$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32332d3234203d3e20313337333633.roa File: 3230322e31302e35322e302f32332d3234203d3e20313337333633.roa (raw, json) Hash identifier: Tj44K8M0kyIyNVPMD0ebyVJjg9LhX68HN2gKKlUECaQ= Subject key identifier: A9:94:A9:6B:53:FB:0F:D6:A7:DF:FC:A5:AB:39:0F:39:58:8C:2F:25 Certificate issuer: /CN=A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305 Certificate serial: 7D4E0D641ADEB0D656F4B8245C818FD1BB6C55ED Authority key identifier: A0:6C:E5:EE:EF:DB:5B:66:43:B1:8A:83:EB:E3:9B:3C:52:FF:D3:05 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32332d3234203d3e20313337333633.roa Signing time: Sun 03 May 2026 03:08:18 +0000 ROA not before: Sun 03 May 2026 03:03:18 +0000 ROA not after: Sun 02 May 2027 03:08:18 +0000 asID: 137363 IP address blocks: 202.10.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.crl rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:4e:0d:64:1a:de:b0:d6:56:f4:b8:24:5c:81:8f:d1:bb:6c:55:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305 Validity Not Before: May 3 03:03:18 2026 GMT Not After : May 2 03:08:18 2027 GMT Subject: CN=A994A96B53FB0FD6A7DFFCA5AB390F39588C2F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:33:f6:b1:8c:01:c9:2d:03:b5:f1:a3:e7: 68:34:9a:15:1c:6a:7c:72:90:30:63:7a:44:a2:b5: 67:5e:d8:86:4c:e3:15:16:96:50:67:2d:e1:eb:c4: e2:56:31:3c:b1:86:53:0f:7e:1b:b7:44:22:92:14: b3:df:48:08:dd:f4:d1:95:04:5d:7b:e3:cd:97:b0: 45:e7:5b:7a:fb:fd:e9:b4:8e:ea:4f:5a:ab:02:0b: 11:b8:55:79:0c:b9:3f:e9:9f:7c:90:ed:28:62:e1: cb:94:41:1f:a2:e8:cd:9d:54:c9:02:3b:e1:cb:e3: 45:db:31:12:bc:42:82:1f:35:1e:86:4b:a3:7f:d8: 41:3b:51:c7:49:0c:c5:a6:a0:b8:c2:75:0b:07:27: dd:e1:84:6f:59:28:bd:9a:2b:fd:2e:b9:27:44:1e: b3:5a:65:83:62:6d:4e:a7:5d:3c:8f:b8:ec:d3:34: b7:63:59:bc:ee:cd:a7:32:a0:f0:46:dc:61:df:43: 62:6f:31:0e:9a:22:0a:96:ce:e6:7e:f9:30:9f:35: 8a:8b:b8:0c:1e:d0:55:6b:e5:97:90:6b:40:56:34: 21:d0:11:fd:4e:fa:f1:cc:a0:86:9f:d6:f7:3f:b4: 7a:ce:5b:90:c5:5e:96:81:48:83:84:ae:1a:97:df: 9d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:94:A9:6B:53:FB:0F:D6:A7:DF:FC:A5:AB:39:0F:39:58:8C:2F:25 X509v3 Authority Key Identifier: keyid:A0:6C:E5:EE:EF:DB:5B:66:43:B1:8A:83:EB:E3:9B:3C:52:FF:D3:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32332d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.52.0/23 Signature Algorithm: sha256WithRSAEncryption 91:6e:54:ba:4c:09:82:12:0d:57:a7:72:e6:07:1c:16:22:28: e2:b6:79:19:a7:df:3e:49:a4:46:98:e4:4d:ce:29:94:f5:25: 00:4d:e3:f1:77:98:d5:a7:63:d2:4d:84:37:48:2e:13:5e:7c: cb:0e:ae:67:81:6d:44:1e:a6:12:8e:e9:e8:38:a2:f1:42:36: 64:ae:e1:59:55:63:c5:0f:01:31:d9:9c:f4:b2:5c:e9:ea:04: eb:90:a2:06:f1:64:d0:fc:31:30:3f:0b:16:10:fc:b6:a0:c4: 1e:03:84:8f:c9:81:1f:ea:21:28:e2:28:49:c3:d4:b2:ec:18: a1:47:57:23:1f:89:14:2c:87:46:27:eb:d0:fd:c6:8f:96:c7: 6d:ff:50:29:13:b1:5a:05:16:af:eb:fe:5e:02:35:ca:d1:8b: 85:3b:eb:da:b3:16:98:81:6a:5c:84:90:b4:33:8d:fb:22:12: 7a:be:49:f5:55:0a:3a:02:41:b2:da:20:1f:4e:e2:7e:02:59: 7a:26:a4:29:71:3b:2a:10:74:fd:55:53:13:e7:78:8b:fa:33: d9:9e:b7:7c:af:45:91:d2:1c:83:99:ab:17:67:ee:3b:2b:1f: a6:ee:14:3e:a5:65:a3:fc:16:eb:a5:e1:88:b0:ae:c1:c8:d3: cf:e7:c0:55 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfU4NZBresNZW9LgkXIGP0btsVe0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA2Q0U1RUVFRkRCNUI2NjQzQjE4QTgzRUJFMzlCM0M1 MkZGRDMwNTAeFw0yNjA1MDMwMzAzMThaFw0yNzA1MDIwMzA4MThaMDMxMTAvBgNV BAMTKEE5OTRBOTZCNTNGQjBGRDZBN0RGRkNBNUFCMzkwRjM5NTg4QzJGMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSJzP2sYwByS0DtfGj52g0mhUc anxykDBjekSitWde2IZM4xUWllBnLeHrxOJWMTyxhlMPfhu3RCKSFLPfSAjd9NGV BF17482XsEXnW3r7/em0jupPWqsCCxG4VXkMuT/pn3yQ7Shi4cuUQR+i6M2dVMkC O+HL40XbMRK8QoIfNR6GS6N/2EE7UcdJDMWmoLjCdQsHJ93hhG9ZKL2aK/0uuSdE HrNaZYNibU6nXTyPuOzTNLdjWbzuzacyoPBG3GHfQ2JvMQ6aIgqWzuZ++TCfNYqL uAwe0FVr5ZeQa0BWNCHQEf1O+vHMoIaf1vc/tHrOW5DFXpaBSIOErhqX3515AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqZSpa1P7D9an3/ylqzkPOViMLyUwHwYDVR0j BBgwFoAUoGzl7u/bW2ZDsYqD6+ObPFL/0wUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDEwODViNGEtZjU3My00MmYzLTgyNWMtMWNmMGM4NzJiMTUyLzAvQTA2Q0U1RUVF RkRCNUI2NjQzQjE4QTgzRUJFMzlCM0M1MkZGRDMwNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDZDRTVFRUVGREI1QjY2NDNCMThBODNFQkUzOUIzQzUyRkZE MzA1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcoKNDANBgkqhkiG 9w0BAQsFAAOCAQEAkW5UukwJghINV6dy5gccFiIo4rZ5GaffPkmkRpjkTc4plPUl AE3j8XeY1adj0k2EN0guE158yw6uZ4FtRB6mEo7p6Dii8UI2ZK7hWVVjxQ8BMdmc 9LJc6eoE65CiBvFk0PwxMD8LFhD8tqDEHgOEj8mBH+ohKOIoScPUsuwYoUdXIx+J FCyHRifr0P3Gj5bHbf9QKROxWgUWr+v+XgI1ytGLhTvr2rMWmIFqXISQtDON+yIS er5J9VUKOgJBstogH07ifgJZeiakKXE7KhB0/VVTE+d4i/oz2Z63fK9FkdIcg5mr F2fuOysfpu4UPqVlo/wW66XhiLCuwcjTz+fAVQ== -----END CERTIFICATE-----Generated at Wed May 13 12:52:07 2026 by rpki-client