$ rpki-client -vvf rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa File: 3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: jC/3N/0mOEMFWjEL1ITUu1mNjq/HhBvbNlIzBRl8FHc= Subject key identifier: 75:0E:11:FF:38:C2:6E:CA:47:C3:AC:F3:27:F3:3A:7F:70:FB:4F:35 Certificate issuer: /CN=BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42 Certificate serial: 342341CC3FB7F7B14C98E3451A4D2D3642B9EBF8 Authority key identifier: BC:2F:FB:53:46:9C:81:8C:FF:E7:C5:1F:3A:A4:AA:B5:5C:E3:2C:42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa Signing time: Sun 03 May 2026 02:33:17 +0000 ROA not before: Sun 03 May 2026 02:28:17 +0000 ROA not after: Sun 02 May 2027 02:33:17 +0000 asID: 139952 IP address blocks: 203.175.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.crl rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:23:41:cc:3f:b7:f7:b1:4c:98:e3:45:1a:4d:2d:36:42:b9:eb:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42 Validity Not Before: May 3 02:28:17 2026 GMT Not After : May 2 02:33:17 2027 GMT Subject: CN=750E11FF38C26ECA47C3ACF327F33A7F70FB4F35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3e:5b:bf:48:55:b6:02:ea:d3:ad:22:2a:63: 4f:33:18:d2:8f:e8:bb:71:fc:74:c5:03:85:64:c8: 68:73:89:82:78:9a:bd:99:01:3f:96:1e:d8:56:53: 34:62:be:00:c0:15:0c:95:e8:4c:79:8c:00:a1:d1: 85:97:7d:23:b7:a6:08:e6:94:7c:11:9f:e7:ad:69: 89:58:b4:24:e5:22:c7:09:e0:c6:45:f2:89:64:9a: e6:de:67:0e:96:97:2b:89:a7:b2:36:7b:cd:4b:f6: 83:57:b2:85:72:da:92:5f:26:1c:fe:49:34:2b:16: 9e:c8:9e:4d:ae:c5:3c:f0:e6:e9:63:95:ed:80:f2: 66:64:0d:a7:61:a6:48:3f:69:ab:13:c9:5c:b7:cb: da:82:d9:a0:37:54:cb:9c:6a:7c:b9:d7:d4:0d:05: d2:2a:46:44:a4:bb:ce:c3:32:af:70:c6:2a:76:1f: 06:5e:2b:03:9d:c1:a5:0d:fa:21:0f:b5:d2:08:88: 04:fd:af:2e:01:85:7a:69:88:a8:ce:03:f8:3c:aa: 36:2a:84:74:0d:ae:48:e8:59:66:4e:4f:7f:14:32: e2:04:93:8e:7c:eb:46:14:1e:82:2b:6b:c1:df:4a: 74:57:f7:ac:e0:38:94:e8:55:7b:b3:2f:e2:4b:3b: 7a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0E:11:FF:38:C2:6E:CA:47:C3:AC:F3:27:F3:3A:7F:70:FB:4F:35 X509v3 Authority Key Identifier: keyid:BC:2F:FB:53:46:9C:81:8C:FF:E7:C5:1F:3A:A4:AA:B5:5C:E3:2C:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.125.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:3c:86:47:e7:99:2c:c5:97:81:54:12:12:f6:20:b6:a4:ed: f3:d0:ac:0c:eb:ea:63:d2:ee:ce:0a:b7:ce:03:bf:06:d0:3b: ae:95:c0:02:df:26:83:32:53:d7:dd:fd:89:bb:9e:6c:4d:29: 87:0a:f6:3c:9d:18:e4:c4:76:74:f8:92:35:0e:3b:f0:21:ea: ca:5a:02:a8:4f:43:37:8c:bd:de:40:61:98:d1:96:5d:60:be: 6a:76:9e:2d:a6:f7:b4:79:83:d6:fb:8d:09:de:0b:82:b0:e7: be:56:72:11:38:98:5f:a2:f4:52:d5:8e:f4:67:ff:97:90:a1: 7f:3d:77:22:c3:ac:59:10:6c:52:11:11:b0:d8:8b:2a:55:05: 8e:06:12:62:ac:a3:2c:4c:b4:e1:0d:55:33:30:eb:77:be:e1: e9:b8:84:af:66:75:e8:1f:e3:9f:40:e8:9d:80:d9:8d:5a:a7: 26:76:dc:91:db:ce:ba:1a:3a:ff:77:72:a9:55:96:20:03:54: 4c:2f:ad:35:de:07:07:87:c7:c2:b6:66:85:46:37:8e:5c:21: 4d:4e:5f:27:8b:a0:c6:a0:90:7a:fe:84:a8:f3:df:70:1b:37: e3:10:3d:59:fc:64:30:10:35:41:19:96:ab:16:6b:43:e6:2d: 5d:2a:56:f4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNCNBzD+397FMmONFGk0tNkK56/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMyRkZCNTM0NjlDODE4Q0ZGRTdDNTFGM0FBNEFBQjU1 Q0UzMkM0MjAeFw0yNjA1MDMwMjI4MTdaFw0yNzA1MDIwMjMzMTdaMDMxMTAvBgNV BAMTKDc1MEUxMUZGMzhDMjZFQ0E0N0MzQUNGMzI3RjMzQTdGNzBGQjRGMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPPlu/SFW2AurTrSIqY08zGNKP 6Ltx/HTFA4VkyGhziYJ4mr2ZAT+WHthWUzRivgDAFQyV6Ex5jACh0YWXfSO3pgjm lHwRn+etaYlYtCTlIscJ4MZF8olkmubeZw6WlyuJp7I2e81L9oNXsoVy2pJfJhz+ STQrFp7Ink2uxTzw5uljle2A8mZkDadhpkg/aasTyVy3y9qC2aA3VMucany519QN BdIqRkSku87DMq9wxip2HwZeKwOdwaUN+iEPtdIIiAT9ry4BhXppiKjOA/g8qjYq hHQNrkjoWWZOT38UMuIEk45860YUHoIra8HfSnRX96zgOJToVXuzL+JLO3o/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdQ4R/zjCbspHw6zzJ/M6f3D7TzUwHwYDVR0j BBgwFoAUvC/7U0acgYz/58UfOqSqtVzjLEIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTJiMzhmNzktMjZkMy00NDg5LWE0N2QtMGE4ODA1YjQ0OGFlLzAvQkMyRkZCNTM0 NjlDODE4Q0ZGRTdDNTFGM0FBNEFBQjU1Q0UzMkM0Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQzJGRkI1MzQ2OUM4MThDRkZFN0M1MUYzQUE0QUFCNTVDRTMy QzQyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLr30wDQYJ KoZIhvcNAQELBQADggEBAC88hkfnmSzFl4FUEhL2ILak7fPQrAzr6mPS7s4Kt84D vwbQO66VwALfJoMyU9fd/Ym7nmxNKYcK9jydGOTEdnT4kjUOO/Ah6spaAqhPQzeM vd5AYZjRll1gvmp2ni2m97R5g9b7jQneC4Kw575WchE4mF+i9FLVjvRn/5eQoX89 dyLDrFkQbFIREbDYiypVBY4GEmKsoyxMtOENVTMw63e+4em4hK9mdegf459A6J2A 2Y1apyZ23JHbzroaOv93cqlVliADVEwvrTXeBweHx8K2ZoVGN45cIU1OXyeLoMag kHr+hKjz33AbN+MQPVn8ZDAQNUEZlqsWa0PmLV0qVvQ= -----END CERTIFICATE-----Generated at Wed May 13 11:34:58 2026 by rpki-client