$ rpki-client -vvf rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e302e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: Ym+oQJAC/FZcNlOtyNB+PyxQjFt4qpTGx2NjQCjEW8k= Subject key identifier: 4B:8E:73:7F:34:3A:55:75:87:FD:E6:DE:FD:3D:C4:77:B4:77:2D:DB Certificate issuer: /CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Certificate serial: 2264C948382FBD36849371D083CC05A916874301 Authority key identifier: 00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32342d3234203d3e203234323030.roa Signing time: Sun 03 May 2026 02:38:51 +0000 ROA not before: Sun 03 May 2026 02:33:51 +0000 ROA not after: Sun 02 May 2027 02:38:51 +0000 asID: 24200 IP address blocks: 202.133.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:64:c9:48:38:2f:bd:36:84:93:71:d0:83:cc:05:a9:16:87:43:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Validity Not Before: May 3 02:33:51 2026 GMT Not After : May 2 02:38:51 2027 GMT Subject: CN=4B8E737F343A557587FDE6DEFD3DC477B4772DDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4a:4d:fd:2e:4a:2d:1e:aa:64:01:88:77:2b: af:30:3f:84:14:72:ab:e3:da:82:76:10:5d:79:24: e6:b6:d4:db:d6:93:c2:2c:c8:9c:6c:17:cf:fd:e7: 8f:09:4f:96:35:0c:bc:85:96:68:91:52:70:28:15: ab:af:11:66:ac:a8:bf:52:d8:81:22:1a:88:e2:8e: 78:25:68:95:56:e2:1b:74:9b:19:be:d3:64:f0:c8: 3d:50:98:ff:06:44:8a:78:60:c4:88:f2:39:1f:3f: 51:ad:61:52:dc:a8:0d:cf:34:47:7a:49:09:37:92: 35:42:1d:c7:97:07:45:c8:29:24:e5:a8:f7:67:d9: 47:eb:d2:d2:3d:06:8a:60:aa:e5:73:4e:35:50:c2: c5:20:1e:2d:dd:28:d1:8a:3c:d7:3d:b9:b5:2d:27: 02:fb:cd:fc:e9:e9:4b:16:e3:ab:1f:87:b0:78:92: 71:27:b6:d2:94:ea:48:2f:fb:39:e4:97:4e:94:f7: 56:5c:0a:1d:92:00:a1:a7:7a:64:59:60:96:b2:40: 26:c4:21:4d:a0:c1:66:fe:bf:d3:9c:15:5e:27:7e: b1:ba:7e:1a:65:e2:6c:23:77:c8:1b:80:91:24:b0: 6f:e9:f7:c1:7d:90:32:82:1a:33:ab:1e:dc:d5:85: b8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:8E:73:7F:34:3A:55:75:87:FD:E6:DE:FD:3D:C4:77:B4:77:2D:DB X509v3 Authority Key Identifier: keyid:00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.0.0/24 Signature Algorithm: sha256WithRSAEncryption 36:62:cd:70:07:f6:83:d4:1a:3d:f7:f0:78:ed:f6:b8:bb:e3: cc:e4:e8:a9:92:44:6c:50:17:bc:14:5c:61:bf:57:1f:58:93: ce:77:7a:d5:be:71:b4:a6:7e:52:ef:de:82:93:03:7d:09:5a: 4c:11:0c:97:bc:36:fc:f4:e5:78:c4:69:f7:be:0a:42:40:1b: 00:c6:03:3d:00:c9:49:6c:a1:f1:3c:ed:de:5b:1e:a5:c8:95: c8:e5:42:d4:e8:e8:fe:6f:00:08:e6:4a:2a:2a:e6:c4:64:11: 57:93:3e:5e:f7:9f:78:77:de:b8:86:98:91:6b:79:f8:e2:ee: cb:45:41:78:7e:57:d1:6c:7d:8a:e6:32:03:7a:c9:63:4f:de: 68:ed:5c:8b:1b:99:0a:a2:14:3b:6c:75:59:af:f8:df:e8:ed: 5f:02:46:e2:e5:e7:6d:0b:6b:03:bf:1e:f5:e8:15:33:e6:b3: 2e:6c:f6:53:01:8e:fe:da:fc:a5:b6:a6:91:06:71:b0:6c:46: e4:4f:f1:c1:63:72:9f:28:d6:46:6e:7d:bc:b2:e4:95:83:55: ae:23:3e:5b:13:81:00:f2:9d:cf:0b:7d:4f:64:09:1a:34:f9: f9:2c:9e:85:ee:97:5b:24:42:d4:a3:83:7d:59:5e:3e:ab:a4: 59:50:c1:9b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUImTJSDgvvTaEk3HQg8wFqRaHQwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA4RkQ5QzM0QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFD NTg5MDFERjAeFw0yNjA1MDMwMjMzNTFaFw0yNzA1MDIwMjM4NTFaMDMxMTAvBgNV BAMTKDRCOEU3MzdGMzQzQTU1NzU4N0ZERTZERUZEM0RDNDc3QjQ3NzJEREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCySk39LkotHqpkAYh3K68wP4QU cqvj2oJ2EF15JOa21NvWk8IsyJxsF8/9548JT5Y1DLyFlmiRUnAoFauvEWasqL9S 2IEiGojijnglaJVW4ht0mxm+02TwyD1QmP8GRIp4YMSI8jkfP1GtYVLcqA3PNEd6 SQk3kjVCHceXB0XIKSTlqPdn2Ufr0tI9BopgquVzTjVQwsUgHi3dKNGKPNc9ubUt JwL7zfzp6UsW46sfh7B4knEnttKU6kgv+znkl06U91ZcCh2SAKGnemRZYJayQCbE IU2gwWb+v9OcFV4nfrG6fhpl4mwjd8gbgJEksG/p98F9kDKCGjOrHtzVhbgTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUS45zfzQ6VXWH/ebe/T3Ed7R3LdswHwYDVR0j BBgwFoAUAI/Zw0xQAzRXcFoqj6itMcWJAd8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM2NjllYTQtZTgyZi00NmMzLThkZDMtMmU5ODgxNTliMjAyLzAvMDA4RkQ5QzM0 QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFDNTg5MDFERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMDhGRDlDMzRDNTAwMzM0NTc3MDVBMkE4RkE4QUQzMUM1ODkw MURGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQAwDQYJKoZIhvcN AQELBQADggEBADZizXAH9oPUGj338Hjt9ri748zk6KmSRGxQF7wUXGG/Vx9Yk853 etW+cbSmflLv3oKTA30JWkwRDJe8Nvz05XjEafe+CkJAGwDGAz0AyUlsofE87d5b HqXIlcjlQtTo6P5vAAjmSioq5sRkEVeTPl73n3h33riGmJFrefji7stFQXh+V9Fs fYrmMgN6yWNP3mjtXIsbmQqiFDtsdVmv+N/o7V8CRuLl520LawO/HvXoFTPmsy5s 9lMBjv7a/KW2ppEGcbBsRuRP8cFjcp8o1kZufbyy5JWDVa4jPlsTgQDync8LfU9k CRo0+fksnoXul1skQtSjg31ZXj6rpFlQwZs= -----END CERTIFICATE-----Generated at Wed May 13 03:48:30 2026 by rpki-client