$ rpki-client -vvf rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e39302e3139342e302f32342d3234203d3e203435333233.roa File: 3230322e39302e3139342e302f32342d3234203d3e203435333233.roa (raw, json) Hash identifier: 3omtH0gia780DFyQ29c+VBozmVqrhGPgDCowWGzyQNY= Subject key identifier: B2:40:89:C0:C8:53:90:4A:2F:23:AA:A9:BC:97:75:E7:91:A6:A4:14 Certificate issuer: /CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Certificate serial: 2D7BE22F04A26182DA3E652811B4A4BA1C478AAF Authority key identifier: 17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e39302e3139342e302f32342d3234203d3e203435333233.roa Signing time: Sun 03 May 2026 03:11:28 +0000 ROA not before: Sun 03 May 2026 03:06:28 +0000 ROA not after: Sun 02 May 2027 03:11:28 +0000 asID: 45323 IP address blocks: 202.90.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:7b:e2:2f:04:a2:61:82:da:3e:65:28:11:b4:a4:ba:1c:47:8a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Validity Not Before: May 3 03:06:28 2026 GMT Not After : May 2 03:11:28 2027 GMT Subject: CN=B24089C0C853904A2F23AAA9BC9775E791A6A414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8c:9f:9d:b3:08:cb:fb:71:6e:82:ec:bc:64: 86:87:34:b9:a1:94:81:c5:0f:3e:e1:d4:1a:94:e3: 3f:54:4b:89:f0:4b:70:31:e7:66:72:4d:ac:3b:7e: 38:d3:90:dd:af:ce:07:93:94:9c:c2:f5:2a:dd:4f: 0c:44:2f:e6:2c:b0:8f:fa:be:87:7c:0c:ed:6e:bb: 7b:5a:9e:23:cc:76:6d:db:8e:23:34:b8:4f:86:9c: 67:aa:b3:62:d8:a1:24:d9:89:62:4f:ab:50:5a:7a: fb:1e:4c:37:cc:03:bd:10:a0:90:a8:d6:88:52:26: 0a:21:96:38:ab:a3:4b:1d:4a:fd:1f:f7:06:2e:eb: 97:61:8f:3d:90:09:95:22:83:a7:fc:47:07:4f:6d: f2:70:78:d7:24:a0:37:6b:f6:51:a8:52:11:2e:36: f2:1b:ed:bc:6b:6c:ca:8f:90:4b:75:52:ee:84:49: 44:bc:66:a5:f2:2c:84:74:38:4e:f4:d0:68:56:61: 7d:2f:46:37:23:a2:4d:0d:4e:ca:62:7a:a1:15:07: d2:bc:09:1a:f2:59:ec:95:a4:5b:b0:26:cf:96:bd: cf:2c:62:dd:48:ed:e9:46:7c:4f:d7:a6:b3:99:5e: 79:46:bc:3f:91:93:43:af:5e:13:2c:b4:62:00:2d: c5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:40:89:C0:C8:53:90:4A:2F:23:AA:A9:BC:97:75:E7:91:A6:A4:14 X509v3 Authority Key Identifier: keyid:17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e39302e3139342e302f32342d3234203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.90.194.0/24 Signature Algorithm: sha256WithRSAEncryption 52:88:ae:98:83:21:85:bf:b5:7b:c6:1b:e9:5b:52:02:0e:d5: d9:7b:19:e9:da:6d:17:8d:4d:59:77:88:af:fb:74:a2:0d:3d: d1:b4:e7:e2:ab:3a:f4:43:66:3c:88:99:be:ee:35:5c:8f:fb: c8:9f:2b:32:ad:88:8a:ea:da:a7:bb:31:f2:f6:8f:e3:39:ea: 0f:01:33:10:eb:9a:7d:33:ac:94:eb:1d:f4:0d:96:ff:6a:31: 36:2d:af:bb:6f:32:bc:41:dc:1a:ba:8f:fb:b1:89:f3:c6:90: 47:b9:63:15:58:b7:3e:07:93:85:be:9e:e6:16:2d:67:57:c0: 44:37:ff:b4:6d:00:3e:50:ce:80:ac:48:68:0a:f9:b3:b6:ef: cf:c9:fc:27:5d:84:3c:bb:9b:f0:03:d8:c9:ce:34:11:18:ed: bb:87:a0:8b:dd:47:d9:78:d8:9c:a7:2f:81:a1:71:71:d5:5b: 8e:2d:8a:d3:9e:e6:66:f3:93:8c:40:73:9d:37:f9:0a:4a:5c: 0d:64:fd:11:f9:73:80:c4:94:07:80:9b:ff:37:d7:4c:3d:5f: 81:ac:c8:0f:a3:62:2f:47:5d:3d:c6:40:70:f6:a2:53:b8:c4: 14:f1:3a:b8:c1:88:ba:b9:36:5c:68:63:4a:ca:36:79:59:30: 38:09:4f:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULXviLwSiYYLaPmUoEbSkuhxHiq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc1RjRCOTRGRTYwOENBRjNBREUyRkI2QzVFNzU0NTNB QjJERDAyNDAeFw0yNjA1MDMwMzA2MjhaFw0yNzA1MDIwMzExMjhaMDMxMTAvBgNV BAMTKEIyNDA4OUMwQzg1MzkwNEEyRjIzQUFBOUJDOTc3NUU3OTFBNkE0MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfjJ+dswjL+3Fuguy8ZIaHNLmh lIHFDz7h1BqU4z9US4nwS3Ax52ZyTaw7fjjTkN2vzgeTlJzC9SrdTwxEL+YssI/6 vod8DO1uu3taniPMdm3bjiM0uE+GnGeqs2LYoSTZiWJPq1BaevseTDfMA70QoJCo 1ohSJgohljiro0sdSv0f9wYu65dhjz2QCZUig6f8RwdPbfJweNckoDdr9lGoUhEu NvIb7bxrbMqPkEt1Uu6ESUS8ZqXyLIR0OE700GhWYX0vRjcjok0NTspieqEVB9K8 CRryWeyVpFuwJs+Wvc8sYt1I7elGfE/XprOZXnlGvD+Rk0OvXhMstGIALcUFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUskCJwMhTkEovI6qpvJd155GmpBQwHwYDVR0j BBgwFoAUF19LlP5gjK863i+2xedUU6st0CQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGNmMDBmOGEtNWNiZC00NjBmLWJmYzYtYmQ4OTQyYjY1MzdjLzAvMTc1RjRCOTRG RTYwOENBRjNBREUyRkI2QzVFNzU0NTNBQjJERDAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNzVGNEI5NEZFNjA4Q0FGM0FERTJGQjZDNUU3NTQ1M0FCMkRE MDI0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RjZjAwZjhhLTVjYmQtNDYwZi1i ZmM2LWJkODk0MmI2NTM3Yy8wLzMyMzAzMjJlMzkzMDJlMzEzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpawjANBgkqhkiG 9w0BAQsFAAOCAQEAUoiumIMhhb+1e8Yb6VtSAg7V2XsZ6dptF41NWXeIr/t0og09 0bTn4qs69ENmPIiZvu41XI/7yJ8rMq2Iiurap7sx8vaP4znqDwEzEOuafTOslOsd 9A2W/2oxNi2vu28yvEHcGrqP+7GJ88aQR7ljFVi3PgeThb6e5hYtZ1fARDf/tG0A PlDOgKxIaAr5s7bvz8n8J12EPLub8APYyc40ERjtu4egi91H2XjYnKcvgaFxcdVb ji2K057mZvOTjEBznTf5CkpcDWT9EflzgMSUB4Cb/zfXTD1fgazID6NiL0ddPcZA cPaiU7jEFPE6uMGIurk2XGhjSso2eVkwOAlP1g== -----END CERTIFICATE-----Generated at Wed May 13 02:47:33 2026 by rpki-client