$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e35382e3234332e302f32342d3234203d3e203435333235.roa File: 3230322e35382e3234332e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: VzZhSRiw8XBW/yDedZyS5uY03yRNTIbVc//42y9SUvw= Subject key identifier: 13:2A:A1:B0:90:C3:B4:D1:50:9A:A8:03:D2:9E:10:45:9B:04:B6:28 Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 737621E9910D8E80F8572333A8958CBAA953C763 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e35382e3234332e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:12:04 +0000 ROA not before: Sun 03 May 2026 03:07:04 +0000 ROA not after: Sun 02 May 2027 03:12:04 +0000 asID: 45325 IP address blocks: 202.58.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:76:21:e9:91:0d:8e:80:f8:57:23:33:a8:95:8c:ba:a9:53:c7:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:07:04 2026 GMT Not After : May 2 03:12:04 2027 GMT Subject: CN=132AA1B090C3B4D1509AA803D29E10459B04B628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1d:71:6e:58:66:86:50:35:96:a4:54:22:65: 89:ed:8b:f8:15:9d:b8:97:45:45:5b:f3:27:44:63: ef:c7:20:f7:9a:71:6d:05:22:57:5f:ef:45:d1:71: e4:91:7b:81:72:e7:63:16:e9:85:e1:9a:88:8f:c0: 0f:78:97:73:5d:b0:1e:ba:35:c4:ba:4c:6d:10:1c: 30:6e:d8:e2:d4:69:79:0d:2e:a9:92:e7:ab:c5:cf: 1c:d5:96:3e:fe:8a:fc:d8:62:07:e0:2e:a3:fb:50: 0b:1a:d7:0f:5b:44:0f:cb:36:15:65:28:be:cc:b2: ed:a1:fd:5d:f6:c6:78:9c:04:f6:9f:9c:78:fe:7a: fb:12:d2:36:af:b0:81:d3:7c:a8:35:d5:be:7d:42: 14:d0:64:2e:ab:8e:ba:05:f4:83:74:84:f3:11:80: 88:6e:10:ce:1e:56:56:a9:59:5b:a5:44:65:0a:42: 9f:48:1e:aa:1b:0d:25:d3:26:dc:cc:ef:47:4d:bb: 67:07:78:7d:54:26:d4:91:7f:19:26:86:3e:6a:56: cf:6e:0a:9e:35:30:78:a3:e6:0f:14:08:6d:4d:43: a3:a1:c8:ea:f6:1c:08:07:8d:a1:25:ba:cb:f5:1d: f4:0b:6c:46:66:7c:02:06:28:0d:e8:68:8c:dd:be: ab:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2A:A1:B0:90:C3:B4:D1:50:9A:A8:03:D2:9E:10:45:9B:04:B6:28 X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e35382e3234332e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.243.0/24 Signature Algorithm: sha256WithRSAEncryption 24:54:90:53:ed:d0:71:cc:aa:12:17:48:76:77:cd:0b:d4:57: d3:50:3c:6d:c3:dd:25:e8:61:8d:71:af:8b:a5:51:28:af:2f: e4:f0:c5:6d:3f:6d:9e:24:58:6e:32:66:9b:d8:f5:32:c6:2c: df:e6:aa:0e:3b:bf:66:09:93:db:11:7c:0d:33:76:a3:66:83: bf:f4:12:c4:59:9f:c9:c3:c0:9c:8b:59:3b:d2:2e:2b:a9:78: 9e:a6:0c:0f:f4:58:76:9e:f0:56:95:e1:b1:46:3e:16:64:4c: 0c:57:c9:2d:97:38:ba:bb:41:6f:7f:fc:0e:26:9e:03:48:43: 9f:35:45:3c:95:9b:fa:63:11:1c:e2:d9:02:c4:76:81:ca:11: 61:34:8d:f2:d0:12:4c:8b:0c:6c:cd:6f:a5:b8:10:33:36:ba: 3d:d2:43:de:ff:9d:12:92:bb:d3:b3:72:94:88:0c:3c:76:af: 3c:02:04:3c:a4:bf:c0:d8:51:39:37:d3:9b:e6:26:a5:76:27: 74:63:f8:8e:27:a9:47:1d:fc:cb:11:ef:b3:5a:14:22:6b:5f: de:f5:b0:a6:b4:ff:05:66:56:cc:f2:68:1a:de:3a:b9:d2:df: 21:d6:d4:eb:70:42:a5:dc:71:49:b0:25:dc:8f:0f:0d:96:fc: c1:53:40:59 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc3Yh6ZENjoD4VyMzqJWMuqlTx2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA3MDRaFw0yNzA1MDIwMzEyMDRaMDMxMTAvBgNV BAMTKDEzMkFBMUIwOTBDM0I0RDE1MDlBQTgwM0QyOUUxMDQ1OUIwNEI2MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqHXFuWGaGUDWWpFQiZYnti/gV nbiXRUVb8ydEY+/HIPeacW0FIldf70XRceSRe4Fy52MW6YXhmoiPwA94l3NdsB66 NcS6TG0QHDBu2OLUaXkNLqmS56vFzxzVlj7+ivzYYgfgLqP7UAsa1w9bRA/LNhVl KL7Msu2h/V32xnicBPafnHj+evsS0javsIHTfKg11b59QhTQZC6rjroF9IN0hPMR gIhuEM4eVlapWVulRGUKQp9IHqobDSXTJtzM70dNu2cHeH1UJtSRfxkmhj5qVs9u Cp41MHij5g8UCG1NQ6OhyOr2HAgHjaElusv1HfQLbEZmfAIGKA3oaIzdvqu5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEyqhsJDDtNFQmqgD0p4QRZsEtigwHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMjJlMzUzODJlMzIzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo68zANBgkqhkiG 9w0BAQsFAAOCAQEAJFSQU+3QccyqEhdIdnfNC9RX01A8bcPdJehhjXGvi6VRKK8v 5PDFbT9tniRYbjJmm9j1MsYs3+aqDju/ZgmT2xF8DTN2o2aDv/QSxFmfycPAnItZ O9IuK6l4nqYMD/RYdp7wVpXhsUY+FmRMDFfJLZc4urtBb3/8DiaeA0hDnzVFPJWb +mMRHOLZAsR2gcoRYTSN8tASTIsMbM1vpbgQMza6PdJD3v+dEpK707NylIgMPHav PAIEPKS/wNhROTfTm+YmpXYndGP4jiepRx38yxHvs1oUImtf3vWwprT/BWZWzPJo Gt46udLfIdbU63BCpdxxSbAl3I8PDZb8wVNAWQ== -----END CERTIFICATE-----Generated at Wed May 13 02:37:21 2026 by rpki-client