$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa File: 3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa (raw, json) Hash identifier: W6fHyf7Fs/1Zl+POaeX96tOhKniOlar41pKO1EJn7TQ= Subject key identifier: 4F:D2:B0:E1:65:D8:BD:51:53:E6:21:13:F3:EB:9F:A4:EA:77:AD:11 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 2546901364B8DFC08C37883A49A6C745F7CE71F4 Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa Signing time: Sun 03 May 2026 02:18:53 +0000 ROA not before: Sun 03 May 2026 02:13:53 +0000 ROA not after: Sun 02 May 2027 02:18:53 +0000 asID: 138841 IP address blocks: 202.162.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:46:90:13:64:b8:df:c0:8c:37:88:3a:49:a6:c7:45:f7:ce:71:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:53 2026 GMT Not After : May 2 02:18:53 2027 GMT Subject: CN=4FD2B0E165D8BD5153E62113F3EB9FA4EA77AD11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:40:ec:2c:f9:f6:98:cb:d1:af:20:37:65: cb:b5:03:70:1b:f2:93:97:58:d0:1d:b4:6f:9d:60: 53:bd:4c:c3:07:f4:31:cc:f6:06:ac:fa:64:7f:c0: 38:42:de:5c:48:1f:de:21:5b:20:a9:e5:9b:2f:d6: 12:37:90:c6:ba:28:cf:31:71:31:3f:69:36:7d:a9: a5:7a:55:8b:f8:ce:bc:42:0b:17:ee:a0:1f:c0:03: a8:1e:98:be:27:9e:6a:2c:93:6b:aa:60:04:94:8d: 1b:67:82:87:24:b3:28:d4:4c:5f:31:64:23:27:1b: fd:db:05:50:9c:78:42:ca:f3:d1:82:06:9a:9f:34: c3:0e:d3:a8:5d:bc:7a:e1:f1:bf:28:55:3b:2c:77: 2c:f7:d2:69:f6:1a:e0:d7:01:a4:e6:8c:72:39:a2: c6:02:fd:1b:c5:f6:97:be:9f:7b:4e:4b:6f:ea:11: f1:7e:ce:a4:86:fb:86:6b:a4:5e:da:08:26:c9:56: 6a:2f:38:5c:71:ed:20:9d:eb:d7:11:96:e2:d5:bd: da:f7:74:04:12:b5:dc:4b:24:7d:b0:b7:11:8d:fa: ad:3b:f7:0a:61:fc:58:40:f5:74:4e:ec:54:b2:cf: 89:40:c3:d0:05:67:51:ff:c9:25:68:90:c6:da:5a: 79:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D2:B0:E1:65:D8:BD:51:53:E6:21:13:F3:EB:9F:A4:EA:77:AD:11 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.203.0/24 Signature Algorithm: sha256WithRSAEncryption 13:71:a7:39:2a:1f:b2:57:f5:e4:c3:a9:7c:ac:52:b1:04:89: 7b:ea:99:52:c3:3a:2f:7a:2a:01:bb:45:68:97:f8:a4:01:76: da:94:1c:a0:7d:dd:9d:d3:ad:24:ac:7a:cc:50:8c:e6:2f:19: 06:df:d1:be:e2:ad:35:d6:35:ff:59:51:83:b4:8c:b2:de:3c: 7d:ac:42:ca:be:d3:53:5e:dd:27:bb:fa:5e:30:fe:75:be:a9: dc:21:85:ff:4f:5f:44:f4:c5:aa:71:f0:c7:88:73:f2:9d:3d: 4a:5b:5f:c6:b4:dd:a1:ee:5e:41:f1:e7:51:d2:14:64:9c:65: bc:0c:ca:16:de:12:5b:12:82:07:b0:cd:ed:5a:f0:64:a1:e3: 2d:4d:74:c0:b3:d0:75:0e:c7:02:2d:ca:c7:45:c5:c5:91:12: 23:84:1a:d4:7e:36:74:3d:85:de:56:7f:6a:d3:48:98:80:8f: f3:34:46:ef:59:d8:f6:e0:d7:ad:6b:0f:8e:14:cc:b5:59:ae: a0:c8:49:4c:3d:e7:22:f5:c9:28:46:61:86:af:1f:48:5c:21: 64:a7:5e:85:cc:97:30:41:e2:4f:f1:3d:c9:ec:36:10:dc:27: 5b:ef:c1:16:25:4f:4c:1c:dc:be:3d:27:f9:db:85:f7:05:06: 17:cd:42:a3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJUaQE2S438CMN4g6SabHRffOcfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTNaFw0yNzA1MDIwMjE4NTNaMDMxMTAvBgNV BAMTKDRGRDJCMEUxNjVEOEJENTE1M0U2MjExM0YzRUI5RkE0RUE3N0FEMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDORkDsLPn2mMvRryA3Zcu1A3Ab 8pOXWNAdtG+dYFO9TMMH9DHM9gas+mR/wDhC3lxIH94hWyCp5Zsv1hI3kMa6KM8x cTE/aTZ9qaV6VYv4zrxCCxfuoB/AA6gemL4nnmosk2uqYASUjRtngocksyjUTF8x ZCMnG/3bBVCceELK89GCBpqfNMMO06hdvHrh8b8oVTssdyz30mn2GuDXAaTmjHI5 osYC/RvF9pe+n3tOS2/qEfF+zqSG+4ZrpF7aCCbJVmovOFxx7SCd69cRluLVvdr3 dAQStdxLJH2wtxGN+q079wph/FhA9XRO7FSyz4lAw9AFZ1H/ySVokMbaWnmhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUT9Kw4WXYvVFT5iET8+ufpOp3rREwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKosswDQYJ KoZIhvcNAQELBQADggEBABNxpzkqH7JX9eTDqXysUrEEiXvqmVLDOi96KgG7RWiX +KQBdtqUHKB93Z3TrSSsesxQjOYvGQbf0b7irTXWNf9ZUYO0jLLePH2sQsq+01Ne 3Se7+l4w/nW+qdwhhf9PX0T0xapx8MeIc/KdPUpbX8a03aHuXkHx51HSFGScZbwM yhbeElsSggewze1a8GSh4y1NdMCz0HUOxwItysdFxcWREiOEGtR+NnQ9hd5Wf2rT SJiAj/M0Ru9Z2Pbg161rD44UzLVZrqDISUw95yL1yShGYYavH0hcIWSnXoXMlzBB 4k/xPcnsNhDcJ1vvwRYlT0wc3L49J/nbhfcFBhfNQqM= -----END CERTIFICATE-----Generated at Wed May 13 09:17:23 2026 by rpki-client