$ rpki-client -vvf rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa File: 3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: eN2tQYcsydQHErMHlakrUWRcJs/Gf66vPyTEiK87fko= Subject key identifier: 06:61:CD:40:20:24:C4:5F:09:2A:E5:8E:99:07:F9:A0:AF:A6:03:0E Certificate issuer: /CN=41D594A81CE7902C5B861CDDF442D40BD7622D23 Certificate serial: 414CAF005DED0B8EFAB336B453EAF2F5CF322E65 Authority key identifier: 41:D5:94:A8:1C:E7:90:2C:5B:86:1C:DD:F4:42:D4:0B:D7:62:2D:23 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41D594A81CE7902C5B861CDDF442D40BD7622D23.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:33:28 +0000 ROA not before: Sun 03 May 2026 02:28:28 +0000 ROA not after: Sun 02 May 2027 02:33:28 +0000 asID: 131745 IP address blocks: 202.83.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/41D594A81CE7902C5B861CDDF442D40BD7622D23.crl rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/41D594A81CE7902C5B861CDDF442D40BD7622D23.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41D594A81CE7902C5B861CDDF442D40BD7622D23.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:4c:af:00:5d:ed:0b:8e:fa:b3:36:b4:53:ea:f2:f5:cf:32:2e:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D594A81CE7902C5B861CDDF442D40BD7622D23 Validity Not Before: May 3 02:28:28 2026 GMT Not After : May 2 02:33:28 2027 GMT Subject: CN=0661CD402024C45F092AE58E9907F9A0AFA6030E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bb:55:b7:ea:d1:c5:05:37:14:4d:a1:e9:81: 62:21:82:2f:6a:f7:3d:08:86:75:a8:9e:80:5b:33: 2c:ba:74:c2:07:1a:b2:9e:e5:c2:e8:2e:51:cb:02: 6e:4e:b7:19:33:39:07:0b:e6:f8:bd:85:9b:ca:10: 09:5c:02:88:e6:24:dd:b3:ed:5e:15:99:26:3f:1c: a2:c0:62:98:8f:00:a7:b1:91:b3:31:54:b6:cd:cb: 15:5d:e6:78:5b:b5:ae:a1:20:ff:7a:44:3d:03:85: aa:12:6d:17:af:b2:e4:e1:0c:e0:e8:ff:12:1b:3f: f8:fd:be:d3:81:79:70:55:b3:6c:7c:19:75:70:6b: 37:79:b5:a6:7f:bf:0c:de:af:fe:54:05:7f:fe:f7: 4e:eb:4b:dd:e2:00:bc:b5:cf:a7:81:26:88:cb:07: 06:85:b3:c2:14:2b:c5:21:c5:9d:73:af:ba:3f:01: 2e:9b:52:d6:a2:9f:fd:ac:73:2a:d7:6b:e2:49:79: 05:e0:b4:df:f6:bf:24:fb:80:69:14:b6:f6:4d:4b: e8:15:9f:c5:42:e2:d9:da:b5:82:ff:2c:16:47:8b: 2f:20:01:14:a4:91:e5:b8:ff:42:dd:93:68:88:fc: b9:f1:1e:09:cf:d5:a6:03:24:2b:2c:a1:0f:5e:c6: 86:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:61:CD:40:20:24:C4:5F:09:2A:E5:8E:99:07:F9:A0:AF:A6:03:0E X509v3 Authority Key Identifier: keyid:41:D5:94:A8:1C:E7:90:2C:5B:86:1C:DD:F4:42:D4:0B:D7:62:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/41D594A81CE7902C5B861CDDF442D40BD7622D23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41D594A81CE7902C5B861CDDF442D40BD7622D23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.83.120.0/22 Signature Algorithm: sha256WithRSAEncryption 49:cb:ab:01:da:91:19:07:e9:a1:01:ba:8c:f3:c0:55:a3:0f: d1:c8:c4:d8:c3:34:c8:5d:4b:ea:ea:94:41:40:89:3f:cc:9f: f5:4c:54:8b:06:77:df:fa:84:59:22:41:08:84:1f:c7:2b:80: 1f:ee:e9:53:01:a3:29:5b:36:43:cc:08:f1:ac:1a:50:3d:a5: 62:16:38:23:25:93:0d:1f:de:35:ae:61:b3:8e:57:25:c2:b9: fb:ba:a7:31:98:73:50:30:61:7b:78:0f:c5:ae:92:ce:6c:0a: b3:67:eb:55:30:f6:84:26:c7:79:20:d3:77:51:51:a7:b6:e0: e6:1b:99:08:6a:2c:3e:68:7e:55:d3:90:2b:8a:7d:74:8f:4f: 5a:b2:b0:be:9f:a2:a4:d2:99:95:47:64:d4:90:3a:a0:0f:b5: 5c:68:16:ec:f7:6d:74:1e:71:79:e7:b8:8c:14:58:0d:19:3b: e5:0b:17:6b:8e:5a:e8:e2:b0:ac:e8:8a:63:2b:d5:87:57:ed: 6e:5b:5b:2e:95:88:66:7b:f9:d9:c8:20:f5:2d:89:80:c3:66: 19:2c:a8:ca:3e:d3:bc:44:bf:be:db:78:12:42:99:78:31:64: 6d:10:f6:85:cc:fa:85:3e:81:fa:2e:9a:7f:dd:65:d3:38:8b: 5f:16:35:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQUyvAF3tC476sza0U+ry9c8yLmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFENTk0QTgxQ0U3OTAyQzVCODYxQ0RERjQ0MkQ0MEJE NzYyMkQyMzAeFw0yNjA1MDMwMjI4MjhaFw0yNzA1MDIwMjMzMjhaMDMxMTAvBgNV BAMTKDA2NjFDRDQwMjAyNEM0NUYwOTJBRTU4RTk5MDdGOUEwQUZBNjAzMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHu1W36tHFBTcUTaHpgWIhgi9q 9z0IhnWonoBbMyy6dMIHGrKe5cLoLlHLAm5OtxkzOQcL5vi9hZvKEAlcAojmJN2z 7V4VmSY/HKLAYpiPAKexkbMxVLbNyxVd5nhbta6hIP96RD0DhaoSbRevsuThDODo /xIbP/j9vtOBeXBVs2x8GXVwazd5taZ/vwzer/5UBX/+907rS93iALy1z6eBJojL BwaFs8IUK8UhxZ1zr7o/AS6bUtain/2scyrXa+JJeQXgtN/2vyT7gGkUtvZNS+gV n8VC4tnatYL/LBZHiy8gARSkkeW4/0Ldk2iI/LnxHgnP1aYDJCssoQ9exoYZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBmHNQCAkxF8JKuWOmQf5oK+mAw4wHwYDVR0j BBgwFoAUQdWUqBznkCxbhhzd9ELUC9diLSMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTM4YzYyMWQtMDViYy00YmNkLTk2NTctY2RmMzM4NjBmMjFhLzAvNDFENTk0QTgx Q0U3OTAyQzVCODYxQ0RERjQ0MkQ0MEJENzYyMkQyMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUQ1OTRBODFDRTc5MDJDNUI4NjFDRERGNDQyRDQwQkQ3NjIy RDIzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUzOGM2MjFkLTA1YmMtNGJjZC05 NjU3LWNkZjMzODYwZjIxYS8wLzMyMzAzMjJlMzgzMzJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCylN4MA0GCSqG SIb3DQEBCwUAA4IBAQBJy6sB2pEZB+mhAbqM88BVow/RyMTYwzTIXUvq6pRBQIk/ zJ/1TFSLBnff+oRZIkEIhB/HK4Af7ulTAaMpWzZDzAjxrBpQPaViFjgjJZMNH941 rmGzjlclwrn7uqcxmHNQMGF7eA/FrpLObAqzZ+tVMPaEJsd5INN3UVGntuDmG5kI aiw+aH5V05Arin10j09asrC+n6Kk0pmVR2TUkDqgD7VcaBbs9210HnF557iMFFgN GTvlCxdrjlro4rCs6IpjK9WHV+1uW1sulYhme/nZyCD1LYmAw2YZLKjKPtO8RL++ 23gSQpl4MWRtEPaFzPqFPoH6Lpp/3WXTOItfFjVx -----END CERTIFICATE-----Generated at Wed May 13 09:55:04 2026 by rpki-client