$ rpki-client -vvf rpki-rsync.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa File: 3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa (raw, json) Hash identifier: zUwwGmxcrXHUEybdjp6Ek486OiNzUkHwLan92qEDTQE= Subject key identifier: A7:DA:AE:41:5B:41:20:6B:BE:82:DC:8E:5A:50:40:08:7C:76:D9:73 Certificate issuer: /CN=B5B29AB56D2B927BDE3361B6CB58CD08539262B0 Certificate serial: 459DB5CC26043A18786DAA09895E0FE7A0917302 Authority key identifier: B5:B2:9A:B5:6D:2B:92:7B:DE:33:61:B6:CB:58:CD:08:53:92:62:B0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B5B29AB56D2B927BDE3361B6CB58CD08539262B0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa Signing time: Sun 03 May 2026 02:30:41 +0000 ROA not before: Sun 03 May 2026 02:25:41 +0000 ROA not after: Sun 02 May 2027 02:30:41 +0000 asID: 38781 IP address blocks: 202.129.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/B5B29AB56D2B927BDE3361B6CB58CD08539262B0.crl rsync://rpki-rsync.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/B5B29AB56D2B927BDE3361B6CB58CD08539262B0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B5B29AB56D2B927BDE3361B6CB58CD08539262B0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:9d:b5:cc:26:04:3a:18:78:6d:aa:09:89:5e:0f:e7:a0:91:73:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5B29AB56D2B927BDE3361B6CB58CD08539262B0 Validity Not Before: May 3 02:25:41 2026 GMT Not After : May 2 02:30:41 2027 GMT Subject: CN=A7DAAE415B41206BBE82DC8E5A5040087C76D973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5a:93:f3:04:10:12:33:6b:5b:27:ab:de:b1: 54:ec:50:96:b5:ee:f1:17:d0:c6:fe:f8:75:8b:30: 73:31:c8:c2:f8:f9:db:fb:90:12:d4:99:09:1c:6e: 24:69:0f:97:95:7e:76:cf:e1:3b:c6:e5:58:81:21: db:82:b5:c2:33:f8:3f:75:df:1f:45:1b:33:87:29: f2:cd:88:cf:0e:bd:de:e6:02:db:c8:32:05:68:ee: 61:28:73:f4:68:e4:c8:8c:bf:8c:98:31:7b:95:44: b4:9f:0b:b4:3b:d6:3a:00:9a:48:fe:7f:33:9f:57: 1d:4c:09:db:1b:7a:c4:dc:65:44:06:e2:07:9e:d0: 77:f7:79:e5:39:cd:00:fb:a3:0d:01:5d:e5:cf:23: 70:7b:4a:03:34:59:10:2b:ff:fb:cb:eb:21:bc:1b: 68:4f:fd:37:06:03:04:3a:8f:be:c8:96:36:b7:31: b3:79:1c:77:25:79:a2:e0:76:dc:f7:69:fb:f9:b2: 77:03:16:7a:3f:30:7f:43:42:28:ef:a1:39:54:52: 9c:77:31:3b:0f:47:d4:59:98:ff:e0:ec:bf:1a:45: aa:51:9c:e5:dd:f6:f3:6d:59:ea:db:a7:0a:6f:b0: 4e:01:b5:40:cf:bf:23:3e:cc:a2:7a:bb:97:1b:36: 70:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DA:AE:41:5B:41:20:6B:BE:82:DC:8E:5A:50:40:08:7C:76:D9:73 X509v3 Authority Key Identifier: keyid:B5:B2:9A:B5:6D:2B:92:7B:DE:33:61:B6:CB:58:CD:08:53:92:62:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/B5B29AB56D2B927BDE3361B6CB58CD08539262B0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B5B29AB56D2B927BDE3361B6CB58CD08539262B0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.224.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:27:73:13:8d:4d:f7:68:00:17:1a:37:55:e9:45:5f:dc:6d: 89:f5:76:6d:7d:95:df:02:2f:fc:e3:64:28:b1:2b:8d:3a:b3: 46:fd:4b:be:00:d2:a9:3f:00:43:9b:5a:77:8f:6e:50:0c:6d: 0c:6c:91:49:e5:df:14:2d:4e:d6:e0:6c:81:09:ba:f4:7a:dc: f8:e1:cb:6f:a4:69:50:2d:22:9e:7f:0c:79:19:0f:80:86:8b: 1c:c1:f3:d5:09:36:de:3d:ad:d7:9f:5b:1c:9f:a8:41:73:ce: 72:18:29:d6:73:b7:19:a9:a0:50:1d:88:c9:cd:2a:45:dc:c8: e3:0d:c2:3e:29:54:f7:cc:fa:e6:0d:aa:91:8d:bd:6a:d3:f7: b2:91:8d:ca:af:10:fe:7d:78:a0:46:d6:62:fb:2f:6e:8c:5a: f7:44:c7:20:3b:40:d0:a8:fa:e1:f2:d4:0e:0c:6b:52:d6:9b: fb:04:12:ad:37:dc:c0:67:fe:36:c4:86:9f:72:f0:e1:1c:32: 3e:24:d3:37:fe:aa:87:98:24:55:ee:03:d6:29:10:84:95:ea: 07:75:6b:bf:9c:ee:da:42:77:40:a9:67:be:0b:d1:b3:10:0a: c2:30:4b:2f:19:cd:eb:5a:a2:3a:1e:f1:26:db:d2:24:34:05: 75:49:0a:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURZ21zCYEOhh4baoJiV4P56CRcwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVCMjlBQjU2RDJCOTI3QkRFMzM2MUI2Q0I1OENEMDg1 MzkyNjJCMDAeFw0yNjA1MDMwMjI1NDFaFw0yNzA1MDIwMjMwNDFaMDMxMTAvBgNV BAMTKEE3REFBRTQxNUI0MTIwNkJCRTgyREM4RTVBNTA0MDA4N0M3NkQ5NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbWpPzBBASM2tbJ6vesVTsUJa1 7vEX0Mb++HWLMHMxyML4+dv7kBLUmQkcbiRpD5eVfnbP4TvG5ViBIduCtcIz+D91 3x9FGzOHKfLNiM8Ovd7mAtvIMgVo7mEoc/Ro5MiMv4yYMXuVRLSfC7Q71joAmkj+ fzOfVx1MCdsbesTcZUQG4gee0Hf3eeU5zQD7ow0BXeXPI3B7SgM0WRAr//vL6yG8 G2hP/TcGAwQ6j77Ilja3MbN5HHcleaLgdtz3afv5sncDFno/MH9DQijvoTlUUpx3 MTsPR9RZmP/g7L8aRapRnOXd9vNtWerbpwpvsE4BtUDPvyM+zKJ6u5cbNnAZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUp9quQVtBIGu+gtyOWlBACHx22XMwHwYDVR0j BBgwFoAUtbKatW0rknveM2G2y1jNCFOSYrAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDc5MzY4NmItMzM4NC00NDEyLThlN2MtZTlkMWI4NTJhYTFlLzAvQjVCMjlBQjU2 RDJCOTI3QkRFMzM2MUI2Q0I1OENEMDg1MzkyNjJCMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNUIyOUFCNTZEMkI5MjdCREUzMzYxQjZDQjU4Q0QwODUzOTI2 MkIwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ3OTM2ODZiLTMzODQtNDQxMi04 ZTdjLWU5ZDFiODUyYWExZS8wLzMyMzAzMjJlMzEzMjM5MmUzMjMyMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMzM4MzczODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyoHgMA0GCSqG SIb3DQEBCwUAA4IBAQAaJ3MTjU33aAAXGjdV6UVf3G2J9XZtfZXfAi/842QosSuN OrNG/Uu+ANKpPwBDm1p3j25QDG0MbJFJ5d8ULU7W4GyBCbr0etz44ctvpGlQLSKe fwx5GQ+AhoscwfPVCTbePa3Xn1scn6hBc85yGCnWc7cZqaBQHYjJzSpF3MjjDcI+ KVT3zPrmDaqRjb1q0/eykY3KrxD+fXigRtZi+y9ujFr3RMcgO0DQqPrh8tQODGtS 1pv7BBKtN9zAZ/42xIafcvDhHDI+JNM3/qqHmCRV7gPWKRCEleoHdWu/nO7aQndA qWe+C9GzEArCMEsvGc3rWqI6HvEm29IkNAV1SQo0 -----END CERTIFICATE-----Generated at Wed May 13 02:48:21 2026 by rpki-client