$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa File: 3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa (raw, json) Hash identifier: pbPX1b+9pZs4MNkJfKcML4SB68Lyi9e2boXOmq7hVIY= Subject key identifier: D3:1A:56:CA:C8:C5:09:89:72:0D:49:E4:53:0E:8A:47:71:79:D3:E3 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 124BCE5371DBAD04A1210208C5194C4E81ED9AB3 Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:47 +0000 ROA not before: Sun 03 May 2026 02:13:47 +0000 ROA not after: Sun 02 May 2027 02:18:47 +0000 asID: 23679 IP address blocks: 202.162.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:4b:ce:53:71:db:ad:04:a1:21:02:08:c5:19:4c:4e:81:ed:9a:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:47 2026 GMT Not After : May 2 02:18:47 2027 GMT Subject: CN=D31A56CAC8C50989720D49E4530E8A477179D3E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:43:1e:af:2c:c5:39:21:37:d7:96:f6:b1:12: a1:43:44:dc:e6:62:88:cf:65:03:2e:7a:e8:fb:a5: 9c:c2:75:6b:23:65:e0:be:dc:26:e1:6c:61:17:21: fb:4b:02:b5:7f:d2:ad:4d:f4:36:8d:90:c5:ba:ba: d7:7f:ba:15:c4:ab:b0:88:0c:1e:c1:dc:45:21:c3: ff:37:ae:83:6f:9d:b2:6a:c7:56:83:6b:f7:b0:56: 52:27:68:c8:3a:d8:85:6b:08:0e:16:ee:1e:2c:7d: b4:0e:ed:88:31:ea:b3:b7:95:01:8e:2f:23:22:f3: 3f:c3:3c:00:18:ee:1f:c4:b8:ca:2f:61:3a:64:69: b6:31:61:5d:1e:5a:81:41:3a:33:0d:d2:e7:87:5a: 5c:5f:45:68:fb:d2:db:0a:71:4f:2e:9a:66:a4:d4: 72:8e:4b:ac:5d:25:93:bb:3b:be:25:76:2a:e3:3a: 0f:f8:aa:3d:d9:c6:a8:f5:d3:25:e4:43:59:c9:d5: 72:aa:db:f7:3c:1a:d3:da:8a:f6:85:bf:e9:ec:a0: 6b:97:b9:67:69:1a:85:07:a6:1d:b5:be:9f:f5:5e: 4c:c5:41:a6:c4:db:6a:65:59:55:d5:1d:03:c4:d5: 41:c6:c6:d7:47:81:5a:25:de:9a:8d:cc:bd:e7:f5: 9a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:1A:56:CA:C8:C5:09:89:72:0D:49:E4:53:0E:8A:47:71:79:D3:E3 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.192.0/21 Signature Algorithm: sha256WithRSAEncryption 38:a7:76:5e:50:03:e8:82:5b:20:71:5a:67:66:ab:46:74:83: 73:ac:c0:3e:cd:a4:8f:9a:48:c5:58:c7:f0:d5:04:12:a1:5b: 18:d8:0c:ff:6b:60:11:08:cb:42:82:f4:9f:be:85:03:e1:6a: 23:5e:73:d5:fd:96:18:74:23:18:fc:52:e6:87:d1:ea:d1:c8: 29:05:b2:b6:be:0f:fe:1d:93:44:b3:45:e5:14:56:11:84:25: 88:ba:ed:47:95:ac:20:f0:1c:86:21:3e:82:6f:ef:48:7a:e4: 21:15:03:0d:f1:fe:d3:6f:bb:d3:3b:52:89:5c:e7:2e:2b:5e: 3c:d4:9b:47:9d:7f:af:52:73:05:f4:84:b9:b9:40:3c:83:20: 47:b2:25:01:e0:06:df:79:a1:f4:7b:0b:49:0e:f3:30:fa:ca: ad:08:df:73:3d:24:e2:10:e8:d6:3e:0c:69:d5:85:fa:c3:57: 78:48:9b:57:93:27:92:f5:be:ee:64:98:6d:7b:18:38:5f:a9: 18:7b:fe:d3:bf:c0:47:d7:f4:e8:ab:bd:ab:e8:24:84:13:4e: 1d:0d:aa:e3:ce:55:39:f2:cb:3a:14:db:81:e8:b6:dc:35:00: 02:73:cc:15:00:8f:9e:b3:4a:05:30:43:ff:68:e5:37:c9:ce: 14:a0:2c:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEkvOU3HbrQShIQIIxRlMToHtmrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNDdaFw0yNzA1MDIwMjE4NDdaMDMxMTAvBgNV BAMTKEQzMUE1NkNBQzhDNTA5ODk3MjBENDlFNDUzMEU4QTQ3NzE3OUQzRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaQx6vLMU5ITfXlvaxEqFDRNzm YojPZQMueuj7pZzCdWsjZeC+3CbhbGEXIftLArV/0q1N9DaNkMW6utd/uhXEq7CI DB7B3EUhw/83roNvnbJqx1aDa/ewVlInaMg62IVrCA4W7h4sfbQO7Ygx6rO3lQGO LyMi8z/DPAAY7h/EuMovYTpkabYxYV0eWoFBOjMN0ueHWlxfRWj70tsKcU8ummak 1HKOS6xdJZO7O74ldirjOg/4qj3Zxqj10yXkQ1nJ1XKq2/c8GtPaivaFv+nsoGuX uWdpGoUHph21vp/1XkzFQabE22plWVXVHQPE1UHGxtdHgVol3pqNzL3n9ZpfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0xpWysjFCYlyDUnkUw6KR3F50+MwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMTM5MzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDyqLAMA0GCSqG SIb3DQEBCwUAA4IBAQA4p3ZeUAPoglsgcVpnZqtGdINzrMA+zaSPmkjFWMfw1QQS oVsY2Az/a2ARCMtCgvSfvoUD4WojXnPV/ZYYdCMY/FLmh9Hq0cgpBbK2vg/+HZNE s0XlFFYRhCWIuu1Hlawg8ByGIT6Cb+9IeuQhFQMN8f7Tb7vTO1KJXOcuK1481JtH nX+vUnMF9IS5uUA8gyBHsiUB4AbfeaH0ewtJDvMw+sqtCN9zPSTiEOjWPgxp1YX6 w1d4SJtXkyeS9b7uZJhtexg4X6kYe/7Tv8BH1/Toq72r6CSEE04dDarjzlU58ss6 FNuB6LbcNQACc8wVAI+es0oFMEP/aOU3yc4UoCx5 -----END CERTIFICATE-----Generated at Wed May 13 09:34:26 2026 by rpki-client