$ rpki-client -vvf rpki-rsync.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e34392e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e34392e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: yw71sEyG6SYVV0OrPV1gsKYKQVEpFjzFii37SAAB9FU= Subject key identifier: 11:97:D4:4F:47:F1:13:7D:78:33:66:5B:AD:85:6D:1F:3E:1A:0F:08 Certificate issuer: /CN=FAF852347432F9918D1450C78A1EC83C3599937A Certificate serial: 16BBF9A592063C49393C93ED358366CDD7C57352 Authority key identifier: FA:F8:52:34:74:32:F9:91:8D:14:50:C7:8A:1E:C8:3C:35:99:93:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FAF852347432F9918D1450C78A1EC83C3599937A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e34392e302f32342d3234203d3e203338313435.roa Signing time: Sun 03 May 2026 02:34:33 +0000 ROA not before: Sun 03 May 2026 02:29:33 +0000 ROA not after: Sun 02 May 2027 02:34:33 +0000 asID: 38145 IP address blocks: 202.180.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/FAF852347432F9918D1450C78A1EC83C3599937A.crl rsync://rpki-rsync.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/FAF852347432F9918D1450C78A1EC83C3599937A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FAF852347432F9918D1450C78A1EC83C3599937A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:bb:f9:a5:92:06:3c:49:39:3c:93:ed:35:83:66:cd:d7:c5:73:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAF852347432F9918D1450C78A1EC83C3599937A Validity Not Before: May 3 02:29:33 2026 GMT Not After : May 2 02:34:33 2027 GMT Subject: CN=1197D44F47F1137D7833665BAD856D1F3E1A0F08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7c:26:2f:ed:ac:98:98:40:76:60:77:5a:84: c0:88:59:71:2a:dd:a3:c4:f8:e8:83:3f:e6:e7:8e: 11:1c:f4:b5:3b:1a:c8:fd:33:f7:f0:e8:16:da:87: 50:17:54:95:f7:01:9a:75:91:f3:f1:c1:92:8c:b1: a7:cb:f5:b2:7e:f2:d7:39:de:1c:37:27:c7:03:bf: 1f:1c:cd:9b:36:24:ec:91:88:a5:fc:4d:b0:ae:0e: 19:16:f9:b6:f2:1b:10:bb:42:8b:9b:6c:ed:4c:56: 49:99:23:cd:86:50:af:39:11:80:4a:c2:71:e4:04: 20:8e:08:71:1c:9b:79:f0:62:ba:17:0a:5a:59:6a: 9f:fc:5c:a6:3e:f9:ad:e6:af:cc:6e:ab:57:5f:d7: 4f:6b:b8:b9:ca:df:c7:38:55:7e:55:66:cd:fa:f6: 1f:33:e2:e8:a8:05:66:65:bc:58:b4:ce:b1:2f:0b: ad:78:da:da:c8:51:41:5c:a8:f7:e8:12:b9:9b:83: f8:4a:8c:08:79:cd:7d:2c:64:7c:2e:90:6b:38:df: 0e:89:ac:a0:f6:cb:7f:2e:42:0d:24:e1:58:08:e2: 54:10:42:5d:17:2e:fa:d7:c0:76:a4:67:be:1d:58: 1c:4a:ea:53:7f:88:dd:93:d4:98:21:d7:95:ce:52: 67:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:97:D4:4F:47:F1:13:7D:78:33:66:5B:AD:85:6D:1F:3E:1A:0F:08 X509v3 Authority Key Identifier: keyid:FA:F8:52:34:74:32:F9:91:8D:14:50:C7:8A:1E:C8:3C:35:99:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/FAF852347432F9918D1450C78A1EC83C3599937A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FAF852347432F9918D1450C78A1EC83C3599937A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e34392e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.49.0/24 Signature Algorithm: sha256WithRSAEncryption 83:53:85:2a:b0:bd:08:40:c4:2e:06:66:d2:19:94:be:0e:ae: e4:d7:09:f1:9b:25:ba:08:25:b7:92:bc:5d:f8:71:16:85:73: be:a0:19:17:90:cd:2c:61:6a:81:d9:98:8e:65:43:4e:7b:10: cd:ea:6c:4f:88:9a:80:96:1d:82:be:ff:09:3d:25:da:f5:9a: 52:56:bc:15:de:7a:09:59:51:34:4c:91:02:f8:e4:64:21:9d: 0c:63:23:0a:ba:fa:3b:03:56:36:5c:10:df:4f:bf:ee:33:94: 2e:30:fc:f1:ea:38:82:ba:2c:f4:11:93:d7:7b:f4:b0:94:64: a2:96:05:7a:26:6b:5b:49:44:7f:27:b3:a0:32:39:24:85:96: b0:ac:2f:55:65:79:0a:c8:d8:45:0e:ea:bb:04:f5:d9:d3:d1: 6c:10:63:3f:1b:bd:c6:17:d1:d7:18:ff:7c:45:65:5f:99:17: 70:6d:99:ee:da:59:64:47:76:68:ed:fa:9d:0c:c4:f6:71:a7: 1a:24:76:97:a2:07:38:53:83:7e:40:43:06:8a:93:a9:4f:63: da:c6:f0:80:ae:bc:95:67:7f:fb:8a:7d:06:58:64:05:81:a1: 7b:4a:ba:a5:37:79:39:b4:1f:cb:cb:5c:f4:3e:66:18:3c:7c: a8:ac:06:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFrv5pZIGPEk5PJPtNYNmzdfFc1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFGODUyMzQ3NDMyRjk5MThEMTQ1MEM3OEExRUM4M0Mz NTk5OTM3QTAeFw0yNjA1MDMwMjI5MzNaFw0yNzA1MDIwMjM0MzNaMDMxMTAvBgNV BAMTKDExOTdENDRGNDdGMTEzN0Q3ODMzNjY1QkFEODU2RDFGM0UxQTBGMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNfCYv7ayYmEB2YHdahMCIWXEq 3aPE+OiDP+bnjhEc9LU7Gsj9M/fw6Bbah1AXVJX3AZp1kfPxwZKMsafL9bJ+8tc5 3hw3J8cDvx8czZs2JOyRiKX8TbCuDhkW+bbyGxC7QoubbO1MVkmZI82GUK85EYBK wnHkBCCOCHEcm3nwYroXClpZap/8XKY++a3mr8xuq1df109ruLnK38c4VX5VZs36 9h8z4uioBWZlvFi0zrEvC6142trIUUFcqPfoErmbg/hKjAh5zX0sZHwukGs43w6J rKD2y38uQg0k4VgI4lQQQl0XLvrXwHakZ74dWBxK6lN/iN2T1Jgh15XOUmfDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEZfUT0fxE314M2ZbrYVtHz4aDwgwHwYDVR0j BBgwFoAU+vhSNHQy+ZGNFFDHih7IPDWZk3owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTc5ODRlM2EtNDhmOS00Y2RhLWJlNmMtNDAwNmMwOGY4ZmQyLzAvRkFGODUyMzQ3 NDMyRjk5MThEMTQ1MEM3OEExRUM4M0MzNTk5OTM3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQUY4NTIzNDc0MzJGOTkxOEQxNDUwQzc4QTFFQzgzQzM1OTk5 MzdBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0MTANBgkqhkiG 9w0BAQsFAAOCAQEAg1OFKrC9CEDELgZm0hmUvg6u5NcJ8Zslugglt5K8XfhxFoVz vqAZF5DNLGFqgdmYjmVDTnsQzepsT4iagJYdgr7/CT0l2vWaUla8Fd56CVlRNEyR AvjkZCGdDGMjCrr6OwNWNlwQ30+/7jOULjD88eo4gros9BGT13v0sJRkopYFeiZr W0lEfyezoDI5JIWWsKwvVWV5CsjYRQ7quwT12dPRbBBjPxu9xhfR1xj/fEVlX5kX cG2Z7tpZZEd2aO36nQzE9nGnGiR2l6IHOFODfkBDBoqTqU9j2sbwgK68lWd/+4p9 BlhkBYGhe0q6pTd5ObQfy8tc9D5mGDx8qKwG6w== -----END CERTIFICATE-----Generated at Wed May 13 04:09:28 2026 by rpki-client