$ rpki-client -vvf rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e20313430343639.roa File: 3230322e35372e32342e302f32332d3233203d3e20313430343639.roa (raw, json) Hash identifier: d1pFnM2SYbSdXqGP4WVzR+cUntyYSCzP9FKk6VY+PFE= Subject key identifier: 00:7E:DC:F2:B3:D0:DF:0F:8B:AB:BC:B9:7D:89:56:2F:38:C3:57:86 Certificate issuer: /CN=9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C Certificate serial: 41BE77B7150865C70C995503371BB6A3EA8D991B Authority key identifier: 9D:B8:C4:72:3E:3B:FD:D0:13:8A:79:16:A8:BB:12:C4:5C:82:CD:9C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e20313430343639.roa Signing time: Sun 03 May 2026 02:13:10 +0000 ROA not before: Sun 03 May 2026 02:08:10 +0000 ROA not after: Sun 02 May 2027 02:13:10 +0000 asID: 140469 IP address blocks: 202.57.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.crl rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:be:77:b7:15:08:65:c7:0c:99:55:03:37:1b:b6:a3:ea:8d:99:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C Validity Not Before: May 3 02:08:10 2026 GMT Not After : May 2 02:13:10 2027 GMT Subject: CN=007EDCF2B3D0DF0F8BABBCB97D89562F38C35786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6a:d4:28:90:7b:52:d2:f6:7b:83:56:18:f1: 54:1a:f3:7f:5f:9a:3c:19:af:07:4d:f3:de:c8:59: 08:8f:3e:be:93:77:58:e0:72:fe:ec:49:a2:26:76: dc:80:bb:5d:bc:17:13:39:be:84:9d:ae:64:bb:8e: 95:40:73:a6:66:7d:20:d5:a8:46:6f:07:1b:6a:93: e9:a2:66:b3:d0:8a:89:1e:71:aa:88:df:fa:64:3f: ea:12:cf:f3:50:b3:f3:30:36:af:7d:32:0b:d3:8a: 86:a8:c2:d2:bb:bf:2f:31:30:f3:be:c1:8c:86:68: 97:ab:25:95:d8:0d:0a:5a:a9:16:ed:d1:bf:ae:65: e9:53:2b:12:88:02:75:48:f0:60:0a:32:e7:2a:97: 94:9b:6f:86:e2:1e:be:1c:89:49:45:33:d5:89:0e: 62:37:dd:e7:eb:5c:af:33:65:31:a8:21:8c:43:c8: 26:25:6a:b4:25:23:6e:c6:4e:d6:a8:e3:93:8b:77: b5:4d:8a:ea:01:65:73:7f:36:b4:8d:12:10:54:10: 02:3a:7d:66:cd:5f:bf:79:a9:e7:8b:fd:13:b7:36: c3:49:04:d0:23:00:49:fe:3a:af:f1:46:b9:e1:32: 1e:8b:11:15:7e:53:ea:ac:4e:c2:3a:7a:03:bd:e7: a1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7E:DC:F2:B3:D0:DF:0F:8B:AB:BC:B9:7D:89:56:2F:38:C3:57:86 X509v3 Authority Key Identifier: keyid:9D:B8:C4:72:3E:3B:FD:D0:13:8A:79:16:A8:BB:12:C4:5C:82:CD:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DB8C4723E3BFDD0138A7916A8BB12C45C82CD9C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.24.0/23 Signature Algorithm: sha256WithRSAEncryption aa:b4:41:ab:c1:01:f1:62:33:fb:7b:09:cf:67:25:f1:63:12: ce:3a:ad:b8:8b:02:07:c1:65:c0:c2:64:3e:4d:42:79:85:fb: f5:f5:b9:47:cf:90:7a:bb:a4:b7:96:c8:72:a4:ff:3c:37:4a: 21:8a:e4:1e:21:14:c4:f5:08:8b:26:85:d3:15:23:1a:e9:d6: 5c:ab:98:31:f6:9f:b6:c6:81:d8:81:cc:26:bd:3b:c9:04:58: e7:a1:0c:c2:eb:57:c2:32:4e:3b:29:c9:94:d0:5c:3f:95:65: a1:f1:a9:9c:9d:92:e4:f5:0f:45:26:3f:d9:e1:d9:6c:61:eb: 62:d9:ba:5b:2c:21:34:4f:da:96:ac:56:ba:d8:cc:fc:80:d8: 78:9f:b7:bb:2a:35:10:19:87:d6:56:a0:a1:1a:85:f1:14:75: 18:7e:73:f7:b9:da:c0:65:84:71:69:fb:42:7b:f7:12:13:50: 67:3d:c2:84:e0:a9:39:d3:f0:14:15:fe:b8:b3:97:a9:05:f7: a9:1e:ae:59:bc:29:2d:cf:54:e7:dc:19:1b:c2:4a:83:43:ba: 4c:c9:5f:58:62:a1:03:81:5c:4b:49:69:c3:cd:09:29:d6:7e: 32:80:e9:26:11:60:1d:33:0e:89:1c:b1:e8:b4:6b:da:ac:57: 08:1a:12:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQb53txUIZccMmVUDNxu2o+qNmRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURCOEM0NzIzRTNCRkREMDEzOEE3OTE2QThCQjEyQzQ1 QzgyQ0Q5QzAeFw0yNjA1MDMwMjA4MTBaFw0yNzA1MDIwMjEzMTBaMDMxMTAvBgNV BAMTKDAwN0VEQ0YyQjNEMERGMEY4QkFCQkNCOTdEODk1NjJGMzhDMzU3ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdatQokHtS0vZ7g1YY8VQa839f mjwZrwdN897IWQiPPr6Td1jgcv7sSaImdtyAu128FxM5voSdrmS7jpVAc6ZmfSDV qEZvBxtqk+miZrPQiokecaqI3/pkP+oSz/NQs/MwNq99MgvTioaowtK7vy8xMPO+ wYyGaJerJZXYDQpaqRbt0b+uZelTKxKIAnVI8GAKMucql5Sbb4biHr4ciUlFM9WJ DmI33efrXK8zZTGoIYxDyCYlarQlI27GTtao45OLd7VNiuoBZXN/NrSNEhBUEAI6 fWbNX795qeeL/RO3NsNJBNAjAEn+Oq/xRrnhMh6LERV+U+qsTsI6egO956FRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAH7c8rPQ3w+Lq7y5fYlWLzjDV4YwHwYDVR0j BBgwFoAUnbjEcj47/dATinkWqLsSxFyCzZwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGQzZjA5NWItNzEzMC00MTIyLWFmMjUtN2QyZTdhMTFiMWIxLzAvOURCOEM0NzIz RTNCRkREMDEzOEE3OTE2QThCQjEyQzQ1QzgyQ0Q5Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85REI4QzQ3MjNFM0JGREQwMTM4QTc5MTZBOEJCMTJDNDVDODJD RDlDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco5GDANBgkqhkiG 9w0BAQsFAAOCAQEAqrRBq8EB8WIz+3sJz2cl8WMSzjqtuIsCB8FlwMJkPk1CeYX7 9fW5R8+Qerukt5bIcqT/PDdKIYrkHiEUxPUIiyaF0xUjGunWXKuYMfaftsaB2IHM Jr07yQRY56EMwutXwjJOOynJlNBcP5VlofGpnJ2S5PUPRSY/2eHZbGHrYtm6Wywh NE/alqxWutjM/IDYeJ+3uyo1EBmH1lagoRqF8RR1GH5z97nawGWEcWn7Qnv3EhNQ Zz3ChOCpOdPwFBX+uLOXqQX3qR6uWbwpLc9U59wZG8JKg0O6TMlfWGKhA4FcS0lp w80JKdZ+MoDpJhFgHTMOiRyx6LRr2qxXCBoSGA== -----END CERTIFICATE-----Generated at Wed May 13 00:33:53 2026 by rpki-client