$ rpki-client -vvf rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32312d3231203d3e203234323030.roa File: 3230322e3133332e302e302f32312d3231203d3e203234323030.roa (raw, json) Hash identifier: WS26qbff4FZd1gBCBy7MpBk2HRkLgCPS9ErpAbqZ1Kk= Subject key identifier: CD:C9:50:C1:94:3E:28:C0:76:71:A1:16:23:3B:1E:56:7B:D5:91:AB Certificate issuer: /CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Certificate serial: 48377E5BDD514ADA5AB66C93A2A517CA5E7B0E85 Authority key identifier: 00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32312d3231203d3e203234323030.roa Signing time: Sun 03 May 2026 02:38:52 +0000 ROA not before: Sun 03 May 2026 02:33:52 +0000 ROA not after: Sun 02 May 2027 02:38:52 +0000 asID: 24200 IP address blocks: 202.133.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:37:7e:5b:dd:51:4a:da:5a:b6:6c:93:a2:a5:17:ca:5e:7b:0e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Validity Not Before: May 3 02:33:52 2026 GMT Not After : May 2 02:38:52 2027 GMT Subject: CN=CDC950C1943E28C07671A116233B1E567BD591AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:38:8b:30:75:c3:59:5c:57:48:70:c6:05:77: 72:f4:93:1c:a5:af:61:9f:29:e1:5b:2c:1c:8b:9c: eb:f8:ef:7f:5a:3b:77:a3:38:8f:d0:9d:65:ac:f9: 2d:41:27:0a:47:27:81:a9:e3:77:8d:b1:0d:36:17: af:3b:36:59:3a:7f:14:eb:4c:cf:d9:25:9d:a0:d9: f2:ea:e9:42:04:0e:8a:d6:e8:55:7b:c8:01:4b:78: 85:5e:fd:e9:ae:ab:bf:e9:5d:6c:82:8c:2d:63:a6: 96:52:dd:bc:1f:f1:95:84:71:7d:d8:70:10:e8:67: 10:d6:27:03:88:dc:1a:bd:c3:03:65:f6:e2:65:b4: 3e:70:2c:54:64:e1:51:85:c7:94:ed:a6:5b:1e:d1: 19:60:f2:86:f0:c7:bf:be:c5:6c:46:e8:e3:86:df: 46:e7:6a:8e:dc:2f:37:98:77:de:54:5f:bc:9f:02: 89:55:e5:a3:29:48:83:2c:57:99:27:dc:14:c1:22: d3:c9:d0:1d:c8:41:f7:18:35:ff:01:0d:69:0b:98: 60:80:e8:76:84:79:9d:b8:35:33:85:41:c0:bc:8d: d4:ae:e5:64:95:72:55:1a:71:8d:02:ff:fd:69:c7: dd:bc:35:3b:9d:2b:e3:99:c3:1a:95:6a:b5:36:f9: 6a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C9:50:C1:94:3E:28:C0:76:71:A1:16:23:3B:1E:56:7B:D5:91:AB X509v3 Authority Key Identifier: keyid:00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32312d3231203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.0.0/21 Signature Algorithm: sha256WithRSAEncryption c9:f3:05:7b:ae:c6:ce:e5:28:3d:d6:29:3e:8c:12:e9:43:f6: 73:56:20:64:a7:0a:36:81:5a:bc:d4:b2:96:fe:9c:a1:bd:f9: 14:29:dd:60:4c:92:06:2b:b3:e0:77:a7:25:44:db:71:3d:da: 73:15:4e:de:6d:75:a9:3d:68:1d:a3:2a:01:22:7e:41:58:9d: 4d:51:b4:12:b9:d8:ba:37:42:53:f5:63:c2:28:dd:1f:b5:1f: 19:31:6e:7a:43:a9:99:c1:a9:82:92:25:d4:e6:32:75:5e:19: ca:59:72:e7:e6:41:b0:0d:30:71:8b:05:41:7e:28:86:1f:dc: 27:9c:28:79:27:0b:7d:1b:69:b4:bf:05:94:83:33:24:19:5a: bb:0f:04:fd:d3:44:05:c9:6e:11:47:3c:a7:c6:d3:e3:76:7c: 6d:b3:ae:44:91:fc:a0:83:26:04:a1:43:8c:43:d4:3d:f6:3e: ce:89:e6:46:5c:fe:02:1e:a2:40:94:c2:9f:27:50:a1:0a:7d: d5:af:04:dc:1b:98:0a:82:67:49:6e:bf:09:03:c4:14:ce:57: d4:8c:d7:42:80:f5:bd:5a:4f:71:90:e4:fe:83:5f:c7:51:bb: 7b:10:33:2a:b3:aa:e2:4f:5b:c6:8c:61:1c:dd:98:ee:89:ec: cd:37:ba:bb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSDd+W91RStpatmyToqUXyl57DoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA4RkQ5QzM0QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFD NTg5MDFERjAeFw0yNjA1MDMwMjMzNTJaFw0yNzA1MDIwMjM4NTJaMDMxMTAvBgNV BAMTKENEQzk1MEMxOTQzRTI4QzA3NjcxQTExNjIzM0IxRTU2N0JENTkxQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrOIswdcNZXFdIcMYFd3L0kxyl r2GfKeFbLByLnOv4739aO3ejOI/QnWWs+S1BJwpHJ4Gp43eNsQ02F687Nlk6fxTr TM/ZJZ2g2fLq6UIEDorW6FV7yAFLeIVe/emuq7/pXWyCjC1jppZS3bwf8ZWEcX3Y cBDoZxDWJwOI3Bq9wwNl9uJltD5wLFRk4VGFx5Ttplse0Rlg8obwx7++xWxG6OOG 30bnao7cLzeYd95UX7yfAolV5aMpSIMsV5kn3BTBItPJ0B3IQfcYNf8BDWkLmGCA 6HaEeZ24NTOFQcC8jdSu5WSVclUacY0C//1px928NTudK+OZwxqVarU2+Wp9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzclQwZQ+KMB2caEWIzseVnvVkaswHwYDVR0j BBgwFoAUAI/Zw0xQAzRXcFoqj6itMcWJAd8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM2NjllYTQtZTgyZi00NmMzLThkZDMtMmU5ODgxNTliMjAyLzAvMDA4RkQ5QzM0 QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFDNTg5MDFERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMDhGRDlDMzRDNTAwMzM0NTc3MDVBMkE4RkE4QUQzMUM1ODkw MURGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMDJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKhQAwDQYJKoZIhvcN AQELBQADggEBAMnzBXuuxs7lKD3WKT6MEulD9nNWIGSnCjaBWrzUspb+nKG9+RQp 3WBMkgYrs+B3pyVE23E92nMVTt5tdak9aB2jKgEifkFYnU1RtBK52Lo3QlP1Y8Io 3R+1HxkxbnpDqZnBqYKSJdTmMnVeGcpZcufmQbANMHGLBUF+KIYf3CecKHknC30b abS/BZSDMyQZWrsPBP3TRAXJbhFHPKfG0+N2fG2zrkSR/KCDJgShQ4xD1D32Ps6J 5kZc/gIeokCUwp8nUKEKfdWvBNwbmAqCZ0luvwkDxBTOV9SM10KA9b1aT3GQ5P6D X8dRu3sQMyqzquJPW8aMYRzdmO6J7M03urs= -----END CERTIFICATE-----Generated at Wed May 13 02:26:56 2026 by rpki-client