$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa File: 3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: GjT9QT3oyW6G0K5kI+WCT/jUEuaQfgrzrPI0wxHvStc= Subject key identifier: 73:45:1B:B2:F8:33:AE:90:67:83:C3:D8:E6:2D:E3:5C:82:1C:3C:87 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 3B4CC0D1C95B709386BF29F19951D30C54C7291F Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:55 +0000 ROA not before: Sun 03 May 2026 02:13:55 +0000 ROA not after: Sun 02 May 2027 02:18:55 +0000 asID: 23679 IP address blocks: 202.162.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4c:c0:d1:c9:5b:70:93:86:bf:29:f1:99:51:d3:0c:54:c7:29:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:55 2026 GMT Not After : May 2 02:18:55 2027 GMT Subject: CN=73451BB2F833AE906783C3D8E62DE35C821C3C87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ce:fd:7a:8f:e0:1b:4b:2e:1b:c4:47:22:75: d6:79:e5:0c:e9:65:69:5e:04:60:c8:76:a1:e7:0a: a1:a5:e5:a4:f6:ce:dc:d6:58:1e:01:73:0e:87:96: b9:39:63:ab:7e:f5:af:9f:ad:46:f2:64:0d:51:d6: 40:58:58:29:08:e9:b9:0b:f3:40:e5:06:27:fa:07: f9:6a:31:da:1d:61:26:fd:07:0b:46:32:73:3b:d6: 11:7e:7b:91:60:71:08:0a:83:4e:e6:02:05:75:41: a7:93:7d:8f:b0:7e:2c:8c:d3:8c:ff:7f:2a:82:b4: bf:9a:95:29:c3:7a:c8:3e:94:ef:1c:4b:5d:fe:07: d6:57:33:ec:82:8d:47:ec:98:26:65:92:3e:50:f2: 2c:60:5c:85:9e:0e:99:e5:53:43:90:5a:7d:0a:88: e9:f8:62:24:dc:6e:40:ca:6a:90:ef:a4:8d:81:1c: 9c:1d:11:6e:5b:4b:96:8f:dc:5d:72:31:49:d0:90: 51:3a:09:7f:c9:55:5b:67:66:98:f3:e6:a6:b7:eb: 2c:5c:eb:a6:c0:fa:3e:08:70:6e:59:59:22:c5:7b: c4:bc:10:4f:15:59:d5:b4:ce:ae:86:77:d1:8d:c0: 70:f0:ed:01:c6:d7:9e:cf:bf:64:01:b7:bf:09:7c: 0a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:45:1B:B2:F8:33:AE:90:67:83:C3:D8:E6:2D:E3:5C:82:1C:3C:87 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.202.0/24 Signature Algorithm: sha256WithRSAEncryption 58:91:a6:a9:c3:33:db:71:cd:71:f1:ef:15:01:23:c8:f3:e5: 15:d2:0b:3b:05:2b:0a:74:81:33:88:7c:da:66:3e:a2:44:f3: 5c:bc:a3:8c:4b:86:e5:4c:ca:f1:25:67:09:b7:bd:83:cf:94: 1e:c1:97:0b:10:be:6c:bd:9e:44:4b:b8:35:b9:27:eb:31:50: 85:31:2d:b6:b0:eb:65:ce:2d:a7:43:83:19:63:05:64:6c:95: 74:a1:95:da:ed:1e:21:9a:66:91:97:0e:93:e5:75:67:e5:3d: 85:f3:19:dd:c0:82:55:32:3c:92:35:9a:6e:5b:f3:6e:1f:33: d4:90:ec:70:6b:d4:dd:1f:db:b6:f7:c3:16:0a:d3:1d:5f:37: 7c:fa:25:8a:9f:9d:2e:f1:2a:fc:58:18:10:17:c2:70:9b:14: 70:5b:e8:77:0e:b0:04:cf:d5:0a:60:a5:db:3f:00:09:40:0f: 48:0d:15:33:3d:ef:19:6a:5c:92:36:d7:96:81:a0:99:9a:bc: fb:43:b6:ba:f0:25:71:ce:14:85:57:6c:f3:53:13:c0:57:4e: 5c:eb:39:02:4c:3e:01:4b:df:c1:98:e1:66:24:7e:90:1a:5a: 03:cf:37:0d:ec:f6:1f:d8:5e:72:bd:75:26:e7:ad:9d:76:d2: 77:c2:c2:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO0zA0clbcJOGvynxmVHTDFTHKR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTVaFw0yNzA1MDIwMjE4NTVaMDMxMTAvBgNV BAMTKDczNDUxQkIyRjgzM0FFOTA2NzgzQzNEOEU2MkRFMzVDODIxQzNDODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWzv16j+AbSy4bxEciddZ55Qzp ZWleBGDIdqHnCqGl5aT2ztzWWB4Bcw6Hlrk5Y6t+9a+frUbyZA1R1kBYWCkI6bkL 80DlBif6B/lqMdodYSb9BwtGMnM71hF+e5FgcQgKg07mAgV1QaeTfY+wfiyM04z/ fyqCtL+alSnDesg+lO8cS13+B9ZXM+yCjUfsmCZlkj5Q8ixgXIWeDpnlU0OQWn0K iOn4YiTcbkDKapDvpI2BHJwdEW5bS5aP3F1yMUnQkFE6CX/JVVtnZpjz5qa36yxc 66bA+j4IcG5ZWSLFe8S8EE8VWdW0zq6Gd9GNwHDw7QHG157Pv2QBt78JfArpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc0UbsvgzrpBng8PY5i3jXIIcPIcwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqLKMA0GCSqG SIb3DQEBCwUAA4IBAQBYkaapwzPbcc1x8e8VASPI8+UV0gs7BSsKdIEziHzaZj6i RPNcvKOMS4blTMrxJWcJt72Dz5QewZcLEL5svZ5ES7g1uSfrMVCFMS22sOtlzi2n Q4MZYwVkbJV0oZXa7R4hmmaRlw6T5XVn5T2F8xndwIJVMjySNZpuW/NuHzPUkOxw a9TdH9u298MWCtMdXzd8+iWKn50u8Sr8WBgQF8JwmxRwW+h3DrAEz9UKYKXbPwAJ QA9IDRUzPe8ZalySNteWgaCZmrz7Q7a68CVxzhSFV2zzUxPAV05c6zkCTD4BS9/B mOFmJH6QGloDzzcN7PYf2F5yvXUm562ddtJ3wsKd -----END CERTIFICATE-----Generated at Wed May 13 11:04:03 2026 by rpki-client