$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32322e302f32342d3234203d3e20313431363330.roa File: 3230332e3136312e32322e302f32342d3234203d3e20313431363330.roa (raw, json) Hash identifier: wxner6wl3sOvYJh0mDythJMlkNJcZGPgDz2HQg7kmDY= Subject key identifier: 20:FC:18:47:9E:C6:6B:91:34:17:DC:95:41:1B:B3:18:61:56:A0:95 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 70659453366DF1E085452BDEFE57100937D46A3A Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32322e302f32342d3234203d3e20313431363330.roa Signing time: Sun 03 May 2026 02:47:54 +0000 ROA not before: Sun 03 May 2026 02:42:54 +0000 ROA not after: Sun 02 May 2027 02:47:54 +0000 asID: 141630 IP address blocks: 203.161.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:65:94:53:36:6d:f1:e0:85:45:2b:de:fe:57:10:09:37:d4:6a:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:54 2026 GMT Not After : May 2 02:47:54 2027 GMT Subject: CN=20FC18479EC66B913417DC95411BB3186156A095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:6f:c7:4e:18:af:e7:50:66:c1:91:38:d3: 7e:c5:6a:a4:98:ff:2f:c3:23:53:8b:73:66:37:9d: 40:7d:1f:f2:f7:90:4b:6b:ab:f7:e4:ae:2a:e5:f1: 26:cb:98:cb:6e:7d:19:eb:c3:5b:cf:23:af:1e:56: b6:6e:35:21:be:6c:c6:9d:4b:a9:2b:95:a2:5b:75: 88:04:5a:31:8c:83:77:a4:05:54:d4:fc:e1:fc:7b: ae:90:ab:bc:83:1a:d5:60:f9:6f:19:4a:d1:0e:d0: 48:a4:ea:fd:e3:02:07:f0:df:b8:b3:16:73:51:d7: cb:d6:1a:ce:53:b4:2c:14:f6:10:d5:74:24:fd:ea: 88:29:03:d2:37:39:41:84:f6:1a:8c:50:bb:5b:78: 14:24:d3:cd:7e:f1:e1:bd:92:84:8b:c9:37:3b:2b: 59:df:b7:29:a1:44:49:45:16:ce:8d:b5:b2:d9:1e: b6:3c:c7:0b:4a:cd:d0:9d:9e:23:8f:74:b1:c8:9d: dd:59:3f:44:2f:ac:0d:e0:15:c1:1e:06:94:bd:ff: 2f:36:a4:d8:c3:b0:f2:3f:ec:98:3d:41:65:6c:f3: 6c:08:7c:21:0c:28:01:a5:eb:64:42:43:03:03:21: 92:21:3a:a6:ce:4f:09:33:5c:27:3c:88:b0:5b:12: 63:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FC:18:47:9E:C6:6B:91:34:17:DC:95:41:1B:B3:18:61:56:A0:95 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32322e302f32342d3234203d3e20313431363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.22.0/24 Signature Algorithm: sha256WithRSAEncryption 34:0b:26:28:43:17:4e:f5:0a:2e:4b:84:38:03:df:fd:8b:e9: 6b:c7:11:87:45:fa:3c:35:b0:4a:38:c9:11:ce:ed:e9:38:b7: 2f:34:17:c2:58:b7:47:69:cf:8e:5f:51:be:24:c9:e5:a9:92: a9:28:d3:ac:ea:2f:db:4b:89:6a:e3:e9:a6:27:10:8b:eb:9b: 61:38:06:62:f7:89:15:80:e4:0a:69:7b:41:e4:ab:df:b2:07: 5c:90:8b:58:6d:da:7c:17:12:8c:ec:3d:b8:4d:25:b0:40:c3: 8a:f2:5e:f3:fd:15:cf:e3:79:55:6e:2d:5e:d2:de:ad:81:63: b6:36:35:c8:fb:71:38:52:88:4e:9a:36:81:f8:a9:24:b7:2a: 64:c2:97:40:d5:50:c8:d4:b7:46:73:eb:9d:18:0b:9a:c5:7f: 5b:9d:b5:6f:f6:59:50:99:8c:e8:63:ea:51:0b:86:27:57:3e: 90:68:50:71:3f:a8:e9:41:4b:f8:6f:af:c3:ec:91:95:0c:c8: c3:55:b7:5c:b4:fe:57:17:11:3d:7d:b7:95:d8:dd:72:11:96: f6:cd:57:c3:90:d2:7e:e4:10:73:57:90:21:73:34:99:b7:48: 99:d1:69:91:42:16:cd:96:02:18:64:c5:75:cc:23:16:db:d6: dd:04:40:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcGWUUzZt8eCFRSve/lcQCTfUajowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTRaFw0yNzA1MDIwMjQ3NTRaMDMxMTAvBgNV BAMTKDIwRkMxODQ3OUVDNjZCOTEzNDE3REM5NTQxMUJCMzE4NjE1NkEwOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/j2/HThiv51BmwZE4037FaqSY /y/DI1OLc2Y3nUB9H/L3kEtrq/fkrirl8SbLmMtufRnrw1vPI68eVrZuNSG+bMad S6krlaJbdYgEWjGMg3ekBVTU/OH8e66Qq7yDGtVg+W8ZStEO0Eik6v3jAgfw37iz FnNR18vWGs5TtCwU9hDVdCT96ogpA9I3OUGE9hqMULtbeBQk081+8eG9koSLyTc7 K1nftymhRElFFs6NtbLZHrY8xwtKzdCdniOPdLHInd1ZP0QvrA3gFcEeBpS9/y82 pNjDsPI/7Jg9QWVs82wIfCEMKAGl62RCQwMDIZIhOqbOTwkzXCc8iLBbEmODAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIPwYR57Ga5E0F9yVQRuzGGFWoJUwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6EWMA0GCSqG SIb3DQEBCwUAA4IBAQA0CyYoQxdO9QouS4Q4A9/9i+lrxxGHRfo8NbBKOMkRzu3p OLcvNBfCWLdHac+OX1G+JMnlqZKpKNOs6i/bS4lq4+mmJxCL65thOAZi94kVgOQK aXtB5KvfsgdckItYbdp8FxKM7D24TSWwQMOK8l7z/RXP43lVbi1e0t6tgWO2NjXI +3E4UohOmjaB+KkktypkwpdA1VDI1LdGc+udGAuaxX9bnbVv9llQmYzoY+pRC4Yn Vz6QaFBxP6jpQUv4b6/D7JGVDMjDVbdctP5XFxE9fbeV2N1yEZb2zVfDkNJ+5BBz V5AhczSZt0iZ0WmRQhbNlgIYZMV1zCMW29bdBECv -----END CERTIFICATE-----Generated at Wed May 13 02:37:21 2026 by rpki-client