$ rpki-client -vvf rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: Vt1nj/xewKWL3sKUTJlZ04uGRF1cGwAhCAYkKeWSvfM= Subject key identifier: 8F:A4:C5:B9:FA:85:5F:FB:5B:54:DC:72:E4:38:0E:BC:C9:69:83:58 Certificate issuer: /CN=62258C46C7EEF9427331E24A2D1EB9B699C68A9E Certificate serial: 5CDB1BD8F5B276B8A34765873FE70E0BCB6917FC Authority key identifier: 62:25:8C:46:C7:EE:F9:42:73:31:E2:4A:2D:1E:B9:B6:99:C6:8A:9E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa Signing time: Sun 03 May 2026 02:39:09 +0000 ROA not before: Sun 03 May 2026 02:34:09 +0000 ROA not after: Sun 02 May 2027 02:39:09 +0000 asID: 45725 IP address blocks: 202.150.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.crl rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:db:1b:d8:f5:b2:76:b8:a3:47:65:87:3f:e7:0e:0b:cb:69:17:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62258C46C7EEF9427331E24A2D1EB9B699C68A9E Validity Not Before: May 3 02:34:09 2026 GMT Not After : May 2 02:39:09 2027 GMT Subject: CN=8FA4C5B9FA855FFB5B54DC72E4380EBCC9698358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:41:75:f7:fb:7a:61:dc:c5:19:9b:9d:75:38: 2a:0d:51:57:f0:9d:34:a9:0d:3d:e1:4e:b0:74:2e: 1c:bc:5f:4e:11:3d:52:19:fc:fe:b8:a1:c1:c1:4d: ad:86:e7:84:d1:82:a6:0e:c8:ac:4e:a4:46:17:33: f9:97:0f:f7:b8:4b:2e:4d:b7:16:88:16:b1:16:a5: 82:cf:98:c5:de:34:f0:65:03:9f:3c:7c:32:38:df: 3c:c7:d7:28:25:b9:ef:8e:04:21:af:a1:d7:01:a0: 3d:18:df:8b:f1:74:26:04:47:a6:41:fc:19:c3:15: 89:61:c0:35:9c:2a:5b:34:1a:63:b5:a0:38:63:72: 4a:ad:95:60:27:b5:90:c6:f7:83:a8:63:5c:7f:d8: 69:f9:8f:20:69:2a:87:b3:d4:d2:5d:9a:18:2f:be: 74:66:a4:2c:d6:61:c6:4a:36:96:41:25:56:9d:1a: 1d:c0:c6:5b:73:1e:66:61:53:ba:64:46:9f:99:18: bc:10:72:56:1c:e1:18:49:f1:1c:c3:d0:af:2e:7b: 4f:44:d5:38:b8:e4:c4:06:58:83:40:cc:76:8e:9d: 40:b4:4f:af:c0:e8:ff:04:be:9a:ff:1c:83:5c:1f: 59:54:67:f6:7c:93:05:90:dd:cc:73:6f:5f:92:8b: ab:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A4:C5:B9:FA:85:5F:FB:5B:54:DC:72:E4:38:0E:BC:C9:69:83:58 X509v3 Authority Key Identifier: keyid:62:25:8C:46:C7:EE:F9:42:73:31:E2:4A:2D:1E:B9:B6:99:C6:8A:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.172.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:40:52:6a:87:23:71:cc:43:ca:3d:8a:e6:3c:7a:c6:d4:11: a5:2d:e0:43:8d:51:48:55:43:45:7a:57:36:c5:7c:ed:d2:46: cb:b3:1b:5e:40:bd:a8:71:df:fe:97:84:10:ac:b9:8a:3e:fb: 21:1a:69:80:73:8b:05:77:7c:e3:ea:1c:3a:fd:ac:91:14:dc: d4:da:d7:fb:96:4f:89:75:a4:db:d4:f7:40:11:1d:32:b5:98: 31:43:dc:90:04:1c:e2:35:2d:2a:ed:72:17:c3:e7:1f:c1:98: e9:32:bd:74:17:4c:6c:34:03:24:3c:e3:a6:c5:5a:1d:02:17: bb:99:bf:1e:94:77:77:67:f6:91:c9:98:db:fb:67:00:34:5f: b4:1e:0b:2d:29:9c:01:82:02:1b:c2:92:6e:30:6f:2b:50:da: 02:83:9f:72:c5:aa:a7:e0:9f:c3:d4:05:64:80:76:40:87:f3: 0b:0a:c1:6e:08:11:2b:e9:93:ab:93:85:ba:d4:9d:3c:e2:e8: 47:20:a0:3e:8a:bc:78:63:23:cd:76:af:4a:39:0b:44:d3:fc: 84:5c:87:ce:59:81:72:f3:04:bc:95:30:0f:57:64:a7:b2:c2: 17:50:8f:ab:24:74:9a:43:c9:f1:9c:48:b3:c9:aa:b1:77:3f: 1a:a2:ca:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXNsb2PWydrijR2WHP+cOC8tpF/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjIyNThDNDZDN0VFRjk0MjczMzFFMjRBMkQxRUI5QjY5 OUM2OEE5RTAeFw0yNjA1MDMwMjM0MDlaFw0yNzA1MDIwMjM5MDlaMDMxMTAvBgNV BAMTKDhGQTRDNUI5RkE4NTVGRkI1QjU0REM3MkU0MzgwRUJDQzk2OTgzNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqQXX3+3ph3MUZm511OCoNUVfw nTSpDT3hTrB0Lhy8X04RPVIZ/P64ocHBTa2G54TRgqYOyKxOpEYXM/mXD/e4Sy5N txaIFrEWpYLPmMXeNPBlA588fDI43zzH1yglue+OBCGvodcBoD0Y34vxdCYER6ZB /BnDFYlhwDWcKls0GmO1oDhjckqtlWAntZDG94OoY1x/2Gn5jyBpKoez1NJdmhgv vnRmpCzWYcZKNpZBJVadGh3AxltzHmZhU7pkRp+ZGLwQclYc4RhJ8RzD0K8ue09E 1Ti45MQGWINAzHaOnUC0T6/A6P8Evpr/HINcH1lUZ/Z8kwWQ3cxzb1+Si6uZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUj6TFufqFX/tbVNxy5DgOvMlpg1gwHwYDVR0j BBgwFoAUYiWMRsfu+UJzMeJKLR65tpnGip4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjQ0MjE2ZDgtNzBjZS00OTA4LWE3MmItZWMyNzNmNDNiYmMyLzAvNjIyNThDNDZD N0VFRjk0MjczMzFFMjRBMkQxRUI5QjY5OUM2OEE5RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjI1OEM0NkM3RUVGOTQyNzMzMUUyNEEyRDFFQjlCNjk5QzY4 QTlFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM3MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypasMA0GCSqG SIb3DQEBCwUAA4IBAQB/QFJqhyNxzEPKPYrmPHrG1BGlLeBDjVFIVUNFelc2xXzt 0kbLsxteQL2ocd/+l4QQrLmKPvshGmmAc4sFd3zj6hw6/ayRFNzU2tf7lk+JdaTb 1PdAER0ytZgxQ9yQBBziNS0q7XIXw+cfwZjpMr10F0xsNAMkPOOmxVodAhe7mb8e lHd3Z/aRyZjb+2cANF+0HgstKZwBggIbwpJuMG8rUNoCg59yxaqn4J/D1AVkgHZA h/MLCsFuCBEr6ZOrk4W61J084uhHIKA+irx4YyPNdq9KOQtE0/yEXIfOWYFy8wS8 lTAPV2SnssIXUI+rJHSaQ8nxnEizyaqxdz8aosrI -----END CERTIFICATE-----Generated at Wed May 13 06:58:34 2026 by rpki-client