$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37302e34382e302f32302d3234203d3e203138303034.roa File: 3230322e37302e34382e302f32302d3234203d3e203138303034.roa (raw, json) Hash identifier: M9jyn5/cfkiIh8r7xaktGDoS2J9kM31RBGKJ46gBojU= Subject key identifier: B6:0F:A2:C1:B4:25:E3:94:C6:29:06:BA:47:CF:A7:8D:1D:4C:5B:DA Certificate issuer: /CN=E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793 Certificate serial: 333BD29D0D550C9765B67698C4E319AFE2C42995 Authority key identifier: E6:EC:35:CF:C2:49:3A:3A:79:DC:D5:9D:1C:1D:BA:FB:2E:74:27:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37302e34382e302f32302d3234203d3e203138303034.roa Signing time: Sun 03 May 2026 02:32:23 +0000 ROA not before: Sun 03 May 2026 02:27:23 +0000 ROA not after: Sun 02 May 2027 02:32:23 +0000 asID: 18004 IP address blocks: 202.70.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.crl rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:3b:d2:9d:0d:55:0c:97:65:b6:76:98:c4:e3:19:af:e2:c4:29:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793 Validity Not Before: May 3 02:27:23 2026 GMT Not After : May 2 02:32:23 2027 GMT Subject: CN=B60FA2C1B425E394C62906BA47CFA78D1D4C5BDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:35:83:eb:43:27:bd:0c:50:06:0b:1b:25:f8: a9:d7:27:31:ee:0a:ab:02:cc:58:52:2c:9a:ee:ef: 47:d6:23:cb:5a:a7:c9:b9:35:51:f7:5e:54:56:25: 14:e3:5a:b1:4d:94:e5:c6:03:43:93:3c:ae:61:e0: 8d:44:55:bd:34:ab:ac:e8:76:48:83:4e:df:cc:6e: 24:9d:39:85:f2:f7:2c:41:9d:8e:c8:38:ce:ef:b6: 63:22:7c:70:d1:da:e1:67:16:16:4f:ef:58:24:50: 7c:a2:9f:78:3f:35:4b:a0:77:46:de:ce:5e:51:37: 22:59:c7:87:a0:e5:6c:69:2b:c8:f2:9d:f1:99:0c: ed:82:a2:f2:b7:08:4b:8b:08:08:59:a2:1e:51:ae: 34:3c:e1:75:f9:18:bc:0e:e8:05:61:9d:b2:f1:47: 1c:aa:14:24:7b:a4:03:d7:26:3c:13:12:62:76:b5: e9:6b:62:89:ea:56:6b:02:5c:74:21:19:32:13:6f: cf:c0:0d:67:8c:0a:2f:90:cf:f9:1f:24:7f:fb:19: a5:c1:54:96:70:a6:70:e9:16:b9:13:6c:0e:47:d3: e5:92:ee:10:24:ec:40:d9:74:d1:28:7f:0e:49:24: fe:01:14:b0:ff:29:71:75:28:ba:49:63:0e:69:0c: 49:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0F:A2:C1:B4:25:E3:94:C6:29:06:BA:47:CF:A7:8D:1D:4C:5B:DA X509v3 Authority Key Identifier: keyid:E6:EC:35:CF:C2:49:3A:3A:79:DC:D5:9D:1C:1D:BA:FB:2E:74:27:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6EC35CFC2493A3A79DCD59D1C1DBAFB2E742793.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37302e34382e302f32302d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.48.0/20 Signature Algorithm: sha256WithRSAEncryption 9f:0d:ff:a0:ee:d3:e2:d0:cb:ac:6a:d5:be:69:6f:a8:63:0f: ab:9b:25:06:15:2a:02:a0:dc:fd:25:45:26:bc:c6:70:45:f3: 33:8f:d1:3a:ce:a0:29:36:dd:51:89:b8:a1:64:bc:be:f4:5a: 1f:0a:ad:57:f5:12:1f:be:27:47:fe:9e:f3:c7:f6:22:c2:15: b0:3d:73:97:d2:86:1d:3c:db:44:cb:29:b5:73:59:f3:97:46: b5:97:38:66:f5:0e:4f:32:f6:b8:79:34:bb:2d:59:70:5d:01: 46:f0:75:dd:89:87:51:ef:0e:fd:05:2a:e1:65:3a:85:b9:76: 56:64:32:f5:11:8d:c3:f1:29:66:eb:e4:fa:05:8a:40:f0:cf: c6:24:09:8f:68:11:1d:d2:ae:15:52:43:9e:41:8e:3e:bd:6e: f8:4a:77:79:47:7f:a0:92:83:cb:e0:8d:bc:72:07:c1:45:64: d6:56:4e:f7:56:2a:e8:64:05:48:a7:fe:52:46:0d:cc:61:69: a6:c2:07:2c:d2:83:d3:f2:52:fe:4f:05:50:e4:9e:a3:c2:0b: 79:3a:90:6e:f0:bf:9c:04:30:8a:7a:4f:9c:bc:de:80:55:79: 31:e9:83:ce:f9:4c:fb:0c:ca:8c:01:3c:20:f8:ce:86:a6:61: e8:27:83:2e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMzvSnQ1VDJdltnaYxOMZr+LEKZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZFQzM1Q0ZDMjQ5M0EzQTc5RENENTlEMUMxREJBRkIy RTc0Mjc5MzAeFw0yNjA1MDMwMjI3MjNaFw0yNzA1MDIwMjMyMjNaMDMxMTAvBgNV BAMTKEI2MEZBMkMxQjQyNUUzOTRDNjI5MDZCQTQ3Q0ZBNzhEMUQ0QzVCREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDONYPrQye9DFAGCxsl+KnXJzHu CqsCzFhSLJru70fWI8tap8m5NVH3XlRWJRTjWrFNlOXGA0OTPK5h4I1EVb00q6zo dkiDTt/MbiSdOYXy9yxBnY7IOM7vtmMifHDR2uFnFhZP71gkUHyin3g/NUugd0be zl5RNyJZx4eg5WxpK8jynfGZDO2CovK3CEuLCAhZoh5RrjQ84XX5GLwO6AVhnbLx RxyqFCR7pAPXJjwTEmJ2telrYonqVmsCXHQhGTITb8/ADWeMCi+Qz/kfJH/7GaXB VJZwpnDpFrkTbA5H0+WS7hAk7EDZdNEofw5JJP4BFLD/KXF1KLpJYw5pDEm9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtg+iwbQl45TGKQa6R8+njR1MW9owHwYDVR0j BBgwFoAU5uw1z8JJOjp53NWdHB26+y50J5MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY1ZDM2NGEtZGEwYi00NTQwLTkzNDktNTkzMGJkNzI1Y2UzLzAvRTZFQzM1Q0ZD MjQ5M0EzQTc5RENENTlEMUMxREJBRkIyRTc0Mjc5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkVDMzVDRkMyNDkzQTNBNzlEQ0Q1OUQxQzFEQkFGQjJFNzQy NzkzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMyMzAzMjJlMzczMDJlMzQzODJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzgzMDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKRjAwDQYJKoZIhvcN AQELBQADggEBAJ8N/6Du0+LQy6xq1b5pb6hjD6ubJQYVKgKg3P0lRSa8xnBF8zOP 0TrOoCk23VGJuKFkvL70Wh8KrVf1Eh++J0f+nvPH9iLCFbA9c5fShh0820TLKbVz WfOXRrWXOGb1Dk8y9rh5NLstWXBdAUbwdd2Jh1HvDv0FKuFlOoW5dlZkMvURjcPx KWbr5PoFikDwz8YkCY9oER3SrhVSQ55Bjj69bvhKd3lHf6CSg8vgjbxyB8FFZNZW TvdWKuhkBUin/lJGDcxhaabCByzSg9PyUv5PBVDknqPCC3k6kG7wv5wEMIp6T5y8 3oBVeTHpg875TPsMyowBPCD4zoamYegngy4= -----END CERTIFICATE-----Generated at Wed May 13 05:50:30 2026 by rpki-client