$ rpki-client -vvf rpki-rsync.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa File: 3230322e39332e3234342e302f32322d3234203d3e203338373738.roa (raw, json) Hash identifier: HYOwWEsyIVZXnK4eLcj02fPXUV54e21APLG1OWqeK6Y= Subject key identifier: 5D:D5:15:C2:74:3C:5C:D7:B4:01:F4:56:6C:E8:50:7C:D8:D5:CC:DB Certificate issuer: /CN=65DBBEC678177B7159AD901A4023BA57AA4096DC Certificate serial: 5A3812287BC1EA082252E43CB0187333F9EEECD0 Authority key identifier: 65:DB:BE:C6:78:17:7B:71:59:AD:90:1A:40:23:BA:57:AA:40:96:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/65DBBEC678177B7159AD901A4023BA57AA4096DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 02:35:42 +0000 ROA not before: Sun 03 May 2026 02:30:42 +0000 ROA not after: Sun 02 May 2027 02:35:42 +0000 asID: 38778 IP address blocks: 202.93.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/65DBBEC678177B7159AD901A4023BA57AA4096DC.crl rsync://rpki-rsync.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/65DBBEC678177B7159AD901A4023BA57AA4096DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/65DBBEC678177B7159AD901A4023BA57AA4096DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:38:12:28:7b:c1:ea:08:22:52:e4:3c:b0:18:73:33:f9:ee:ec:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DBBEC678177B7159AD901A4023BA57AA4096DC Validity Not Before: May 3 02:30:42 2026 GMT Not After : May 2 02:35:42 2027 GMT Subject: CN=5DD515C2743C5CD7B401F4566CE8507CD8D5CCDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:53:d2:28:a4:2c:a8:5c:61:9b:24:c4:1a:b4: 9a:02:7b:20:8c:62:2e:57:b6:af:e7:fa:78:c6:b6: e7:dc:b5:36:03:a3:5b:80:aa:ce:56:ee:3d:dd:8b: ea:40:7e:fa:5e:70:93:48:7c:dc:10:15:e7:19:56: 16:7b:c5:67:d4:af:ef:a6:c7:b0:94:3a:a0:63:cc: 1f:bd:8a:10:a5:d1:a4:1c:e6:79:59:0f:ca:2c:d2: 17:d3:71:be:c9:d0:b3:0d:0b:31:1e:fa:08:3e:49: b9:c6:45:86:50:c5:94:6c:2b:3f:71:a8:e4:98:f8: 32:a2:4b:6d:05:ba:45:e7:71:d6:f4:54:04:dc:87: 8a:47:7e:ea:c4:1b:0a:30:16:5f:fb:36:32:da:b0: 13:cc:59:cc:c4:6d:e9:46:81:9f:1f:0b:59:69:22: 95:17:ae:a9:66:51:51:b8:3c:a5:ed:38:0a:29:68: 8b:ec:33:11:ff:53:75:d9:50:41:30:77:4a:9c:ac: 28:ab:71:50:3b:87:f5:a1:d3:77:f0:62:d9:88:a0: 0b:cc:f4:7d:3c:41:6e:b8:48:14:f6:da:f0:3a:14: 6f:2d:78:77:53:d5:15:f9:82:e4:8e:cd:87:c0:74: 49:56:f6:96:11:65:17:14:3e:36:d7:09:93:93:1a: bf:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D5:15:C2:74:3C:5C:D7:B4:01:F4:56:6C:E8:50:7C:D8:D5:CC:DB X509v3 Authority Key Identifier: keyid:65:DB:BE:C6:78:17:7B:71:59:AD:90:1A:40:23:BA:57:AA:40:96:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/65DBBEC678177B7159AD901A4023BA57AA4096DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/65DBBEC678177B7159AD901A4023BA57AA4096DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.244.0/22 Signature Algorithm: sha256WithRSAEncryption 43:a1:bd:c4:fa:6d:a8:72:30:5a:e7:0c:9e:fa:01:c7:fe:d9: b5:bd:04:a0:24:52:d6:71:6d:2a:75:ce:93:d8:92:77:3e:e1: 74:35:5f:21:8d:d9:01:6a:1d:8b:a2:95:8a:02:96:e1:34:ab: 0a:5a:8a:3a:8d:ae:50:4c:8b:c0:25:5b:4c:26:9c:83:f5:a5: d7:56:b0:a0:7b:33:6d:be:cf:81:e4:5c:7d:50:ea:dc:22:7f: f3:ee:e3:95:53:db:0a:fb:3e:28:92:3f:f2:47:e1:d2:6c:4c: df:f9:8f:57:30:38:33:ea:44:37:38:ed:98:87:ef:7e:6d:74: 1b:c8:7b:5b:48:24:4a:9c:ae:d2:0f:88:89:30:9c:f2:79:ce: b8:7b:0b:bd:f8:66:13:39:14:1e:13:5e:55:08:ae:4b:0b:fb: a2:94:13:4a:91:ce:4a:bd:6b:1a:9f:39:f1:91:8b:07:58:de: df:f1:8d:30:b2:fc:1e:2b:02:44:14:b8:4d:6c:93:22:ee:6b: 86:30:c1:8a:66:b8:0c:87:15:b3:8a:30:0c:12:6e:4e:74:11: c3:8f:1d:1c:20:fc:25:08:b1:b9:14:8a:d5:28:23:61:d2:94: 82:7f:11:91:3e:c8:ac:ef:ea:f2:3c:b1:45:aa:ab:8e:f8:55: d1:30:c4:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWjgSKHvB6ggiUuQ8sBhzM/nu7NAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVEQkJFQzY3ODE3N0I3MTU5QUQ5MDFBNDAyM0JBNTdB QTQwOTZEQzAeFw0yNjA1MDMwMjMwNDJaFw0yNzA1MDIwMjM1NDJaMDMxMTAvBgNV BAMTKDVERDUxNUMyNzQzQzVDRDdCNDAxRjQ1NjZDRTg1MDdDRDhENUNDREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwU9IopCyoXGGbJMQatJoCeyCM Yi5Xtq/n+njGtufctTYDo1uAqs5W7j3di+pAfvpecJNIfNwQFecZVhZ7xWfUr++m x7CUOqBjzB+9ihCl0aQc5nlZD8os0hfTcb7J0LMNCzEe+gg+SbnGRYZQxZRsKz9x qOSY+DKiS20FukXncdb0VATch4pHfurEGwowFl/7NjLasBPMWczEbelGgZ8fC1lp IpUXrqlmUVG4PKXtOAopaIvsMxH/U3XZUEEwd0qcrCircVA7h/Wh03fwYtmIoAvM 9H08QW64SBT22vA6FG8teHdT1RX5guSOzYfAdElW9pYRZRcUPjbXCZOTGr/PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXdUVwnQ8XNe0AfRWbOhQfNjVzNswHwYDVR0j BBgwFoAUZdu+xngXe3FZrZAaQCO6V6pAltwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFkNmRjYzktMTcwMC00OGViLTkwOTktNjY3OGY5MWJmNDRlLzAvNjVEQkJFQzY3 ODE3N0I3MTU5QUQ5MDFBNDAyM0JBNTdBQTQwOTZEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NURCQkVDNjc4MTc3QjcxNTlBRDkwMUE0MDIzQkE1N0FBNDA5 NkRDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAspd9DANBgkqhkiG 9w0BAQsFAAOCAQEAQ6G9xPptqHIwWucMnvoBx/7Ztb0EoCRS1nFtKnXOk9iSdz7h dDVfIY3ZAWodi6KVigKW4TSrClqKOo2uUEyLwCVbTCacg/Wl11awoHszbb7PgeRc fVDq3CJ/8+7jlVPbCvs+KJI/8kfh0mxM3/mPVzA4M+pENzjtmIfvfm10G8h7W0gk Spyu0g+IiTCc8nnOuHsLvfhmEzkUHhNeVQiuSwv7opQTSpHOSr1rGp858ZGLB1je 3/GNMLL8HisCRBS4TWyTIu5rhjDBima4DIcVs4owDBJuTnQRw48dHCD8JQixuRSK 1SgjYdKUgn8RkT7IrO/q8jyxRaqrjvhV0TDEVw== -----END CERTIFICATE-----Generated at Wed May 13 08:35:25 2026 by rpki-client