$ rpki-client -vvf rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa File: 3230322e35372e32312e302f32342d3234203d3e20313431363733.roa (raw, json) Hash identifier: 2uayKWV7qVJbZpJZiiGrPFO3R21PwEyriXpTW2MB4pQ= Subject key identifier: 3C:92:B3:B2:B4:E3:D1:2B:20:B1:9F:28:58:1D:2E:F3:4A:09:F8:56 Certificate issuer: /CN=9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C Certificate serial: 21C76E0E7FC34977DDD4DC95FB91E38C50D0B651 Authority key identifier: 9D:B8:C4:72:3E:3B:FD:D0:13:8A:79:16:A8:BB:12:C4:5C:82:CD:9C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa Signing time: Sun 03 May 2026 02:13:11 +0000 ROA not before: Sun 03 May 2026 02:08:11 +0000 ROA not after: Sun 02 May 2027 02:13:11 +0000 asID: 141673 IP address blocks: 202.57.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.crl rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c7:6e:0e:7f:c3:49:77:dd:d4:dc:95:fb:91:e3:8c:50:d0:b6:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C Validity Not Before: May 3 02:08:11 2026 GMT Not After : May 2 02:13:11 2027 GMT Subject: CN=3C92B3B2B4E3D12B20B19F28581D2EF34A09F856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:57:bc:2f:5f:f2:95:06:50:67:d6:0d:55:6f: 65:d9:2f:bd:f5:27:d3:06:29:57:50:b4:29:15:bc: a0:02:57:29:60:e3:23:7d:ce:04:bd:48:13:c0:1b: bf:13:aa:d7:79:39:87:2a:64:0e:57:8d:eb:4e:82: 0c:42:4e:e9:ad:d2:38:f9:7f:b8:ca:b9:0d:9c:0f: 0e:c4:fc:ff:40:19:7d:17:03:74:70:f3:36:d4:2e: 21:78:c4:fe:de:10:5e:bb:2c:f8:b5:00:25:ea:5a: 01:22:3a:bd:19:d5:d7:f0:08:da:d8:b1:76:c7:ce: 19:fc:6c:fb:27:48:51:b2:d0:23:31:07:6b:49:8d: 0c:7b:20:36:b9:d6:1f:10:bf:db:58:1e:29:cc:9d: bd:9d:5d:fc:b3:54:23:d2:e3:94:a8:ad:c9:ca:ad: db:af:ab:4c:28:ea:2f:72:ca:ec:20:0c:a6:05:f1: e7:14:51:1d:dd:14:cf:7a:5b:40:30:5b:0a:ed:61: 18:86:d4:91:8f:ec:d0:27:da:2c:63:c2:36:f7:10: 24:dd:c8:ba:3a:45:2e:5a:6b:7d:86:fd:38:32:d7: 33:9a:34:a0:ef:9f:d7:2f:07:c1:d5:a3:1b:7e:4b: d9:ff:a5:bf:f5:25:fb:aa:ad:fa:33:7a:74:a1:08: d3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:92:B3:B2:B4:E3:D1:2B:20:B1:9F:28:58:1D:2E:F3:4A:09:F8:56 X509v3 Authority Key Identifier: keyid:9D:B8:C4:72:3E:3B:FD:D0:13:8A:79:16:A8:BB:12:C4:5C:82:CD:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.21.0/24 Signature Algorithm: sha256WithRSAEncryption aa:ef:d5:ec:7a:61:b7:41:91:00:76:68:26:d1:9b:1e:89:91: 55:cd:c3:df:4f:7d:b3:76:a3:8a:0a:c2:73:80:dd:ae:af:90: 57:25:83:da:bc:ad:2a:ed:ef:47:69:69:2d:09:59:58:66:03: f0:7c:b9:2c:00:2f:40:27:b5:99:69:a4:9e:4f:e3:ce:00:3c: 12:c6:30:65:22:2e:a8:c4:28:39:e0:1e:b0:17:00:0c:a2:09: ee:84:5c:79:35:b3:1b:1f:b0:f0:0c:dc:4c:19:58:3f:b4:34: 4d:77:c2:65:4a:8c:61:2a:4b:48:f3:fe:e2:1f:20:a6:d8:ac: d2:bd:d7:b3:13:a1:74:16:80:31:b0:8c:1f:71:0f:b3:06:c5: 44:cf:74:06:a2:18:c2:a7:93:56:26:c3:b2:b6:06:2a:2a:d3: 4f:e5:00:67:e0:43:01:47:37:b2:4d:7f:8c:b3:38:30:79:dc: b7:0b:47:3d:55:cb:f1:09:4c:76:b9:49:36:40:ac:3d:0d:1a: 4e:6d:70:b1:ac:99:b0:e6:12:41:2a:09:c7:e3:a3:25:7b:72: 52:1c:44:36:8e:b9:18:ac:d7:37:25:ad:9e:ac:47:b5:2f:f0: e8:d4:76:ad:47:03:ec:49:44:25:3b:fe:ea:fe:ee:c1:dc:d8: 96:cc:84:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIcduDn/DSXfd1NyV+5HjjFDQtlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURCOEM0NzIzRTNCRkREMDEzOEE3OTE2QThCQjEyQzQ1 QzgyQ0Q5QzAeFw0yNjA1MDMwMjA4MTFaFw0yNzA1MDIwMjEzMTFaMDMxMTAvBgNV BAMTKDNDOTJCM0IyQjRFM0QxMkIyMEIxOUYyODU4MUQyRUYzNEEwOUY4NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgV7wvX/KVBlBn1g1Vb2XZL731 J9MGKVdQtCkVvKACVylg4yN9zgS9SBPAG78Tqtd5OYcqZA5XjetOggxCTumt0jj5 f7jKuQ2cDw7E/P9AGX0XA3Rw8zbULiF4xP7eEF67LPi1ACXqWgEiOr0Z1dfwCNrY sXbHzhn8bPsnSFGy0CMxB2tJjQx7IDa51h8Qv9tYHinMnb2dXfyzVCPS45SorcnK rduvq0wo6i9yyuwgDKYF8ecUUR3dFM96W0AwWwrtYRiG1JGP7NAn2ixjwjb3ECTd yLo6RS5aa32G/Tgy1zOaNKDvn9cvB8HVoxt+S9n/pb/1JfuqrfozenShCNPTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPJKzsrTj0SsgsZ8oWB0u80oJ+FYwHwYDVR0j BBgwFoAUnbjEcj47/dATinkWqLsSxFyCzZwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGQzZjA5NWItNzEzMC00MTIyLWFmMjUtN2QyZTdhMTFiMWIxLzAvOURCOEM0NzIz RTNCRkREMDEzOEE3OTE2QThCQjEyQzQ1QzgyQ0Q5Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85REI4QzQ3MjNFM0JGREQwMTM4QTc5MTZBOEJCMTJDNDVDODJD RDlDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5FTANBgkqhkiG 9w0BAQsFAAOCAQEAqu/V7Hpht0GRAHZoJtGbHomRVc3D3099s3ajigrCc4Ddrq+Q VyWD2rytKu3vR2lpLQlZWGYD8Hy5LAAvQCe1mWmknk/jzgA8EsYwZSIuqMQoOeAe sBcADKIJ7oRceTWzGx+w8AzcTBlYP7Q0TXfCZUqMYSpLSPP+4h8gptis0r3XsxOh dBaAMbCMH3EPswbFRM90BqIYwqeTVibDsrYGKirTT+UAZ+BDAUc3sk1/jLM4MHnc twtHPVXL8QlMdrlJNkCsPQ0aTm1wsayZsOYSQSoJx+OjJXtyUhxENo65GKzXNyWt nqxHtS/w6NR2rUcD7ElEJTv+6v7uwdzYlsyEpw== -----END CERTIFICATE-----Generated at Wed May 13 04:19:42 2026 by rpki-client