$ rpki-client -vvf rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36312e302f32342d3234203d3e20323031333431.roa File: 3230322e35312e36312e302f32342d3234203d3e20323031333431.roa (raw, json) Hash identifier: g1I0bBx5cjAJOzumuYvYP7lbpo4MSyJWdm8CedSYPpI= Subject key identifier: 95:B8:A0:4A:BA:E4:33:5C:C2:7B:2C:99:0B:58:5A:42:A2:C9:35:85 Certificate issuer: /CN=4D8CAFECBF12EF792F1EFD722767E5FE74282093 Certificate serial: 582850AA47029E61E45BD8D85B220C458B548B74 Authority key identifier: 4D:8C:AF:EC:BF:12:EF:79:2F:1E:FD:72:27:67:E5:FE:74:28:20:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D8CAFECBF12EF792F1EFD722767E5FE74282093.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36312e302f32342d3234203d3e20323031333431.roa Signing time: Sun 03 May 2026 03:02:53 +0000 ROA not before: Sun 03 May 2026 02:57:53 +0000 ROA not after: Sun 02 May 2027 03:02:53 +0000 asID: 201341 IP address blocks: 202.51.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/4D8CAFECBF12EF792F1EFD722767E5FE74282093.crl rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/4D8CAFECBF12EF792F1EFD722767E5FE74282093.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D8CAFECBF12EF792F1EFD722767E5FE74282093.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:28:50:aa:47:02:9e:61:e4:5b:d8:d8:5b:22:0c:45:8b:54:8b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D8CAFECBF12EF792F1EFD722767E5FE74282093 Validity Not Before: May 3 02:57:53 2026 GMT Not After : May 2 03:02:53 2027 GMT Subject: CN=95B8A04ABAE4335CC27B2C990B585A42A2C93585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:da:a8:ef:e4:73:52:4d:3d:65:55:e9:9e:f8: 36:a0:1e:8e:3d:e6:a3:36:03:2e:0a:13:fd:37:74: da:85:96:03:f1:ba:d3:11:8d:bf:ab:31:26:71:8b: be:42:42:39:1b:21:1d:87:f2:60:53:19:45:36:8e: a7:f3:ed:32:f1:2c:94:66:a5:79:80:c6:53:7d:df: 30:95:6a:a1:83:30:2b:ca:60:ea:97:b6:a3:8f:eb: 34:c0:fb:f1:4a:7e:e0:87:25:5f:84:4e:fa:ac:02: 01:f5:48:df:1b:ef:52:67:3c:13:5a:9b:f9:c1:55: cf:a7:96:93:cf:48:b8:b3:af:bb:36:06:66:67:24: a7:3a:c0:19:60:06:61:39:dc:82:b9:b4:4c:2f:39: 1f:0c:78:d9:31:0a:c9:85:66:4a:e6:13:59:6f:c4: 86:11:86:eb:c9:d2:37:d9:05:ad:ba:db:84:46:8a: 24:d6:cb:1c:c5:55:4c:6f:5c:57:31:74:ed:11:05: db:a8:a0:50:37:01:78:5e:80:4f:1f:f3:a2:91:26: 49:97:b4:a6:08:9a:d9:85:d1:01:f2:41:c1:70:1d: 68:d0:dc:f6:7a:93:57:30:ca:7b:37:cb:57:ea:31: 45:db:6d:bc:38:e7:c8:cb:6f:11:7f:21:57:e2:0d: 3e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B8:A0:4A:BA:E4:33:5C:C2:7B:2C:99:0B:58:5A:42:A2:C9:35:85 X509v3 Authority Key Identifier: keyid:4D:8C:AF:EC:BF:12:EF:79:2F:1E:FD:72:27:67:E5:FE:74:28:20:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/4D8CAFECBF12EF792F1EFD722767E5FE74282093.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4D8CAFECBF12EF792F1EFD722767E5FE74282093.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36312e302f32342d3234203d3e20323031333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.61.0/24 Signature Algorithm: sha256WithRSAEncryption 93:ba:3d:01:35:a5:d9:2d:69:3e:0d:e0:2f:f6:15:c6:09:5d: a1:d2:aa:09:dd:b7:b2:b3:17:45:c6:cb:c5:44:33:5b:6a:df: a9:98:c2:6a:b8:ea:48:7a:57:ab:d8:5a:34:37:29:b3:1b:7b: 36:fd:e2:b0:d2:c5:5d:e3:2c:88:fb:d0:dc:f3:8c:57:b8:de: 00:c7:6b:0d:6b:21:23:e7:c4:2b:89:f9:1f:cd:95:11:e4:98: 9a:83:b9:ce:e0:6a:9f:0a:2e:72:80:b1:c3:2a:7f:ce:e4:77: a7:a7:18:d9:26:c8:13:25:08:ef:73:12:f0:76:13:f0:cb:1a: fe:a7:3d:35:2a:e4:a3:3e:58:74:86:10:65:aa:dc:cb:55:82: db:59:31:bd:cf:cb:fb:7d:12:9d:01:9a:80:ed:a4:6d:8f:d2: 86:a6:dd:a2:df:ac:30:2c:92:bf:97:93:3d:c5:ec:d7:69:24: 3c:ee:89:c6:32:44:f7:3f:0d:08:5a:42:0b:ca:6a:1a:7a:7c: cb:cc:a8:6c:5d:85:41:2d:49:10:0d:b2:e4:a6:04:b1:3d:57: 3d:49:f0:97:c3:bd:bc:cc:31:f1:15:ee:e0:62:de:9d:56:dd: e1:e4:a7:8d:db:df:3f:b3:51:7b:df:38:7f:fe:63:94:11:e2: 73:b4:4b:b6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWChQqkcCnmHkW9jYWyIMRYtUi3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ4Q0FGRUNCRjEyRUY3OTJGMUVGRDcyMjc2N0U1RkU3 NDI4MjA5MzAeFw0yNjA1MDMwMjU3NTNaFw0yNzA1MDIwMzAyNTNaMDMxMTAvBgNV BAMTKDk1QjhBMDRBQkFFNDMzNUNDMjdCMkM5OTBCNTg1QTQyQTJDOTM1ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo2qjv5HNSTT1lVeme+DagHo49 5qM2Ay4KE/03dNqFlgPxutMRjb+rMSZxi75CQjkbIR2H8mBTGUU2jqfz7TLxLJRm pXmAxlN93zCVaqGDMCvKYOqXtqOP6zTA+/FKfuCHJV+ETvqsAgH1SN8b71JnPBNa m/nBVc+nlpPPSLizr7s2BmZnJKc6wBlgBmE53IK5tEwvOR8MeNkxCsmFZkrmE1lv xIYRhuvJ0jfZBa2624RGiiTWyxzFVUxvXFcxdO0RBduooFA3AXhegE8f86KRJkmX tKYImtmF0QHyQcFwHWjQ3PZ6k1cwyns3y1fqMUXbbbw458jLbxF/IVfiDT6HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlbigSrrkM1zCeyyZC1haQqLJNYUwHwYDVR0j BBgwFoAUTYyv7L8S73kvHv1yJ2fl/nQoIJMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmU1NDAxNjQtM2Q0Ni00Nzk0LWJmNTUtYjZiMTM0ZDlhYjEzLzAvNEQ4Q0FGRUNC RjEyRUY3OTJGMUVGRDcyMjc2N0U1RkU3NDI4MjA5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RDhDQUZFQ0JGMTJFRjc5MkYxRUZENzIyNzY3RTVGRTc0Mjgy MDkzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzYzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzMTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozPTANBgkqhkiG 9w0BAQsFAAOCAQEAk7o9ATWl2S1pPg3gL/YVxgldodKqCd23srMXRcbLxUQzW2rf qZjCarjqSHpXq9haNDcpsxt7Nv3isNLFXeMsiPvQ3POMV7jeAMdrDWshI+fEK4n5 H82VEeSYmoO5zuBqnwoucoCxwyp/zuR3p6cY2SbIEyUI73MS8HYT8Msa/qc9NSrk oz5YdIYQZarcy1WC21kxvc/L+30SnQGagO2kbY/Shqbdot+sMCySv5eTPcXs12kk PO6JxjJE9z8NCFpCC8pqGnp8y8yobF2FQS1JEA2y5KYEsT1XPUnwl8O9vMwx8RXu 4GLenVbd4eSnjdvfP7NRe984f/5jlBHic7RLtg== -----END CERTIFICATE-----Generated at Wed May 13 06:12:11 2026 by rpki-client