$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e35302e302f32332d3234203d3e2034373837.roa File: 3230322e3135382e35302e302f32332d3234203d3e2034373837.roa (raw, json) Hash identifier: 0wuIOcRzmIaoS2aQLKlHA7NEJw3mVd/VnSUwfcEtuCk= Subject key identifier: 8F:55:2A:E9:D8:AD:E2:DE:0E:72:75:14:9A:90:64:02:1D:B3:B7:9A Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 04F8CEB343C952B3CDA773BE300012280F724696 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e35302e302f32332d3234203d3e2034373837.roa Signing time: Wed 08 Apr 2026 13:00:00 +0000 ROA not before: Wed 08 Apr 2026 12:55:00 +0000 ROA not after: Wed 07 Apr 2027 13:00:00 +0000 asID: 4787 IP address blocks: 202.158.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 11:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f8:ce:b3:43:c9:52:b3:cd:a7:73:be:30:00:12:28:0f:72:46:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Apr 8 12:55:00 2026 GMT Not After : Apr 7 13:00:00 2027 GMT Subject: CN=8F552AE9D8ADE2DE0E7275149A9064021DB3B79A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:3d:1e:52:71:40:ff:0a:c5:7c:9a:60:c4:80: 1d:64:f6:cd:67:0e:ec:5a:57:71:46:a4:c1:f4:7f: 21:f1:7a:99:c7:93:e6:a3:0f:61:12:85:9a:51:69: ee:7b:72:9b:a5:0c:12:6f:a8:b3:06:e6:e3:91:9f: a9:7b:d1:78:51:89:58:6a:8d:a2:a4:35:2d:ab:15: b2:a1:15:f6:50:5b:91:5c:dd:c3:05:cf:59:ea:d7: 47:b6:7e:ca:a2:78:4b:34:ce:c6:47:b2:c0:4e:86: 4a:c9:dd:c8:78:19:9e:89:d6:35:f7:49:9e:85:03: f8:3c:02:7b:27:30:4f:5d:25:20:60:86:88:07:42: f9:67:9c:06:f8:f3:49:38:53:83:35:6b:45:ad:3c: a1:4d:f3:0b:5d:50:3d:83:c6:43:f1:af:99:ab:13: 9a:a6:f8:1b:e7:bc:e1:b8:aa:df:3f:81:6b:26:8d: 96:42:f2:1b:83:3b:25:76:34:1b:dd:84:0b:27:39: f8:c7:6a:9c:5d:a8:ee:26:1e:80:58:27:8e:30:a0: 13:af:75:c4:0f:0d:20:28:eb:5f:d5:10:56:bd:69: 44:6f:74:15:d6:94:9b:28:d0:5f:2f:1d:53:8a:bd: 1c:02:21:22:d7:c6:8a:ad:c9:53:aa:a3:fc:06:40: 29:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:55:2A:E9:D8:AD:E2:DE:0E:72:75:14:9A:90:64:02:1D:B3:B7:9A X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e35302e302f32332d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.158.50.0/23 Signature Algorithm: sha256WithRSAEncryption b4:a0:db:a8:4f:af:99:b9:d3:d5:11:a7:46:f8:83:18:19:dd: 82:ba:bf:e4:54:05:19:8c:67:6e:c4:5d:b0:13:dc:db:10:5b: 55:d5:a3:16:f5:c1:d9:47:82:77:10:96:39:f3:64:35:8d:b7: 59:8e:a3:a2:fd:c6:8c:bc:65:ca:31:25:25:23:66:70:58:30: 31:bd:ee:a8:23:59:0d:ab:eb:6c:cc:b3:f1:0e:d2:68:26:b0: ea:bd:11:c4:15:25:c2:b1:17:38:74:44:e9:36:e5:16:1c:00: a5:39:c8:9c:5c:81:72:1b:39:af:15:62:05:52:27:73:9e:2c: 87:da:f4:a0:82:e0:b0:07:d9:8c:dd:a1:c3:06:93:67:3b:04: ef:62:bb:e0:fe:08:d1:b7:e6:47:b5:04:d8:16:ce:0e:10:6d: 7a:ff:43:17:52:22:51:75:96:8f:ec:58:58:bc:73:ac:e3:30: e5:4d:2f:f9:6e:b3:14:09:b3:c3:e3:d0:7e:07:da:6a:4a:21: 6e:8b:b3:fa:86:6c:7f:9a:89:f5:3a:0c:20:e7:c5:61:3e:5f: 20:45:d5:84:6c:9b:b3:98:23:bf:c5:b8:54:90:a0:8d:34:51: e3:5f:91:6b:db:e0:00:86:7d:34:a1:17:e6:a7:2e:9f:6d:4b: 8f:2b:c1:60 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBPjOs0PJUrPNp3O+MAASKA9yRpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNjA0MDgxMjU1MDBaFw0yNzA0MDcxMzAwMDBaMDMxMTAvBgNV BAMTKDhGNTUyQUU5RDhBREUyREUwRTcyNzUxNDlBOTA2NDAyMURCM0I3OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyPR5ScUD/CsV8mmDEgB1k9s1n DuxaV3FGpMH0fyHxepnHk+ajD2EShZpRae57cpulDBJvqLMG5uORn6l70XhRiVhq jaKkNS2rFbKhFfZQW5Fc3cMFz1nq10e2fsqieEs0zsZHssBOhkrJ3ch4GZ6J1jX3 SZ6FA/g8AnsnME9dJSBghogHQvlnnAb480k4U4M1a0WtPKFN8wtdUD2DxkPxr5mr E5qm+BvnvOG4qt8/gWsmjZZC8huDOyV2NBvdhAsnOfjHapxdqO4mHoBYJ44woBOv dcQPDSAo61/VEFa9aURvdBXWlJso0F8vHVOKvRwCISLXxoqtyVOqo/wGQCnbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUj1Uq6dit4t4OcnUUmpBkAh2zt5owHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzAzMjJlMzEzNTM4MmUzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKnjIwDQYJKoZIhvcN AQELBQADggEBALSg26hPr5m509URp0b4gxgZ3YK6v+RUBRmMZ27EXbAT3NsQW1XV oxb1wdlHgncQljnzZDWNt1mOo6L9xoy8ZcoxJSUjZnBYMDG97qgjWQ2r62zMs/EO 0mgmsOq9EcQVJcKxFzh0ROk25RYcAKU5yJxcgXIbOa8VYgVSJ3OeLIfa9KCC4LAH 2YzdocMGk2c7BO9iu+D+CNG35ke1BNgWzg4QbXr/QxdSIlF1lo/sWFi8c6zjMOVN L/lusxQJs8Pj0H4H2mpKIW6Ls/qGbH+aifU6DCDnxWE+XyBF1YRsm7OYI7/FuFSQ oI00UeNfkWvb4ACGfTShF+anLp9tS48rwWA= -----END CERTIFICATE-----Generated at Fri Apr 17 18:27:22 2026 by rpki-client