$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa File: 3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: PGB9+soronCLjtQLmYSIcnoiPai7hpfQKryraZPR/Yg= Subject key identifier: F9:EB:A2:D3:1E:C5:8A:A9:CF:4F:A2:9D:D7:A9:EE:B6:7D:BC:F0:32 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 58169E2D6736922528F46F55C1C4894452A296F0 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa Signing time: Sun 03 May 2026 02:48:00 +0000 ROA not before: Sun 03 May 2026 02:43:00 +0000 ROA not after: Sun 02 May 2027 02:48:00 +0000 asID: 133840 IP address blocks: 203.161.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:16:9e:2d:67:36:92:25:28:f4:6f:55:c1:c4:89:44:52:a2:96:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:43:00 2026 GMT Not After : May 2 02:48:00 2027 GMT Subject: CN=F9EBA2D31EC58AA9CF4FA29DD7A9EEB67DBCF032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:e5:55:a8:b8:7c:5e:3a:94:91:7f:31:71: 19:f5:37:04:e1:12:9a:af:84:94:09:f1:54:15:d0: ef:de:6c:58:fe:a9:f1:22:da:1e:4e:69:c7:76:d7: d4:4b:a8:82:14:4a:1d:7e:c7:7c:b9:6b:2c:aa:ea: e1:c6:ea:97:24:8e:75:3a:83:b6:82:19:e7:1e:1d: 19:b1:8b:f4:83:86:31:a9:3a:2c:9d:1e:62:bf:14: 68:2f:91:43:be:87:1f:59:ce:ca:5d:52:ad:c0:a7: ff:50:d2:59:86:d8:db:4e:52:80:d2:58:aa:6f:08: c5:a9:2d:2c:aa:2c:4a:e5:81:c5:0a:84:c3:42:64: 6f:76:d4:58:32:c3:96:2c:6a:87:cd:7b:c0:11:4b: a4:82:8d:99:cd:2f:55:d7:41:d9:5c:75:6f:49:ee: ed:88:d1:ef:5b:6f:ae:cb:cd:37:01:5b:1b:8e:54: 76:c1:78:82:2c:2c:0b:a0:02:3a:7e:cd:0e:58:f9: 04:d3:ed:51:46:ba:d5:e6:22:ff:86:4c:92:22:9b: 1f:43:32:f8:bd:91:56:28:c8:1a:7b:66:f5:cf:27: 1f:22:67:1c:b8:3e:15:b9:6c:e1:14:1a:5d:95:81: 3a:eb:67:dc:a5:e2:5d:66:d2:39:9c:e0:12:d9:3a: b6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:EB:A2:D3:1E:C5:8A:A9:CF:4F:A2:9D:D7:A9:EE:B6:7D:BC:F0:32 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.17.0/24 Signature Algorithm: sha256WithRSAEncryption 95:bd:1f:a9:69:59:0e:af:d8:9f:2f:8b:83:7b:a8:28:cb:5b: 74:a8:de:4f:a2:e7:5f:dc:39:bf:98:bb:5c:b6:2f:0b:c1:70: 85:22:64:84:9e:44:ba:0c:13:2e:14:a0:15:0a:28:b3:21:56: c0:7c:2b:de:96:30:af:44:ea:c6:e5:fb:7e:d1:57:5d:14:56: ea:8f:58:68:56:e1:f8:12:05:38:53:cc:d7:03:14:40:d7:41: 34:4d:81:3f:97:c7:a3:ce:3c:f7:c4:f1:46:19:10:9d:6d:d1: 19:71:e4:10:6d:9b:a8:b2:3b:9e:c1:15:d8:db:08:8a:60:b5: 92:b4:e9:dc:91:b3:6e:62:2d:2f:16:9c:4c:7c:53:25:8b:b5: 2e:3c:59:f0:1a:03:71:9d:c7:69:c6:0f:6b:ba:5a:33:48:54: c1:4e:56:4f:75:e6:39:ed:c9:e5:e7:67:4e:f0:b2:9d:ee:b4: 65:5d:56:a9:31:7c:bd:c6:40:27:55:82:b8:9a:f4:24:e8:a3: a5:2e:0d:d7:74:da:e8:71:8c:eb:ce:3a:49:44:23:8f:d7:a1: de:07:06:08:82:a8:6c:ea:f8:ca:d9:fe:cf:07:75:4b:02:2e: 0c:48:d5:97:88:46:53:69:aa:7c:b7:6f:e2:75:6f:4e:df:3e: 97:17:03:43 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWBaeLWc2kiUo9G9VwcSJRFKilvAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQzMDBaFw0yNzA1MDIwMjQ4MDBaMDMxMTAvBgNV BAMTKEY5RUJBMkQzMUVDNThBQTlDRjRGQTI5REQ3QTlFRUI2N0RCQ0YwMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5GeVVqLh8XjqUkX8xcRn1NwTh EpqvhJQJ8VQV0O/ebFj+qfEi2h5Oacd219RLqIIUSh1+x3y5ayyq6uHG6pckjnU6 g7aCGeceHRmxi/SDhjGpOiydHmK/FGgvkUO+hx9ZzspdUq3Ap/9Q0lmG2NtOUoDS WKpvCMWpLSyqLErlgcUKhMNCZG921Fgyw5YsaofNe8ARS6SCjZnNL1XXQdlcdW9J 7u2I0e9bb67LzTcBWxuOVHbBeIIsLAugAjp+zQ5Y+QTT7VFGutXmIv+GTJIimx9D Mvi9kVYoyBp7ZvXPJx8iZxy4PhW5bOEUGl2VgTrrZ9yl4l1m0jmc4BLZOrbHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+eui0x7FiqnPT6Kd16nutn288DIwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6ERMA0GCSqG SIb3DQEBCwUAA4IBAQCVvR+paVkOr9ifL4uDe6goy1t0qN5Poudf3Dm/mLtcti8L wXCFImSEnkS6DBMuFKAVCiizIVbAfCveljCvROrG5ft+0VddFFbqj1hoVuH4EgU4 U8zXAxRA10E0TYE/l8ejzjz3xPFGGRCdbdEZceQQbZuosjuewRXY2wiKYLWStOnc kbNuYi0vFpxMfFMli7UuPFnwGgNxncdpxg9rulozSFTBTlZPdeY57cnl52dO8LKd 7rRlXVapMXy9xkAnVYK4mvQk6KOlLg3XdNrocYzrzjpJRCOP16HeBwYIgqhs6vjK 2f7PB3VLAi4MSNWXiEZTaap8t2/idW9O3z6XFwND -----END CERTIFICATE-----Generated at Wed May 13 02:12:50 2026 by rpki-client