$ rpki-client -vvf rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132322e302f32332d3234203d3e203338353035.roa File: 3230332e3135332e3132322e302f32332d3234203d3e203338353035.roa (raw, json) Hash identifier: X3p+VR9fHu2hyTBK0FsVrH6VXDfYDH8j4Zpx8G4MzCs= Subject key identifier: 78:F0:F4:FC:5D:50:03:66:2D:35:07:11:1A:82:1E:99:2B:9F:77:13 Certificate issuer: /CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Certificate serial: 57CBB8E01EFAE6C77CCAE06A64B118260AC07CCA Authority key identifier: 04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132322e302f32332d3234203d3e203338353035.roa Signing time: Sun 03 May 2026 02:47:38 +0000 ROA not before: Sun 03 May 2026 02:42:38 +0000 ROA not after: Sun 02 May 2027 02:47:38 +0000 asID: 38505 IP address blocks: 203.153.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:cb:b8:e0:1e:fa:e6:c7:7c:ca:e0:6a:64:b1:18:26:0a:c0:7c:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04C8EF6F5260FDA06661D9E95304572B8E7C4993 Validity Not Before: May 3 02:42:38 2026 GMT Not After : May 2 02:47:38 2027 GMT Subject: CN=78F0F4FC5D5003662D3507111A821E992B9F7713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:71:57:c5:6f:7e:5b:a4:7d:f9:0c:99:db:e9: f7:9d:0a:ae:1d:94:5f:b1:b5:83:5d:5d:f1:95:f7: 60:a4:13:78:54:8e:a2:0d:01:76:88:6d:74:87:d4: b1:d2:d0:08:11:43:7c:60:c0:e6:20:01:8c:37:89: a6:a2:8b:97:19:64:2f:ba:c2:e9:af:1e:26:79:63: cc:9a:bc:90:03:0b:02:68:01:9d:ff:d8:e4:be:f8: 78:b3:01:91:6a:ed:4e:1c:3f:54:aa:52:e7:3e:82: 80:16:f7:63:1c:86:77:75:35:9f:d1:40:10:12:37: 21:76:94:98:43:78:1c:c9:d0:67:44:9f:0f:38:a6: 27:84:28:61:97:e7:53:fb:93:d0:e5:b9:a3:cd:b8: 37:e3:a3:78:c2:71:dc:1e:82:14:54:1b:b1:8c:60: ad:cf:bb:6a:20:fc:cc:59:05:cb:58:d1:85:6b:7a: 4a:37:51:f4:44:64:66:59:e3:c8:4a:71:53:11:f5: ae:09:37:b5:e5:8a:6d:12:29:88:f4:46:da:87:c0: 37:12:b3:3d:69:a1:0f:08:cb:50:c8:49:9e:b6:b5: aa:53:f0:52:fc:0b:20:91:9a:93:aa:70:91:55:d2: 2b:64:c5:a5:f3:6b:df:c6:5a:e4:6a:51:96:9f:72: 03:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F0:F4:FC:5D:50:03:66:2D:35:07:11:1A:82:1E:99:2B:9F:77:13 X509v3 Authority Key Identifier: keyid:04:C8:EF:6F:52:60:FD:A0:66:61:D9:E9:53:04:57:2B:8E:7C:49:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/04C8EF6F5260FDA06661D9E95304572B8E7C4993.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04C8EF6F5260FDA06661D9E95304572B8E7C4993.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132322e302f32332d3234203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.122.0/23 Signature Algorithm: sha256WithRSAEncryption 84:13:26:c2:71:92:1e:5c:da:f0:7e:b1:a8:a7:81:63:d0:11: aa:63:e5:af:fd:6f:57:9b:20:7a:e9:fa:61:57:da:21:38:16: dd:da:ab:3a:14:da:16:2d:1e:1a:94:57:7e:93:52:66:59:0a: 29:26:60:79:71:7a:b6:e3:54:3d:26:3f:49:d9:4a:66:c8:b5: c1:de:b3:bf:b5:97:00:30:f3:c5:ee:54:ab:2f:7b:aa:7a:ef: 49:24:e0:8f:ff:ad:13:29:b1:6f:dd:80:84:18:40:27:d5:4b: 26:a9:87:f4:74:cf:67:4c:f4:7a:ae:a1:91:ca:a7:33:d2:be: 40:0c:29:6c:06:67:65:82:8e:64:08:44:d4:38:2b:85:71:65: 74:d2:f6:13:e2:f1:e0:24:13:1a:86:cc:82:32:12:d8:30:f0: f9:3a:a6:ff:5d:45:6c:fb:fe:11:1d:9c:46:e3:4f:3b:f2:a1: 6a:8d:ce:a3:f1:c3:45:bb:c4:45:8d:c0:4b:a3:cc:ba:f8:47: 93:18:e8:d1:07:a1:4a:f9:75:fc:70:61:c1:fe:3a:0b:6f:77: 0c:f7:3d:c7:ad:ee:83:7e:7d:1b:60:44:3e:b2:8f:19:ba:d1: c0:6a:8b:68:b9:8e:63:51:dc:de:3e:36:cf:bb:e1:34:d9:5f: 8d:e7:5d:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV8u44B765sd8yuBqZLEYJgrAfMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRDOEVGNkY1MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4 RTdDNDk5MzAeFw0yNjA1MDMwMjQyMzhaFw0yNzA1MDIwMjQ3MzhaMDMxMTAvBgNV BAMTKDc4RjBGNEZDNUQ1MDAzNjYyRDM1MDcxMTFBODIxRTk5MkI5Rjc3MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkcVfFb35bpH35DJnb6fedCq4d lF+xtYNdXfGV92CkE3hUjqINAXaIbXSH1LHS0AgRQ3xgwOYgAYw3iaaii5cZZC+6 wumvHiZ5Y8yavJADCwJoAZ3/2OS++HizAZFq7U4cP1SqUuc+goAW92Mchnd1NZ/R QBASNyF2lJhDeBzJ0GdEnw84pieEKGGX51P7k9DluaPNuDfjo3jCcdweghRUG7GM YK3Pu2og/MxZBctY0YVreko3UfREZGZZ48hKcVMR9a4JN7Xlim0SKYj0RtqHwDcS sz1poQ8Iy1DISZ62tapT8FL8CyCRmpOqcJFV0itkxaXza9/GWuRqUZafcgMXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUePD0/F1QA2YtNQcRGoIemSufdxMwHwYDVR0j BBgwFoAUBMjvb1Jg/aBmYdnpUwRXK458SZMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODNkMDc4NmQtM2QzZS00NWI3LTk2NjUtOGQ0NzRmZDE0YWVhLzAvMDRDOEVGNkY1 MjYwRkRBMDY2NjFEOUU5NTMwNDU3MkI4RTdDNDk5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNEM4RUY2RjUyNjBGREEwNjY2MUQ5RTk1MzA0NTcyQjhFN0M0 OTkzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5l6MA0GCSqG SIb3DQEBCwUAA4IBAQCEEybCcZIeXNrwfrGop4Fj0BGqY+Wv/W9XmyB66fphV9oh OBbd2qs6FNoWLR4alFd+k1JmWQopJmB5cXq241Q9Jj9J2UpmyLXB3rO/tZcAMPPF 7lSrL3uqeu9JJOCP/60TKbFv3YCEGEAn1UsmqYf0dM9nTPR6rqGRyqcz0r5ADCls Bmdlgo5kCETUOCuFcWV00vYT4vHgJBMahsyCMhLYMPD5Oqb/XUVs+/4RHZxG4087 8qFqjc6j8cNFu8RFjcBLo8y6+EeTGOjRB6FK+XX8cGHB/joLb3cM9z3Hre6Dfn0b YEQ+so8ZutHAaotouY5jUdzePjbPu+E02V+N510R -----END CERTIFICATE-----Generated at Wed May 13 02:50:04 2026 by rpki-client