$ rpki-client -vvf rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3230322e34332e3131362e302f32332d3234203d3e203435373037.roa File: 3230322e34332e3131362e302f32332d3234203d3e203435373037.roa (raw, json) Hash identifier: x/aLbzvpFAKtjeU3rH0ALM/iYwbJRGNDYx6P3rrU1Q8= Subject key identifier: 40:0B:6D:11:9E:5C:2D:8A:41:55:21:AB:3B:0B:BF:05:2B:83:63:FA Certificate issuer: /CN=E5E46B40DA4B39812590F66F8D9A48EB7BF80663 Certificate serial: 2306FA75909389E6759ADF8E215EE144F0AC874B Authority key identifier: E5:E4:6B:40:DA:4B:39:81:25:90:F6:6F:8D:9A:48:EB:7B:F8:06:63 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3230322e34332e3131362e302f32332d3234203d3e203435373037.roa Signing time: Sun 03 May 2026 02:19:20 +0000 ROA not before: Sun 03 May 2026 02:14:20 +0000 ROA not after: Sun 02 May 2027 02:19:20 +0000 asID: 45707 IP address blocks: 202.43.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.crl rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:06:fa:75:90:93:89:e6:75:9a:df:8e:21:5e:e1:44:f0:ac:87:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5E46B40DA4B39812590F66F8D9A48EB7BF80663 Validity Not Before: May 3 02:14:20 2026 GMT Not After : May 2 02:19:20 2027 GMT Subject: CN=400B6D119E5C2D8A415521AB3B0BBF052B8363FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:80:c5:1d:c4:78:12:59:15:e0:bf:95:a6:11: 38:52:17:b8:3c:06:0e:07:36:c8:8b:5e:21:95:85: 8d:5b:41:dd:4c:49:85:d0:74:0b:6b:cf:ea:d2:26: 91:bf:8a:98:53:d5:be:f7:7d:a4:df:98:e3:c2:7a: 8f:bb:28:25:49:6a:99:1e:a5:b8:95:a8:bf:34:f6: 27:a4:cd:ca:6e:6b:26:9a:14:65:36:40:34:2c:5a: 3e:8e:50:2c:c9:e4:8b:88:ce:f2:ed:56:92:1b:f7: dd:2b:de:4e:0e:03:62:f6:26:70:45:26:72:8e:17: 94:e4:e0:c2:15:6f:82:03:bd:24:b0:1a:6a:2a:b5: 4d:dc:e1:ff:87:e9:93:d0:c1:96:f8:9c:cb:02:1e: dc:68:78:0e:a3:85:2e:08:37:dc:4c:6c:2f:21:05: bd:a9:0b:63:ed:81:00:32:84:20:0a:d5:d3:e1:b1: f2:9c:2a:88:f9:64:da:d5:36:99:c6:5b:6d:38:9b: 9e:14:f4:dc:d3:21:30:26:03:e4:49:e5:61:b4:0e: 92:a6:4b:24:0b:73:8e:ea:07:0c:b4:87:bb:92:3c: 9a:5e:00:1d:85:6e:f5:93:4c:71:fd:d9:bf:51:58: 08:da:64:ec:69:c2:02:ab:54:12:1e:76:46:88:ab: 61:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0B:6D:11:9E:5C:2D:8A:41:55:21:AB:3B:0B:BF:05:2B:83:63:FA X509v3 Authority Key Identifier: keyid:E5:E4:6B:40:DA:4B:39:81:25:90:F6:6F:8D:9A:48:EB:7B:F8:06:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5E46B40DA4B39812590F66F8D9A48EB7BF80663.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3230322e34332e3131362e302f32332d3234203d3e203435373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.116.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:b6:27:00:06:99:94:f2:fe:1d:f4:c9:67:08:c8:8a:bc:ea: 6c:1f:b4:a8:06:2d:90:36:7d:0b:39:28:a9:e1:af:b2:2c:f8: f3:f8:b6:a2:83:96:ff:50:52:ca:29:e8:97:7b:01:65:15:70: fe:b9:c7:2f:63:00:dd:bc:01:3a:93:f5:96:55:e0:c8:fd:82: 33:ec:e7:3f:aa:5b:ad:e3:1d:27:27:57:87:89:5b:9d:f0:5a: 68:06:97:07:38:2c:7e:76:d9:35:43:63:a1:3a:2c:30:80:74: 39:ef:76:e6:95:45:63:40:c3:ac:c5:de:99:8e:5a:3a:78:b4: c2:8d:25:b0:b8:60:71:63:09:f4:ed:6a:7a:20:76:dd:bb:4d: 5e:fa:02:1c:3d:48:06:14:4e:8d:22:b6:1a:03:a2:3e:34:07: 93:dc:5d:f2:68:14:97:95:97:84:e4:96:04:d7:da:9b:53:65: f5:c4:4a:09:0e:e2:00:49:0e:c5:ff:96:8e:58:25:99:c5:0f: e7:c9:8d:11:a5:2c:0e:76:74:49:02:73:19:cb:58:60:31:8f: 5d:73:62:2e:99:71:62:cd:c3:38:c2:b1:1e:23:f6:7f:34:d3: 0f:81:33:f9:9a:97:a9:c0:5b:b8:67:c2:b1:2c:06:a0:a4:5e: bc:21:60:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIwb6dZCTieZ1mt+OIV7hRPCsh0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVFNDZCNDBEQTRCMzk4MTI1OTBGNjZGOEQ5QTQ4RUI3 QkY4MDY2MzAeFw0yNjA1MDMwMjE0MjBaFw0yNzA1MDIwMjE5MjBaMDMxMTAvBgNV BAMTKDQwMEI2RDExOUU1QzJEOEE0MTU1MjFBQjNCMEJCRjA1MkI4MzYzRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjgMUdxHgSWRXgv5WmEThSF7g8 Bg4HNsiLXiGVhY1bQd1MSYXQdAtrz+rSJpG/iphT1b73faTfmOPCeo+7KCVJapke pbiVqL809iekzcpuayaaFGU2QDQsWj6OUCzJ5IuIzvLtVpIb990r3k4OA2L2JnBF JnKOF5Tk4MIVb4IDvSSwGmoqtU3c4f+H6ZPQwZb4nMsCHtxoeA6jhS4IN9xMbC8h Bb2pC2PtgQAyhCAK1dPhsfKcKoj5ZNrVNpnGW204m54U9NzTITAmA+RJ5WG0DpKm SyQLc47qBwy0h7uSPJpeAB2FbvWTTHH92b9RWAjaZOxpwgKrVBIedkaIq2GxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQAttEZ5cLYpBVSGrOwu/BSuDY/owHwYDVR0j BBgwFoAU5eRrQNpLOYElkPZvjZpI63v4BmMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjBkMmJkZTQtMDU2Yi00NWM2LTgwYmYtZjVkNGQyNzczMzZiLzAvRTVFNDZCNDBE QTRCMzk4MTI1OTBGNjZGOEQ5QTQ4RUI3QkY4MDY2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNUU0NkI0MERBNEIzOTgxMjU5MEY2NkY4RDlBNDhFQjdCRjgw NjYzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwZDJiZGU0LTA1NmItNDVjNi04 MGJmLWY1ZDRkMjc3MzM2Yi8wLzMyMzAzMjJlMzQzMzJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTM3MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcordDANBgkqhkiG 9w0BAQsFAAOCAQEAjLYnAAaZlPL+HfTJZwjIirzqbB+0qAYtkDZ9CzkoqeGvsiz4 8/i2ooOW/1BSyinol3sBZRVw/rnHL2MA3bwBOpP1llXgyP2CM+znP6pbreMdJydX h4lbnfBaaAaXBzgsfnbZNUNjoTosMIB0Oe925pVFY0DDrMXemY5aOni0wo0lsLhg cWMJ9O1qeiB23btNXvoCHD1IBhROjSK2GgOiPjQHk9xd8mgUl5WXhOSWBNfam1Nl 9cRKCQ7iAEkOxf+WjlglmcUP58mNEaUsDnZ0SQJzGctYYDGPXXNiLplxYs3DOMKx HiP2fzTTD4Ez+ZqXqcBbuGfCsSwGoKRevCFg4w== -----END CERTIFICATE-----Generated at Wed May 13 15:03:26 2026 by rpki-client