$ rpki-client -vvf rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa File: 3230322e35312e32302e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: pqH7WpxtojGs6NyUT0vVoZIYUBKEAJzFb6PabPXpeUg= Subject key identifier: F8:68:10:79:BF:95:65:35:07:6B:C0:FB:FD:38:B6:6A:40:CF:C0:CB Certificate issuer: /CN=4D4BF84E7D6F39D627BE5B50A917315DFEBF1515 Certificate serial: 091238AE3E56F9577C6C0628C4997E71671EE45D Authority key identifier: 4D:4B:F8:4E:7D:6F:39:D6:27:BE:5B:50:A9:17:31:5D:FE:BF:15:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa Signing time: Sun 03 May 2026 02:53:48 +0000 ROA not before: Sun 03 May 2026 02:48:48 +0000 ROA not after: Sun 02 May 2027 02:53:48 +0000 asID: 149409 IP address blocks: 202.51.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.crl rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:12:38:ae:3e:56:f9:57:7c:6c:06:28:c4:99:7e:71:67:1e:e4:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D4BF84E7D6F39D627BE5B50A917315DFEBF1515 Validity Not Before: May 3 02:48:48 2026 GMT Not After : May 2 02:53:48 2027 GMT Subject: CN=F8681079BF956535076BC0FBFD38B66A40CFC0CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:77:52:80:21:e6:24:d1:70:42:90:2a:d6:a7: 48:81:bc:43:8e:93:bd:3f:05:1a:b8:c9:6f:a1:8a: 09:b2:64:22:b5:ac:b4:c9:a9:43:34:01:ad:61:5b: 88:35:fc:d8:88:99:25:63:b6:f1:1a:a6:9e:8b:54: a8:3d:bc:1d:5a:69:34:3a:d9:e1:51:b2:50:e0:90: 58:12:54:12:79:e6:57:a7:dc:9b:df:53:9b:e1:97: 50:61:f3:01:d4:3c:52:1e:4d:68:ee:89:58:84:56: 9b:a8:1c:77:c0:7b:d2:84:42:43:75:13:c9:8f:a3: d4:eb:17:5b:8d:2a:fd:d8:78:b4:35:7d:32:2a:bb: 2d:49:d1:65:32:4e:2c:ca:7e:16:fa:37:b8:cd:4a: 81:b1:02:14:a2:ec:1a:fd:05:ae:7f:fc:ad:70:08: 3e:fa:38:1d:92:89:75:d6:ef:69:72:01:1b:3f:2c: 52:7b:bd:66:0f:f4:32:2b:a3:93:27:ac:01:d9:88: 54:a4:29:0f:90:8b:8e:d9:de:29:ab:e4:08:29:5b: 35:75:a2:6a:c5:d1:20:1e:ae:ce:c8:af:f0:d9:ce: ba:5a:87:40:bd:b7:a5:0f:19:ff:36:e3:a2:1d:19: ed:17:44:e4:71:97:2a:0d:02:87:27:bf:20:8a:96: b0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:68:10:79:BF:95:65:35:07:6B:C0:FB:FD:38:B6:6A:40:CF:C0:CB X509v3 Authority Key Identifier: keyid:4D:4B:F8:4E:7D:6F:39:D6:27:BE:5B:50:A9:17:31:5D:FE:BF:15:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D4BF84E7D6F39D627BE5B50A917315DFEBF1515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.20.0/24 Signature Algorithm: sha256WithRSAEncryption a0:6b:5e:af:6a:3f:99:ac:c7:fd:3d:8b:50:f1:c6:50:ba:ec: 8a:38:19:c9:25:45:c8:d1:7a:91:6f:7b:73:03:28:36:c9:b4: 57:f2:fb:73:e0:dc:24:43:b9:76:05:d3:bf:ee:64:f3:aa:44: f1:94:91:b0:a3:e6:5a:73:1c:f4:14:e3:ff:02:e6:d0:2d:98: 18:7d:51:1f:d8:a2:d1:0d:e4:94:86:0a:09:a3:e4:53:c4:25: 5f:69:a1:b1:e7:01:fa:fb:53:88:da:24:0d:25:b3:14:d7:08: c5:65:c7:0e:1f:61:39:eb:fb:0a:34:27:6a:d2:a6:d5:c2:3c: f3:57:7e:29:1b:ad:09:95:9b:98:91:4b:48:24:44:70:5e:ab: 62:69:35:b1:aa:7f:a1:c6:45:5a:f1:c2:3c:22:72:69:b1:3e: bf:6a:44:49:f9:1d:ad:b8:12:31:24:9e:a2:84:a4:82:ad:6c: e0:c6:76:91:25:4e:be:f8:bb:2c:d1:2f:2d:31:73:35:47:8a: c2:27:7b:59:bb:71:49:36:b4:12:c4:83:24:87:93:55:26:c0: 1b:72:0f:2f:61:3c:ff:c0:e2:25:f6:14:e0:fb:4a:94:22:c5: 1d:b8:88:94:6c:1e:eb:2b:2f:9a:f4:c7:a1:45:92:17:38:f5: 23:d4:62:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCRI4rj5W+Vd8bAYoxJl+cWce5F0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ0QkY4NEU3RDZGMzlENjI3QkU1QjUwQTkxNzMxNURG RUJGMTUxNTAeFw0yNjA1MDMwMjQ4NDhaFw0yNzA1MDIwMjUzNDhaMDMxMTAvBgNV BAMTKEY4NjgxMDc5QkY5NTY1MzUwNzZCQzBGQkZEMzhCNjZBNDBDRkMwQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5d1KAIeYk0XBCkCrWp0iBvEOO k70/BRq4yW+higmyZCK1rLTJqUM0Aa1hW4g1/NiImSVjtvEapp6LVKg9vB1aaTQ6 2eFRslDgkFgSVBJ55len3JvfU5vhl1Bh8wHUPFIeTWjuiViEVpuoHHfAe9KEQkN1 E8mPo9TrF1uNKv3YeLQ1fTIquy1J0WUyTizKfhb6N7jNSoGxAhSi7Br9Ba5//K1w CD76OB2SiXXW72lyARs/LFJ7vWYP9DIro5MnrAHZiFSkKQ+Qi47Z3imr5AgpWzV1 omrF0SAers7Ir/DZzrpah0C9t6UPGf8246IdGe0XRORxlyoNAocnvyCKlrATAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+GgQeb+VZTUHa8D7/Ti2akDPwMswHwYDVR0j BBgwFoAUTUv4Tn1vOdYnvltQqRcxXf6/FRUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTk0ZTZiMmQtM2RkYi00NmViLTgzZWYtYzk5YjIwMDM3ODNmLzAvNEQ0QkY4NEU3 RDZGMzlENjI3QkU1QjUwQTkxNzMxNURGRUJGMTUxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RDRCRjg0RTdENkYzOUQ2MjdCRTVCNTBBOTE3MzE1REZFQkYx NTE1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozFDANBgkqhkiG 9w0BAQsFAAOCAQEAoGter2o/mazH/T2LUPHGULrsijgZySVFyNF6kW97cwMoNsm0 V/L7c+DcJEO5dgXTv+5k86pE8ZSRsKPmWnMc9BTj/wLm0C2YGH1RH9ii0Q3klIYK CaPkU8QlX2mhsecB+vtTiNokDSWzFNcIxWXHDh9hOev7CjQnatKm1cI881d+KRut CZWbmJFLSCREcF6rYmk1sap/ocZFWvHCPCJyabE+v2pESfkdrbgSMSSeooSkgq1s 4MZ2kSVOvvi7LNEvLTFzNUeKwid7WbtxSTa0EsSDJIeTVSbAG3IPL2E8/8DiJfYU 4PtKlCLFHbiIlGwe6ysvmvTHoUWSFzj1I9RiXw== -----END CERTIFICATE-----Generated at Wed May 13 04:19:01 2026 by rpki-client