$ rpki-client -vvf rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32322d3232203d3e20323031333431.roa File: 3230322e35312e36302e302f32322d3232203d3e20323031333431.roa (raw, json) Hash identifier: G52CYZhUDrFCUCiXjLaytTYVhllqOW5hgj+MEiJQrDA= Subject key identifier: 1F:DB:92:B1:F5:9C:5B:3D:C3:31:BA:16:A2:C3:DE:26:C6:A3:AD:5E Certificate issuer: /CN=4D8CAFECBF12EF792F1EFD722767E5FE74282093 Certificate serial: 1AF04F58A96AFE1989CAD4EAC1A45ECA21C30D55 Authority key identifier: 4D:8C:AF:EC:BF:12:EF:79:2F:1E:FD:72:27:67:E5:FE:74:28:20:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D8CAFECBF12EF792F1EFD722767E5FE74282093.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32322d3232203d3e20323031333431.roa Signing time: Sun 03 May 2026 03:02:52 +0000 ROA not before: Sun 03 May 2026 02:57:52 +0000 ROA not after: Sun 02 May 2027 03:02:52 +0000 asID: 201341 IP address blocks: 202.51.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/4D8CAFECBF12EF792F1EFD722767E5FE74282093.crl rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/4D8CAFECBF12EF792F1EFD722767E5FE74282093.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D8CAFECBF12EF792F1EFD722767E5FE74282093.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f0:4f:58:a9:6a:fe:19:89:ca:d4:ea:c1:a4:5e:ca:21:c3:0d:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D8CAFECBF12EF792F1EFD722767E5FE74282093 Validity Not Before: May 3 02:57:52 2026 GMT Not After : May 2 03:02:52 2027 GMT Subject: CN=1FDB92B1F59C5B3DC331BA16A2C3DE26C6A3AD5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:49:50:0c:0c:b5:32:63:44:9a:3b:59:03: 81:e9:e2:4f:a5:92:3d:46:a0:1b:25:97:51:e2:47: f6:5b:c3:d6:26:a4:26:d7:7c:58:a4:b6:9e:04:ad: 0c:a4:ca:bd:53:86:c2:c6:ee:00:ed:21:2e:f9:42: 7b:39:0e:bf:67:32:8e:57:ac:79:17:e6:0f:7b:50: ad:71:60:86:ee:56:bd:41:69:f3:41:0a:b0:55:d5: e6:a1:f7:7e:7b:b5:7d:4c:bd:64:f6:96:a3:e8:4f: 48:8b:86:ae:67:b8:7d:8e:ea:83:0c:cd:10:e4:ed: b8:e5:a8:a9:34:06:b4:88:e5:7d:62:0e:ea:f0:f7: e6:f7:60:54:fa:fe:e5:ab:5f:4a:0c:73:14:6b:c9: 34:e1:1e:80:f7:f0:15:d8:cf:6f:18:91:60:10:3a: 5b:71:bd:56:d4:f1:62:dc:1e:11:9c:5f:cf:3e:12: 09:57:a2:8e:0e:f5:00:4b:de:5b:c8:16:51:fb:8b: df:62:15:d6:84:75:bb:53:31:7f:43:f4:d4:d9:87: 58:87:d3:8e:48:6f:df:ae:9e:e1:eb:8b:a4:93:41: a1:dc:90:8a:b2:a1:42:6f:af:b9:3b:f3:ad:be:8d: 49:a8:54:f5:c5:57:33:92:29:a9:3a:25:01:33:de: 7a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DB:92:B1:F5:9C:5B:3D:C3:31:BA:16:A2:C3:DE:26:C6:A3:AD:5E X509v3 Authority Key Identifier: keyid:4D:8C:AF:EC:BF:12:EF:79:2F:1E:FD:72:27:67:E5:FE:74:28:20:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/4D8CAFECBF12EF792F1EFD722767E5FE74282093.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D8CAFECBF12EF792F1EFD722767E5FE74282093.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32322d3232203d3e20323031333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.60.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:68:ab:c2:0d:7d:c0:fe:6d:f2:12:42:fa:96:6a:bf:3a:60: ff:60:e7:aa:37:44:47:ee:5d:f1:e4:b2:5c:37:3b:16:0b:1e: 86:0c:4e:cf:d2:7a:13:b5:e3:34:ef:6a:b4:06:9a:f2:7d:4c: 7d:7e:bb:45:ca:c0:09:0b:03:2a:d5:c4:47:03:df:b9:75:b3: 15:5a:47:29:fc:4a:26:7c:b5:2f:90:14:18:ad:15:b7:c9:3d: a5:55:bc:e8:71:97:6e:44:ed:d9:15:d5:53:3e:fe:24:77:7c: 37:0c:c8:bd:2b:36:45:b0:84:69:76:e9:13:78:c5:0b:9c:de: fa:23:d6:85:12:f6:86:87:4d:ae:a0:45:98:ee:c5:62:52:6e: 27:b9:d0:26:9f:d8:80:76:6a:ac:4b:65:5b:83:2f:8d:80:a0: 60:3e:9f:1d:0d:e0:46:4b:a0:dd:33:0b:ae:b0:f2:5a:cc:00: ba:39:c8:d8:bb:e1:dc:cb:39:89:d1:09:1b:1b:a0:6f:88:03: 99:90:6a:91:f5:12:19:5a:64:e7:fb:82:de:93:02:2c:28:c5: a4:91:d7:0c:bb:a4:d7:38:50:f2:2c:fe:91:2e:f3:69:8a:a2: d7:ff:47:7e:dd:5f:64:f0:6f:48:1c:96:08:be:5a:f0:5f:7a: ff:a4:2f:fb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGvBPWKlq/hmJytTqwaReyiHDDVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ4Q0FGRUNCRjEyRUY3OTJGMUVGRDcyMjc2N0U1RkU3 NDI4MjA5MzAeFw0yNjA1MDMwMjU3NTJaFw0yNzA1MDIwMzAyNTJaMDMxMTAvBgNV BAMTKDFGREI5MkIxRjU5QzVCM0RDMzMxQkExNkEyQzNERTI2QzZBM0FENUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRyElQDAy1MmNEmjtZA4Hp4k+l kj1GoBsll1HiR/Zbw9YmpCbXfFiktp4ErQykyr1ThsLG7gDtIS75Qns5Dr9nMo5X rHkX5g97UK1xYIbuVr1BafNBCrBV1eah9357tX1MvWT2lqPoT0iLhq5nuH2O6oMM zRDk7bjlqKk0BrSI5X1iDurw9+b3YFT6/uWrX0oMcxRryTThHoD38BXYz28YkWAQ OltxvVbU8WLcHhGcX88+EglXoo4O9QBL3lvIFlH7i99iFdaEdbtTMX9D9NTZh1iH 045Ib9+unuHri6STQaHckIqyoUJvr7k7862+jUmoVPXFVzOSKak6JQEz3nrNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH9uSsfWcWz3DMboWosPeJsajrV4wHwYDVR0j BBgwFoAUTYyv7L8S73kvHv1yJ2fl/nQoIJMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmU1NDAxNjQtM2Q0Ni00Nzk0LWJmNTUtYjZiMTM0ZDlhYjEzLzAvNEQ4Q0FGRUNC RjEyRUY3OTJGMUVGRDcyMjc2N0U1RkU3NDI4MjA5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RDhDQUZFQ0JGMTJFRjc5MkYxRUZENzIyNzY3RTVGRTc0Mjgy MDkzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzYzMDJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDMyMzAzMTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsozPDANBgkqhkiG 9w0BAQsFAAOCAQEAP2irwg19wP5t8hJC+pZqvzpg/2DnqjdER+5d8eSyXDc7Fgse hgxOz9J6E7XjNO9qtAaa8n1MfX67RcrACQsDKtXERwPfuXWzFVpHKfxKJny1L5AU GK0Vt8k9pVW86HGXbkTt2RXVUz7+JHd8NwzIvSs2RbCEaXbpE3jFC5ze+iPWhRL2 hodNrqBFmO7FYlJuJ7nQJp/YgHZqrEtlW4MvjYCgYD6fHQ3gRkug3TMLrrDyWswA ujnI2Lvh3Ms5idEJGxugb4gDmZBqkfUSGVpk5/uC3pMCLCjFpJHXDLuk1zhQ8iz+ kS7zaYqi1/9Hft1fZPBvSByWCL5a8F96/6Qv+w== -----END CERTIFICATE-----Generated at Wed May 13 04:53:26 2026 by rpki-client