$ rpki-client -vvf rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa File: 3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: Nma88EOqWYWpQsglD32h81XYLhVQYdqCijuHJE+VloU= Subject key identifier: 5E:E2:12:CD:CC:88:D2:88:86:4C:CF:B7:80:7E:58:EB:E1:AD:14:8C Certificate issuer: /CN=BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42 Certificate serial: 0929CF021AA1B7334A16F48225AB490D909B9DD6 Authority key identifier: BC:2F:FB:53:46:9C:81:8C:FF:E7:C5:1F:3A:A4:AA:B5:5C:E3:2C:42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa Signing time: Sun 03 May 2026 02:33:18 +0000 ROA not before: Sun 03 May 2026 02:28:18 +0000 ROA not after: Sun 02 May 2027 02:33:18 +0000 asID: 139952 IP address blocks: 203.175.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.crl rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:29:cf:02:1a:a1:b7:33:4a:16:f4:82:25:ab:49:0d:90:9b:9d:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42 Validity Not Before: May 3 02:28:18 2026 GMT Not After : May 2 02:33:18 2027 GMT Subject: CN=5EE212CDCC88D288864CCFB7807E58EBE1AD148C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f7:a5:3b:fe:6a:ba:08:df:7f:94:5d:3d:4f: 89:c3:97:85:14:0e:ce:0a:db:78:cb:be:0d:5d:81: dc:05:cc:84:2d:83:0b:73:80:93:82:d8:eb:4c:37: 41:9b:45:9b:00:d9:31:4f:b1:06:fe:74:f4:99:56: 6a:08:51:f5:41:0d:5f:d5:a1:92:b7:0d:3a:bc:f1: a9:d6:c2:d7:6c:11:cc:da:5b:5b:69:fd:1b:07:e2: a9:ff:bb:a1:4f:26:b5:f4:76:64:8c:11:73:3f:52: e2:84:bf:73:83:39:1f:61:7d:86:48:1c:f0:fa:72: 3e:63:c9:0d:44:80:24:e8:6e:19:60:96:7d:54:28: d3:8a:1d:3b:75:49:74:15:aa:f4:cf:e3:b8:1d:a2: 92:23:50:45:f9:20:50:59:56:ee:c3:a1:6b:8d:d7: b5:b0:c9:4b:57:f1:76:df:b6:af:54:af:16:87:03: 83:5b:93:45:52:20:2a:0c:77:7d:43:6d:dc:d4:76: 52:bc:94:b3:5c:5c:57:2a:fb:ad:ce:28:f3:5d:f5: 6e:3c:f1:1d:e0:b1:1c:e2:50:7d:79:3a:b7:bc:0f: 1b:be:05:19:b9:18:ab:d9:38:d1:79:ec:e6:cc:51: 12:da:b5:05:ce:91:71:91:17:9c:c3:15:e5:8c:f8: 39:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E2:12:CD:CC:88:D2:88:86:4C:CF:B7:80:7E:58:EB:E1:AD:14:8C X509v3 Authority Key Identifier: keyid:BC:2F:FB:53:46:9C:81:8C:FF:E7:C5:1F:3A:A4:AA:B5:5C:E3:2C:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.124.0/23 Signature Algorithm: sha256WithRSAEncryption 52:57:cb:c3:de:40:f7:5a:87:69:97:65:15:bb:e3:1a:c8:40: 6d:ba:88:9f:41:b4:fb:d0:50:10:7d:9f:c7:e3:8c:eb:de:07: 71:ae:38:7e:b9:03:87:2b:57:8d:4d:8c:af:9a:8f:cf:1a:fc: 48:0b:23:72:6f:47:df:96:00:fc:44:34:9b:2a:ad:36:11:1e: 8c:fe:26:aa:77:7e:8a:80:8c:70:7a:55:10:44:2e:70:61:d4: 49:e9:6f:82:ad:b4:04:51:52:2c:4d:a6:8d:8b:99:9d:f6:68: 6e:97:ad:b5:52:8c:cf:d9:87:fe:f5:bc:3e:8e:1e:a2:45:b6: a0:f7:2c:79:a2:5a:f6:d0:56:bd:5b:af:db:0b:11:08:bc:3b: ac:7b:60:3e:93:b6:49:fb:dd:8c:84:b9:d6:ac:85:f7:d7:18: af:16:8c:8f:ea:1d:8a:2e:61:8a:ab:c6:99:92:91:90:4a:f7: da:74:dd:37:c3:37:d6:d8:3c:05:7b:09:a2:9f:03:4b:09:90: ab:89:be:58:1d:8f:2b:d5:54:e3:50:d6:28:5e:b8:3d:e3:a9: e6:10:6c:32:15:0c:d7:c6:4d:ba:c1:f4:83:95:1a:63:08:4f: 33:ae:21:f1:58:1b:73:31:ae:e7:aa:fd:9c:70:a6:73:d9:02: 92:07:2f:ab -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCSnPAhqhtzNKFvSCJatJDZCbndYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMyRkZCNTM0NjlDODE4Q0ZGRTdDNTFGM0FBNEFBQjU1 Q0UzMkM0MjAeFw0yNjA1MDMwMjI4MThaFw0yNzA1MDIwMjMzMThaMDMxMTAvBgNV BAMTKDVFRTIxMkNEQ0M4OEQyODg4NjRDQ0ZCNzgwN0U1OEVCRTFBRDE0OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM96U7/mq6CN9/lF09T4nDl4UU Ds4K23jLvg1dgdwFzIQtgwtzgJOC2OtMN0GbRZsA2TFPsQb+dPSZVmoIUfVBDV/V oZK3DTq88anWwtdsEczaW1tp/RsH4qn/u6FPJrX0dmSMEXM/UuKEv3ODOR9hfYZI HPD6cj5jyQ1EgCTobhlgln1UKNOKHTt1SXQVqvTP47gdopIjUEX5IFBZVu7DoWuN 17WwyUtX8Xbftq9UrxaHA4Nbk0VSICoMd31DbdzUdlK8lLNcXFcq+63OKPNd9W48 8R3gsRziUH15Ore8Dxu+BRm5GKvZONF57ObMURLatQXOkXGRF5zDFeWM+DntAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXuISzcyI0oiGTM+3gH5Y6+GtFIwwHwYDVR0j BBgwFoAUvC/7U0acgYz/58UfOqSqtVzjLEIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTJiMzhmNzktMjZkMy00NDg5LWE0N2QtMGE4ODA1YjQ0OGFlLzAvQkMyRkZCNTM0 NjlDODE4Q0ZGRTdDNTFGM0FBNEFBQjU1Q0UzMkM0Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQzJGRkI1MzQ2OUM4MThDRkZFN0M1MUYzQUE0QUFCNTVDRTMy QzQyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLr3wwDQYJ KoZIhvcNAQELBQADggEBAFJXy8PeQPdah2mXZRW74xrIQG26iJ9BtPvQUBB9n8fj jOveB3GuOH65A4crV41NjK+aj88a/EgLI3JvR9+WAPxENJsqrTYRHoz+Jqp3foqA jHB6VRBELnBh1Enpb4KttARRUixNpo2LmZ32aG6XrbVSjM/Zh/71vD6OHqJFtqD3 LHmiWvbQVr1br9sLEQi8O6x7YD6Ttkn73YyEudashffXGK8WjI/qHYouYYqrxpmS kZBK99p03TfDN9bYPAV7CaKfA0sJkKuJvlgdjyvVVONQ1iheuD3jqeYQbDIVDNfG TbrB9IOVGmMITzOuIfFYG3Mxrueq/ZxwpnPZApIHL6s= -----END CERTIFICATE-----Generated at Wed May 13 03:52:46 2026 by rpki-client