$ rpki-client -vvf repo-rpki.idnic.net/repo/48c07441-cd9d-4d85-aab4-65f5dd4ed7e0/0/33362e35302e39372e302f32342d3234203d3e20333936393832.roa File: 33362e35302e39372e302f32342d3234203d3e20333936393832.roa (raw, json) Hash identifier: vBd/o6+RGsJU4ZF5dz1yRiYJvku7rSkDAbo5yX1o1lY= Subject key identifier: 81:96:49:68:34:DD:D9:DF:70:A4:36:65:35:57:B5:28:62:D0:81:05 Certificate issuer: /CN=3241D89371FF3D3AFC0BA911E316A825484B3FDA Certificate serial: 4895FCC0094A51086F24013121B31E4FAC225B13 Authority key identifier: 32:41:D8:93:71:FF:3D:3A:FC:0B:A9:11:E3:16:A8:25:48:4B:3F:DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3241D89371FF3D3AFC0BA911E316A825484B3FDA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48c07441-cd9d-4d85-aab4-65f5dd4ed7e0/0/33362e35302e39372e302f32342d3234203d3e20333936393832.roa Signing time: Wed 28 Jan 2026 08:00:01 +0000 ROA not before: Wed 28 Jan 2026 07:55:01 +0000 ROA not after: Wed 27 Jan 2027 08:00:01 +0000 asID: 396982 IP address blocks: 36.50.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48c07441-cd9d-4d85-aab4-65f5dd4ed7e0/0/3241D89371FF3D3AFC0BA911E316A825484B3FDA.crl rsync://repo-rpki.idnic.net/repo/48c07441-cd9d-4d85-aab4-65f5dd4ed7e0/0/3241D89371FF3D3AFC0BA911E316A825484B3FDA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3241D89371FF3D3AFC0BA911E316A825484B3FDA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Feb 2026 20:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:95:fc:c0:09:4a:51:08:6f:24:01:31:21:b3:1e:4f:ac:22:5b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3241D89371FF3D3AFC0BA911E316A825484B3FDA Validity Not Before: Jan 28 07:55:01 2026 GMT Not After : Jan 27 08:00:01 2027 GMT Subject: CN=8196496834DDD9DF70A436653557B52862D08105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:20:ce:af:be:ee:66:fe:94:3d:5e:e1:ea:30: 95:ca:c7:da:d3:05:a2:99:61:99:64:2e:99:28:19: fa:65:4c:19:25:75:98:57:da:e3:ea:33:22:c2:f5: 73:bd:d7:3f:73:bd:41:e4:31:52:2c:25:bd:88:07: 92:85:8e:9d:f0:b2:cf:d0:76:48:70:c6:89:b7:b6: 30:19:c0:4c:8e:9d:ab:6e:f8:b0:82:5a:64:35:3c: 7a:9b:6d:25:5d:05:e3:fd:fe:df:49:ae:51:ac:2f: 8d:8d:61:99:a9:b0:40:17:79:5b:32:dd:ed:80:6b: 93:f7:1c:2a:3b:71:86:ca:c2:99:f9:39:74:4d:e7: 7e:03:a3:05:8d:a5:6e:9f:72:81:43:2a:53:37:69: d9:0f:09:b1:af:8f:dd:bf:9f:5a:57:6f:03:19:b6: 85:10:af:df:3e:b6:40:88:31:1a:4b:c9:d0:7f:9e: 7d:30:1d:9a:65:18:ef:3a:cd:a8:35:b9:da:df:d1: 3a:b0:6c:27:ba:a8:59:39:be:c4:a3:0c:9d:4a:62: a1:72:ab:fd:8a:f9:b0:6e:b5:fe:9b:f6:ac:e8:00: c8:7a:d0:06:71:82:15:db:7e:de:69:6e:71:b1:8b: ad:8b:ff:8b:7d:7e:f0:95:ca:0c:f1:ea:f1:59:38: 39:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:96:49:68:34:DD:D9:DF:70:A4:36:65:35:57:B5:28:62:D0:81:05 X509v3 Authority Key Identifier: keyid:32:41:D8:93:71:FF:3D:3A:FC:0B:A9:11:E3:16:A8:25:48:4B:3F:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48c07441-cd9d-4d85-aab4-65f5dd4ed7e0/0/3241D89371FF3D3AFC0BA911E316A825484B3FDA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3241D89371FF3D3AFC0BA911E316A825484B3FDA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48c07441-cd9d-4d85-aab4-65f5dd4ed7e0/0/33362e35302e39372e302f32342d3234203d3e20333936393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.97.0/24 Signature Algorithm: sha256WithRSAEncryption 10:fd:1d:ef:e4:ec:45:df:75:d3:f9:56:f5:be:96:37:e7:fd: 53:0e:28:75:17:a7:e1:19:73:37:5b:e8:5c:56:64:3a:27:6e: f5:06:89:f4:81:45:be:df:2e:45:49:cb:1e:ef:06:1e:ff:c9: 82:70:10:4e:01:69:56:d3:74:cb:33:88:36:02:57:d6:c9:14: e1:ec:d5:56:03:8f:b3:47:10:21:67:09:93:df:da:f4:86:1c: 92:71:96:1e:71:1e:d2:50:7a:89:63:e2:74:95:5d:30:c2:c5: 3b:75:50:da:61:2f:e6:c4:63:30:a2:6b:03:bf:e5:00:82:a4: af:11:d9:3b:af:0f:9e:97:da:ca:d1:92:85:52:33:bf:b3:7b: 43:9c:f5:dd:05:35:09:27:c0:99:69:fc:81:f9:eb:03:b0:e3: c4:34:dd:f1:3b:28:83:d7:7a:a4:5b:52:e4:18:38:b8:70:ea: 8d:99:fc:32:49:e8:cb:1f:7b:8d:77:d8:18:9f:c5:8b:bc:13: 9c:f1:54:86:ac:87:b5:be:88:1c:b6:d7:1c:7f:22:e0:b8:2b: 78:ff:f3:27:10:05:41:aa:4f:98:07:5e:d4:8d:14:e2:f7:cd: e4:3a:43:0f:48:03:4b:2a:b3:60:e2:4f:de:c9:b5:12:05:c7: 14:c7:5b:98 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSJX8wAlKUQhvJAExIbMeT6wiWxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzI0MUQ4OTM3MUZGM0QzQUZDMEJBOTExRTMxNkE4MjU0 ODRCM0ZEQTAeFw0yNjAxMjgwNzU1MDFaFw0yNzAxMjcwODAwMDFaMDMxMTAvBgNV BAMTKDgxOTY0OTY4MzREREQ5REY3MEE0MzY2NTM1NTdCNTI4NjJEMDgxMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBIM6vvu5m/pQ9XuHqMJXKx9rT BaKZYZlkLpkoGfplTBkldZhX2uPqMyLC9XO91z9zvUHkMVIsJb2IB5KFjp3wss/Q dkhwxom3tjAZwEyOnatu+LCCWmQ1PHqbbSVdBeP9/t9JrlGsL42NYZmpsEAXeVsy 3e2Aa5P3HCo7cYbKwpn5OXRN534DowWNpW6fcoFDKlM3adkPCbGvj92/n1pXbwMZ toUQr98+tkCIMRpLydB/nn0wHZplGO86zag1udrf0TqwbCe6qFk5vsSjDJ1KYqFy q/2K+bButf6b9qzoAMh60AZxghXbft5pbnGxi62L/4t9fvCVygzx6vFZODm7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUgZZJaDTd2d9wpDZlNVe1KGLQgQUwHwYDVR0j BBgwFoAUMkHYk3H/PTr8C6kR4xaoJUhLP9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGMwNzQ0MS1jZDlkLTRkODUtYWFiNC02NWY1ZGQ0ZWQ3ZTAvMC8zMjQxRDg5Mzcx RkYzRDNBRkMwQkE5MTFFMzE2QTgyNTQ4NEIzRkRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzI0MUQ4OTM3MUZGM0QzQUZDMEJBOTExRTMxNkE4MjU0ODRC M0ZEQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4YzA3NDQxLWNkOWQtNGQ4NS1h YWI0LTY1ZjVkZDRlZDdlMC8wLzMzMzYyZTM1MzAyZTM5MzcyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMzM5MzYzOTM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAkMmEwDQYJKoZIhvcN AQELBQADggEBABD9He/k7EXfddP5VvW+ljfn/VMOKHUXp+EZczdb6FxWZDonbvUG ifSBRb7fLkVJyx7vBh7/yYJwEE4BaVbTdMsziDYCV9bJFOHs1VYDj7NHECFnCZPf 2vSGHJJxlh5xHtJQeolj4nSVXTDCxTt1UNphL+bEYzCiawO/5QCCpK8R2TuvD56X 2srRkoVSM7+ze0Oc9d0FNQknwJlp/IH56wOw48Q03fE7KIPXeqRbUuQYOLhw6o2Z /DJJ6Msfe4132BifxYu8E5zxVIash7W+iBy21xx/IuC4K3j/8ycQBUGqT5gHXtSN FOL3zeQ6Qw9IA0sqs2DiT97JtRIFxxTHW5g= -----END CERTIFICATE-----Generated at Sun Feb 22 22:01:58 2026 by rpki-client