$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230322e3134352e382e302f32312d3234203d3e203535363835.roa File: 3230322e3134352e382e302f32312d3234203d3e203535363835.roa (raw, json) Hash identifier: rvd1VzcQSj/JsAOrW50iGkXhzOAfs7R8SowdxdwmDi8= Subject key identifier: F3:CD:CA:C0:A1:63:0A:E2:6B:A9:97:CD:FA:6F:94:10:CE:17:A5:A9 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 6A70CBE073135E6ABD5E1CD207CEAECE74B45F98 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230322e3134352e382e302f32312d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:54 +0000 ROA not before: Sun 03 May 2026 02:42:54 +0000 ROA not after: Sun 02 May 2027 02:47:54 +0000 asID: 55685 IP address blocks: 202.145.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:70:cb:e0:73:13:5e:6a:bd:5e:1c:d2:07:ce:ae:ce:74:b4:5f:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:54 2026 GMT Not After : May 2 02:47:54 2027 GMT Subject: CN=F3CDCAC0A1630AE26BA997CDFA6F9410CE17A5A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:77:00:93:86:b9:06:bb:f8:80:1f:58:95:da: cf:eb:8c:9b:2c:91:2d:95:33:99:76:42:36:88:fe: 03:14:48:0f:d9:af:b8:89:99:63:4d:d7:66:92:1c: 0b:87:96:de:fc:52:80:3d:53:74:24:02:c7:57:cb: 0b:09:48:98:25:a7:99:d0:c0:cc:27:f0:18:44:94: 5d:b1:f9:5c:a2:b9:b5:3a:65:54:b7:07:47:54:66: 54:fa:14:17:d3:29:ea:3a:f6:62:c4:9c:a2:15:07: b5:a6:78:aa:0d:7f:fc:ae:8e:73:49:23:fe:80:f3: 1a:46:fe:25:55:5c:07:16:24:61:eb:04:2d:9f:23: 01:7e:0b:6d:da:ca:33:2f:02:6a:8b:77:8a:29:64: 38:d3:f3:59:d4:42:00:e7:89:dd:5b:d9:4d:47:21: 81:88:f0:a7:ed:9d:a0:0c:1e:b9:fb:dc:65:03:e9: 51:c8:1d:b9:7c:10:25:73:bc:e0:1a:58:4f:0d:1a: 40:ab:50:02:ce:ac:ed:66:77:18:ce:9f:ed:b6:97: d8:45:18:93:15:82:ca:41:22:16:fc:db:b2:51:cf: d6:a3:d9:4e:16:c7:8b:30:71:65:3e:68:ca:18:3a: ba:13:6a:ed:5b:aa:45:21:18:cc:88:a7:1c:6a:5e: 38:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CD:CA:C0:A1:63:0A:E2:6B:A9:97:CD:FA:6F:94:10:CE:17:A5:A9 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230322e3134352e382e302f32312d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.145.8.0/21 Signature Algorithm: sha256WithRSAEncryption 67:98:97:44:4c:e3:f9:ce:87:ac:fc:4f:97:4f:ab:28:e5:99: 1d:83:fc:f3:4e:7a:fc:37:d6:05:db:b8:4c:39:d2:1d:e6:38: ad:d0:15:6f:10:92:76:3c:8a:b8:f1:87:e4:e8:0d:f8:92:8e: f4:d2:95:74:d5:46:9e:51:9f:10:5d:55:24:11:fe:63:80:a2: 35:af:c7:a6:b7:cd:50:b4:92:d5:27:3a:db:f8:de:8a:e2:b9: 36:ba:00:e0:d8:17:c6:07:72:bb:46:98:8d:b9:f8:96:b0:35: af:b3:0b:37:8c:08:be:cb:36:44:72:eb:c3:ea:45:0f:a4:48: 04:17:8c:34:50:73:da:77:d4:a9:7f:46:5d:f9:b9:69:15:9d: 80:57:66:d6:58:08:c9:9c:d3:1a:c3:16:4a:1c:be:36:65:06: ec:e3:f0:67:27:5c:dc:81:ac:5a:ed:2e:08:66:00:d0:2d:3c: d4:bb:5a:cb:21:c2:da:ac:15:25:8e:36:55:20:c7:57:8a:ab: e8:cb:ca:42:88:d7:00:37:a4:c6:37:7d:24:e3:b7:57:e6:0f: d4:e2:71:d4:cc:8f:aa:a7:0c:56:0b:db:99:7b:88:a7:85:99: 09:90:77:f0:9d:3d:42:76:e0:f4:2c:72:c9:06:ad:ce:a7:28: b4:43:6e:65 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUanDL4HMTXmq9XhzSB86uznS0X5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTRaFw0yNzA1MDIwMjQ3NTRaMDMxMTAvBgNV BAMTKEYzQ0RDQUMwQTE2MzBBRTI2QkE5OTdDREZBNkY5NDEwQ0UxN0E1QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcdwCThrkGu/iAH1iV2s/rjJss kS2VM5l2QjaI/gMUSA/Zr7iJmWNN12aSHAuHlt78UoA9U3QkAsdXywsJSJglp5nQ wMwn8BhElF2x+VyiubU6ZVS3B0dUZlT6FBfTKeo69mLEnKIVB7WmeKoNf/yujnNJ I/6A8xpG/iVVXAcWJGHrBC2fIwF+C23ayjMvAmqLd4opZDjT81nUQgDnid1b2U1H IYGI8KftnaAMHrn73GUD6VHIHbl8ECVzvOAaWE8NGkCrUALOrO1mdxjOn+22l9hF GJMVgspBIhb827JRz9aj2U4Wx4swcWU+aMoYOroTau1bqkUhGMyIpxxqXjhDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU883KwKFjCuJrqZfN+m+UEM4XpakwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMjJlMzEzNDM1MmUzODJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKkQgwDQYJKoZIhvcN AQELBQADggEBAGeYl0RM4/nOh6z8T5dPqyjlmR2D/PNOevw31gXbuEw50h3mOK3Q FW8QknY8irjxh+ToDfiSjvTSlXTVRp5RnxBdVSQR/mOAojWvx6a3zVC0ktUnOtv4 3oriuTa6AODYF8YHcrtGmI25+JawNa+zCzeMCL7LNkRy68PqRQ+kSAQXjDRQc9p3 1Kl/Rl35uWkVnYBXZtZYCMmc0xrDFkocvjZlBuzj8GcnXNyBrFrtLghmANAtPNS7 WsshwtqsFSWONlUgx1eKq+jLykKI1wA3pMY3fSTjt1fmD9TicdTMj6qnDFYL25l7 iKeFmQmQd/CdPUJ24PQscskGrc6nKLRDbmU= -----END CERTIFICATE-----Generated at Wed May 13 02:37:24 2026 by rpki-client