$ rpki-client -vvf rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32332d3233203d3e203435333233.roa File: 3230322e34332e36342e302f32332d3233203d3e203435333233.roa (raw, json) Hash identifier: OvBBs++V7emF9OehzRM0FMmOsHlAddNrQdbMcRn58fc= Subject key identifier: A0:1E:1B:DA:A1:81:A6:C4:07:5C:11:8D:84:86:D6:54:39:68:CF:DF Certificate issuer: /CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Certificate serial: 512B9D79623DECA64EF87E28B6F4E4806CFAE2D6 Authority key identifier: 17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32332d3233203d3e203435333233.roa Signing time: Sun 03 May 2026 03:11:29 +0000 ROA not before: Sun 03 May 2026 03:06:29 +0000 ROA not after: Sun 02 May 2027 03:11:29 +0000 asID: 45323 IP address blocks: 202.43.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 06:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2b:9d:79:62:3d:ec:a6:4e:f8:7e:28:b6:f4:e4:80:6c:fa:e2:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Validity Not Before: May 3 03:06:29 2026 GMT Not After : May 2 03:11:29 2027 GMT Subject: CN=A01E1BDAA181A6C4075C118D8486D6543968CFDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b1:ac:07:ea:9a:41:f7:2b:b8:d7:f4:78:dc: 3e:44:de:17:74:84:ba:3b:fe:82:4a:b4:d9:92:bc: f5:78:8b:bf:76:43:0f:cb:8a:b6:40:1a:4a:f1:b9: 19:ab:6a:0c:3b:c3:64:7e:56:77:07:75:d2:26:1d: f3:3b:8e:f2:41:ff:c0:16:b1:d1:0b:4a:de:66:df: fc:35:b5:dd:74:6b:af:30:fc:17:5b:ec:18:17:2e: 4f:9a:58:97:d9:52:12:aa:f3:90:dd:7c:fd:27:ea: 36:29:f1:18:df:f1:11:0f:a8:e9:ad:ce:ed:de:2b: 9c:f3:8e:3c:36:20:95:19:e7:b3:57:76:4b:9d:e7: 03:18:f5:40:63:9e:b9:8b:6f:01:67:85:2c:41:00: 4c:87:87:6d:79:ba:06:65:7a:ba:bb:a7:55:7b:46: d5:d5:ff:4b:3e:ee:1b:02:59:04:a0:a2:00:fe:fe: 39:33:e2:a0:9a:b4:be:4f:b1:d0:c5:63:8f:53:f8: ab:c7:5d:40:b4:d4:7a:90:59:4e:be:95:f9:60:dd: 3f:eb:0d:45:12:71:05:3b:e6:d6:cb:3b:10:48:60: 86:4a:0e:8e:41:d3:3f:c6:ca:e6:af:a8:53:41:4b: ff:58:8b:45:3d:97:e6:92:9e:a8:2d:13:40:70:01: 07:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1E:1B:DA:A1:81:A6:C4:07:5C:11:8D:84:86:D6:54:39:68:CF:DF X509v3 Authority Key Identifier: keyid:17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32332d3233203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.64.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:6e:a1:c0:ee:cf:c1:c6:69:e4:e2:34:f7:c7:ba:f5:da:81: 9b:24:32:af:4f:2b:a5:ed:a8:92:d4:ed:88:4e:15:47:3c:8c: ab:17:d1:6e:98:1b:28:1b:a0:d0:4a:42:17:0a:e3:3e:91:b9: 91:56:d4:6f:a1:60:0f:2b:d3:97:6c:7e:af:77:cf:b9:bc:55: ee:cc:2d:ed:38:0d:d2:c5:73:30:c4:67:eb:7b:72:7d:a7:74: a4:de:ad:04:8a:fe:da:58:f9:4d:ce:38:b7:21:fe:6d:2c:ba: 48:90:9b:15:71:54:eb:2c:04:a3:c3:76:2f:0b:c5:e6:e4:0c: a7:14:8e:eb:7b:29:2b:ab:f9:ed:9c:f1:85:54:ef:be:d0:e2: a1:7a:ff:90:0d:89:84:a9:fb:25:b0:63:43:fa:24:3e:95:54: 3b:de:1f:b5:88:94:b8:4f:0a:a9:06:df:b7:25:ba:78:cf:6f: 9b:23:20:ad:c6:2e:3c:47:b0:c3:a3:f6:0c:56:d3:02:ed:82: 8b:b5:76:8b:bc:c8:50:26:61:d3:ab:99:0f:a5:08:4d:5a:9b: f7:67:9d:d0:1e:21:40:55:14:f4:6d:8f:e3:55:cc:63:67:44: 57:3b:bd:aa:58:5d:c3:68:26:1e:26:0e:ff:00:2f:75:5f:0b: a5:bd:91:ff -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUSudeWI97KZO+H4otvTkgGz64tYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc1RjRCOTRGRTYwOENBRjNBREUyRkI2QzVFNzU0NTNB QjJERDAyNDAeFw0yNjA1MDMwMzA2MjlaFw0yNzA1MDIwMzExMjlaMDMxMTAvBgNV BAMTKEEwMUUxQkRBQTE4MUE2QzQwNzVDMTE4RDg0ODZENjU0Mzk2OENGREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/sawH6ppB9yu41/R43D5E3hd0 hLo7/oJKtNmSvPV4i792Qw/LirZAGkrxuRmragw7w2R+VncHddImHfM7jvJB/8AW sdELSt5m3/w1td10a68w/Bdb7BgXLk+aWJfZUhKq85DdfP0n6jYp8Rjf8REPqOmt zu3eK5zzjjw2IJUZ57NXdkud5wMY9UBjnrmLbwFnhSxBAEyHh215ugZlerq7p1V7 RtXV/0s+7hsCWQSgogD+/jkz4qCatL5PsdDFY49T+KvHXUC01HqQWU6+lflg3T/r DUUScQU75tbLOxBIYIZKDo5B0z/GyuavqFNBS/9Yi0U9l+aSnqgtE0BwAQf7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUoB4b2qGBpsQHXBGNhIbWVDloz98wHwYDVR0j BBgwFoAUF19LlP5gjK863i+2xedUU6st0CQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGNmMDBmOGEtNWNiZC00NjBmLWJmYzYtYmQ4OTQyYjY1MzdjLzAvMTc1RjRCOTRG RTYwOENBRjNBREUyRkI2QzVFNzU0NTNBQjJERDAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNzVGNEI5NEZFNjA4Q0FGM0FERTJGQjZDNUU3NTQ1M0FCMkRE MDI0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RjZjAwZjhhLTVjYmQtNDYwZi1i ZmM2LWJkODk0MmI2NTM3Yy8wLzMyMzAzMjJlMzQzMzJlMzYzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzUzMzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKK0AwDQYJKoZIhvcN AQELBQADggEBAD9uocDuz8HGaeTiNPfHuvXagZskMq9PK6XtqJLU7YhOFUc8jKsX 0W6YGygboNBKQhcK4z6RuZFW1G+hYA8r05dsfq93z7m8Ve7MLe04DdLFczDEZ+t7 cn2ndKTerQSK/tpY+U3OOLch/m0sukiQmxVxVOssBKPDdi8LxebkDKcUjut7KSur +e2c8YVU777Q4qF6/5ANiYSp+yWwY0P6JD6VVDveH7WIlLhPCqkG37clunjPb5sj IK3GLjxHsMOj9gxW0wLtgou1dou8yFAmYdOrmQ+lCE1am/dnndAeIUBVFPRtj+NV zGNnRFc7vapYXcNoJh4mDv8AL3VfC6W9kf8= -----END CERTIFICATE-----Generated at Tue May 12 22:49:58 2026 by rpki-client