$ rpki-client -vvf rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: nb1/eym45+E0k8vJlFHZ9EbC8He31yEJ9JIBxNmCQxI= Subject key identifier: 8A:27:C8:EF:F1:5A:FD:F0:60:55:1D:90:0C:EA:21:BF:32:70:AA:3A Certificate issuer: /CN=62258C46C7EEF9427331E24A2D1EB9B699C68A9E Certificate serial: 5272FF46662D859CBC4E414F1FD28BADAF5C89F5 Authority key identifier: 62:25:8C:46:C7:EE:F9:42:73:31:E2:4A:2D:1E:B9:B6:99:C6:8A:9E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa Signing time: Sun 03 May 2026 02:39:15 +0000 ROA not before: Sun 03 May 2026 02:34:15 +0000 ROA not after: Sun 02 May 2027 02:39:15 +0000 asID: 45725 IP address blocks: 202.150.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.crl rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:72:ff:46:66:2d:85:9c:bc:4e:41:4f:1f:d2:8b:ad:af:5c:89:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62258C46C7EEF9427331E24A2D1EB9B699C68A9E Validity Not Before: May 3 02:34:15 2026 GMT Not After : May 2 02:39:15 2027 GMT Subject: CN=8A27C8EFF15AFDF060551D900CEA21BF3270AA3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:96:16:0c:98:60:07:98:84:66:36:cf:90:91: 55:27:05:6f:f1:fa:c0:c9:f9:aa:5a:bd:71:67:c9: 08:c8:5a:bf:75:71:df:9b:32:d3:78:ed:1e:70:0d: 6c:d6:a5:8b:8a:f8:2b:ce:fd:92:5c:f7:77:87:83: a7:56:60:78:db:22:13:99:47:85:5e:87:a6:1e:52: 51:10:6e:ed:19:e3:3f:f5:35:85:23:03:ca:53:19: 02:20:c4:6a:05:62:a5:70:73:61:a8:93:ca:b7:7a: 78:ad:0f:4d:49:92:36:d6:0d:80:15:dd:7e:a9:49: e7:8c:0b:9b:b8:11:7b:8d:87:4f:a0:9e:87:96:5f: ad:37:65:51:46:4c:97:21:f5:16:02:5d:c1:95:a7: ab:85:a6:7e:fa:11:0e:31:01:ef:82:5a:dc:b5:19: a6:94:c4:e9:10:73:40:40:91:68:c1:45:03:37:40: a5:38:c7:db:cc:1c:70:2e:5f:1f:3b:fe:2b:b6:bf: 43:5e:8f:2c:5b:cd:79:2c:45:f8:cc:49:e1:82:cb: 3c:52:4e:f0:03:5f:26:df:90:f0:25:f1:93:9c:93: d0:c6:80:a3:e6:fa:35:23:25:de:73:a3:e1:0d:36: 17:4b:83:5c:69:35:a8:c2:15:24:4b:43:f4:d2:f6: 09:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:27:C8:EF:F1:5A:FD:F0:60:55:1D:90:0C:EA:21:BF:32:70:AA:3A X509v3 Authority Key Identifier: keyid:62:25:8C:46:C7:EE:F9:42:73:31:E2:4A:2D:1E:B9:B6:99:C6:8A:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.166.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:24:e8:51:41:84:25:1c:b4:3e:d8:7f:7a:22:d0:5d:89:81: 7c:0a:f6:a8:90:04:ca:cd:f4:41:2b:7a:88:87:bd:04:2e:95: c0:51:25:e2:c0:e2:e5:70:03:7d:81:b0:35:cc:02:74:54:29: 2a:3d:d1:5d:4c:ec:12:24:5c:8a:25:a1:ef:23:5c:42:09:15: 7e:13:30:ed:03:12:10:29:a5:e8:45:7e:5b:3b:9c:51:d1:7f: 63:4e:6f:6f:3c:96:52:b7:bf:45:03:1e:ec:96:24:da:f8:7c: 55:ca:06:ea:f6:8d:aa:c9:a7:4a:56:c8:5d:2e:03:f4:5a:ab: dc:46:6d:27:8a:9c:88:ed:61:3c:34:45:78:74:54:a5:eb:99: ae:f9:0a:da:82:41:71:73:17:dc:4e:59:e1:55:8c:5c:bb:e3: fd:7f:29:8d:e1:79:31:54:da:9d:38:34:94:77:a6:50:d4:a6: d7:17:47:8f:88:c8:48:a1:9f:f2:08:29:80:33:f7:ab:8d:7f: 37:e9:b8:05:c7:ac:10:3d:6d:9c:40:a0:37:b2:88:46:5f:41: d4:9f:40:5c:2f:24:41:e8:74:37:c4:0b:37:31:21:d2:20:3e: 44:45:8e:b5:7d:f9:62:21:e8:a3:4c:bb:83:21:08:f9:f7:de: 16:ef:a0:42 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUnL/RmYthZy8TkFPH9KLra9cifUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjIyNThDNDZDN0VFRjk0MjczMzFFMjRBMkQxRUI5QjY5 OUM2OEE5RTAeFw0yNjA1MDMwMjM0MTVaFw0yNzA1MDIwMjM5MTVaMDMxMTAvBgNV BAMTKDhBMjdDOEVGRjE1QUZERjA2MDU1MUQ5MDBDRUEyMUJGMzI3MEFBM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCilhYMmGAHmIRmNs+QkVUnBW/x +sDJ+apavXFnyQjIWr91cd+bMtN47R5wDWzWpYuK+CvO/ZJc93eHg6dWYHjbIhOZ R4Veh6YeUlEQbu0Z4z/1NYUjA8pTGQIgxGoFYqVwc2Gok8q3enitD01JkjbWDYAV 3X6pSeeMC5u4EXuNh0+gnoeWX603ZVFGTJch9RYCXcGVp6uFpn76EQ4xAe+CWty1 GaaUxOkQc0BAkWjBRQM3QKU4x9vMHHAuXx87/iu2v0NejyxbzXksRfjMSeGCyzxS TvADXybfkPAl8ZOck9DGgKPm+jUjJd5zo+ENNhdLg1xpNajCFSRLQ/TS9gmhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiifI7/Fa/fBgVR2QDOohvzJwqjowHwYDVR0j BBgwFoAUYiWMRsfu+UJzMeJKLR65tpnGip4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjQ0MjE2ZDgtNzBjZS00OTA4LWE3MmItZWMyNzNmNDNiYmMyLzAvNjIyNThDNDZD N0VFRjk0MjczMzFFMjRBMkQxRUI5QjY5OUM2OEE5RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjI1OEM0NkM3RUVGOTQyNzMzMUUyNEEyRDFFQjlCNjk5QzY4 QTlFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypamMA0GCSqG SIb3DQEBCwUAA4IBAQCLJOhRQYQlHLQ+2H96ItBdiYF8CvaokATKzfRBK3qIh70E LpXAUSXiwOLlcAN9gbA1zAJ0VCkqPdFdTOwSJFyKJaHvI1xCCRV+EzDtAxIQKaXo RX5bO5xR0X9jTm9vPJZSt79FAx7sliTa+HxVygbq9o2qyadKVshdLgP0WqvcRm0n ipyI7WE8NEV4dFSl65mu+QragkFxcxfcTlnhVYxcu+P9fymN4XkxVNqdODSUd6ZQ 1KbXF0ePiMhIoZ/yCCmAM/erjX836bgFx6wQPW2cQKA3sohGX0HUn0BcLyRB6HQ3 xAs3MSHSID5ERY61ffliIeijTLuDIQj5994W76BC -----END CERTIFICATE-----Generated at Wed May 13 08:29:06 2026 by rpki-client