$ rpki-client -vvf rpki-rsync.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa File: 3230322e3136352e33322e302f32302d3234203d3e203137353338.roa (raw, json) Hash identifier: 01F1UoKRV2E0gP5aPTGtczRefIGjQne0iajygCNTbZQ= Subject key identifier: 49:BA:1A:33:D9:D1:29:23:09:83:EA:41:34:AB:EB:78:D5:F6:51:61 Certificate issuer: /CN=F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3 Certificate serial: 6E5545E31452DD7C008578AABBC2C60F3A1B7658 Authority key identifier: F7:C8:FE:73:5E:16:A4:2B:0A:4F:E7:6A:29:68:C8:B3:72:B0:8F:E3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa Signing time: Sun 03 May 2026 03:04:58 +0000 ROA not before: Sun 03 May 2026 02:59:58 +0000 ROA not after: Sun 02 May 2027 03:04:58 +0000 asID: 17538 IP address blocks: 202.165.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3.crl rsync://rpki-rsync.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:55:45:e3:14:52:dd:7c:00:85:78:aa:bb:c2:c6:0f:3a:1b:76:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3 Validity Not Before: May 3 02:59:58 2026 GMT Not After : May 2 03:04:58 2027 GMT Subject: CN=49BA1A33D9D129230983EA4134ABEB78D5F65161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:18:35:c2:2e:6d:e9:0c:6c:05:ce:d6:84:a4: 89:08:a0:f7:8d:cf:9a:9e:33:a1:06:da:30:d8:69: 04:12:d3:cf:8d:c0:58:65:59:1c:98:83:4f:eb:0e: d3:1f:2d:58:79:d9:5e:c2:dc:2d:f2:58:d4:09:3f: a4:7c:45:26:8f:e7:40:7c:17:af:eb:b7:05:f1:ba: 18:8a:ad:fe:cb:50:29:7a:40:38:51:74:7c:d9:b2: ca:4d:66:2c:7f:ff:7e:c1:cc:67:ef:1c:b0:ff:1d: a6:7d:24:b1:5e:2e:d5:c7:f1:34:cd:00:d0:73:48: b9:5e:94:85:f3:3c:80:3a:8f:63:6f:c4:2e:b7:41: ba:ef:78:0c:00:e4:4d:ce:18:ab:28:99:46:4c:15: 8f:c4:42:e1:d7:4d:41:26:02:7d:69:73:02:2f:d1: ba:1a:c2:f0:f6:de:d5:3e:52:b2:a2:c2:19:e9:b8: f6:e3:9a:10:1f:24:37:2b:5b:ff:fd:cc:d1:a3:58: a1:25:90:2b:d1:6e:ee:c7:a1:79:20:ad:94:40:ff: 06:2f:5f:72:2d:6b:90:e9:42:d1:d1:71:f4:d4:bd: 33:65:1c:df:93:b6:24:13:6e:09:41:1a:fb:d7:09: 14:eb:40:59:d0:64:44:7c:b9:be:89:d2:5c:e4:10: 27:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BA:1A:33:D9:D1:29:23:09:83:EA:41:34:AB:EB:78:D5:F6:51:61 X509v3 Authority Key Identifier: keyid:F7:C8:FE:73:5E:16:A4:2B:0A:4F:E7:6A:29:68:C8:B3:72:B0:8F:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F7C8FE735E16A42B0A4FE76A2968C8B372B08FE3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.165.32.0/20 Signature Algorithm: sha256WithRSAEncryption 8f:2f:a0:2f:77:0f:86:01:33:8c:6c:0c:1d:84:4b:ac:68:37: 63:11:ad:4a:7f:69:db:2e:5e:32:ec:81:c0:20:6b:61:65:69: c3:fc:5c:bf:31:7a:34:4e:23:f1:16:f5:98:0c:47:3b:9a:a0: ba:08:41:f3:7d:77:86:dc:77:20:54:97:66:39:a8:37:ec:dd: 83:66:48:bf:1f:e3:26:45:e0:63:e6:53:97:5f:7e:6b:3c:79: 78:0f:69:a0:52:4f:ab:55:be:08:db:c1:42:db:bf:47:9f:b6: d0:b3:7f:03:1b:fe:9e:a3:83:13:88:29:64:84:09:95:2b:48: 28:61:02:aa:5d:b4:3a:8c:1c:02:ee:16:9c:1f:ec:dc:93:0d: 71:c9:e8:43:b8:5e:42:76:2e:6e:05:30:13:e4:fa:46:4d:d0: 98:de:5a:20:f3:e1:d9:0c:1f:82:2c:0a:99:35:3d:04:4e:95: 63:dd:45:08:b4:a5:50:7e:ff:a4:25:e1:d6:2f:d0:8b:89:10: 91:a2:0e:6a:0d:80:43:b6:ed:b3:be:e0:2f:96:bf:95:49:0a: 73:4a:45:13:c1:31:46:ec:c8:d1:aa:28:e1:fa:df:53:39:e1: a3:95:38:41:e5:f3:68:62:1b:90:47:90:82:82:90:5a:28:64: d5:43:81:89 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUblVF4xRS3XwAhXiqu8LGDzobdlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdDOEZFNzM1RTE2QTQyQjBBNEZFNzZBMjk2OEM4QjM3 MkIwOEZFMzAeFw0yNjA1MDMwMjU5NThaFw0yNzA1MDIwMzA0NThaMDMxMTAvBgNV BAMTKDQ5QkExQTMzRDlEMTI5MjMwOTgzRUE0MTM0QUJFQjc4RDVGNjUxNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKGDXCLm3pDGwFztaEpIkIoPeN z5qeM6EG2jDYaQQS08+NwFhlWRyYg0/rDtMfLVh52V7C3C3yWNQJP6R8RSaP50B8 F6/rtwXxuhiKrf7LUCl6QDhRdHzZsspNZix//37BzGfvHLD/HaZ9JLFeLtXH8TTN ANBzSLlelIXzPIA6j2NvxC63QbrveAwA5E3OGKsomUZMFY/EQuHXTUEmAn1pcwIv 0boawvD23tU+UrKiwhnpuPbjmhAfJDcrW//9zNGjWKElkCvRbu7HoXkgrZRA/wYv X3Ita5DpQtHRcfTUvTNlHN+TtiQTbglBGvvXCRTrQFnQZER8ub6J0lzkECcJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSboaM9nRKSMJg+pBNKvreNX2UWEwHwYDVR0j BBgwFoAU98j+c14WpCsKT+dqKWjIs3Kwj+MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzU1ZWFjOTctMzFiNS00ZjMzLTgyZjQtNTI0MTQ3MGNiYmJlLzAvRjdDOEZFNzM1 RTE2QTQyQjBBNEZFNzZBMjk2OEM4QjM3MkIwOEZFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GN0M4RkU3MzVFMTZBNDJCMEE0RkU3NkEyOTY4QzhCMzcyQjA4 RkUzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1NWVhYzk3LTMxYjUtNGYzMy04 MmY0LTUyNDE0NzBjYmJiZS8wLzMyMzAzMjJlMzEzNjM1MmUzMzMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqlIDANBgkqhkiG 9w0BAQsFAAOCAQEAjy+gL3cPhgEzjGwMHYRLrGg3YxGtSn9p2y5eMuyBwCBrYWVp w/xcvzF6NE4j8Rb1mAxHO5qgughB8313htx3IFSXZjmoN+zdg2ZIvx/jJkXgY+ZT l19+azx5eA9poFJPq1W+CNvBQtu/R5+20LN/Axv+nqODE4gpZIQJlStIKGECql20 OowcAu4WnB/s3JMNccnoQ7heQnYubgUwE+T6Rk3QmN5aIPPh2QwfgiwKmTU9BE6V Y91FCLSlUH7/pCXh1i/Qi4kQkaIOag2AQ7bts77gL5a/lUkKc0pFE8ExRuzI0aoo 4frfUznho5U4QeXzaGIbkEeQgoKQWihk1UOBiQ== -----END CERTIFICATE-----Generated at Wed May 13 05:43:29 2026 by rpki-client