$ rpki-client -vvf rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e35302e302f32332d3234203d3e203435373239.roa File: 3230322e3135392e35302e302f32332d3234203d3e203435373239.roa (raw, json) Hash identifier: 0DjkrTA9ouNvrCsdojisPz41tYiFCwdDrjUDolphH5E= Subject key identifier: 54:C2:EA:CE:59:6B:94:C6:E2:C6:64:B1:A1:6E:70:79:A9:38:AA:90 Certificate issuer: /CN=662A1D1F0B83DCEAC73D973514979A1703FA9E28 Certificate serial: 1BB1CE90FF805278F55FDD059C76E1A0155EA54D Authority key identifier: 66:2A:1D:1F:0B:83:DC:EA:C7:3D:97:35:14:97:9A:17:03:FA:9E:28 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e35302e302f32332d3234203d3e203435373239.roa Signing time: Sun 03 May 2026 03:13:48 +0000 ROA not before: Sun 03 May 2026 03:08:48 +0000 ROA not after: Sun 02 May 2027 03:13:48 +0000 asID: 45729 IP address blocks: 202.159.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:b1:ce:90:ff:80:52:78:f5:5f:dd:05:9c:76:e1:a0:15:5e:a5:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=662A1D1F0B83DCEAC73D973514979A1703FA9E28 Validity Not Before: May 3 03:08:48 2026 GMT Not After : May 2 03:13:48 2027 GMT Subject: CN=54C2EACE596B94C6E2C664B1A16E7079A938AA90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ec:ab:f2:f0:21:98:b6:23:2a:77:eb:bf:cf: fc:61:ad:64:4b:59:b4:b1:4f:7d:a7:ab:7f:40:64: e5:38:b8:57:e6:9b:6d:2e:4e:22:55:e1:28:b0:37: b6:d7:63:ad:00:87:f0:57:c4:c6:59:c0:41:ab:b2: 89:e8:9b:5c:e7:87:4d:bb:be:9c:af:47:10:3b:6f: 4a:dd:a0:31:75:6e:90:61:18:76:1f:1f:ff:1d:f5: c7:f0:31:85:c9:aa:f3:79:98:e1:87:ee:34:82:ef: c8:79:3e:dd:f5:d8:f6:e4:59:5a:89:b7:12:bf:eb: d1:fb:e3:dc:b8:ac:d6:74:21:a6:b9:b7:31:e9:ef: 0e:ef:0b:5a:3e:60:9a:48:4b:bd:b7:7b:47:b5:3b: fb:6e:4a:33:1a:64:e0:ec:67:34:fc:99:1c:5b:02: 21:6a:1b:4d:3c:2b:99:13:2a:d7:aa:b8:d5:9b:0d: 7a:15:9f:93:40:f0:ad:c7:23:5a:0d:96:c6:6a:7a: 55:7a:f1:77:23:e4:b1:64:81:90:74:36:33:bb:a6: b6:f4:2a:ff:8c:58:bf:b6:7d:29:5b:d8:61:c0:e8: 14:9b:fc:8c:ec:80:77:c7:25:f0:76:01:db:70:ea: 20:0c:72:ed:00:a7:00:49:39:9a:f9:ac:d5:10:88: 66:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C2:EA:CE:59:6B:94:C6:E2:C6:64:B1:A1:6E:70:79:A9:38:AA:90 X509v3 Authority Key Identifier: keyid:66:2A:1D:1F:0B:83:DC:EA:C7:3D:97:35:14:97:9A:17:03:FA:9E:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e35302e302f32332d3234203d3e203435373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.159.50.0/23 Signature Algorithm: sha256WithRSAEncryption 87:13:96:ff:80:0e:77:7a:e4:f4:ec:fb:0c:c2:03:74:d6:de: cd:78:be:c2:82:85:44:9c:6f:42:fc:d7:6b:66:07:4d:c5:ad: a6:87:63:d5:55:4e:57:9b:ea:28:a0:e8:5e:12:73:30:68:63: 07:6d:83:be:2f:36:9c:63:c0:f8:68:07:46:77:e9:68:02:21: 86:f8:9e:fa:1f:24:f8:3d:5f:e9:1d:e8:de:a0:d4:d0:11:4e: 81:91:04:6f:0d:6c:fb:8f:bd:dc:07:c5:92:8a:18:1b:5e:52: 9a:89:b1:73:b1:69:53:e6:06:29:e9:3b:53:c0:4e:fb:1c:e4: 6b:40:e8:42:36:39:6e:ba:48:87:2a:6f:6a:1e:34:ea:60:31: d6:d2:e3:e3:96:00:1c:a6:a0:54:98:4f:31:30:62:3e:5a:2b: 95:71:6c:55:92:fa:08:de:fc:9c:f7:0e:2a:83:85:b8:66:db: ca:3e:37:d7:9a:7b:c0:46:ba:3b:b5:44:40:c8:38:c0:dc:87: 20:2a:fc:ff:e6:a5:a8:99:19:d6:f4:fb:3a:97:66:4c:a3:9f: 6c:78:2c:92:28:11:0b:0d:bf:e0:1e:01:b6:ea:77:f2:5a:00: 5b:23:1c:5c:cd:55:c2:18:5b:e5:02:8d:2b:44:0d:9a:d9:9e: 21:99:64:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG7HOkP+AUnj1X90FnHbhoBVepU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjYyQTFEMUYwQjgzRENFQUM3M0Q5NzM1MTQ5NzlBMTcw M0ZBOUUyODAeFw0yNjA1MDMwMzA4NDhaFw0yNzA1MDIwMzEzNDhaMDMxMTAvBgNV BAMTKDU0QzJFQUNFNTk2Qjk0QzZFMkM2NjRCMUExNkU3MDc5QTkzOEFBOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17Kvy8CGYtiMqd+u/z/xhrWRL WbSxT32nq39AZOU4uFfmm20uTiJV4SiwN7bXY60Ah/BXxMZZwEGrsonom1znh027 vpyvRxA7b0rdoDF1bpBhGHYfH/8d9cfwMYXJqvN5mOGH7jSC78h5Pt312PbkWVqJ txK/69H749y4rNZ0Iaa5tzHp7w7vC1o+YJpIS723e0e1O/tuSjMaZODsZzT8mRxb AiFqG008K5kTKtequNWbDXoVn5NA8K3HI1oNlsZqelV68Xcj5LFkgZB0NjO7prb0 Kv+MWL+2fSlb2GHA6BSb/IzsgHfHJfB2Adtw6iAMcu0ApwBJOZr5rNUQiGbhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVMLqzllrlMbixmSxoW5weak4qpAwHwYDVR0j BBgwFoAUZiodHwuD3OrHPZc1FJeaFwP6nigwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTViMWU1N2UtYTBmMS00NjdmLWE0NmYtNTVhMzE1N2IwZDY1LzAvNjYyQTFEMUYw QjgzRENFQUM3M0Q5NzM1MTQ5NzlBMTcwM0ZBOUUyOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NjJBMUQxRjBCODNEQ0VBQzczRDk3MzUxNDk3OUExNzAzRkE5 RTI4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U1YjFlNTdlLWEwZjEtNDY3Zi1h NDZmLTU1YTMxNTdiMGQ2NS8wLzMyMzAzMjJlMzEzNTM5MmUzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTM3MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqfMjANBgkqhkiG 9w0BAQsFAAOCAQEAhxOW/4AOd3rk9Oz7DMIDdNbezXi+woKFRJxvQvzXa2YHTcWt podj1VVOV5vqKKDoXhJzMGhjB22Dvi82nGPA+GgHRnfpaAIhhvie+h8k+D1f6R3o 3qDU0BFOgZEEbw1s+4+93AfFkooYG15Smomxc7FpU+YGKek7U8BO+xzka0DoQjY5 brpIhypvah406mAx1tLj45YAHKagVJhPMTBiPlorlXFsVZL6CN78nPcOKoOFuGbb yj4315p7wEa6O7VEQMg4wNyHICr8/+alqJkZ1vT7OpdmTKOfbHgskigRCw2/4B4B tup38loAWyMcXM1Vwhhb5QKNK0QNmtmeIZlk5g== -----END CERTIFICATE-----Generated at Wed May 13 04:53:28 2026 by rpki-client