$ rpki-client -vvf rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e35322e302f32342d3234203d3e203435333132.roa File: 3230322e38312e35322e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: vTNjqpcqoNu19MLSuMOK3Dtu6rOF3+qj+lLaQbzk9bI= Subject key identifier: 37:41:A4:58:D9:2F:85:DB:5D:5E:EE:32:76:1F:72:63:F2:7D:9C:75 Certificate issuer: /CN=E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4 Certificate serial: 3A528721FD56FF50A39DB0C0BC94D7B1DC0A2DA1 Authority key identifier: E3:C1:16:D9:16:0B:6F:21:F7:B6:47:D6:FB:8E:C1:43:6C:AD:88:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e35322e302f32342d3234203d3e203435333132.roa Signing time: Sun 03 May 2026 03:05:28 +0000 ROA not before: Sun 03 May 2026 03:00:28 +0000 ROA not after: Sun 02 May 2027 03:05:28 +0000 asID: 45312 IP address blocks: 202.81.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.crl rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:52:87:21:fd:56:ff:50:a3:9d:b0:c0:bc:94:d7:b1:dc:0a:2d:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4 Validity Not Before: May 3 03:00:28 2026 GMT Not After : May 2 03:05:28 2027 GMT Subject: CN=3741A458D92F85DB5D5EEE32761F7263F27D9C75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1f:13:d3:f4:36:6c:77:9b:c3:4c:a2:64:a1: 90:3a:59:7f:f9:8c:5b:3a:42:82:27:d6:eb:73:ee: d9:dd:90:c1:31:27:5a:68:79:09:29:8d:15:fc:12: 25:01:a0:64:d9:7a:de:c9:c7:2d:3d:9d:cd:99:d3: a1:cf:28:d2:c5:cf:b2:7d:38:93:ab:e8:f8:83:ad: 33:09:e5:28:93:65:b2:e9:ff:be:aa:9e:53:8f:62: f7:7c:18:b6:5f:fe:29:ea:74:de:bb:38:b9:f0:5a: e2:be:aa:ed:cc:4f:be:17:8f:8e:f2:88:68:0e:67: e2:69:79:89:b8:53:86:6f:6c:57:a7:95:2e:4f:3d: 1f:75:7f:ec:55:b6:8d:2c:21:57:89:d0:b6:48:3b: 18:06:15:30:e1:cb:10:15:52:8d:1e:53:0e:bf:52: 38:83:b7:f5:3c:02:9b:b0:34:f0:ef:0a:77:2d:db: f7:5c:b3:8a:9c:66:99:f2:2d:85:d2:41:73:e8:06: 4f:bf:33:2f:5a:9e:32:36:31:85:fa:9f:be:62:74: e2:53:d5:df:a5:46:d1:c1:33:13:93:f7:fe:7b:3c: 55:eb:eb:15:de:fb:bf:bc:49:f5:dc:c9:4e:82:b2: 45:d5:a2:d1:2e:64:6f:f5:6f:6c:f5:bc:e8:a4:60: b8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:41:A4:58:D9:2F:85:DB:5D:5E:EE:32:76:1F:72:63:F2:7D:9C:75 X509v3 Authority Key Identifier: keyid:E3:C1:16:D9:16:0B:6F:21:F7:B6:47:D6:FB:8E:C1:43:6C:AD:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e35322e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.81.52.0/24 Signature Algorithm: sha256WithRSAEncryption 92:55:a7:c9:7b:bb:a0:3b:1b:56:b1:f3:0e:2a:00:f4:63:75: 95:a3:9c:98:51:af:f3:d7:90:21:e6:1d:f4:8f:15:98:34:bc: 5b:2c:0a:d1:f9:81:0a:f9:b7:60:d8:83:dc:37:04:21:21:67: f2:58:5e:f9:47:0d:da:2d:0a:31:84:7b:8e:53:16:c4:7f:13: cb:41:bd:d4:61:df:15:1d:26:bd:21:0a:76:b6:67:fa:d8:70: d6:94:86:be:19:fb:6f:de:8f:8a:e6:64:54:14:f1:b0:01:bc: d7:76:91:8c:3c:d0:4a:a6:e4:62:be:84:07:af:c2:71:38:c6: f3:09:e0:81:9e:4d:cf:11:0b:c3:25:fc:55:dd:72:82:f7:18: b8:67:d0:a9:72:d4:d9:68:e1:51:eb:59:25:91:a6:e6:c8:4a: 5b:a6:b7:88:47:36:22:98:01:2b:88:0f:e5:e0:e3:4c:e6:e2: 2c:ab:10:ab:fd:c3:50:ae:15:8f:e0:93:11:2b:9f:02:2f:5f: a4:22:52:b7:70:c1:f2:11:73:43:dd:0e:bc:cd:89:19:09:14: 6b:67:61:4f:48:fd:d7:67:99:ca:db:b7:98:f0:aa:a8:36:8c: a1:ee:13:b9:c2:e1:29:35:f9:2b:49:57:fa:6a:1e:54:9a:02: 73:bb:e0:be -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOlKHIf1W/1CjnbDAvJTXsdwKLaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNDMTE2RDkxNjBCNkYyMUY3QjY0N0Q2RkI4RUMxNDM2 Q0FEODhENDAeFw0yNjA1MDMwMzAwMjhaFw0yNzA1MDIwMzA1MjhaMDMxMTAvBgNV BAMTKDM3NDFBNDU4RDkyRjg1REI1RDVFRUUzMjc2MUY3MjYzRjI3RDlDNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYHxPT9DZsd5vDTKJkoZA6WX/5 jFs6QoIn1utz7tndkMExJ1poeQkpjRX8EiUBoGTZet7Jxy09nc2Z06HPKNLFz7J9 OJOr6PiDrTMJ5SiTZbLp/76qnlOPYvd8GLZf/inqdN67OLnwWuK+qu3MT74Xj47y iGgOZ+JpeYm4U4ZvbFenlS5PPR91f+xVto0sIVeJ0LZIOxgGFTDhyxAVUo0eUw6/ UjiDt/U8ApuwNPDvCnct2/dcs4qcZpnyLYXSQXPoBk+/My9anjI2MYX6n75idOJT 1d+lRtHBMxOT9/57PFXr6xXe+7+8SfXcyU6CskXVotEuZG/1b2z1vOikYLhrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUN0GkWNkvhdtdXu4ydh9yY/J9nHUwHwYDVR0j BBgwFoAU48EW2RYLbyH3tkfW+47BQ2ytiNQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzYyMWY3NTMtYTg4ZS00ZWRmLWEzMDYtYmQ5M2Q1YTM4ZmVhLzAvRTNDMTE2RDkx NjBCNkYyMUY3QjY0N0Q2RkI4RUMxNDM2Q0FEODhENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FM0MxMTZEOTE2MEI2RjIxRjdCNjQ3RDZGQjhFQzE0MzZDQUQ4 OEQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzAzMjJlMzgzMTJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKUTQwDQYJKoZIhvcN AQELBQADggEBAJJVp8l7u6A7G1ax8w4qAPRjdZWjnJhRr/PXkCHmHfSPFZg0vFss CtH5gQr5t2DYg9w3BCEhZ/JYXvlHDdotCjGEe45TFsR/E8tBvdRh3xUdJr0hCna2 Z/rYcNaUhr4Z+2/ej4rmZFQU8bABvNd2kYw80Eqm5GK+hAevwnE4xvMJ4IGeTc8R C8Ml/FXdcoL3GLhn0Kly1Nlo4VHrWSWRpubISlumt4hHNiKYASuID+Xg40zm4iyr EKv9w1CuFY/gkxErnwIvX6QiUrdwwfIRc0PdDrzNiRkJFGtnYU9I/ddnmcrbt5jw qqg2jKHuE7nC4Sk1+StJV/pqHlSaAnO74L4= -----END CERTIFICATE-----Generated at Wed May 13 05:25:16 2026 by rpki-client