$ rpki-client -vvf rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa File: 3230322e35312e32302e302f32332d3234203d3e20313439343039.roa (raw, json) Hash identifier: j4hOV3opgjAagd+hKmonrIvCvECab8tS3BbyVP+3UsM= Subject key identifier: 38:DB:32:99:37:21:74:87:18:82:84:51:DC:B1:56:EE:BF:44:1C:43 Certificate issuer: /CN=4D4BF84E7D6F39D627BE5B50A917315DFEBF1515 Certificate serial: 7714B902784827BB21E97679B953D0755714465E Authority key identifier: 4D:4B:F8:4E:7D:6F:39:D6:27:BE:5B:50:A9:17:31:5D:FE:BF:15:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa Signing time: Sun 03 May 2026 02:53:49 +0000 ROA not before: Sun 03 May 2026 02:48:49 +0000 ROA not after: Sun 02 May 2027 02:53:49 +0000 asID: 149409 IP address blocks: 202.51.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.crl rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:14:b9:02:78:48:27:bb:21:e9:76:79:b9:53:d0:75:57:14:46:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D4BF84E7D6F39D627BE5B50A917315DFEBF1515 Validity Not Before: May 3 02:48:49 2026 GMT Not After : May 2 02:53:49 2027 GMT Subject: CN=38DB32993721748718828451DCB156EEBF441C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c9:c8:11:06:50:8f:c0:88:75:71:c3:da:ed: b3:7c:a1:e1:45:ab:d5:2a:a6:e3:d0:23:0f:50:87: 5c:62:44:95:4b:f3:82:cd:dc:ce:56:77:23:f2:22: d1:1d:de:75:75:00:a4:68:f5:cb:fa:c6:e7:01:91: 36:5a:ea:f5:41:40:90:46:d3:fd:0a:bb:e2:ec:46: 5b:3d:dd:53:7b:98:98:69:c6:5f:aa:3c:5d:f3:9e: dc:45:6a:e6:78:f4:da:69:71:1f:76:fa:a4:cf:11: 70:e1:fe:fb:cd:79:52:c1:e5:56:ae:38:59:f2:5b: 9a:93:c1:74:c6:c4:46:83:f6:e9:85:f2:fa:24:2d: 00:11:37:14:22:2f:fd:4d:18:c5:c8:37:e0:16:16: aa:3e:9d:d8:7b:cf:27:81:8a:d8:60:c2:9e:ee:04: f5:df:32:ac:7a:93:0b:9c:48:a5:69:68:a9:84:3c: 6c:62:dd:60:ee:b6:d8:d9:19:dd:06:a1:78:28:0a: dd:c0:26:28:8f:f1:6c:18:d8:df:6c:da:f2:13:af: db:66:d1:a7:80:6d:69:f7:2e:19:a0:41:3c:af:be: a3:60:0c:c5:3a:64:cf:63:82:6b:45:51:5f:0e:b3: 00:c1:8b:88:4a:ed:77:f1:e6:5f:95:76:cb:50:d5: e9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DB:32:99:37:21:74:87:18:82:84:51:DC:B1:56:EE:BF:44:1C:43 X509v3 Authority Key Identifier: keyid:4D:4B:F8:4E:7D:6F:39:D6:27:BE:5B:50:A9:17:31:5D:FE:BF:15:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.20.0/23 Signature Algorithm: sha256WithRSAEncryption 28:e8:96:2c:d3:16:92:2f:8c:6f:32:f5:b5:54:c4:97:bb:4c: f4:74:4d:30:ba:4f:05:5f:0e:38:d1:98:e6:ff:3c:e2:a3:2c: 78:92:ba:b4:b0:22:54:1a:ee:d8:49:9a:25:fa:b8:81:3b:37: da:fa:6e:9f:88:43:b8:a4:1a:04:d8:2b:26:7b:c4:3e:6a:34: 76:be:f0:ab:16:1f:59:51:78:b0:59:09:2a:0b:da:93:38:d7: fd:7c:4f:bb:3a:5d:41:25:c9:4f:42:6d:d7:68:cc:8e:a2:8c: ab:ee:d3:8c:90:15:d8:91:71:99:07:1f:1c:0c:9e:4b:61:71: 69:b1:4e:50:08:f7:d7:d2:94:e7:d7:fc:7c:34:0f:b1:8e:19: 86:56:58:fb:0d:f3:8e:87:82:d1:c0:c3:1a:56:19:77:94:5a: 52:af:02:f2:51:8f:a2:12:03:e6:8d:e9:b2:51:d7:fe:1f:ab: cb:a0:74:b3:92:14:1a:20:df:36:3d:40:6e:2d:a4:22:fd:11: c1:e2:2a:71:1f:f4:bf:2a:8f:aa:ff:ad:ec:a8:fb:83:7f:e7: 52:7f:57:57:cc:62:5c:f3:d5:b6:e7:2f:dd:12:9c:87:05:a1: 3d:d7:59:c3:2f:b7:32:f4:53:53:6f:53:72:79:00:32:51:60: f0:a0:37:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdxS5AnhIJ7sh6XZ5uVPQdVcURl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ0QkY4NEU3RDZGMzlENjI3QkU1QjUwQTkxNzMxNURG RUJGMTUxNTAeFw0yNjA1MDMwMjQ4NDlaFw0yNzA1MDIwMjUzNDlaMDMxMTAvBgNV BAMTKDM4REIzMjk5MzcyMTc0ODcxODgyODQ1MURDQjE1NkVFQkY0NDFDNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMycgRBlCPwIh1ccPa7bN8oeFF q9UqpuPQIw9Qh1xiRJVL84LN3M5WdyPyItEd3nV1AKRo9cv6xucBkTZa6vVBQJBG 0/0Ku+LsRls93VN7mJhpxl+qPF3zntxFauZ49NppcR92+qTPEXDh/vvNeVLB5Vau OFnyW5qTwXTGxEaD9umF8vokLQARNxQiL/1NGMXIN+AWFqo+ndh7zyeBithgwp7u BPXfMqx6kwucSKVpaKmEPGxi3WDuttjZGd0GoXgoCt3AJiiP8WwY2N9s2vITr9tm 0aeAbWn3LhmgQTyvvqNgDMU6ZM9jgmtFUV8OswDBi4hK7Xfx5l+VdstQ1enPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUONsymTchdIcYgoRR3LFW7r9EHEMwHwYDVR0j BBgwFoAUTUv4Tn1vOdYnvltQqRcxXf6/FRUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTk0ZTZiMmQtM2RkYi00NmViLTgzZWYtYzk5YjIwMDM3ODNmLzAvNEQ0QkY4NEU3 RDZGMzlENjI3QkU1QjUwQTkxNzMxNURGRUJGMTUxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RDRCRjg0RTdENkYzOUQ2MjdCRTVCNTBBOTE3MzE1REZFQkYx NTE1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcozFDANBgkqhkiG 9w0BAQsFAAOCAQEAKOiWLNMWki+MbzL1tVTEl7tM9HRNMLpPBV8OONGY5v884qMs eJK6tLAiVBru2EmaJfq4gTs32vpun4hDuKQaBNgrJnvEPmo0dr7wqxYfWVF4sFkJ KgvakzjX/XxPuzpdQSXJT0Jt12jMjqKMq+7TjJAV2JFxmQcfHAyeS2FxabFOUAj3 19KU59f8fDQPsY4ZhlZY+w3zjoeC0cDDGlYZd5RaUq8C8lGPohID5o3pslHX/h+r y6B0s5IUGiDfNj1Abi2kIv0RweIqcR/0vyqPqv+t7Kj7g3/nUn9XV8xiXPPVtucv 3RKchwWhPddZwy+3MvRTU29TcnkAMlFg8KA3CA== -----END CERTIFICATE-----Generated at Wed May 13 03:56:18 2026 by rpki-client