$ rpki-client -vvf rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35392e302f32342d3234203d3e203436303538.roa File: 3230322e35322e35392e302f32342d3234203d3e203436303538.roa (raw, json) Hash identifier: oj0326y5Cx12gm92v2QPQwGd5h65A9BVPedBNOtACzM= Subject key identifier: 1A:47:CC:AD:5A:35:FE:8B:42:75:8E:31:67:8B:81:50:CA:73:06:81 Certificate issuer: /CN=F03310D1D60B7C8D4880FEE5263129029C23044D Certificate serial: 3853B01AD4E94EA3060182BEBF2E518C9F9B4BC8 Authority key identifier: F0:33:10:D1:D6:0B:7C:8D:48:80:FE:E5:26:31:29:02:9C:23:04:4D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F03310D1D60B7C8D4880FEE5263129029C23044D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35392e302f32342d3234203d3e203436303538.roa Signing time: Sun 03 May 2026 02:56:06 +0000 ROA not before: Sun 03 May 2026 02:51:06 +0000 ROA not after: Sun 02 May 2027 02:56:06 +0000 asID: 46058 IP address blocks: 202.52.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/F03310D1D60B7C8D4880FEE5263129029C23044D.crl rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/F03310D1D60B7C8D4880FEE5263129029C23044D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F03310D1D60B7C8D4880FEE5263129029C23044D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:53:b0:1a:d4:e9:4e:a3:06:01:82:be:bf:2e:51:8c:9f:9b:4b:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F03310D1D60B7C8D4880FEE5263129029C23044D Validity Not Before: May 3 02:51:06 2026 GMT Not After : May 2 02:56:06 2027 GMT Subject: CN=1A47CCAD5A35FE8B42758E31678B8150CA730681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c4:5a:41:4e:21:e0:6c:ed:63:4c:28:ae:82: 43:07:0c:a9:90:5c:9a:0f:3f:20:8b:df:51:82:9c: 44:ff:94:ca:2c:fe:08:1c:37:58:bc:37:ff:f5:b5: 6d:79:b2:f2:cf:df:e0:38:09:d3:15:b7:24:e7:00: 10:52:ca:0b:8e:02:0b:5b:96:96:2e:4c:6e:79:4f: d1:04:74:c6:04:e8:f6:a6:b6:3f:71:e6:7d:5f:ca: 63:f6:e1:88:9d:a4:4b:02:e5:f1:e6:cf:d9:33:93: 64:11:f6:4f:0b:a3:e5:21:09:29:68:5e:66:a1:c8: 39:14:5c:d5:8f:08:2e:8a:16:53:66:4b:cb:3c:e1: 04:a5:34:b6:3e:16:a7:fd:e3:06:1e:2a:f5:22:81: 85:ab:e0:d2:72:66:86:6a:da:0c:e7:0f:01:e4:b9: f8:04:48:f9:69:e1:9b:b2:da:bd:3b:75:08:0f:4f: ee:4c:3f:60:19:cf:60:cc:67:9b:bc:e5:ae:7d:a1: e5:80:f0:ea:92:15:6a:44:c8:c7:6c:3c:67:99:bb: 93:07:7a:c4:d3:2b:25:3f:49:59:47:63:fd:6c:06: ad:66:e4:c4:64:b2:5b:2c:17:f6:a6:55:b7:ce:35: fc:67:f9:63:55:ff:22:fa:97:2d:f5:bf:e9:ae:5d: 99:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:47:CC:AD:5A:35:FE:8B:42:75:8E:31:67:8B:81:50:CA:73:06:81 X509v3 Authority Key Identifier: keyid:F0:33:10:D1:D6:0B:7C:8D:48:80:FE:E5:26:31:29:02:9C:23:04:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/F03310D1D60B7C8D4880FEE5263129029C23044D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F03310D1D60B7C8D4880FEE5263129029C23044D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a2e23dc4-4fd5-43e2-bb6a-4fdc387ebc58/0/3230322e35322e35392e302f32342d3234203d3e203436303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.59.0/24 Signature Algorithm: sha256WithRSAEncryption 48:00:5e:7c:1b:05:b0:53:c1:1c:87:44:c2:f9:c2:63:21:d0: 88:93:f9:32:41:1d:3f:f1:eb:fe:6a:ea:9c:25:fd:8f:04:5d: 8f:99:99:5e:04:b9:1c:4e:20:46:90:a9:09:40:fc:b1:56:21: a5:08:3f:b2:a3:1c:4a:83:d1:cf:a5:d2:c2:44:8a:73:a7:dc: 52:5a:80:62:09:40:98:35:2e:ae:7f:87:c1:62:06:4d:e7:85: 22:3e:60:36:dd:b5:66:0c:29:55:c9:67:bf:55:8f:e4:63:48: 51:78:49:1c:19:c2:5f:f6:7d:c5:5c:39:10:85:eb:d2:d8:0d: e4:96:dd:2e:2b:c0:5a:9a:d4:72:2f:6c:4c:04:9d:a1:15:24: 9b:87:6b:aa:68:36:d9:2a:ab:d4:0c:f4:00:10:06:04:a0:13: 9c:34:a5:e7:7e:22:56:ac:31:85:7b:3b:26:ff:ee:4c:22:8e: 5a:c7:7f:5f:89:f9:7a:d1:a1:a9:25:c5:be:f2:e8:48:f0:25: d4:e0:4d:e5:20:d6:7c:95:a0:67:a6:ac:e7:f4:d4:63:e0:0b: da:3d:17:6b:b4:b3:4f:6a:5a:d2:e8:eb:0a:8e:ad:32:81:16: b9:3c:b3:a7:69:e4:0a:f5:57:8e:3a:27:a6:07:22:e8:95:b3: 05:41:41:32 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOFOwGtTpTqMGAYK+vy5RjJ+bS8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjAzMzEwRDFENjBCN0M4RDQ4ODBGRUU1MjYzMTI5MDI5 QzIzMDQ0RDAeFw0yNjA1MDMwMjUxMDZaFw0yNzA1MDIwMjU2MDZaMDMxMTAvBgNV BAMTKDFBNDdDQ0FENUEzNUZFOEI0Mjc1OEUzMTY3OEI4MTUwQ0E3MzA2ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnxFpBTiHgbO1jTCiugkMHDKmQ XJoPPyCL31GCnET/lMos/ggcN1i8N//1tW15svLP3+A4CdMVtyTnABBSyguOAgtb lpYuTG55T9EEdMYE6Pamtj9x5n1fymP24YidpEsC5fHmz9kzk2QR9k8Lo+UhCSlo XmahyDkUXNWPCC6KFlNmS8s84QSlNLY+Fqf94wYeKvUigYWr4NJyZoZq2gznDwHk ufgESPlp4Zuy2r07dQgPT+5MP2AZz2DMZ5u85a59oeWA8OqSFWpEyMdsPGeZu5MH esTTKyU/SVlHY/1sBq1m5MRkslssF/amVbfONfxn+WNV/yL6ly31v+muXZkTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGkfMrVo1/otCdY4xZ4uBUMpzBoEwHwYDVR0j BBgwFoAU8DMQ0dYLfI1IgP7lJjEpApwjBE0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTJlMjNkYzQtNGZkNS00M2UyLWJiNmEtNGZkYzM4N2ViYzU4LzAvRjAzMzEwRDFE NjBCN0M4RDQ4ODBGRUU1MjYzMTI5MDI5QzIzMDQ0RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMDMzMTBEMUQ2MEI3QzhENDg4MEZFRTUyNjMxMjkwMjlDMjMw NDRELmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EyZTIzZGM0LTRmZDUtNDNlMi1i YjZhLTRmZGMzODdlYmM1OC8wLzMyMzAzMjJlMzUzMjJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNDswDQYJKoZIhvcN AQELBQADggEBAEgAXnwbBbBTwRyHRML5wmMh0IiT+TJBHT/x6/5q6pwl/Y8EXY+Z mV4EuRxOIEaQqQlA/LFWIaUIP7KjHEqD0c+l0sJEinOn3FJagGIJQJg1Lq5/h8Fi Bk3nhSI+YDbdtWYMKVXJZ79Vj+RjSFF4SRwZwl/2fcVcORCF69LYDeSW3S4rwFqa 1HIvbEwEnaEVJJuHa6poNtkqq9QM9AAQBgSgE5w0ped+IlasMYV7Oyb/7kwijlrH f1+J+XrRoaklxb7y6EjwJdTgTeUg1nyVoGemrOf01GPgC9o9F2u0s09qWtLo6wqO rTKBFrk8s6dp5Ar1V446J6YHIuiVswVBQTI= -----END CERTIFICATE-----Generated at Wed May 13 01:35:55 2026 by rpki-client