$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230352e302f32342d3234203d3e20313430303331.roa File: 3230322e3136322e3230352e302f32342d3234203d3e20313430303331.roa (raw, json) Hash identifier: NtKvk5Msnr+OYmvngvl1opELw8+yxnOTrsc/4EZwK20= Subject key identifier: 45:80:61:11:93:72:0A:91:93:8E:8E:5F:A3:68:1F:9F:D4:F0:2F:E5 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 65389D372F9D50BE875A68655BAEAEC72471B0CF Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230352e302f32342d3234203d3e20313430303331.roa Signing time: Sun 03 May 2026 02:18:42 +0000 ROA not before: Sun 03 May 2026 02:13:42 +0000 ROA not after: Sun 02 May 2027 02:18:42 +0000 asID: 140031 IP address blocks: 202.162.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:38:9d:37:2f:9d:50:be:87:5a:68:65:5b:ae:ae:c7:24:71:b0:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:42 2026 GMT Not After : May 2 02:18:42 2027 GMT Subject: CN=4580611193720A91938E8E5FA3681F9FD4F02FE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e9:c9:22:92:c3:0a:33:ac:85:89:23:04:5e: 67:47:50:db:49:a8:fc:74:06:44:31:a0:96:e1:74: 51:0c:4f:96:44:73:4d:f3:85:39:f7:f5:e2:09:dc: b1:d7:7b:d1:9a:18:3d:e3:c4:b6:3f:23:a5:5c:56: d4:6d:d9:97:de:8e:b1:76:10:82:21:c3:59:59:1b: f6:e0:7c:3d:92:bf:9a:3d:d9:95:ef:25:ee:16:c6: 21:76:70:bc:10:8e:98:e8:2b:58:67:59:fd:6f:31: 62:27:c4:f0:ba:1c:a1:c7:a0:2e:80:03:e7:35:10: e7:ec:e9:21:fe:25:a0:cb:ba:1e:7b:f0:7a:87:5a: b6:49:db:2d:69:60:09:17:4e:21:bf:7d:9e:e4:7f: 2d:ce:1d:77:22:f4:83:1c:a2:8d:26:e4:a3:79:a2: 58:22:80:69:8d:af:8c:4f:c5:b6:d8:f9:1e:d3:c7: 47:b3:4a:19:df:d9:5f:73:dd:a9:a3:a3:99:5f:04: 7d:47:0e:e0:25:2a:7c:eb:33:53:28:11:a1:ee:34: 5e:f7:cb:97:6f:51:c7:ca:f2:a9:f0:7e:2b:72:60: 1a:6e:38:3f:90:25:ca:0e:22:f2:2c:fe:e7:25:33: 2c:47:18:7e:cd:59:4c:fc:2c:08:ed:2f:83:ac:9c: ba:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:80:61:11:93:72:0A:91:93:8E:8E:5F:A3:68:1F:9F:D4:F0:2F:E5 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230352e302f32342d3234203d3e20313430303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.205.0/24 Signature Algorithm: sha256WithRSAEncryption 34:a5:48:69:86:49:df:66:b4:84:84:3a:de:b3:24:26:51:0e: 5b:25:fc:ed:3f:83:da:e9:73:3b:a4:c1:9b:9b:40:8b:29:67: 37:4e:c6:b8:dd:38:34:f2:8d:54:b5:d5:48:68:ec:59:8b:cc: e1:2c:0f:64:7f:85:40:15:b6:dc:e0:79:10:d7:01:78:62:1e: 0c:2a:d9:27:d8:f8:0c:e1:fd:f2:ea:5b:d3:13:d4:72:8d:26: a5:7e:92:b3:d8:f1:56:1b:d0:31:c7:48:d9:71:d1:78:fd:73: b3:10:c7:b7:f0:1b:a0:af:c9:b6:31:0b:c8:73:c9:80:8b:98: 55:46:80:9a:0d:f0:16:49:d2:24:18:fe:90:da:c6:1b:a4:58: 7e:d6:33:b0:30:b3:a8:6f:26:c7:ce:87:47:48:44:bb:d5:7c: d5:e9:aa:7e:5f:f1:74:7f:62:a4:45:6e:f3:e1:9d:5d:59:4c: fd:4c:c2:28:c1:f1:f7:38:8c:90:36:a0:6b:14:84:21:d1:4c: 70:b3:8e:63:d1:e6:50:18:73:b9:9a:12:34:38:3e:c3:13:c1: 1e:71:4e:d6:e4:1c:9f:55:5a:67:c1:4f:d5:7b:11:7e:30:92: 62:0e:3f:be:60:f9:47:27:f1:0d:54:50:8d:aa:40:46:bf:e5: 2b:e8:1c:01 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZTidNy+dUL6HWmhlW66uxyRxsM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNDJaFw0yNzA1MDIwMjE4NDJaMDMxMTAvBgNV BAMTKDQ1ODA2MTExOTM3MjBBOTE5MzhFOEU1RkEzNjgxRjlGRDRGMDJGRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm6ckiksMKM6yFiSMEXmdHUNtJ qPx0BkQxoJbhdFEMT5ZEc03zhTn39eIJ3LHXe9GaGD3jxLY/I6VcVtRt2ZfejrF2 EIIhw1lZG/bgfD2Sv5o92ZXvJe4WxiF2cLwQjpjoK1hnWf1vMWInxPC6HKHHoC6A A+c1EOfs6SH+JaDLuh578HqHWrZJ2y1pYAkXTiG/fZ7kfy3OHXci9IMcoo0m5KN5 olgigGmNr4xPxbbY+R7Tx0ezShnf2V9z3amjo5lfBH1HDuAlKnzrM1MoEaHuNF73 y5dvUcfK8qnwfityYBpuOD+QJcoOIvIs/uclMyxHGH7NWUz8LAjtL4OsnLrXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURYBhEZNyCpGTjo5fo2gfn9TwL+UwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKos0wDQYJ KoZIhvcNAQELBQADggEBADSlSGmGSd9mtISEOt6zJCZRDlsl/O0/g9rpczukwZub QIspZzdOxrjdODTyjVS11Uho7FmLzOEsD2R/hUAVttzgeRDXAXhiHgwq2SfY+Azh /fLqW9MT1HKNJqV+krPY8VYb0DHHSNlx0Xj9c7MQx7fwG6CvybYxC8hzyYCLmFVG gJoN8BZJ0iQY/pDaxhukWH7WM7Aws6hvJsfOh0dIRLvVfNXpqn5f8XR/YqRFbvPh nV1ZTP1MwijB8fc4jJA2oGsUhCHRTHCzjmPR5lAYc7maEjQ4PsMTwR5xTtbkHJ9V WmfBT9V7EX4wkmIOP75g+Ucn8Q1UUI2qQEa/5SvoHAE= -----END CERTIFICATE-----Generated at Wed May 13 07:34:51 2026 by rpki-client