$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa File: 3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: naLyboY2k2JGQ/kfjaeQEzrVtqIF4ak4Al9soyH3LDo= Subject key identifier: 58:E6:5A:27:06:59:C4:C7:50:F8:5A:6B:4A:5E:76:FE:7E:B6:B3:61 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 07AEA3DD365D14535416B6300A6A53124CBEF98B Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa Signing time: Sun 03 May 2026 02:18:57 +0000 ROA not before: Sun 03 May 2026 02:13:57 +0000 ROA not after: Sun 02 May 2027 02:18:57 +0000 asID: 138841 IP address blocks: 202.162.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ae:a3:dd:36:5d:14:53:54:16:b6:30:0a:6a:53:12:4c:be:f9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:57 2026 GMT Not After : May 2 02:18:57 2027 GMT Subject: CN=58E65A270659C4C750F85A6B4A5E76FE7EB6B361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:85:8f:9e:45:8e:0a:0a:7f:2c:94:56:43:33: 9b:e3:45:fd:a0:46:76:cb:ab:42:16:5e:59:68:89: 0d:aa:94:e9:dc:b3:c9:4a:61:7e:83:76:08:6c:7d: 7a:91:5d:a1:52:17:0b:6e:f8:d0:05:b9:ac:5e:8e: b0:36:0e:e2:4d:e9:b7:66:6f:0b:d5:15:65:41:8c: cb:c1:75:86:52:27:02:98:fd:eb:a5:4f:36:a5:7d: 41:9e:31:20:61:2b:da:f1:b3:00:26:5e:87:31:b7: c0:68:1f:80:25:44:a7:76:fb:d9:dc:79:7d:4e:f7: 1e:a6:8a:ad:92:77:45:92:a9:1c:59:00:ac:a1:48: 8f:02:7f:f3:99:6d:78:1f:45:5b:28:d7:44:f7:69: 63:da:95:43:a8:eb:f6:58:ed:f4:5c:7f:6f:63:cd: dc:5b:dc:ca:c9:5f:5c:f4:91:46:23:23:c6:ab:f8: 8e:90:a0:7c:23:06:99:ae:bc:ff:21:83:e4:1d:71: b5:0a:99:1e:6a:bb:43:5d:f5:69:26:f6:cd:b3:85: 80:fc:ed:ec:31:f4:4d:52:59:d8:21:00:35:a8:7f: 11:28:8c:df:4a:8e:d0:0a:17:58:fa:a0:da:b3:83: 15:a2:1e:27:29:87:6c:6e:66:d0:a4:ed:e9:3b:1e: b7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:E6:5A:27:06:59:C4:C7:50:F8:5A:6B:4A:5E:76:FE:7E:B6:B3:61 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.200.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:6b:ee:e3:19:e8:47:78:c2:23:76:0e:a9:ef:54:37:10:59: f0:6a:7e:fd:c9:85:f5:51:9e:22:47:4e:6d:02:94:13:ad:85: 0c:4a:91:13:fb:a3:6f:dd:a5:70:ad:3c:ce:79:23:b0:77:82: e8:c0:69:f2:2a:dd:82:a4:b2:28:42:ea:67:ff:b8:19:bb:f2: 8d:8c:85:8e:f9:5d:e2:f8:d3:72:a1:41:5b:eb:47:1a:09:58: cf:7e:2a:58:8a:3b:0a:b2:6a:42:d8:3a:fd:9c:0d:17:c9:f4: e9:27:7a:bc:b6:e5:9a:79:4e:f9:e1:2e:f9:71:ef:3a:7e:75: c2:25:02:bf:8e:ea:b3:58:03:8e:ac:41:6c:8d:80:3a:ff:f5: 20:2e:da:bb:d7:64:1b:9e:6f:16:29:0e:ad:fe:cc:76:02:e8: ab:24:08:2f:52:bf:46:4d:8e:54:cb:94:0a:ca:62:90:d5:a9: bf:80:8c:35:bd:a2:2a:77:63:40:8d:c7:75:b4:37:70:15:7b: ed:3a:5c:66:62:09:02:92:42:7b:a4:aa:43:4a:a9:06:8c:8d: 3c:df:e7:45:38:02:0c:5b:ac:31:41:c5:44:a6:c8:41:f0:df: 10:a6:a0:8f:fa:7b:30:8f:c9:86:a4:39:0e:fa:b3:4f:35:4a: ba:42:d3:89 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB66j3TZdFFNUFrYwCmpTEky++YswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTdaFw0yNzA1MDIwMjE4NTdaMDMxMTAvBgNV BAMTKDU4RTY1QTI3MDY1OUM0Qzc1MEY4NUE2QjRBNUU3NkZFN0VCNkIzNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxhY+eRY4KCn8slFZDM5vjRf2g RnbLq0IWXlloiQ2qlOncs8lKYX6DdghsfXqRXaFSFwtu+NAFuaxejrA2DuJN6bdm bwvVFWVBjMvBdYZSJwKY/eulTzalfUGeMSBhK9rxswAmXocxt8BoH4AlRKd2+9nc eX1O9x6miq2Sd0WSqRxZAKyhSI8Cf/OZbXgfRVso10T3aWPalUOo6/ZY7fRcf29j zdxb3MrJX1z0kUYjI8ar+I6QoHwjBpmuvP8hg+QdcbUKmR5qu0Nd9Wkm9s2zhYD8 7ewx9E1SWdghADWofxEojN9KjtAKF1j6oNqzgxWiHicph2xuZtCk7ek7HrczAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWOZaJwZZxMdQ+FprSl52/n62s2EwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKosgwDQYJ KoZIhvcNAQELBQADggEBAEpr7uMZ6Ed4wiN2DqnvVDcQWfBqfv3JhfVRniJHTm0C lBOthQxKkRP7o2/dpXCtPM55I7B3gujAafIq3YKksihC6mf/uBm78o2MhY75XeL4 03KhQVvrRxoJWM9+KliKOwqyakLYOv2cDRfJ9Oknery25Zp5TvnhLvlx7zp+dcIl Ar+O6rNYA46sQWyNgDr/9SAu2rvXZBuebxYpDq3+zHYC6KskCC9Sv0ZNjlTLlArK YpDVqb+AjDW9oip3Y0CNx3W0N3AVe+06XGZiCQKSQnukqkNKqQaMjTzf50U4Agxb rDFBxUSmyEHw3xCmoI/6ezCPyYakOQ76s081SrpC04k= -----END CERTIFICATE-----Generated at Wed May 13 08:27:43 2026 by rpki-client