$ rpki-client -vvf rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e342e302f32322d3234203d3e2039393035.roa File: 3230322e3133372e342e302f32322d3234203d3e2039393035.roa (raw, json) Hash identifier: n/wLv+DrvS6hM2yX7W1+FhqdbDsoaxYa82u0zyTWRIg= Subject key identifier: FF:B5:AE:69:13:57:76:5E:7D:0B:48:48:42:14:37:AF:68:70:63:41 Certificate issuer: /CN=38A016716413D0128BA473D046A93A222EF258E1 Certificate serial: 404D4ADFD5853C50BA3350629DE8068F7E4F6807 Authority key identifier: 38:A0:16:71:64:13:D0:12:8B:A4:73:D0:46:A9:3A:22:2E:F2:58:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38A016716413D0128BA473D046A93A222EF258E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e342e302f32322d3234203d3e2039393035.roa Signing time: Sun 03 May 2026 02:44:38 +0000 ROA not before: Sun 03 May 2026 02:39:38 +0000 ROA not after: Sun 02 May 2027 02:44:38 +0000 asID: 9905 IP address blocks: 202.137.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/38A016716413D0128BA473D046A93A222EF258E1.crl rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/38A016716413D0128BA473D046A93A222EF258E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38A016716413D0128BA473D046A93A222EF258E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4d:4a:df:d5:85:3c:50:ba:33:50:62:9d:e8:06:8f:7e:4f:68:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38A016716413D0128BA473D046A93A222EF258E1 Validity Not Before: May 3 02:39:38 2026 GMT Not After : May 2 02:44:38 2027 GMT Subject: CN=FFB5AE691357765E7D0B4848421437AF68706341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:db:65:c1:ae:c9:39:13:00:7d:f0:dd:19: 3b:3b:37:76:6f:6b:36:82:5c:6b:f8:55:36:4b:d8: df:b1:cc:71:d6:42:f5:82:b8:f8:47:90:ba:9c:9c: 82:15:a8:d3:65:32:87:c7:b0:66:06:f4:5c:0f:08: 19:12:9c:23:d0:4b:36:07:65:ec:3a:b9:af:ef:70: c1:e4:d5:2b:30:b3:13:81:33:88:bc:09:51:8e:87: 66:40:0b:49:5e:d3:15:31:88:4e:cf:e9:fa:c1:74: f1:d0:de:56:ba:3e:e9:71:52:7a:bc:4d:e7:c0:b5: f6:cd:14:3e:d9:49:a0:6f:7f:0c:97:63:e2:d4:1b: e3:13:60:3b:c8:57:c1:4d:e9:28:98:29:b8:9d:ba: f6:ad:a7:11:83:f1:a3:df:ea:2a:48:3d:a4:15:8b: 6d:e0:7e:30:f0:c6:47:21:5d:3a:7d:95:d1:a4:41: 66:c5:23:38:1b:dc:ee:d8:45:ae:0b:27:98:f9:5a: 05:56:30:06:fa:dc:a3:82:88:de:d7:d1:c3:79:a9: 07:b9:13:66:72:39:80:11:e2:a1:ab:d1:97:b1:a8: f3:09:42:c4:38:1e:24:8a:7d:9a:ae:0d:82:19:73: fb:9c:c3:3f:8d:a3:bf:79:ca:ec:99:eb:87:e3:a1: 19:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B5:AE:69:13:57:76:5E:7D:0B:48:48:42:14:37:AF:68:70:63:41 X509v3 Authority Key Identifier: keyid:38:A0:16:71:64:13:D0:12:8B:A4:73:D0:46:A9:3A:22:2E:F2:58:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/38A016716413D0128BA473D046A93A222EF258E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38A016716413D0128BA473D046A93A222EF258E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e342e302f32322d3234203d3e2039393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.137.4.0/22 Signature Algorithm: sha256WithRSAEncryption 88:1a:b4:bc:b7:c8:9b:4d:3a:9f:af:7f:09:7f:26:7f:d3:e6: fb:43:5a:99:fc:62:4a:f8:9d:6d:1b:01:a5:ae:8d:2c:47:91: dd:4e:67:99:05:ce:93:71:61:57:28:fc:9b:d7:c9:01:23:41: 8f:3d:b4:29:c2:9d:8a:65:22:fb:b2:b0:f6:61:09:3c:a3:a3: e8:fc:ef:2a:03:1f:cb:5d:e4:32:69:3b:14:80:3a:c1:e0:02: 15:55:4d:e0:c7:c7:8a:3e:66:38:22:43:bb:b0:c7:8e:78:e8: e4:c3:69:68:fc:fc:fc:4f:39:f7:ad:99:06:cd:43:8c:ab:87: 4f:0f:6e:45:3b:6b:5b:0c:37:40:14:39:ce:e2:4b:ef:f3:d7: e8:80:45:61:87:39:44:df:97:3e:08:a7:ff:b5:03:42:91:e2: 94:ab:c6:a7:10:65:59:a2:31:d8:bd:53:f7:73:5a:bc:df:6f: 97:af:2f:3d:1a:80:d6:8d:e5:a3:d1:68:9a:d1:62:7d:f0:30: 3e:f6:19:d2:35:c8:9f:ae:3c:1f:c4:f0:31:4c:96:fe:2a:58: 4f:2d:24:d2:56:fc:d8:2d:ea:33:b3:48:81:50:d6:0b:c3:30: 55:e4:72:83:52:a5:26:1d:6f:1b:81:5a:ef:a8:ea:9f:bf:38: 3f:a2:40:dd -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQE1K39WFPFC6M1BinegGj35PaAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhBMDE2NzE2NDEzRDAxMjhCQTQ3M0QwNDZBOTNBMjIy RUYyNThFMTAeFw0yNjA1MDMwMjM5MzhaFw0yNzA1MDIwMjQ0MzhaMDMxMTAvBgNV BAMTKEZGQjVBRTY5MTM1Nzc2NUU3RDBCNDg0ODQyMTQzN0FGNjg3MDYzNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Fdtlwa7JORMAffDdGTs7N3Zv azaCXGv4VTZL2N+xzHHWQvWCuPhHkLqcnIIVqNNlMofHsGYG9FwPCBkSnCPQSzYH Zew6ua/vcMHk1SswsxOBM4i8CVGOh2ZAC0le0xUxiE7P6frBdPHQ3la6PulxUnq8 TefAtfbNFD7ZSaBvfwyXY+LUG+MTYDvIV8FN6SiYKbiduvatpxGD8aPf6ipIPaQV i23gfjDwxkchXTp9ldGkQWbFIzgb3O7YRa4LJ5j5WgVWMAb63KOCiN7X0cN5qQe5 E2ZyOYAR4qGr0ZexqPMJQsQ4HiSKfZquDYIZc/ucwz+No795yuyZ64fjoRkrAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU/7WuaRNXdl59C0hIQhQ3r2hwY0EwHwYDVR0j BBgwFoAUOKAWcWQT0BKLpHPQRqk6Ii7yWOEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzljMDVlZTMtN2ZjOC00NDA3LWIyYzAtY2I0MGJmY2ZiODY2LzAvMzhBMDE2NzE2 NDEzRDAxMjhCQTQ3M0QwNDZBOTNBMjIyRUYyNThFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOEEwMTY3MTY0MTNEMDEyOEJBNDczRDA0NkE5M0EyMjJFRjI1 OEUxLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzljMDVlZTMtN2ZjOC00NDA3LWIy YzAtY2I0MGJmY2ZiODY2LzAvMzIzMDMyMmUzMTMzMzcyZTM0MmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKiQQwDQYJKoZIhvcNAQEL BQADggEBAIgatLy3yJtNOp+vfwl/Jn/T5vtDWpn8Ykr4nW0bAaWujSxHkd1OZ5kF zpNxYVco/JvXyQEjQY89tCnCnYplIvuysPZhCTyjo+j87yoDH8td5DJpOxSAOsHg AhVVTeDHx4o+ZjgiQ7uwx4546OTDaWj8/PxPOfetmQbNQ4yrh08PbkU7a1sMN0AU Oc7iS+/z1+iARWGHOUTflz4Ip/+1A0KR4pSrxqcQZVmiMdi9U/dzWrzfb5evLz0a gNaN5aPRaJrRYn3wMD72GdI1yJ+uPB/E8DFMlv4qWE8tJNJW/Ngt6jOzSIFQ1gvD MFXkcoNSpSYdbxuBWu+o6p+/OD+iQN0= -----END CERTIFICATE-----Generated at Wed May 13 02:51:38 2026 by rpki-client