58:be:8f:30:ad:62:5c:9c:54:e6:9e:99: b7:c2:5a:3b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeC324G5NNK9RpJ19D/NJ1r5coGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5 NzNENzMwMjAeFw0yNjAzMzAxNzEwNDJaFw0yNzAzMjkxNzE1NDJaMDMxMTAvBgNV BAMTKEQzQUUwRDBGOTI4RDlBNzQxRTUwNkFDNzI5MzFCRjAyRDBCNUZEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Sq9ynQjt1dWuf0hHqqnQd6LO lHXt6VvhTIdVex5h22u0+x8sdsFaVyka+eWi4tyhPLoa6TF+uj0+Hoiw1WwerWOy G0L7lRS/1o/NKHIGiLhZbDBULZS1MZ5XoWSvTR30QB+xOrYex6XJpwKUSNl3szhf BwAT8GGTlXyBOarLox+ETd1VCpk+jmm5RRJAtP0VTo1xH4MdbBGBvtveQjL+LLy0 /cEKcTkIRMRXoIlaQw8qAwL3s/s/da2/dP2MXbdd2oXklHMchQKJGndxxf145xY9 UafG/eNBnupBcN+fRpFP9hzZvwdl2yvCvyiTVuZhJp4Reb1DSDqkcgkekvExAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU064ND5KNmnQeUGrHKTG/AtC1/X4wHwYDVR0j BBgwFoAUhpTNu1L0rqia9Gylv6WmOZc9cwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2YwMGY4YS01Y2JkLTQ2MGYtYmZjNi1iZDg5NDJiNjUzN2MvMC84Njk0Q0RCQjUy RjRBRUE4OUFGNDZDQTVCRkE1QTYzOTk3M0Q3MzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5NzNE NzMwMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjZjAwZjhhLTVjYmQtNDYwZi1i ZmM2LWJkODk0MmI2NTM3Yy8wLzMyMzAzMjJlMzQzMzJlMzYzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKK0AwDQYJKoZIhvcN AQELBQADggEBAJUN1yHUKOjnVZinI35llUjZdPTivQ6LTBZtXoky+IHHyOH+oWvt 26s4/PqRkP2W4Efs/VJWn1fUOosDvhtmzFuvV+T2UJGp3zHkWRl0mBBa4Y+qjJ95 O/CZ+cKyUwiiN0U9KDDanEC/ELFByh4wVuUe5NwkL2Rw5a4GvHIVLVnOJD9JO7Lc 9X9+hYGByWYhavezQyo3XKK2tmP3p4cdHZFO6Qqhd/ySUr32OOE9Xm0Vfp9TJcY5 cBWKXfTPjJ0xp27FhRjHkWAke9Fjn1X5MOoPJEHP8P81EXefWNRh0dG+D0CzRo+w 3/d6nNZuvuysv1i+jzCtYlycVOaembfCWjs= -----END CERTIFICATE-----Generated at Sat Apr 18 05:45:46 2026 by rpki-client