$ rpki-client -vvf rpki-rsync.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3230322e34362e3134342e302f32322d3234203d3e203138303536.roa File: 3230322e34362e3134342e302f32322d3234203d3e203138303536.roa (raw, json) Hash identifier: oDQWvgAroc6j8Zz7ACtwggHFMEzsZVwlsq4pDyGB050= Subject key identifier: 89:BA:32:93:20:CE:37:1A:0F:A3:89:CD:10:B4:F9:B2:22:76:CF:AC Certificate issuer: /CN=7CA7C7E603DBE14E06E948C748A38543F5F5E726 Certificate serial: 7B202A4E759D7F07AB10DB4F5DB6A5EBCEEE2AC7 Authority key identifier: 7C:A7:C7:E6:03:DB:E1:4E:06:E9:48:C7:48:A3:85:43:F5:F5:E7:26 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CA7C7E603DBE14E06E948C748A38543F5F5E726.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3230322e34362e3134342e302f32322d3234203d3e203138303536.roa Signing time: Sun 03 May 2026 02:39:23 +0000 ROA not before: Sun 03 May 2026 02:34:23 +0000 ROA not after: Sun 02 May 2027 02:39:23 +0000 asID: 18056 IP address blocks: 202.46.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/7CA7C7E603DBE14E06E948C748A38543F5F5E726.crl rsync://rpki-rsync.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/7CA7C7E603DBE14E06E948C748A38543F5F5E726.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CA7C7E603DBE14E06E948C748A38543F5F5E726.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:20:2a:4e:75:9d:7f:07:ab:10:db:4f:5d:b6:a5:eb:ce:ee:2a:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CA7C7E603DBE14E06E948C748A38543F5F5E726 Validity Not Before: May 3 02:34:23 2026 GMT Not After : May 2 02:39:23 2027 GMT Subject: CN=89BA329320CE371A0FA389CD10B4F9B22276CFAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0f:77:31:dd:2b:17:d8:e6:bb:a6:ef:b8:1e: 09:a6:ac:78:73:d1:0e:6d:ab:65:c8:a6:cd:ca:53: 44:0e:d9:12:72:8c:85:89:cc:0f:65:14:05:b5:85: d6:56:59:d7:72:aa:bf:07:1e:4d:a1:d6:d2:f3:65: 96:0b:28:0b:96:35:fc:0f:89:5e:33:8d:10:43:8b: 02:3c:46:43:9b:29:4a:31:09:4b:fc:83:cf:71:ff: 82:b2:b6:f0:cd:06:e8:0e:cc:7c:7f:42:0a:0b:11: d0:43:c2:9d:ae:40:ab:33:e6:29:13:69:cd:cd:a1: 3c:37:74:43:83:90:76:60:e9:0e:79:8a:45:60:64: 57:fb:53:5f:08:d4:c1:fd:8a:aa:c7:15:4c:6c:2b: 3f:e0:18:e3:43:f2:e7:d5:eb:65:87:74:cf:a3:7e: 9b:18:bc:e5:77:89:30:ae:56:61:ce:67:61:e1:ab: c5:4b:70:9d:76:0a:2f:e2:4b:d0:83:82:42:3d:62: 9c:fd:42:2b:13:45:cf:96:7a:35:3c:d7:b6:e6:21: ab:84:74:e8:1e:62:d5:56:a6:9e:dc:9d:46:43:99: 5f:4b:7c:aa:e0:f9:18:cc:d0:8a:74:99:82:16:0f: ef:c9:a2:9e:6c:6b:43:b9:a8:64:11:4e:ea:62:0c: e2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BA:32:93:20:CE:37:1A:0F:A3:89:CD:10:B4:F9:B2:22:76:CF:AC X509v3 Authority Key Identifier: keyid:7C:A7:C7:E6:03:DB:E1:4E:06:E9:48:C7:48:A3:85:43:F5:F5:E7:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/7CA7C7E603DBE14E06E948C748A38543F5F5E726.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7CA7C7E603DBE14E06E948C748A38543F5F5E726.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3230322e34362e3134342e302f32322d3234203d3e203138303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.46.144.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:01:ed:ba:b0:54:42:e6:7e:6c:86:20:22:5d:c5:df:be:40: 40:83:f7:95:77:c5:69:7c:97:56:ab:27:46:4e:81:ec:00:24: f0:58:53:35:4f:b5:d0:58:d8:33:62:60:6a:5a:c2:25:5b:94: da:bf:00:ca:45:e1:9c:95:ae:07:0f:84:b2:31:6d:ff:fe:8a: 2b:01:d9:fb:f0:77:c0:74:a5:a2:06:b7:57:96:ea:26:f7:9a: 2d:14:88:d7:ff:08:d3:f8:92:0d:d2:f8:4c:c1:a2:25:17:43: 63:a9:97:6b:55:08:ac:cf:91:96:4c:a8:36:68:2b:a2:7b:ab: c5:ea:77:b6:d1:51:67:d1:92:29:c0:21:92:4f:56:68:eb:8d: 09:a6:e3:98:1f:d8:d6:06:26:91:c9:3b:e3:7c:c6:f7:45:7b: d7:a5:d0:b4:fa:4b:72:af:ac:6a:6b:a1:db:56:79:32:f4:99: 59:83:29:b7:61:14:8a:59:28:51:8a:d2:c4:cc:7e:04:ba:d3: 61:f1:ff:a3:d8:e1:41:a9:89:cf:43:14:42:4a:09:cb:b3:f0: b5:79:a5:9d:07:14:c1:64:0f:64:7b:b8:5e:aa:40:ec:59:3d: ea:3b:96:57:2f:ae:82:96:8d:8d:8c:1e:6e:c4:13:88:da:43: 67:6d:32:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeyAqTnWdfwerENtPXbal687uKscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NBN0M3RTYwM0RCRTE0RTA2RTk0OEM3NDhBMzg1NDNG NUY1RTcyNjAeFw0yNjA1MDMwMjM0MjNaFw0yNzA1MDIwMjM5MjNaMDMxMTAvBgNV BAMTKDg5QkEzMjkzMjBDRTM3MUEwRkEzODlDRDEwQjRGOUIyMjI3NkNGQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvD3cx3SsX2Oa7pu+4HgmmrHhz 0Q5tq2XIps3KU0QO2RJyjIWJzA9lFAW1hdZWWddyqr8HHk2h1tLzZZYLKAuWNfwP iV4zjRBDiwI8RkObKUoxCUv8g89x/4KytvDNBugOzHx/QgoLEdBDwp2uQKsz5ikT ac3NoTw3dEODkHZg6Q55ikVgZFf7U18I1MH9iqrHFUxsKz/gGOND8ufV62WHdM+j fpsYvOV3iTCuVmHOZ2Hhq8VLcJ12Ci/iS9CDgkI9Ypz9QisTRc+WejU817bmIauE dOgeYtVWpp7cnUZDmV9LfKrg+RjM0Ip0mYIWD+/Jop5sa0O5qGQRTupiDOL/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiboykyDONxoPo4nNELT5siJ2z6wwHwYDVR0j BBgwFoAUfKfH5gPb4U4G6UjHSKOFQ/X15yYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjRmN2ViNGYtNzkyNC00ZGI2LWI2ZDYtMzk0ZDgzYjM5MmZjLzAvN0NBN0M3RTYw M0RCRTE0RTA2RTk0OEM3NDhBMzg1NDNGNUY1RTcyNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83Q0E3QzdFNjAzREJFMTRFMDZFOTQ4Qzc0OEEzODU0M0Y1RjVF NzI2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0ZjdlYjRmLTc5MjQtNGRiNi1i NmQ2LTM5NGQ4M2IzOTJmYy8wLzMyMzAzMjJlMzQzNjJlMzEzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzODMwMzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsoukDANBgkqhkiG 9w0BAQsFAAOCAQEAHAHturBUQuZ+bIYgIl3F375AQIP3lXfFaXyXVqsnRk6B7AAk 8FhTNU+10FjYM2JgalrCJVuU2r8AykXhnJWuBw+EsjFt//6KKwHZ+/B3wHSloga3 V5bqJveaLRSI1/8I0/iSDdL4TMGiJRdDY6mXa1UIrM+RlkyoNmgronurxep3ttFR Z9GSKcAhkk9WaOuNCabjmB/Y1gYmkck743zG90V716XQtPpLcq+samuh21Z5MvSZ WYMpt2EUilkoUYrSxMx+BLrTYfH/o9jhQamJz0MUQkoJy7PwtXmlnQcUwWQPZHu4 XqpA7Fk96juWVy+ugpaNjYwebsQTiNpDZ20yRA== -----END CERTIFICATE-----Generated at Wed May 13 06:47:42 2026 by rpki-client