$ rpki-client -vvf rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa File: 3230322e3135332e31362e302f32302d3234203d3e203233363636.roa (raw, json) Hash identifier: dFGJI1S/FQoqvRu6ehr7n/qth/1SKexx3mS7zWvVonM= Subject key identifier: 81:1A:91:FB:17:71:B1:0F:CE:0B:FF:38:E5:06:4D:05:40:96:40:48 Certificate issuer: /CN=2CFE6C04191B28EDA13984F5549231D1840AACEC Certificate serial: 62A357EAF212C69E5CD0C1EC5D513B34CC084C50 Authority key identifier: 2C:FE:6C:04:19:1B:28:ED:A1:39:84:F5:54:92:31:D1:84:0A:AC:EC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CFE6C04191B28EDA13984F5549231D1840AACEC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa Signing time: Sun 03 May 2026 03:09:49 +0000 ROA not before: Sun 03 May 2026 03:04:49 +0000 ROA not after: Sun 02 May 2027 03:09:49 +0000 asID: 23666 IP address blocks: 202.153.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/2CFE6C04191B28EDA13984F5549231D1840AACEC.crl rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/2CFE6C04191B28EDA13984F5549231D1840AACEC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CFE6C04191B28EDA13984F5549231D1840AACEC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a3:57:ea:f2:12:c6:9e:5c:d0:c1:ec:5d:51:3b:34:cc:08:4c:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFE6C04191B28EDA13984F5549231D1840AACEC Validity Not Before: May 3 03:04:49 2026 GMT Not After : May 2 03:09:49 2027 GMT Subject: CN=811A91FB1771B10FCE0BFF38E5064D0540964048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:59:87:75:ff:b0:22:f9:e6:6d:86:70:28:24: 41:c9:a9:0e:79:b2:40:e0:bb:67:b1:74:49:5b:1f: 85:2b:13:b9:70:d0:dc:ee:9a:75:1e:0f:cb:04:8c: f5:c0:62:3f:c6:45:8e:30:ec:ed:b9:8d:d9:d3:58: 31:91:3d:5e:6f:73:c2:34:b5:5f:69:ed:77:4b:47: be:4a:f6:e7:ee:c9:7a:5e:6d:57:ce:31:da:d4:6e: 54:6e:c4:2c:ab:2e:87:59:cb:f6:5a:32:7f:1e:f6: 36:f2:ad:32:e7:6c:da:3a:68:ac:65:64:93:7e:d5: 91:c0:50:3f:91:21:aa:26:6f:59:e9:2c:9a:ee:f8: df:54:20:88:e3:c4:b1:33:f0:a3:c0:34:18:19:25: eb:04:41:a6:79:a2:d6:f5:af:73:8f:78:b5:89:ab: 39:16:4a:c2:28:87:b6:8b:fa:c4:37:01:8d:86:82: 0e:60:55:df:26:5e:fc:f7:d3:d2:c6:5e:bb:4a:00: dd:4a:c5:a6:3d:92:5a:4a:34:b5:2d:aa:23:e2:f2: 90:f6:13:ca:3a:8c:70:ce:46:06:6e:cb:e0:44:2b: ec:06:8c:13:a4:e4:d7:e8:a1:17:f3:42:7f:c8:e2: 0d:36:70:8d:69:d4:a5:82:34:50:62:a5:98:99:0b: bb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1A:91:FB:17:71:B1:0F:CE:0B:FF:38:E5:06:4D:05:40:96:40:48 X509v3 Authority Key Identifier: keyid:2C:FE:6C:04:19:1B:28:ED:A1:39:84:F5:54:92:31:D1:84:0A:AC:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/2CFE6C04191B28EDA13984F5549231D1840AACEC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CFE6C04191B28EDA13984F5549231D1840AACEC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.153.16.0/20 Signature Algorithm: sha256WithRSAEncryption 68:45:be:7b:3e:45:08:ee:9a:ff:0c:58:21:2d:32:b3:28:29: ea:23:31:7b:9b:fd:53:4f:16:ce:47:21:e1:05:48:62:df:76: a4:f7:49:81:a2:06:e8:98:e1:49:eb:ab:d6:2c:43:9f:50:3f: 2d:75:4c:4c:f2:aa:7e:40:16:75:29:f7:d4:f0:5f:8c:55:9a: 82:b9:fd:33:07:89:8a:6f:a6:03:2d:83:e2:2c:49:10:9e:5c: 07:18:49:fc:d3:ab:11:f0:cd:4e:0f:32:b8:95:d9:da:2a:64: 58:2f:a6:7b:6f:06:8e:d8:a9:16:ad:d1:b8:23:d5:56:e8:72: 1d:e7:b0:27:f1:d4:90:99:a8:13:cd:df:ae:a3:ae:9e:f4:d1: 26:f2:14:39:23:30:05:96:6f:89:fb:f9:41:d4:88:db:cb:0b: eb:70:4f:a3:1d:fa:09:15:86:ff:30:4b:c2:13:d4:0a:b4:c2: 6a:be:fc:ea:4e:b1:45:10:fa:d2:c5:1d:00:9e:7b:c3:5e:6d: 4b:0a:00:db:b1:63:fc:a6:56:57:87:69:5f:e1:aa:cf:e0:f1: 16:92:d1:7d:f1:b3:99:89:3b:ec:c3:f3:80:e5:9b:ac:9b:d8: 5d:f5:e9:42:4f:20:bf:b2:75:c4:d9:3c:a5:79:65:ce:ce:05: 08:a2:43:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYqNX6vISxp5c0MHsXVE7NMwITFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRTZDMDQxOTFCMjhFREExMzk4NEY1NTQ5MjMxRDE4 NDBBQUNFQzAeFw0yNjA1MDMwMzA0NDlaFw0yNzA1MDIwMzA5NDlaMDMxMTAvBgNV BAMTKDgxMUE5MUZCMTc3MUIxMEZDRTBCRkYzOEU1MDY0RDA1NDA5NjQwNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyWYd1/7Ai+eZthnAoJEHJqQ55 skDgu2exdElbH4UrE7lw0NzumnUeD8sEjPXAYj/GRY4w7O25jdnTWDGRPV5vc8I0 tV9p7XdLR75K9ufuyXpebVfOMdrUblRuxCyrLodZy/ZaMn8e9jbyrTLnbNo6aKxl ZJN+1ZHAUD+RIaomb1npLJru+N9UIIjjxLEz8KPANBgZJesEQaZ5otb1r3OPeLWJ qzkWSsIoh7aL+sQ3AY2Ggg5gVd8mXvz309LGXrtKAN1KxaY9klpKNLUtqiPi8pD2 E8o6jHDORgZuy+BEK+wGjBOk5NfooRfzQn/I4g02cI1p1KWCNFBipZiZC7vdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgRqR+xdxsQ/OC/845QZNBUCWQEgwHwYDVR0j BBgwFoAULP5sBBkbKO2hOYT1VJIx0YQKrOwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDU5MDhiODMtN2Y0NC00NmUwLTg1MzUtNmZiODRiNTlkNThhLzAvMkNGRTZDMDQx OTFCMjhFREExMzk4NEY1NTQ5MjMxRDE4NDBBQUNFQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0ZFNkMwNDE5MUIyOEVEQTEzOTg0RjU1NDkyMzFEMTg0MEFB Q0VDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q1OTA4YjgzLTdmNDQtNDZlMC04 NTM1LTZmYjg0YjU5ZDU4YS8wLzMyMzAzMjJlMzEzNTMzMmUzMTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqZEDANBgkqhkiG 9w0BAQsFAAOCAQEAaEW+ez5FCO6a/wxYIS0ysygp6iMxe5v9U08Wzkch4QVIYt92 pPdJgaIG6JjhSeur1ixDn1A/LXVMTPKqfkAWdSn31PBfjFWagrn9MweJim+mAy2D 4ixJEJ5cBxhJ/NOrEfDNTg8yuJXZ2ipkWC+me28GjtipFq3RuCPVVuhyHeewJ/HU kJmoE83frqOunvTRJvIUOSMwBZZvifv5QdSI28sL63BPox36CRWG/zBLwhPUCrTC ar786k6xRRD60sUdAJ57w15tSwoA27Fj/KZWV4dpX+Gqz+DxFpLRffGzmYk77MPz gOWbrJvYXfXpQk8gv7J1xNk8pXllzs4FCKJDqQ== -----END CERTIFICATE-----Generated at Wed May 13 07:11:20 2026 by rpki-client