$ rpki-client -vvf rpki-rsync.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa File: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (raw, json) Hash identifier: prMxe0nmDe/VDC0+RGajULsFBb7iapYsATrUpS7D5Qc= Subject key identifier: 98:4C:4D:81:E0:13:8F:E7:6B:9E:AF:BD:82:82:94:34:5D:5F:75:3F Certificate issuer: /CN=DA8936DE23BD068FFF8B9D5B0392E00097BA0728 Certificate serial: 3E0E18470822C99331E56C25CFBEF4483F984C53 Authority key identifier: DA:89:36:DE:23:BD:06:8F:FF:8B:9D:5B:03:92:E0:00:97:BA:07:28 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DA8936DE23BD068FFF8B9D5B0392E00097BA0728.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa Signing time: Sun 03 May 2026 02:25:29 +0000 ROA not before: Sun 03 May 2026 02:20:29 +0000 ROA not after: Sun 02 May 2027 02:25:29 +0000 asID: 142375 IP address blocks: 203.145.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/DA8936DE23BD068FFF8B9D5B0392E00097BA0728.crl rsync://rpki-rsync.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/DA8936DE23BD068FFF8B9D5B0392E00097BA0728.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DA8936DE23BD068FFF8B9D5B0392E00097BA0728.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0e:18:47:08:22:c9:93:31:e5:6c:25:cf:be:f4:48:3f:98:4c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8936DE23BD068FFF8B9D5B0392E00097BA0728 Validity Not Before: May 3 02:20:29 2026 GMT Not After : May 2 02:25:29 2027 GMT Subject: CN=984C4D81E0138FE76B9EAFBD828294345D5F753F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0b:3e:20:76:66:b2:d4:20:32:3e:4d:24:b6: 69:fb:e0:3c:10:54:a3:88:20:6a:3b:0c:21:b6:e1: c2:7c:27:ec:a8:21:1b:56:e2:3a:bd:da:10:41:67: 8c:a4:8a:bc:fa:49:2d:0c:40:cd:30:43:1e:52:e5: a9:52:a8:b6:b0:ed:7b:33:eb:3f:c1:09:be:b5:09: d9:52:12:67:00:12:c2:b7:6b:a8:50:86:54:07:f0: fc:7b:f3:46:ef:2a:12:c7:d8:3a:f9:5b:78:ed:93: 08:ca:25:4d:cb:9e:b4:b8:e0:f4:2a:7b:a1:ad:5e: 4c:63:8f:09:79:4e:84:0e:61:fd:d2:7d:fe:66:45: e3:5a:64:ce:92:3f:05:19:61:85:51:b6:46:c9:e9: 47:f3:88:00:d8:82:e7:17:90:3a:8b:2b:47:ea:37: b5:e6:0a:06:b7:c8:8b:1c:40:19:7a:cd:e9:2a:28: c8:a3:66:40:06:1a:35:3b:ae:ff:d9:77:47:59:b6: 06:6e:57:d8:62:07:7b:61:12:3e:da:6c:44:78:8a: 54:ed:ce:1b:44:be:54:81:8c:cd:dc:44:1a:03:53: f8:dd:de:75:d6:6d:e7:15:97:49:85:03:09:14:6f: 0a:a1:0d:1a:c0:d5:d8:16:ce:14:66:5b:19:b3:80: 0f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4C:4D:81:E0:13:8F:E7:6B:9E:AF:BD:82:82:94:34:5D:5F:75:3F X509v3 Authority Key Identifier: keyid:DA:89:36:DE:23:BD:06:8F:FF:8B:9D:5B:03:92:E0:00:97:BA:07:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/DA8936DE23BD068FFF8B9D5B0392E00097BA0728.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DA8936DE23BD068FFF8B9D5B0392E00097BA0728.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.58.0/23 Signature Algorithm: sha256WithRSAEncryption 69:c2:b0:d3:bf:df:fc:cd:ea:a5:31:9e:35:ea:9f:31:f5:06: 1d:cf:b0:4d:71:c2:5f:b4:d4:5c:b0:35:95:36:e3:d3:16:79: fc:4c:fe:3e:03:d7:05:50:8a:60:6f:db:3a:ff:8c:20:e5:a1: 08:38:5f:af:ca:7a:35:de:9a:8c:e5:a4:62:6b:2b:a8:fb:2c: dc:18:c7:2b:60:ee:f6:ba:4e:60:d3:ef:cb:b2:32:32:34:92: 88:17:51:20:2c:6c:96:b1:79:4b:fd:5a:67:c9:1d:3c:d4:9d: 74:4d:61:89:fc:59:40:59:b3:12:12:5f:21:2f:04:14:7c:57: c5:40:11:3c:a4:e0:d5:98:65:27:1a:b6:32:de:1a:f4:b3:e1: e0:27:4e:bb:27:9d:18:40:e9:2e:4b:ec:f8:76:dd:2e:df:c2: 8a:05:f8:39:79:02:b0:20:70:0f:55:7f:57:98:ad:49:6b:1b: 49:29:40:4d:e4:f8:57:54:3a:e6:70:28:6e:f1:ca:bf:c7:5b: a7:bb:a0:20:b0:a6:97:a7:c4:f9:ee:cd:93:fe:f4:5d:17:0c: a1:87:0c:71:fe:0f:6b:ca:1d:b0:16:9a:f3:ee:40:95:f0:43: e4:44:a5:2b:69:43:8d:85:a8:ed:c0:d1:e0:c9:a1:c0:e6:af: 27:4c:db:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPg4YRwgiyZMx5Wwlz770SD+YTFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4OTM2REUyM0JEMDY4RkZGOEI5RDVCMDM5MkUwMDA5 N0JBMDcyODAeFw0yNjA1MDMwMjIwMjlaFw0yNzA1MDIwMjI1MjlaMDMxMTAvBgNV BAMTKDk4NEM0RDgxRTAxMzhGRTc2QjlFQUZCRDgyODI5NDM0NUQ1Rjc1M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrCz4gdmay1CAyPk0ktmn74DwQ VKOIIGo7DCG24cJ8J+yoIRtW4jq92hBBZ4ykirz6SS0MQM0wQx5S5alSqLaw7Xsz 6z/BCb61CdlSEmcAEsK3a6hQhlQH8Px780bvKhLH2Dr5W3jtkwjKJU3LnrS44PQq e6GtXkxjjwl5ToQOYf3Sff5mReNaZM6SPwUZYYVRtkbJ6UfziADYgucXkDqLK0fq N7XmCga3yIscQBl6zekqKMijZkAGGjU7rv/Zd0dZtgZuV9hiB3thEj7abER4ilTt zhtEvlSBjM3cRBoDU/jd3nXWbecVl0mFAwkUbwqhDRrA1dgWzhRmWxmzgA/rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmExNgeATj+drnq+9goKUNF1fdT8wHwYDVR0j BBgwFoAU2ok23iO9Bo//i51bA5LgAJe6BygwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzZhYTNiZWItNTc2MS00YzM0LTg4ZDMtMDE1Y2NjNjQwMDJmLzAvREE4OTM2REUy M0JEMDY4RkZGOEI5RDVCMDM5MkUwMDA5N0JBMDcyOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EQTg5MzZERTIzQkQwNjhGRkY4QjlENUIwMzkyRTAwMDk3QkEw NzI4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM2YWEzYmViLTU3NjEtNGMzNC04 OGQzLTAxNWNjYzY0MDAyZi8wLzMyMzAzMzJlMzEzNDM1MmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5E6MA0GCSqG SIb3DQEBCwUAA4IBAQBpwrDTv9/8zeqlMZ416p8x9QYdz7BNccJftNRcsDWVNuPT Fnn8TP4+A9cFUIpgb9s6/4wg5aEIOF+vyno13pqM5aRiayuo+yzcGMcrYO72uk5g 0+/LsjIyNJKIF1EgLGyWsXlL/VpnyR081J10TWGJ/FlAWbMSEl8hLwQUfFfFQBE8 pODVmGUnGrYy3hr0s+HgJ067J50YQOkuS+z4dt0u38KKBfg5eQKwIHAPVX9XmK1J axtJKUBN5PhXVDrmcChu8cq/x1unu6AgsKaXp8T57s2T/vRdFwyhhwxx/g9ryh2w Fprz7kCV8EPkRKUraUONhajtwNHgyaHA5q8nTNss -----END CERTIFICATE-----Generated at Wed May 13 06:58:06 2026 by rpki-client