$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e203435333035.roa File: 3230322e34372e3138382e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: YJRCBupflF/I8POF8sMQ3AXgFo1nrT6mZHr4XrUFzvU= Subject key identifier: 0B:3A:CB:D7:78:AC:78:3D:26:25:8C:12:F4:DA:D9:80:4A:CE:7D:91 Certificate issuer: /CN=8863D43C2CD36E9DE28C7E55F1891CC25C4F2985 Certificate serial: 2F3BD12C7C240916C3CF364DB12FF7229F302EC5 Authority key identifier: 88:63:D4:3C:2C:D3:6E:9D:E2:8C:7E:55:F1:89:1C:C2:5C:4F:29:85 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e203435333035.roa Signing time: Sun 03 May 2026 02:18:26 +0000 ROA not before: Sun 03 May 2026 02:13:26 +0000 ROA not after: Sun 02 May 2027 02:18:26 +0000 asID: 45305 IP address blocks: 202.47.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.crl rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3b:d1:2c:7c:24:09:16:c3:cf:36:4d:b1:2f:f7:22:9f:30:2e:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8863D43C2CD36E9DE28C7E55F1891CC25C4F2985 Validity Not Before: May 3 02:13:26 2026 GMT Not After : May 2 02:18:26 2027 GMT Subject: CN=0B3ACBD778AC783D26258C12F4DAD9804ACE7D91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f5:d3:12:0e:ce:57:06:2c:cb:bb:be:91:2f: 9d:3a:5f:0a:e1:21:a6:d6:08:37:26:d2:cd:bb:51: 7c:be:b8:a7:cd:4f:4e:8e:58:dd:2f:ba:f1:b5:00: 00:28:33:99:e0:25:7f:9b:32:43:6e:48:31:be:48: 05:ad:c1:5a:31:8b:4b:dc:0e:a6:57:6d:83:42:ea: 08:af:a0:0b:e2:bd:8d:20:b4:96:a3:9c:eb:de:26: c2:21:8b:0a:52:2a:ae:7d:7d:55:5f:68:a5:23:d9: 6b:40:49:32:53:1f:ee:20:5a:b8:0c:14:ff:e1:87: b1:21:10:ca:ee:4a:2e:41:2f:f9:43:2e:25:4d:a0: 7d:80:7c:34:9f:b7:97:59:5d:5f:c3:42:2d:a4:75: d3:97:6a:28:47:ce:79:ce:d6:e4:6f:bc:25:e5:25: f6:23:3d:5f:71:45:60:59:a6:c6:76:8a:de:bc:f9: e0:ed:2c:c4:8e:5e:7a:0d:27:ae:c8:8a:31:d9:78: 25:6e:d7:87:15:94:e0:29:e4:4d:a1:17:da:4c:4e: 6f:44:41:00:06:6b:cb:99:c2:11:eb:58:ff:c1:69: bc:37:4b:b2:b7:2d:e5:1f:45:62:b2:e3:ba:0f:3b: ff:2f:38:d8:87:36:22:ce:a6:0c:e4:57:4a:99:6f: a5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3A:CB:D7:78:AC:78:3D:26:25:8C:12:F4:DA:D9:80:4A:CE:7D:91 X509v3 Authority Key Identifier: keyid:88:63:D4:3C:2C:D3:6E:9D:E2:8C:7E:55:F1:89:1C:C2:5C:4F:29:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/24 Signature Algorithm: sha256WithRSAEncryption 83:9a:13:8b:e8:9b:5f:ca:37:42:df:56:5e:fe:5b:b7:3e:ab: 98:b2:54:f6:96:5e:6a:32:aa:6c:e3:10:22:cf:26:23:41:27: 0b:5b:7b:51:65:6c:3f:65:99:3c:29:dd:7f:56:fe:66:0c:0f: 93:a6:a1:11:29:8a:a6:2b:4e:20:6f:c2:fc:75:9a:04:76:83: 09:70:76:b8:ee:11:28:df:86:e0:a6:be:a8:14:c5:e0:40:b5: b0:94:18:56:9d:eb:79:7b:99:0e:d6:55:93:6a:bc:c4:52:b6: 72:88:db:d5:52:a3:a8:8e:28:5c:a4:a7:22:29:ff:0c:2d:2e: a8:8d:f2:b1:a8:9e:b7:f5:d4:c0:67:50:57:5a:55:14:9d:53: d0:ad:42:78:21:64:ff:03:61:3d:48:5f:0c:b5:b5:fa:c0:c1: a4:ca:1c:70:77:87:2f:dd:90:30:7c:a8:e8:e0:12:85:71:f0: 4f:ab:52:6a:e6:ab:d2:c5:e5:41:ff:0e:77:2c:9a:e9:27:89: 58:d4:af:94:eb:33:8a:7b:7d:88:38:49:5f:4e:98:a1:1e:d5: 54:c9:2f:41:47:08:bf:38:41:1d:33:93:b5:1b:99:5b:78:e2: d8:7f:63:ab:c1:d3:f0:62:8d:4a:d0:7d:7b:cd:6f:c5:01:99: bc:e1:25:9f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULzvRLHwkCRbDzzZNsS/3Ip8wLsUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODg2M0Q0M0MyQ0QzNkU5REUyOEM3RTU1RjE4OTFDQzI1 QzRGMjk4NTAeFw0yNjA1MDMwMjEzMjZaFw0yNzA1MDIwMjE4MjZaMDMxMTAvBgNV BAMTKDBCM0FDQkQ3NzhBQzc4M0QyNjI1OEMxMkY0REFEOTgwNEFDRTdEOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF9dMSDs5XBizLu76RL506Xwrh IabWCDcm0s27UXy+uKfNT06OWN0vuvG1AAAoM5ngJX+bMkNuSDG+SAWtwVoxi0vc DqZXbYNC6givoAvivY0gtJajnOveJsIhiwpSKq59fVVfaKUj2WtASTJTH+4gWrgM FP/hh7EhEMruSi5BL/lDLiVNoH2AfDSft5dZXV/DQi2kddOXaihHznnO1uRvvCXl JfYjPV9xRWBZpsZ2it68+eDtLMSOXnoNJ67IijHZeCVu14cVlOAp5E2hF9pMTm9E QQAGa8uZwhHrWP/Babw3S7K3LeUfRWKy47oPO/8vONiHNiLOpgzkV0qZb6XlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCzrL13iseD0mJYwS9NrZgErOfZEwHwYDVR0j BBgwFoAUiGPUPCzTbp3ijH5V8YkcwlxPKYUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWVlOTQwMTQtODdmYS00YmMyLWIxYzYtN2ZkMmE4OTQ3NmYzLzAvODg2M0Q0M0My Q0QzNkU5REUyOEM3RTU1RjE4OTFDQzI1QzRGMjk4NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84ODYzRDQzQzJDRDM2RTlERTI4QzdFNTVGMTg5MUNDMjVDNEYy OTg1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlZTk0MDE0LTg3ZmEtNGJjMi1i MWM2LTdmZDJhODk0NzZmMy8wLzMyMzAzMjJlMzQzNzJlMzEzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovvDANBgkqhkiG 9w0BAQsFAAOCAQEAg5oTi+ibX8o3Qt9WXv5btz6rmLJU9pZeajKqbOMQIs8mI0En C1t7UWVsP2WZPCndf1b+ZgwPk6ahESmKpitOIG/C/HWaBHaDCXB2uO4RKN+G4Ka+ qBTF4EC1sJQYVp3reXuZDtZVk2q8xFK2cojb1VKjqI4oXKSnIin/DC0uqI3ysaie t/XUwGdQV1pVFJ1T0K1CeCFk/wNhPUhfDLW1+sDBpMoccHeHL92QMHyo6OAShXHw T6tSauar0sXlQf8Odyya6SeJWNSvlOszint9iDhJX06YoR7VVMkvQUcIvzhBHTOT tRuZW3ji2H9jq8HT8GKNStB9e81vxQGZvOElnw== -----END CERTIFICATE-----Generated at Wed May 13 03:48:41 2026 by rpki-client