$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa File: 3230322e35322e382e302f32322d3234203d3e203137363731.roa (raw, json) Hash identifier: fHkebjkLEFapujgmeO8aj09JOe7a2JjzMQW+vXLVVSM= Subject key identifier: 7E:6A:F1:5A:ED:42:5B:2B:FD:50:B8:D1:14:D1:A5:07:69:38:2C:B6 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 43F1D749193DF7D2643906D8BBD08AC9210C7EA4 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa Signing time: Thu 16 Apr 2026 11:03:25 +0000 ROA not before: Thu 16 Apr 2026 10:58:25 +0000 ROA not after: Thu 15 Apr 2027 11:03:25 +0000 asID: 17671 IP address blocks: 202.52.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 04:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f1:d7:49:19:3d:f7:d2:64:39:06:d8:bb:d0:8a:c9:21:0c:7e:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Apr 16 10:58:25 2026 GMT Not After : Apr 15 11:03:25 2027 GMT Subject: CN=7E6AF15AED425B2BFD50B8D114D1A50769382CB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bd:f9:83:6f:c8:40:d0:45:4a:3e:70:84:fd: fd:06:0e:9d:e0:be:5b:62:eb:a3:8b:a5:b5:ec:b5: 53:57:fe:78:57:b4:5b:ed:14:2f:eb:78:13:7b:d8: 09:9f:33:5f:f6:ab:cc:6e:44:a6:f6:d0:1e:79:7f: 1c:2e:fc:ba:bb:e0:6f:1b:61:f6:8f:85:fc:5a:53: 6e:9f:e0:61:6b:35:53:96:0e:73:3b:4c:04:5b:81: e1:53:e4:4d:bc:ed:b8:2c:fd:ff:01:2b:96:84:24: 3e:81:22:d7:d5:9a:30:01:70:a7:11:72:37:aa:b5: b0:46:56:3a:34:23:76:01:94:80:38:f1:8e:56:4e: 90:1c:e4:2a:7f:07:be:f4:36:70:28:d8:a1:01:08: 67:cf:26:05:e6:4a:3f:7c:ed:f0:26:d8:61:c4:78: 0f:37:de:57:20:3d:fb:2d:92:58:dd:35:ed:c7:51: dd:d9:bc:d2:4e:d9:22:d6:52:dd:e3:86:85:7c:ac: a6:a0:cf:4b:cc:76:59:e7:6a:1b:fa:6c:6c:8d:54: 61:ad:2f:fa:0b:18:67:b5:5b:ae:30:d0:c4:ed:ed: bd:c9:00:4d:91:e0:6b:2f:82:c0:1b:4b:44:86:2f: 85:c8:f7:c4:e4:4a:70:99:da:49:ca:fe:46:73:a3: 0c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6A:F1:5A:ED:42:5B:2B:FD:50:B8:D1:14:D1:A5:07:69:38:2C:B6 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.8.0/22 Signature Algorithm: sha256WithRSAEncryption 46:4b:9f:d2:b7:ea:6a:a1:d6:f8:76:45:16:4e:bb:b8:02:38: ec:51:76:cd:56:8a:7d:91:84:a1:19:b4:d6:ba:8c:0a:04:82: c4:e4:84:a4:4d:75:e0:cf:73:e8:8c:ba:ab:fb:f9:0a:b5:d4: 7f:b1:98:11:5c:46:0f:4a:7d:3b:43:65:c3:c0:df:0f:b9:02: b5:3c:c1:11:8d:5c:f9:13:89:2c:15:be:da:93:8c:99:b2:85: 59:a4:9c:ae:50:97:55:7f:9a:2a:6d:98:e4:b1:bd:39:c0:4c: 5e:bf:e0:34:ed:8c:3e:10:1b:b1:69:2b:45:12:2c:2f:9f:5b: bc:5a:84:27:1a:5f:f7:30:14:8d:b1:b8:4b:b7:b9:d2:3d:5d: 4b:4f:2f:3b:36:82:7c:44:95:45:d2:37:6f:04:10:24:ca:ee: 7a:36:09:b2:28:1f:84:a4:fb:eb:0a:14:e2:c7:b3:17:f1:e5: ad:55:5f:b9:93:c5:05:9c:2a:02:2f:d6:85:1c:b3:3c:e5:16: f1:e1:7f:62:7e:4d:57:0e:7f:eb:c7:49:ea:37:45:6d:dd:ab: 0f:1d:af:ca:ed:7b:ff:62:a2:3a:8e:04:07:0a:09:65:81:16: 06:2f:f2:e7:81:d6:e0:59:a9:1d:3b:51:93:d7:38:04:df:dc: 1d:85:82:4c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQ/HXSRk999JkOQbYu9CKySEMfqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNjA0MTYxMDU4MjVaFw0yNzA0MTUxMTAzMjVaMDMxMTAvBgNV BAMTKDdFNkFGMTVBRUQ0MjVCMkJGRDUwQjhEMTE0RDFBNTA3NjkzODJDQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMvfmDb8hA0EVKPnCE/f0GDp3g vlti66OLpbXstVNX/nhXtFvtFC/reBN72AmfM1/2q8xuRKb20B55fxwu/Lq74G8b YfaPhfxaU26f4GFrNVOWDnM7TARbgeFT5E287bgs/f8BK5aEJD6BItfVmjABcKcR cjeqtbBGVjo0I3YBlIA48Y5WTpAc5Cp/B770NnAo2KEBCGfPJgXmSj987fAm2GHE eA833lcgPfstkljdNe3HUd3ZvNJO2SLWUt3jhoV8rKagz0vMdlnnahv6bGyNVGGt L/oLGGe1W64w0MTt7b3JAE2R4GsvgsAbS0SGL4XI98TkSnCZ2knK/kZzowxNAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUfmrxWu1CWyv9ULjRFNGlB2k4LLYwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNlYmYxMTYtZmUyYS00OTFiLWFh YzgtMjIwZWFkMGI1NGUyLzAvMzIzMDMyMmUzNTMyMmUzODJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKNAgwDQYJKoZIhvcNAQEL BQADggEBAEZLn9K36mqh1vh2RRZOu7gCOOxRds1Win2RhKEZtNa6jAoEgsTkhKRN deDPc+iMuqv7+Qq11H+xmBFcRg9KfTtDZcPA3w+5ArU8wRGNXPkTiSwVvtqTjJmy hVmknK5Ql1V/miptmOSxvTnATF6/4DTtjD4QG7FpK0USLC+fW7xahCcaX/cwFI2x uEu3udI9XUtPLzs2gnxElUXSN28EECTK7no2CbIoH4Sk++sKFOLHsxfx5a1VX7mT xQWcKgIv1oUcszzlFvHhf2J+TVcOf+vHSeo3RW3dqw8dr8rte/9iojqOBAcKCWWB FgYv8ueB1uBZqR07UZPXOATf3B2Fgkw= -----END CERTIFICATE-----Generated at Fri Apr 17 22:15:12 2026 by rpki-client