$ rpki-client -vvf rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/3230322e35312e3232342e302f32302d3234203d3e203338313434.roa File: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (raw, json) Hash identifier: NWVRwRUJEoPLPqz3cDGwdvfhxswf8EJ/TbLr4jkDe78= Subject key identifier: 34:76:7E:49:61:3A:19:0D:68:94:F8:6A:36:AA:5A:3E:95:DF:86:A3 Certificate issuer: /CN=D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436 Certificate serial: 785BA5F4AE860781154BD492A8117AF67EA1106A Authority key identifier: D2:0C:1E:0D:D0:2A:A8:B1:CE:1F:EB:A4:76:97:7C:F8:BB:16:14:36 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/3230322e35312e3232342e302f32302d3234203d3e203338313434.roa Signing time: Sun 03 May 2026 02:22:29 +0000 ROA not before: Sun 03 May 2026 02:17:29 +0000 ROA not after: Sun 02 May 2027 02:22:29 +0000 asID: 38144 IP address blocks: 202.51.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.crl rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:5b:a5:f4:ae:86:07:81:15:4b:d4:92:a8:11:7a:f6:7e:a1:10:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436 Validity Not Before: May 3 02:17:29 2026 GMT Not After : May 2 02:22:29 2027 GMT Subject: CN=34767E49613A190D6894F86A36AA5A3E95DF86A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:38:32:2f:23:67:40:7f:da:de:83:a5:46:6b: 8b:19:25:28:a2:28:82:9f:73:50:c8:e6:1b:64:22: 71:c2:ca:32:b7:f5:26:bc:29:b8:84:69:99:ab:64: 1e:1e:31:e8:86:53:53:84:e9:23:1a:41:78:2c:94: 10:08:7a:1a:54:c6:4a:b0:fe:2d:3b:a7:3c:04:4f: 51:00:95:06:22:a2:34:e2:9e:37:3a:1f:b2:6d:bc: 28:3a:4d:ff:d8:6e:3d:ec:20:45:7c:e9:17:d9:b5: b1:e7:1f:4b:4a:3f:1c:09:df:eb:20:05:79:0e:36: ff:fe:63:a0:d8:1e:96:a8:ca:7a:85:85:6a:24:cb: e2:3f:45:1a:da:7d:b0:a7:34:b4:b5:bb:d9:ed:a0: d4:c0:89:80:9b:be:1e:3a:74:2d:4c:5a:3f:f1:11: 2b:b4:3b:3c:aa:12:12:37:b5:d5:61:c5:b7:54:46: 28:e2:5a:f2:8f:69:27:99:74:17:6e:23:6c:90:e4: ba:85:c8:a0:93:ae:65:d8:f6:a7:24:df:bc:bd:21: bd:89:21:7b:bf:8e:b9:8c:bb:5e:fb:72:9f:12:f5: 4f:55:f4:1c:51:0d:d8:7f:c1:d1:7b:6f:dd:b6:d4: 38:64:2c:dc:45:8a:85:a0:41:0d:dc:c1:ab:9a:71: 99:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:76:7E:49:61:3A:19:0D:68:94:F8:6A:36:AA:5A:3E:95:DF:86:A3 X509v3 Authority Key Identifier: keyid:D2:0C:1E:0D:D0:2A:A8:B1:CE:1F:EB:A4:76:97:7C:F8:BB:16:14:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/3230322e35312e3232342e302f32302d3234203d3e203338313434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.224.0/20 Signature Algorithm: sha256WithRSAEncryption 8b:16:bd:13:57:33:37:22:1a:c9:60:67:eb:0e:9a:e8:95:d3: 45:3e:84:47:02:24:30:22:06:22:e7:9d:44:37:20:43:3b:85: 84:17:0a:ee:a6:62:1c:fa:f9:44:19:27:26:a2:eb:cd:30:4f: da:05:37:6f:b0:ba:67:4a:5a:e5:86:96:89:92:5f:84:aa:56: a6:38:4e:80:85:96:8b:ed:e9:27:00:50:24:fc:3a:f9:d3:f7: 21:ba:c5:0a:2f:5d:94:af:48:0e:71:f2:ea:63:99:ed:21:5e: 5a:2f:a6:98:e1:ce:c3:c3:21:d1:3f:db:88:85:e5:a4:b2:11: d8:7f:db:f9:8b:48:a0:08:44:5e:bb:2b:b9:1e:d6:da:cd:19: 4d:18:04:f8:bc:3e:76:27:28:e3:02:3e:f2:de:88:f7:c4:c2: 3a:e6:dd:1c:ed:7f:96:8f:b6:67:b0:01:64:f9:61:a9:62:d1: 82:cd:19:56:17:50:bf:4d:46:a3:53:6e:f4:b9:f1:3c:f7:23: 98:ff:95:07:33:dd:67:af:4e:56:5d:ca:9b:0b:de:84:9b:89: ab:93:14:c4:41:cb:a7:d4:e2:b5:1c:e0:5d:e7:28:be:32:00: 32:03:6e:8e:5f:02:62:ce:a0:d3:dd:29:6b:54:92:c6:61:a0: 40:0d:0a:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeFul9K6GB4EVS9SSqBF69n6hEGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIwQzFFMEREMDJBQThCMUNFMUZFQkE0NzY5NzdDRjhC QjE2MTQzNjAeFw0yNjA1MDMwMjE3MjlaFw0yNzA1MDIwMjIyMjlaMDMxMTAvBgNV BAMTKDM0NzY3RTQ5NjEzQTE5MEQ2ODk0Rjg2QTM2QUE1QTNFOTVERjg2QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFODIvI2dAf9reg6VGa4sZJSii KIKfc1DI5htkInHCyjK39Sa8KbiEaZmrZB4eMeiGU1OE6SMaQXgslBAIehpUxkqw /i07pzwET1EAlQYiojTinjc6H7JtvCg6Tf/Ybj3sIEV86RfZtbHnH0tKPxwJ3+sg BXkONv/+Y6DYHpaoynqFhWoky+I/RRrafbCnNLS1u9ntoNTAiYCbvh46dC1MWj/x ESu0OzyqEhI3tdVhxbdURijiWvKPaSeZdBduI2yQ5LqFyKCTrmXY9qck37y9Ib2J IXu/jrmMu177cp8S9U9V9BxRDdh/wdF7b9221DhkLNxFioWgQQ3cwauacZmPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNHZ+SWE6GQ1olPhqNqpaPpXfhqMwHwYDVR0j BBgwFoAU0gweDdAqqLHOH+ukdpd8+LsWFDYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmNkNzUzNmQtOWUxMC00ZDQ5LWI2Y2EtMDQxY2M5YTU5MTRlLzAvRDIwQzFFMERE MDJBQThCMUNFMUZFQkE0NzY5NzdDRjhCQjE2MTQzNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMjBDMUUwREQwMkFBOEIxQ0UxRkVCQTQ3Njk3N0NGOEJCMTYx NDM2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJjZDc1MzZkLTllMTAtNGQ0OS1i NmNhLTA0MWNjOWE1OTE0ZS8wLzMyMzAzMjJlMzUzMTJlMzIzMjM0MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMoz4DANBgkqhkiG 9w0BAQsFAAOCAQEAixa9E1czNyIayWBn6w6a6JXTRT6ERwIkMCIGIuedRDcgQzuF hBcK7qZiHPr5RBknJqLrzTBP2gU3b7C6Z0pa5YaWiZJfhKpWpjhOgIWWi+3pJwBQ JPw6+dP3IbrFCi9dlK9IDnHy6mOZ7SFeWi+mmOHOw8Mh0T/biIXlpLIR2H/b+YtI oAhEXrsruR7W2s0ZTRgE+Lw+dico4wI+8t6I98TCOubdHO1/lo+2Z7ABZPlhqWLR gs0ZVhdQv01Go1Nu9LnxPPcjmP+VBzPdZ69OVl3KmwvehJuJq5MUxEHLp9TitRzg XecovjIAMgNujl8CYs6g090pa1SSxmGgQA0KKA== -----END CERTIFICATE-----Generated at Wed May 13 00:45:04 2026 by rpki-client