$ rpki-client -vvf rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31342e302f32342d3234203d3e203535363533.roa File: 3230322e35322e31342e302f32342d3234203d3e203535363533.roa (raw, json) Hash identifier: +X2AKDLUi7EEV0pZEa+LT88OPryzNndvmpim+oMxEjk= Subject key identifier: 0B:84:A9:CB:0B:EA:8C:F2:E4:F0:F1:27:6D:5A:D4:71:1A:D0:73:A2 Certificate issuer: /CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Certificate serial: 1FAF54B199E624A8E7C426EEDF161A750B008D72 Authority key identifier: 0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31342e302f32342d3234203d3e203535363533.roa Signing time: Sun 03 May 2026 03:06:23 +0000 ROA not before: Sun 03 May 2026 03:01:23 +0000 ROA not after: Sun 02 May 2027 03:06:23 +0000 asID: 55653 IP address blocks: 202.52.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:af:54:b1:99:e6:24:a8:e7:c4:26:ee:df:16:1a:75:0b:00:8d:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Validity Not Before: May 3 03:01:23 2026 GMT Not After : May 2 03:06:23 2027 GMT Subject: CN=0B84A9CB0BEA8CF2E4F0F1276D5AD4711AD073A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0b:55:30:25:e9:0d:f2:f0:2c:cc:e4:d0:c8: 8b:37:a3:1d:50:5d:7e:b8:61:78:d5:d5:dc:24:07: 58:41:75:91:59:f1:3b:f0:6a:7c:f7:86:b3:75:60: 47:7e:1b:97:63:8b:a4:13:19:34:90:60:28:d6:72: 8b:f6:0d:b1:3a:06:86:c1:85:e3:ce:f8:1f:8f:93: 77:4a:e4:80:c8:c1:11:fe:b8:a9:f4:84:d3:97:3c: 0b:e2:f2:ce:9a:99:6c:62:a2:ef:25:4c:f4:e9:71: 9b:5b:e1:ac:60:3f:0d:69:14:a2:fb:1f:3d:94:6d: 85:9d:21:81:14:a9:ad:32:6f:c0:0b:b4:b7:b8:1b: a5:4c:4b:21:8c:08:8c:1e:65:c0:46:d3:06:fa:b2: 36:22:f1:22:a8:da:b0:d2:f0:e2:31:9e:90:63:4d: 35:3f:23:53:20:19:96:14:5a:ff:02:89:c3:02:ab: ea:ad:0e:fb:ee:35:65:25:07:8e:93:ec:e0:3f:93: d9:84:c7:1e:fe:36:f1:bc:48:d7:b3:c3:66:99:d7: f3:97:45:4b:d3:b7:d7:9f:b0:2a:9c:26:a6:45:c6: df:f9:d2:d6:49:6b:5c:d9:a5:ee:4f:bb:a0:55:91: 03:98:8f:b6:ac:bc:6c:4d:e8:b8:c1:be:54:11:1f: 82:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:84:A9:CB:0B:EA:8C:F2:E4:F0:F1:27:6D:5A:D4:71:1A:D0:73:A2 X509v3 Authority Key Identifier: keyid:0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31342e302f32342d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.14.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:e1:22:79:f9:b0:04:47:56:de:7b:4f:40:29:f9:49:c3:3c: 46:6b:14:ba:06:bd:23:be:97:2c:9b:4f:08:ae:98:5d:d5:ea: 99:c4:33:4e:7e:7f:de:4e:77:b1:41:33:0e:d7:49:ef:b5:c6: d0:5e:0a:57:12:29:02:e4:70:d0:cd:8a:2e:e7:44:96:80:e1: ba:67:2c:33:4a:03:18:bd:3f:d9:71:de:8c:42:83:0f:8a:32: aa:87:08:8e:a4:f8:3f:0d:65:43:2b:84:70:c8:9a:a3:7f:d2: c6:f8:f3:fb:33:73:5b:71:80:56:b2:5f:51:f9:25:73:ff:6a: 5e:f7:ee:da:c9:82:b1:7e:e6:df:fe:d4:a5:28:db:07:62:e2: a5:8f:c0:fa:7b:17:62:b0:33:f7:3c:89:7a:6b:b7:70:b0:e4: 16:07:9e:c9:c8:4b:5f:07:c3:85:6f:da:83:ba:97:61:67:0d: bd:36:6c:4c:17:a6:b3:cb:22:25:44:a3:2c:6e:a3:20:61:9c: 1d:77:21:05:25:b0:40:da:73:52:ab:31:e8:42:32:eb:43:d8: d6:37:c5:cb:be:55:d7:d9:a1:c4:6e:42:3d:43:50:c3:c6:90: 61:e2:fb:0b:e6:7f:63:f6:2a:04:2d:a6:85:7f:fd:7c:e7:a6: 33:57:88:d5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUH69UsZnmJKjnxCbu3xYadQsAjXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJENzM4RDlDN0FCNzJDODEzRUI4OTNFMzk1NUE2OEIz MTkwQ0ZEMjAeFw0yNjA1MDMwMzAxMjNaFw0yNzA1MDIwMzA2MjNaMDMxMTAvBgNV BAMTKDBCODRBOUNCMEJFQThDRjJFNEYwRjEyNzZENUFENDcxMUFEMDczQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvC1UwJekN8vAszOTQyIs3ox1Q XX64YXjV1dwkB1hBdZFZ8Tvwanz3hrN1YEd+G5dji6QTGTSQYCjWcov2DbE6BobB hePO+B+Pk3dK5IDIwRH+uKn0hNOXPAvi8s6amWxiou8lTPTpcZtb4axgPw1pFKL7 Hz2UbYWdIYEUqa0yb8ALtLe4G6VMSyGMCIweZcBG0wb6sjYi8SKo2rDS8OIxnpBj TTU/I1MgGZYUWv8CicMCq+qtDvvuNWUlB46T7OA/k9mExx7+NvG8SNezw2aZ1/OX RUvTt9efsCqcJqZFxt/50tZJa1zZpe5Pu6BVkQOYj7asvGxN6LjBvlQRH4LHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUC4SpywvqjPLk8PEnbVrUcRrQc6IwHwYDVR0j BBgwFoAUC9c42cercsgT64k+OVWmizGQz9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzk3NDY1ZTMtNzhhMC00OTY1LWFlMTQtZTRjYjRkMGZjMTg1LzAvMEJENzM4RDlD N0FCNzJDODEzRUI4OTNFMzk1NUE2OEIzMTkwQ0ZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQkQ3MzhEOUM3QUI3MkM4MTNFQjg5M0UzOTU1QTY4QjMxOTBD RkQyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzAzMjJlMzUzMjJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNA4wDQYJKoZIhvcN AQELBQADggEBAHzhInn5sARHVt57T0Ap+UnDPEZrFLoGvSO+lyybTwiumF3V6pnE M05+f95Od7FBMw7XSe+1xtBeClcSKQLkcNDNii7nRJaA4bpnLDNKAxi9P9lx3oxC gw+KMqqHCI6k+D8NZUMrhHDImqN/0sb48/szc1txgFayX1H5JXP/al737trJgrF+ 5t/+1KUo2wdi4qWPwPp7F2KwM/c8iXprt3Cw5BYHnsnIS18Hw4Vv2oO6l2FnDb02 bEwXprPLIiVEoyxuoyBhnB13IQUlsEDac1KrMehCMutD2NY3xcu+VdfZocRuQj1D UMPGkGHi+wvmf2P2KgQtpoV//XznpjNXiNU= -----END CERTIFICATE-----Generated at Wed May 13 00:45:00 2026 by rpki-client