$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e35372e32322e302f32332d3234203d3e2039333431.roa File: 3230322e35372e32322e302f32332d3234203d3e2039333431.roa (raw, json) Hash identifier: 8/LWSEieDTdAB4Ew7cpAg5lq07BIEJfkroyZeynUgYo= Subject key identifier: 45:C8:BC:F8:6C:7F:E5:30:8C:05:92:15:F5:52:BC:F4:CA:A8:DC:00 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 3A3F04899553166581210EE58EB611FDBEB5EF46 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e35372e32322e302f32332d3234203d3e2039333431.roa Signing time: Wed 04 Mar 2026 09:02:42 +0000 ROA not before: Wed 04 Mar 2026 08:57:42 +0000 ROA not after: Wed 03 Mar 2027 09:02:42 +0000 asID: 9341 IP address blocks: 202.57.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 12:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:3f:04:89:95:53:16:65:81:21:0e:e5:8e:b6:11:fd:be:b5:ef:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Mar 4 08:57:42 2026 GMT Not After : Mar 3 09:02:42 2027 GMT Subject: CN=45C8BCF86C7FE5308C059215F552BCF4CAA8DC00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4f:6d:ea:af:85:09:44:cf:0d:63:e3:4a:c6: a3:5f:bc:02:b9:29:22:fa:a8:9b:30:28:f6:84:a4: 02:2a:7e:d5:2b:ca:d9:37:86:c0:3e:e6:8d:97:b1: d0:ad:88:03:9c:3d:c1:51:91:29:24:7a:8f:8f:39: 38:6d:44:31:14:6e:6b:6e:f9:dd:2e:8e:9f:4b:c0: a9:1a:29:ae:c6:70:a4:2d:c2:85:b1:ac:34:25:f8: d3:63:17:cf:0a:54:8b:7c:3b:ce:63:0b:f7:2a:b1: 6f:8b:a5:72:b5:1a:6a:09:36:10:db:58:d9:4b:94: d5:42:80:df:85:30:0e:23:df:72:e2:ad:dd:17:c2: 56:c4:05:69:94:88:84:65:64:23:62:83:22:c2:61: 76:06:71:20:46:b0:1f:c2:14:da:51:68:54:fe:06: f3:13:f3:b0:e6:12:c7:72:58:96:9f:e7:f3:65:18: a6:52:17:7c:d8:c0:ff:8d:90:87:b8:60:12:1d:c5: 3a:5c:76:e1:6f:f5:c7:37:9f:48:59:a7:dd:d1:bd: 81:25:7a:85:92:7c:64:79:63:36:ab:6b:25:a0:d4: 18:82:09:10:0a:4b:15:34:8c:cc:ee:6a:ab:e5:10: 78:d1:0f:76:d2:54:d0:11:60:ec:44:d6:9b:e1:44: fc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C8:BC:F8:6C:7F:E5:30:8C:05:92:15:F5:52:BC:F4:CA:A8:DC:00 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e35372e32322e302f32332d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.22.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:55:ab:a7:ef:c3:da:06:dc:d3:52:17:d9:81:cb:20:7e:40: 40:ef:04:58:12:97:c9:0c:38:1e:c4:2d:72:96:98:f2:28:7d: 60:7e:c2:36:46:e3:e4:52:78:bb:e7:0d:e0:60:a9:37:28:55: 90:31:62:86:4b:c8:60:f8:02:a1:42:eb:cb:a3:54:db:85:93: 34:25:af:e2:c4:87:39:8b:cc:cc:75:ae:9f:b7:45:c7:0f:1b: 96:de:ac:52:5c:a8:7e:fe:81:27:30:80:31:68:5f:ad:ef:6d: 75:22:e4:10:a3:4e:d8:73:da:c1:eb:49:16:cc:79:8f:a1:c4: ad:08:ae:d9:40:9e:83:71:a3:e4:a3:34:65:5f:8a:f3:5b:93: 4b:89:a3:82:37:42:17:d1:60:78:38:6a:1a:bb:5e:5a:c4:8e: f6:65:61:b4:2e:c7:44:31:fb:7d:d1:05:45:06:3b:97:3e:57: 20:4c:2b:46:d5:48:57:e2:86:f7:14:8e:04:57:8b:f5:5a:d2: fd:7a:26:f8:af:7b:29:78:05:76:7c:5b:ed:c9:98:07:a2:28: 26:70:93:53:ee:71:b6:4d:68:c7:f8:66:0c:5b:f0:6f:04:cf: e0:f5:9f:e4:53:5d:67:c4:6a:fd:ac:73:0c:14:f8:65:cf:a0: 2e:db:b3:2d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUOj8EiZVTFmWBIQ7ljrYR/b6170YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjAzMDQwODU3NDJaFw0yNzAzMDMwOTAyNDJaMDMxMTAvBgNV BAMTKDQ1QzhCQ0Y4NkM3RkU1MzA4QzA1OTIxNUY1NTJCQ0Y0Q0FBOERDMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcT23qr4UJRM8NY+NKxqNfvAK5 KSL6qJswKPaEpAIqftUrytk3hsA+5o2XsdCtiAOcPcFRkSkkeo+POThtRDEUbmtu +d0ujp9LwKkaKa7GcKQtwoWxrDQl+NNjF88KVIt8O85jC/cqsW+LpXK1GmoJNhDb WNlLlNVCgN+FMA4j33Lird0XwlbEBWmUiIRlZCNigyLCYXYGcSBGsB/CFNpRaFT+ BvMT87DmEsdyWJaf5/NlGKZSF3zYwP+NkIe4YBIdxTpcduFv9cc3n0hZp93RvYEl eoWSfGR5YzarayWg1BiCCRAKSxU0jMzuaqvlEHjRD3bSVNARYOxE1pvhRPxTAgMB AAGjggItMIICKTAdBgNVHQ4EFgQURci8+Gx/5TCMBZIV9VK89Mqo3AAwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzNiZGNiYWUtMmU5ZC00ZjNmLThh YjktMzQyNGU0NDg0ODRlLzAvMzIzMDMyMmUzNTM3MmUzMjMyMmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKORYwDQYJKoZIhvcNAQEL BQADggEBAE9Vq6fvw9oG3NNSF9mByyB+QEDvBFgSl8kMOB7ELXKWmPIofWB+wjZG 4+RSeLvnDeBgqTcoVZAxYoZLyGD4AqFC68ujVNuFkzQlr+LEhzmLzMx1rp+3RccP G5berFJcqH7+gScwgDFoX63vbXUi5BCjTthz2sHrSRbMeY+hxK0IrtlAnoNxo+Sj NGVfivNbk0uJo4I3QhfRYHg4ahq7XlrEjvZlYbQux0Qx+33RBUUGO5c+VyBMK0bV SFfihvcUjgRXi/Va0v16Jviveyl4BXZ8W+3JmAeiKCZwk1PucbZNaMf4Zgxb8G8E z+D1n+RTXWfEav2scwwU+GXPoC7bsy0= -----END CERTIFICATE-----Generated at Fri Mar 20 11:01:24 2026 by rpki-client