$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa File: 3230322e35322e382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: sSouMFkZlTFKTD2xdOJYxFZn/CRu4waBgru9JSFUby8= Subject key identifier: 0B:5A:91:D4:4B:26:0C:EB:7C:44:9B:BD:48:5D:D1:41:8F:6F:EB:61 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 3F13C75A45589348BBADC729EA97330781B77A8F Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa Signing time: Thu 16 Apr 2026 11:03:25 +0000 ROA not before: Thu 16 Apr 2026 10:58:25 +0000 ROA not after: Thu 15 Apr 2027 11:03:25 +0000 asID: 17671 IP address blocks: 202.52.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 04:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:13:c7:5a:45:58:93:48:bb:ad:c7:29:ea:97:33:07:81:b7:7a:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Apr 16 10:58:25 2026 GMT Not After : Apr 15 11:03:25 2027 GMT Subject: CN=0B5A91D44B260CEB7C449BBD485DD1418F6FEB61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:6e:5d:38:bc:8f:56:45:8d:e8:81:1f:12:3f: a5:b4:d9:db:71:c2:17:33:2e:b1:31:e8:a7:ac:f5: 97:71:58:67:0f:4f:89:63:a2:b7:51:84:54:58:71: 02:4c:36:39:ec:72:7d:33:33:2f:9c:9f:da:d5:b9: 43:1f:ce:7f:df:48:fe:46:ad:d4:95:ec:d7:3c:e1: 46:4f:5e:be:67:54:c2:17:59:6e:29:27:39:c5:0b: fd:72:af:fa:12:a1:17:13:82:c2:d5:7b:0b:78:d9: 32:fc:9a:ee:69:72:c0:46:34:d5:6c:75:13:cb:bf: 29:a9:a0:d7:2c:cf:be:43:3b:6c:e2:f9:77:81:4b: 24:ff:da:7f:d0:46:ab:49:32:c9:34:e6:58:ef:1b: fe:ce:84:18:2a:3e:93:06:bc:be:41:03:35:a1:c5: 16:c7:5a:a2:26:b0:4a:9e:35:bd:30:eb:c8:dd:dc: 74:63:21:01:3c:d0:6c:0b:1b:20:bd:87:96:69:c2: 67:56:3b:03:8c:b1:78:69:33:eb:2b:de:ee:c8:84: 3c:7a:0c:ca:7c:41:ec:28:0b:85:e4:eb:67:03:3f: de:bd:f3:30:b5:ec:ed:ed:aa:56:38:62:b3:1c:b9: b0:83:d9:f5:78:c5:b4:2f:53:11:dc:70:d3:49:0d: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5A:91:D4:4B:26:0C:EB:7C:44:9B:BD:48:5D:D1:41:8F:6F:EB:61 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.8.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ff:c7:6a:42:11:50:c4:58:73:8e:9c:a2:e6:e4:d2:2a:a3: fb:2b:6a:e3:0e:34:1b:f5:bf:db:6e:db:ac:1e:91:72:5b:3f: 71:1e:4e:f2:1c:77:f6:d5:85:50:2b:9c:7d:e8:3f:7d:75:f5: 13:c3:4d:d6:09:8f:d8:0c:d8:f0:cd:6a:65:0c:10:77:0b:29: 45:f5:ff:c2:d2:f8:49:3a:f3:17:d0:ca:2d:26:7a:71:f8:09: c2:01:c0:27:3a:47:59:c1:56:ec:5e:ce:9d:16:5d:ee:a7:ba: 9c:c0:94:34:83:44:09:d3:34:cf:8c:f5:a6:28:00:ff:89:3d: 96:02:bd:e3:7b:40:af:6f:b7:4b:0c:5e:28:35:b3:94:5d:fa: bb:46:c3:68:64:d1:a8:a2:fb:da:88:07:4a:ee:d0:12:01:11: 7e:c4:a6:21:9d:16:1f:03:7a:0b:1b:1a:33:bf:9f:8d:64:e8: e5:d8:f9:e9:85:38:fb:11:91:ed:10:89:3c:6d:6e:f3:e8:c5: a4:95:13:6a:2d:f2:2d:8f:3c:61:7b:2b:6a:f8:6b:ed:9e:22: 48:be:9b:b3:4a:8d:b1:80:77:55:04:b5:a6:c8:25:ee:80:d7: 75:81:89:44:76:f1:3f:01:86:b3:c8:e3:de:2f:06:2b:38:24: 13:a5:ec:1c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPxPHWkVYk0i7rccp6pczB4G3eo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNjA0MTYxMDU4MjVaFw0yNzA0MTUxMTAzMjVaMDMxMTAvBgNV BAMTKDBCNUE5MUQ0NEIyNjBDRUI3QzQ0OUJCRDQ4NUREMTQxOEY2RkVCNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxbl04vI9WRY3ogR8SP6W02dtx whczLrEx6Kes9ZdxWGcPT4ljordRhFRYcQJMNjnscn0zMy+cn9rVuUMfzn/fSP5G rdSV7Nc84UZPXr5nVMIXWW4pJznFC/1yr/oSoRcTgsLVewt42TL8mu5pcsBGNNVs dRPLvympoNcsz75DO2zi+XeBSyT/2n/QRqtJMsk05ljvG/7OhBgqPpMGvL5BAzWh xRbHWqImsEqeNb0w68jd3HRjIQE80GwLGyC9h5ZpwmdWOwOMsXhpM+sr3u7IhDx6 DMp8QewoC4Xk62cDP9698zC17O3tqlY4YrMcubCD2fV4xbQvUxHccNNJDXy1AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUC1qR1EsmDOt8RJu9SF3RQY9v62EwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNlYmYxMTYtZmUyYS00OTFiLWFh YzgtMjIwZWFkMGI1NGUyLzAvMzIzMDMyMmUzNTMyMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNAgwDQYJKoZIhvcNAQEL BQADggEBAFP/x2pCEVDEWHOOnKLm5NIqo/srauMONBv1v9tu26wekXJbP3EeTvIc d/bVhVArnH3oP3119RPDTdYJj9gM2PDNamUMEHcLKUX1/8LS+Ek68xfQyi0menH4 CcIBwCc6R1nBVuxezp0WXe6nupzAlDSDRAnTNM+M9aYoAP+JPZYCveN7QK9vt0sM Xig1s5Rd+rtGw2hk0aii+9qIB0ru0BIBEX7EpiGdFh8DegsbGjO/n41k6OXY+emF OPsRke0QiTxtbvPoxaSVE2ot8i2PPGF7K2r4a+2eIki+m7NKjbGAd1UEtabIJe6A 13WBiUR28T8BhrPI494vBis4JBOl7Bw= -----END CERTIFICATE-----Generated at Fri Apr 17 17:47:45 2026 by rpki-client