$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32372e302f32342d3234203d3e203535373031.roa File: 3230322e37332e32372e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: +IIJxBpeN9s39BMtYHb6s35QyWRYbIZNR8USGg37234= Subject key identifier: C9:70:90:55:8B:59:57:9C:88:2E:42:FE:57:2E:24:70:99:79:B0:02 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 5138D8AA9B5BBC446C49BEF0CF2A0CB6B00377E1 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32372e302f32342d3234203d3e203535373031.roa Signing time: Wed 18 Mar 2026 14:00:03 +0000 ROA not before: Wed 18 Mar 2026 13:55:03 +0000 ROA not after: Wed 17 Mar 2027 14:00:03 +0000 asID: 55701 IP address blocks: 202.73.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 11:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:38:d8:aa:9b:5b:bc:44:6c:49:be:f0:cf:2a:0c:b6:b0:03:77:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Mar 18 13:55:03 2026 GMT Not After : Mar 17 14:00:03 2027 GMT Subject: CN=C97090558B59579C882E42FE572E24709979B002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:24:ca:b5:39:f5:fc:7c:ec:f2:85:a0:d3:b6: 97:2b:bd:e4:eb:5b:bd:21:d9:ee:a0:73:07:88:85: 50:e4:e9:c1:91:e2:ab:92:0f:8d:86:06:22:3d:6a: 8f:15:85:94:57:45:fa:cf:b8:f7:e7:d6:82:3e:8f: 0e:fe:2a:f2:09:3e:42:34:25:c6:f0:a6:97:2b:31: b0:4f:f4:74:09:c1:da:f9:6c:e3:43:6b:ac:cb:a0: aa:49:36:e7:d7:c2:2c:5d:51:e9:3d:d8:9c:d6:27: 2c:b0:19:32:07:6b:3e:a5:24:b2:b0:81:51:c2:2b: 12:75:86:c5:f7:c9:5b:dc:7b:e9:15:55:4c:69:13: 5f:bf:12:5a:6c:8f:d2:28:b8:14:d4:e8:aa:3c:b1: 12:ba:9c:3a:aa:51:06:ca:8b:4f:64:e4:7d:19:0f: b1:84:03:80:7c:36:16:98:37:0f:52:84:46:96:2d: a0:51:69:03:eb:ae:36:d7:90:65:b8:1a:28:92:68: 60:3b:a9:13:8b:88:5a:9d:5e:cb:7b:02:19:e1:5f: 82:63:2a:00:f2:6c:6a:76:72:e3:c2:f6:73:da:ce: 06:5e:34:37:54:5d:64:b0:80:37:50:67:01:6e:37: 9c:2e:64:49:b6:30:c5:c8:2b:e0:8d:ce:7a:24:83: 4e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:70:90:55:8B:59:57:9C:88:2E:42:FE:57:2E:24:70:99:79:B0:02 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32372e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.27.0/24 Signature Algorithm: sha256WithRSAEncryption 35:2e:cf:91:b2:bc:8d:a6:ee:e5:07:67:73:4c:bb:ef:b0:e2: 42:a8:9c:ec:54:b0:d6:d3:57:ff:fa:2b:23:bd:0d:fe:e7:ff: 5e:2d:4d:4a:07:30:1b:39:c4:b8:10:96:5c:bf:bb:31:f0:f5: f5:ae:9b:49:b4:e7:5e:8b:78:e4:a6:34:20:d9:22:5c:35:f0: 95:9b:62:62:90:1f:90:84:7a:c8:0a:92:1e:f8:b8:c0:09:1e: ce:bf:d8:53:c3:ae:5c:1d:ed:f1:02:64:02:b0:76:c6:6b:1d: 71:a8:4a:26:60:7a:38:2b:1f:eb:33:bc:1d:e6:86:aa:35:5a: 7c:05:e7:7a:92:0e:46:e2:8a:f7:76:06:f2:8a:63:81:58:aa: 7d:16:bb:85:ed:be:5a:f6:70:da:0a:c8:d7:5e:46:2d:38:e3: ec:31:f1:c0:d9:97:89:7b:50:cf:d7:9e:8f:3b:f6:42:56:f8: 16:f5:d4:18:0a:89:79:39:01:76:85:53:31:b3:bb:86:b6:65: d4:aa:ae:9b:2b:ed:2f:1c:e8:cd:26:54:88:f6:e1:f0:3c:3d: 2c:bd:0b:4b:34:c6:f6:e3:32:ef:c1:3a:19:1f:48:19:99:c2: e5:c4:26:8e:8b:8a:22:78:6a:c8:7a:cc:93:b5:e1:92:1d:0c: 08:b3:51:3f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUTjYqptbvERsSb7wzyoMtrADd+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNjAzMTgxMzU1MDNaFw0yNzAzMTcxNDAwMDNaMDMxMTAvBgNV BAMTKEM5NzA5MDU1OEI1OTU3OUM4ODJFNDJGRTU3MkUyNDcwOTk3OUIwMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQJMq1OfX8fOzyhaDTtpcrveTr W70h2e6gcweIhVDk6cGR4quSD42GBiI9ao8VhZRXRfrPuPfn1oI+jw7+KvIJPkI0 JcbwppcrMbBP9HQJwdr5bONDa6zLoKpJNufXwixdUek92JzWJyywGTIHaz6lJLKw gVHCKxJ1hsX3yVvce+kVVUxpE1+/Elpsj9IouBTU6Ko8sRK6nDqqUQbKi09k5H0Z D7GEA4B8NhaYNw9ShEaWLaBRaQPrrjbXkGW4GiiSaGA7qROLiFqdXst7AhnhX4Jj KgDybGp2cuPC9nPazgZeNDdUXWSwgDdQZwFuN5wuZEm2MMXIK+CNznokg04dAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyXCQVYtZV5yILkL+Vy4kcJl5sAIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRswDQYJKoZIhvcN AQELBQADggEBADUuz5GyvI2m7uUHZ3NMu++w4kKonOxUsNbTV//6KyO9Df7n/14t TUoHMBs5xLgQlly/uzHw9fWum0m0516LeOSmNCDZIlw18JWbYmKQH5CEesgKkh74 uMAJHs6/2FPDrlwd7fECZAKwdsZrHXGoSiZgejgrH+szvB3mhqo1WnwF53qSDkbi ivd2BvKKY4FYqn0Wu4Xtvlr2cNoKyNdeRi044+wx8cDZl4l7UM/Xno879kJW+Bb1 1BgKiXk5AXaFUzGzu4a2ZdSqrpsr7S8c6M0mVIj24fA8PSy9C0s0xvbjMu/BOhkf SBmZwuXEJo6LiiJ4ash6zJO14ZIdDAizUT8= -----END CERTIFICATE-----Generated at Sun Mar 22 11:31:37 2026 by rpki-client