$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31322e302f32342d3234203d3e20313534343735.roa File: 3230322e3135342e31322e302f32342d3234203d3e20313534343735.roa (raw, json) Hash identifier: /3/ARYKZjwXkHjOxXGKiKwblfPpgn3NAzooWSD6LX6Q= Subject key identifier: 51:55:36:11:3F:08:EA:76:8D:49:69:65:56:D2:DD:BF:97:3A:7F:88 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 6CB58603A4F9F4F5EB54DCCDD1D55E5D44E3A776 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31322e302f32342d3234203d3e20313534343735.roa Signing time: Wed 11 Mar 2026 10:25:04 +0000 ROA not before: Wed 11 Mar 2026 10:20:04 +0000 ROA not after: Wed 10 Mar 2027 10:25:04 +0000 asID: 154475 IP address blocks: 202.154.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 20:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b5:86:03:a4:f9:f4:f5:eb:54:dc:cd:d1:d5:5e:5d:44:e3:a7:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Mar 11 10:20:04 2026 GMT Not After : Mar 10 10:25:04 2027 GMT Subject: CN=515536113F08EA768D49696556D2DDBF973A7F88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:23:78:b4:b2:fb:12:5f:20:d9:a8:9f:78:e1: c0:83:9e:32:c6:fb:61:52:d7:bd:d6:71:05:d3:49: c3:28:df:83:63:11:c6:f3:80:5c:0d:e7:45:a0:55: 7c:df:4a:e0:0c:6e:95:87:91:4c:0b:52:2b:1b:53: 79:b0:87:7d:1a:d6:3f:51:e8:a1:b1:a8:d6:9a:54: 85:2a:a7:8a:34:9f:a5:23:70:66:aa:fd:1e:5a:c0: da:4f:9d:3e:56:ca:12:8f:60:89:01:16:7c:00:b6: 15:2e:8a:2a:6c:9a:a7:20:4a:a9:bb:bc:a5:9e:4c: e9:50:be:43:26:b3:1a:53:34:fb:3c:a6:62:01:9f: fc:06:6e:b0:98:6f:56:fa:5e:e6:73:b9:2a:42:e6: bb:19:83:5f:ae:22:c9:4f:36:c9:6c:e5:8f:b4:4d: a8:9d:84:6b:b2:44:23:f1:2a:9b:9c:16:d7:a3:da: c9:60:e0:3b:b7:c6:31:74:0d:55:41:91:5c:f1:9a: 87:00:54:47:82:24:95:a4:dd:d2:ed:40:26:8a:60: 8e:59:2e:3a:dd:34:d9:e5:06:c6:7d:a9:96:60:79: aa:8a:9a:bf:b5:3f:6d:9c:91:34:98:bf:46:91:10: 5e:af:cd:6e:e9:5e:88:3e:61:c9:33:f6:f3:ff:84: 89:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:55:36:11:3F:08:EA:76:8D:49:69:65:56:D2:DD:BF:97:3A:7F:88 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31322e302f32342d3234203d3e20313534343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.12.0/24 Signature Algorithm: sha256WithRSAEncryption b3:08:5d:f1:ae:25:78:c2:db:0e:0c:e7:e4:50:ab:43:0b:43: 9b:cf:3f:0a:5f:e5:4f:68:55:3d:d6:9a:7b:97:97:bc:1c:6f: ca:82:39:e5:64:4e:b5:00:0d:2c:52:79:e1:a1:1b:b8:a8:83: d3:66:fb:2d:d8:bf:6a:db:6e:d4:a1:a7:f5:79:61:be:9f:6d: 19:8f:31:33:15:e9:b0:1e:cb:5e:b2:7b:08:8f:c9:71:a1:fc: f5:57:d0:64:2e:86:99:bc:90:57:23:78:b9:0c:b8:b9:b7:6e: c8:4b:ab:86:31:a2:c4:d8:f5:28:2f:17:4f:42:45:cd:5b:0a: 75:b2:ca:5c:eb:b4:83:5b:8b:4c:a7:13:63:89:9a:3a:2b:d7: de:41:af:fc:a4:2c:46:15:32:2e:48:51:5b:34:69:27:ba:d9: 26:de:43:2d:63:cb:de:8f:a0:a2:c4:7b:8b:d4:1d:5d:7e:33: f0:d5:3d:42:ae:6c:9f:64:6e:69:d0:31:ae:75:7f:c3:40:f9: ac:3e:13:b9:e0:ac:97:40:62:57:8a:03:dc:d2:43:f9:7a:44: 3b:16:82:cf:fa:20:4b:8f:b2:31:bc:4a:b7:50:56:9b:39:42: e0:26:63:9f:70:ea:00:eb:a2:3a:3d:92:77:9d:ab:3a:0f:b2: 22:00:41:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbLWGA6T59PXrVNzN0dVeXUTjp3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNjAzMTExMDIwMDRaFw0yNzAzMTAxMDI1MDRaMDMxMTAvBgNV BAMTKDUxNTUzNjExM0YwOEVBNzY4RDQ5Njk2NTU2RDJEREJGOTczQTdGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWI3i0svsSXyDZqJ944cCDnjLG +2FS173WcQXTScMo34NjEcbzgFwN50WgVXzfSuAMbpWHkUwLUisbU3mwh30a1j9R 6KGxqNaaVIUqp4o0n6UjcGaq/R5awNpPnT5WyhKPYIkBFnwAthUuiipsmqcgSqm7 vKWeTOlQvkMmsxpTNPs8pmIBn/wGbrCYb1b6XuZzuSpC5rsZg1+uIslPNsls5Y+0 TaidhGuyRCPxKpucFtej2slg4Du3xjF0DVVBkVzxmocAVEeCJJWk3dLtQCaKYI5Z LjrdNNnlBsZ9qZZgeaqKmr+1P22ckTSYv0aREF6vzW7pXog+Yckz9vP/hImbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUVU2ET8I6naNSWllVtLdv5c6f4gwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTM0MzQzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoMMA0GCSqG SIb3DQEBCwUAA4IBAQCzCF3xriV4wtsODOfkUKtDC0Obzz8KX+VPaFU91pp7l5e8 HG/KgjnlZE61AA0sUnnhoRu4qIPTZvst2L9q227Uoaf1eWG+n20ZjzEzFemwHste snsIj8lxofz1V9BkLoaZvJBXI3i5DLi5t27IS6uGMaLE2PUoLxdPQkXNWwp1sspc 67SDW4tMpxNjiZo6K9feQa/8pCxGFTIuSFFbNGknutkm3kMtY8vej6CixHuL1B1d fjPw1T1CrmyfZG5p0DGudX/DQPmsPhO54KyXQGJXigPc0kP5ekQ7FoLP+iBLj7Ix vEq3UFabOULgJmOfcOoA66I6PZJ3nas6D7IiAEEL -----END CERTIFICATE-----Generated at Fri Mar 20 20:10:39 2026 by rpki-client