$ rpki-client -vvf rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35382e302f32332d3233203d3e203436303538.roa File: 3230322e35322e35382e302f32332d3233203d3e203436303538.roa (raw, json) Hash identifier: 0UDfWdK0ccDtOWv3TneU4N8dGsBm8DxDAXGKlhp/dv4= Subject key identifier: E1:2A:DE:E5:40:5E:82:5D:42:78:35:E4:08:24:7B:3C:06:43:20:D7 Certificate issuer: /CN=F03310D1D60B7C8D4880FEE5263129029C23044D Certificate serial: 4F354311CD51B213D503E6A2DA169A51CB7080B5 Authority key identifier: F0:33:10:D1:D6:0B:7C:8D:48:80:FE:E5:26:31:29:02:9C:23:04:4D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F03310D1D60B7C8D4880FEE5263129029C23044D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35382e302f32332d3233203d3e203436303538.roa Signing time: Sun 03 May 2026 02:56:06 +0000 ROA not before: Sun 03 May 2026 02:51:06 +0000 ROA not after: Sun 02 May 2027 02:56:06 +0000 asID: 46058 IP address blocks: 202.52.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/F03310D1D60B7C8D4880FEE5263129029C23044D.crl rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/F03310D1D60B7C8D4880FEE5263129029C23044D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F03310D1D60B7C8D4880FEE5263129029C23044D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:35:43:11:cd:51:b2:13:d5:03:e6:a2:da:16:9a:51:cb:70:80:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F03310D1D60B7C8D4880FEE5263129029C23044D Validity Not Before: May 3 02:51:06 2026 GMT Not After : May 2 02:56:06 2027 GMT Subject: CN=E12ADEE5405E825D427835E408247B3C064320D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f9:f8:93:cf:b6:83:c5:f3:02:72:35:ad:0b: 9c:90:fd:52:eb:1d:58:81:c8:11:2f:cd:19:3d:8f: 10:dd:92:62:e7:bd:6c:43:0a:e7:8e:dd:b1:d1:58: ef:52:88:e5:7f:c5:5f:28:ac:fe:22:96:87:d8:ea: 72:58:b3:19:f1:4d:d6:cf:e9:70:1e:65:a2:b8:02: 9f:05:bf:85:e0:1c:89:b1:0c:89:ce:b0:79:44:92: ff:1f:b4:72:8e:c5:18:68:c4:74:90:aa:72:23:14: 93:ca:20:21:19:ae:49:ef:eb:ea:f2:74:da:87:64: 50:6d:29:a3:84:44:4e:55:39:7a:11:82:40:65:43: 78:b1:22:09:47:d2:d1:8d:73:19:45:93:90:da:a2: 5a:50:86:39:29:0f:f3:2b:9b:d7:19:9b:1e:31:a6: 5d:97:43:91:f9:93:c1:b9:37:42:cb:77:e0:e6:ff: 5d:61:8a:e5:90:e6:ac:cb:3d:1d:92:86:32:60:c6: 8a:d4:0d:8d:81:bd:e9:92:6d:79:74:56:6c:e8:cf: 9e:82:5a:7c:d2:d0:d6:f0:e2:31:b0:d5:d4:eb:1b: 2c:67:d2:67:47:e2:d2:d4:2f:d5:89:62:29:87:5b: 98:ca:ed:94:a8:fa:b3:29:88:03:09:53:33:79:08: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:2A:DE:E5:40:5E:82:5D:42:78:35:E4:08:24:7B:3C:06:43:20:D7 X509v3 Authority Key Identifier: keyid:F0:33:10:D1:D6:0B:7C:8D:48:80:FE:E5:26:31:29:02:9C:23:04:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/F03310D1D60B7C8D4880FEE5263129029C23044D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F03310D1D60B7C8D4880FEE5263129029C23044D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35382e302f32332d3233203d3e203436303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.58.0/23 Signature Algorithm: sha256WithRSAEncryption e4:8f:2a:79:d8:7f:d7:7a:1d:9b:3a:45:f9:ab:39:78:fa:b6: 5d:db:e3:17:10:e2:43:44:8c:6d:82:31:88:70:01:5f:6b:d9: 3f:24:64:b4:05:93:cc:b4:fb:7b:08:5a:66:c4:50:53:f5:41: 9e:ab:d8:87:dd:d8:b2:7d:f1:09:15:b5:57:ec:d6:08:e3:d1: 19:3b:7e:92:93:ec:e9:c6:84:cb:f9:48:5b:21:93:14:07:52: 7d:22:d3:91:4e:b4:9d:2e:7b:b0:f2:c5:d3:30:1d:ab:5f:8c: 78:1d:49:01:23:9a:cc:4d:6e:a5:3c:ba:76:c0:03:b8:c8:f6: af:59:35:ee:f4:19:76:1d:69:3b:46:d0:10:79:77:86:81:be: 32:8d:69:e5:5f:f5:bf:98:6f:0b:a3:38:46:72:f7:6e:82:93: aa:54:c5:f9:ea:4b:8e:b6:aa:07:ab:f1:10:49:0e:ae:08:0b: e7:76:63:43:db:04:14:53:24:14:49:ce:aa:87:f6:52:50:9e: e1:db:b3:ba:7c:2c:a9:dc:78:d5:e5:8e:bc:a0:26:78:1a:25: fe:c9:ec:8b:51:6f:3a:eb:4b:e7:51:eb:37:d1:9a:34:bc:10: 9d:49:e8:b7:aa:5c:6c:d0:ae:56:1d:ba:c0:f3:b7:e6:63:0d: ad:61:e8:5e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTzVDEc1RshPVA+ai2haaUctwgLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjAzMzEwRDFENjBCN0M4RDQ4ODBGRUU1MjYzMTI5MDI5 QzIzMDQ0RDAeFw0yNjA1MDMwMjUxMDZaFw0yNzA1MDIwMjU2MDZaMDMxMTAvBgNV BAMTKEUxMkFERUU1NDA1RTgyNUQ0Mjc4MzVFNDA4MjQ3QjNDMDY0MzIwRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx+fiTz7aDxfMCcjWtC5yQ/VLr HViByBEvzRk9jxDdkmLnvWxDCueO3bHRWO9SiOV/xV8orP4ilofY6nJYsxnxTdbP 6XAeZaK4Ap8Fv4XgHImxDInOsHlEkv8ftHKOxRhoxHSQqnIjFJPKICEZrknv6+ry dNqHZFBtKaOERE5VOXoRgkBlQ3ixIglH0tGNcxlFk5DaolpQhjkpD/Mrm9cZmx4x pl2XQ5H5k8G5N0LLd+Dm/11hiuWQ5qzLPR2ShjJgxorUDY2BvemSbXl0Vmzoz56C WnzS0Nbw4jGw1dTrGyxn0mdH4tLUL9WJYimHW5jK7ZSo+rMpiAMJUzN5CJ5NAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU4Sre5UBegl1CeDXkCCR7PAZDINcwHwYDVR0j BBgwFoAU8DMQ0dYLfI1IgP7lJjEpApwjBE0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTJlMjNkYzQtNGZkNS00M2UyLWJiNmEtNGZkYzM4N2ViYzU4LzAvRjAzMzEwRDFE NjBCN0M4RDQ4ODBGRUU1MjYzMTI5MDI5QzIzMDQ0RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMDMzMTBEMUQ2MEI3QzhENDg4MEZFRTUyNjMxMjkwMjlDMjMw NDRELmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EyZTIzZGM0LTRmZDUtNDNlMi1i YjZhLTRmZGMzODdlYmM1OC8wLzMyMzAzMjJlMzUzMjJlMzUzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzYzMDM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKNDowDQYJKoZIhvcN AQELBQADggEBAOSPKnnYf9d6HZs6RfmrOXj6tl3b4xcQ4kNEjG2CMYhwAV9r2T8k ZLQFk8y0+3sIWmbEUFP1QZ6r2Ifd2LJ98QkVtVfs1gjj0Rk7fpKT7OnGhMv5SFsh kxQHUn0i05FOtJ0ue7DyxdMwHatfjHgdSQEjmsxNbqU8unbAA7jI9q9ZNe70GXYd aTtG0BB5d4aBvjKNaeVf9b+YbwujOEZy926Ck6pUxfnqS462qger8RBJDq4IC+d2 Y0PbBBRTJBRJzqqH9lJQnuHbs7p8LKnceNXljrygJngaJf7J7ItRbzrrS+dR6zfR mjS8EJ1J6LeqXGzQrlYdusDzt+ZjDa1h6F4= -----END CERTIFICATE-----Generated at Wed May 13 01:41:32 2026 by rpki-client