$ rpki-client -vvf repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa File: 3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: 0PufeWW7UTq1z+rmrj/igBrR/bsES4gurnD6Q9DFDTY= Subject key identifier: 17:0B:D6:8C:39:43:4B:2B:C2:3E:BC:C3:6F:1D:70:0B:0D:AF:E9:E5 Certificate issuer: /CN=483F366E1FE9C068ED4417FD71D5B18420D56B62 Certificate serial: 36A1A85BA7A0F0A323932ABD37C74C0873C571B4 Authority key identifier: 48:3F:36:6E:1F:E9:C0:68:ED:44:17:FD:71:D5:B1:84:20:D5:6B:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/483F366E1FE9C068ED4417FD71D5B18420D56B62.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa Signing time: Tue 03 Mar 2026 10:00:01 +0000 ROA not before: Tue 03 Mar 2026 09:55:01 +0000 ROA not after: Tue 02 Mar 2027 10:00:01 +0000 asID: 45298 IP address blocks: 203.171.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/483F366E1FE9C068ED4417FD71D5B18420D56B62.crl rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/483F366E1FE9C068ED4417FD71D5B18420D56B62.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/483F366E1FE9C068ED4417FD71D5B18420D56B62.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 08:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:a1:a8:5b:a7:a0:f0:a3:23:93:2a:bd:37:c7:4c:08:73:c5:71:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=483F366E1FE9C068ED4417FD71D5B18420D56B62 Validity Not Before: Mar 3 09:55:01 2026 GMT Not After : Mar 2 10:00:01 2027 GMT Subject: CN=170BD68C39434B2BC23EBCC36F1D700B0DAFE9E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:28:77:ea:79:f1:91:94:86:a0:e3:6e:b1:df: 57:ce:c2:31:6f:e6:6b:b9:9f:38:91:c6:f5:59:19: 35:5f:f8:cb:2f:63:5d:86:d7:09:29:08:d5:12:8d: ec:15:94:c8:55:04:84:87:8d:88:c2:00:60:35:6f: 05:a7:06:a8:7d:9a:2b:ac:f0:88:5e:2d:4a:b9:5c: 35:d0:d5:f4:e8:6c:36:d0:85:80:69:fe:e5:44:73: 99:5b:f5:68:ef:99:90:e6:0f:a0:40:73:2f:90:ff: 99:de:ab:4b:ef:f1:71:92:61:b7:26:19:63:82:01: 80:83:e1:83:1b:ea:c5:d9:78:ea:d7:f6:ff:e9:c2: 4b:a4:5c:b2:56:3a:bc:ed:52:43:c3:ac:69:be:83: 7d:47:dd:bc:ae:4a:d7:97:00:ea:c9:c5:bb:a3:56: b9:82:a0:68:b8:6c:89:da:cd:64:28:1d:71:f9:85: 42:14:84:6b:81:b5:ea:89:3f:04:eb:6f:5a:3a:48: 82:f9:50:bc:b0:78:23:d4:34:ca:6f:56:7f:72:9b: 23:42:b7:fe:51:68:e7:de:d5:27:09:42:49:ba:09: 56:51:09:62:6d:88:e0:d4:ed:34:6b:6a:96:6f:bb: fe:2e:2c:fd:51:a2:35:e6:d9:43:55:66:36:a0:94: 2a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0B:D6:8C:39:43:4B:2B:C2:3E:BC:C3:6F:1D:70:0B:0D:AF:E9:E5 X509v3 Authority Key Identifier: keyid:48:3F:36:6E:1F:E9:C0:68:ED:44:17:FD:71:D5:B1:84:20:D5:6B:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/483F366E1FE9C068ED4417FD71D5B18420D56B62.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/483F366E1FE9C068ED4417FD71D5B18420D56B62.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.171.221.0/24 Signature Algorithm: sha256WithRSAEncryption 58:d9:1e:33:b7:7c:a4:16:b3:98:6f:16:d5:b0:64:06:88:13: 59:a0:71:c0:49:8c:05:f8:47:5b:e2:d1:cb:0c:ed:3a:a9:3e: 9e:6f:d0:b9:81:a4:63:d9:48:0e:fe:fb:0c:e1:2f:b1:5c:2f: 7f:65:ce:f3:50:43:92:2d:4b:15:41:a4:1f:ff:3d:0c:bd:d9: 0a:4c:9b:00:67:24:ae:ad:44:05:f7:cf:c4:ae:3e:28:e1:03: d4:08:c2:81:32:82:89:9d:f6:7d:d9:2c:9f:5b:6c:21:c9:d3: fb:ec:f0:8a:ad:2d:d3:87:a5:bd:3c:12:7f:c0:94:a8:a1:1e: b0:85:0f:06:ee:78:77:71:ee:5e:af:4d:37:b2:52:d8:a6:64: b4:56:26:a3:7d:a3:1c:bc:b4:6b:0f:1a:78:0a:ef:af:6e:32: d9:a3:c1:21:26:18:e9:03:c1:89:0a:7f:72:52:7f:8a:36:f8: 59:e8:4d:75:fb:b2:a1:34:a8:a5:d5:1f:b5:66:58:1e:50:61: b9:d9:49:41:01:f5:1a:b0:14:d7:58:c1:57:dd:b3:89:27:08: 78:ed:2d:c3:04:c7:c4:81:cc:aa:12:2d:c7:f6:d6:3c:a5:e2: be:bd:c0:25:88:87:89:af:d3:aa:70:64:d0:56:9d:5a:70:3c: b8:5c:6e:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNqGoW6eg8KMjkyq9N8dMCHPFcbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgzRjM2NkUxRkU5QzA2OEVENDQxN0ZENzFENUIxODQy MEQ1NkI2MjAeFw0yNjAzMDMwOTU1MDFaFw0yNzAzMDIxMDAwMDFaMDMxMTAvBgNV BAMTKDE3MEJENjhDMzk0MzRCMkJDMjNFQkNDMzZGMUQ3MDBCMERBRkU5RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfKHfqefGRlIag426x31fOwjFv 5mu5nziRxvVZGTVf+MsvY12G1wkpCNUSjewVlMhVBISHjYjCAGA1bwWnBqh9mius 8IheLUq5XDXQ1fTobDbQhYBp/uVEc5lb9WjvmZDmD6BAcy+Q/5neq0vv8XGSYbcm GWOCAYCD4YMb6sXZeOrX9v/pwkukXLJWOrztUkPDrGm+g31H3byuSteXAOrJxbuj VrmCoGi4bInazWQoHXH5hUIUhGuBteqJPwTrb1o6SIL5ULyweCPUNMpvVn9ymyNC t/5RaOfe1ScJQkm6CVZRCWJtiODU7TRrapZvu/4uLP1RojXm2UNVZjaglCqXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFwvWjDlDSyvCPrzDbx1wCw2v6eUwHwYDVR0j BBgwFoAUSD82bh/pwGjtRBf9cdWxhCDVa2IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmYyYWQ0Zi1hNzJhLTQ2ZDEtYmQ3ZC1hNTYwYzMxZWZjYWQvMC80ODNGMzY2RTFG RTlDMDY4RUQ0NDE3RkQ3MUQ1QjE4NDIwRDU2QjYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDgzRjM2NkUxRkU5QzA2OEVENDQxN0ZENzFENUIxODQyMEQ1 NkI2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZjJhZDRmLWE3MmEtNDZkMS1i ZDdkLWE1NjBjMzFlZmNhZC8wLzMyMzAzMzJlMzEzNzMxMmUzMjMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzIzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6vdMA0GCSqG SIb3DQEBCwUAA4IBAQBY2R4zt3ykFrOYbxbVsGQGiBNZoHHASYwF+Edb4tHLDO06 qT6eb9C5gaRj2UgO/vsM4S+xXC9/Zc7zUEOSLUsVQaQf/z0MvdkKTJsAZySurUQF 98/Erj4o4QPUCMKBMoKJnfZ92SyfW2whydP77PCKrS3Th6W9PBJ/wJSooR6whQ8G 7nh3ce5er003slLYpmS0ViajfaMcvLRrDxp4Cu+vbjLZo8EhJhjpA8GJCn9yUn+K NvhZ6E11+7KhNKil1R+1ZlgeUGG52UlBAfUasBTXWMFX3bOJJwh47S3DBMfEgcyq Ei3H9tY8peK+vcAliIeJr9OqcGTQVp1acDy4XG4m -----END CERTIFICATE-----Generated at Tue Mar 24 16:30:50 2026 by rpki-client