$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa File: 3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa (raw, json) Hash identifier: /WT3CcLt/Wqy1totp1szjJmd03e3/iGONHlBm57jO1k= Subject key identifier: 6D:F4:39:40:33:E2:A1:E7:A1:B0:B7:98:E5:5C:7F:30:19:DA:CD:FB Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 0357E9020C046AE46EE9984D6F9CA435DF9A171D Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa Signing time: Fri 02 Jan 2026 07:00:00 +0000 ROA not before: Fri 02 Jan 2026 06:55:00 +0000 ROA not after: Fri 01 Jan 2027 07:00:00 +0000 asID: 139460 IP address blocks: 203.173.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Feb 2026 09:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:57:e9:02:0c:04:6a:e4:6e:e9:98:4d:6f:9c:a4:35:df:9a:17:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Jan 2 06:55:00 2026 GMT Not After : Jan 1 07:00:00 2027 GMT Subject: CN=6DF4394033E2A1E7A1B0B798E55C7F3019DACDFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6c:d2:c1:fc:96:ec:04:6a:55:c0:16:9a:0b: a1:49:ef:58:41:6b:27:cd:e1:63:3a:38:7e:89:14: 5e:7e:12:9e:8e:e0:b8:90:5f:ab:5a:a6:96:88:83: 1b:7b:4d:18:73:4d:40:95:a0:0d:33:49:11:13:13: fa:13:43:84:a0:99:23:64:9a:b4:ba:b7:31:da:8c: 36:e8:4c:c3:ab:de:ab:dc:0f:9f:64:c7:c4:9f:ec: 6b:d8:5a:d0:ac:27:0d:a7:9b:ed:a0:cb:13:fc:4c: 81:85:63:7d:3f:43:b9:72:49:07:c9:b6:51:ed:99: 4a:8d:7d:c6:27:aa:d1:83:fb:30:29:66:7a:04:a0: fb:d9:75:63:69:3f:d4:91:bc:94:b8:f4:f7:e6:96: 96:36:3c:ca:45:ff:7e:cf:59:00:e4:89:4f:2a:ee: f2:f8:c3:01:3c:e7:55:1e:67:c2:3f:e9:a1:5e:64: 25:4f:49:35:e0:50:3e:2b:4e:54:92:9f:b3:4e:4c: c9:a2:0a:bb:84:16:b9:07:8b:3c:5b:da:2f:85:86: 7c:4f:d3:ae:5c:76:b4:57:fb:9c:fb:f4:c4:49:14: 5c:72:f8:66:fe:48:54:6a:fb:d0:04:f0:e0:f0:6a: d9:71:f3:d5:92:53:ee:8b:2e:be:46:b6:77:33:25: 35:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F4:39:40:33:E2:A1:E7:A1:B0:B7:98:E5:5C:7F:30:19:DA:CD:FB X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.173.90.0/23 Signature Algorithm: sha256WithRSAEncryption a6:35:e4:fd:99:9c:58:cd:8b:3a:07:a6:cb:27:34:2b:3c:53: 73:b8:0d:53:cf:6e:b2:f3:11:27:02:f4:b7:95:d5:66:a0:b7: 93:f5:d0:36:b4:80:a0:aa:61:aa:d5:35:1f:a2:2c:7e:59:9b: a0:5a:3a:2d:fc:13:6a:1c:e8:12:29:d5:8f:e8:9c:68:ec:83: 7a:50:1b:e9:17:d5:d8:0b:f8:4e:1e:d6:95:80:0e:58:56:b6: 7b:1f:d1:bd:77:30:33:48:a2:5c:47:1e:91:c7:84:2e:a5:81: 41:da:3c:3f:3b:3e:b7:09:08:39:07:f0:c1:df:5e:2f:db:e6: f2:03:cd:0d:36:40:00:57:15:8b:a0:a4:43:4a:bf:a8:6e:1a: fe:24:1c:de:17:e6:6c:43:cb:4b:ea:96:a4:12:56:fe:f3:51: bd:59:d4:e4:f5:9a:58:81:71:01:59:36:e4:f5:27:34:a9:ef: c0:83:ee:7e:e4:1b:dc:42:e8:04:f6:c8:7d:47:67:21:ca:65: 3a:ff:f8:7b:6b:85:51:8e:9d:1d:04:54:87:90:a4:b5:48:a1: ab:85:a7:e0:fe:ab:2d:31:5f:df:e2:5e:1c:7b:7e:3f:b5:37: 2f:f3:14:5a:3a:86:75:cb:f5:b5:d5:e3:63:e1:8f:1f:5b:f8: 7e:35:be:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA1fpAgwEauRu6ZhNb5ykNd+aFx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNjAxMDIwNjU1MDBaFw0yNzAxMDEwNzAwMDBaMDMxMTAvBgNV BAMTKDZERjQzOTQwMzNFMkExRTdBMUIwQjc5OEU1NUM3RjMwMTlEQUNERkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDabNLB/JbsBGpVwBaaC6FJ71hB ayfN4WM6OH6JFF5+Ep6O4LiQX6tappaIgxt7TRhzTUCVoA0zSRETE/oTQ4SgmSNk mrS6tzHajDboTMOr3qvcD59kx8Sf7GvYWtCsJw2nm+2gyxP8TIGFY30/Q7lySQfJ tlHtmUqNfcYnqtGD+zApZnoEoPvZdWNpP9SRvJS49PfmlpY2PMpF/37PWQDkiU8q 7vL4wwE851UeZ8I/6aFeZCVPSTXgUD4rTlSSn7NOTMmiCruEFrkHizxb2i+FhnxP 065cdrRX+5z79MRJFFxy+Gb+SFRq+9AE8ODwatlx89WSU+6LLr5GtnczJTV5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbfQ5QDPioeehsLeY5Vx/MBnazfswHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzAzMzJlMzEzNzMzMmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy61aMA0GCSqG SIb3DQEBCwUAA4IBAQCmNeT9mZxYzYs6B6bLJzQrPFNzuA1Tz26y8xEnAvS3ldVm oLeT9dA2tICgqmGq1TUfoix+WZugWjot/BNqHOgSKdWP6Jxo7IN6UBvpF9XYC/hO HtaVgA5YVrZ7H9G9dzAzSKJcRx6Rx4QupYFB2jw/Oz63CQg5B/DB314v2+byA80N NkAAVxWLoKRDSr+obhr+JBzeF+ZsQ8tL6pakElb+81G9WdTk9ZpYgXEBWTbk9Sc0 qe/Ag+5+5BvcQugE9sh9R2chymU6//h7a4VRjp0dBFSHkKS1SKGrhafg/qstMV/f 4l4ce34/tTcv8xRaOoZ1y/W11eNj4Y8fW/h+Nb5p -----END CERTIFICATE-----Generated at Fri Feb 20 04:02:01 2026 by rpki-client