$ rpki-client -vvf rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS24520.roa File: AS24520.roa (raw, json) Hash identifier: RlHOKG3iuobVB1DAMGAm+asFdd1ASONRpQ1lrWJUUMA= Subject key identifier: 23:FB:A2:3E:FB:B6:8C:46:DE:47:6C:CD:B4:F7:5B:B3:F3:47:02:7B Certificate issuer: /CN=1FD138814ED6ED10A74AEDE620ECC6CB414D8D49 Certificate serial: 2806C6F984C28A4994062C511358501EA0AF7077 Authority key identifier: 1F:D1:38:81:4E:D6:ED:10:A7:4A:ED:E6:20:EC:C6:CB:41:4D:8D:49 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS24520.roa Signing time: Sun 03 May 2026 03:14:41 +0000 ROA not before: Sun 03 May 2026 03:09:41 +0000 ROA not after: Sun 02 May 2027 03:14:41 +0000 asID: 24520 IP address blocks: 112.78.96.0/21 maxlen: 24 202.87.190.0/24 maxlen: 24 202.87.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.crl rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:06:c6:f9:84:c2:8a:49:94:06:2c:51:13:58:50:1e:a0:af:70:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FD138814ED6ED10A74AEDE620ECC6CB414D8D49 Validity Not Before: May 3 03:09:41 2026 GMT Not After : May 2 03:14:41 2027 GMT Subject: CN=23FBA23EFBB68C46DE476CCDB4F75BB3F347027B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a9:ed:86:f0:81:13:fa:89:4b:1c:89:8b:48: 9a:55:db:9f:62:b0:78:26:2e:05:e8:d1:91:88:29: 86:7b:d4:d4:26:62:5c:81:f2:76:82:01:43:e9:4f: d2:88:3b:9f:33:b0:78:47:7f:39:fd:96:7e:b8:29: 3a:d1:65:68:2b:b2:f3:69:19:f5:89:71:c0:b7:c2: 93:4c:01:db:3b:ea:90:db:67:47:d1:42:2c:85:6d: 32:3c:8e:83:3b:89:13:4b:cd:48:45:a3:4b:2a:1f: 76:d6:82:18:54:11:ea:b2:05:44:2d:bb:c2:16:b1: e8:91:bb:a6:30:79:a1:25:d1:ef:1e:a8:09:68:fa: a0:9f:b6:87:31:62:24:bd:c6:f8:a3:7e:9c:1a:67: b9:4b:fb:de:2e:e7:0f:87:a4:a4:71:e0:c5:e9:ea: 1f:c7:9d:66:10:d7:99:2d:4d:ea:0a:6a:99:c4:eb: 11:65:0e:b0:a1:5d:52:1f:e3:37:d6:38:cb:60:d4: 44:69:33:fd:ec:52:b6:df:a8:b8:3e:e5:3a:7a:36: 67:ee:d2:34:56:c3:56:4b:30:4a:f4:23:15:4f:08: 6e:82:77:58:f5:a3:81:96:6d:e4:f5:f8:83:5a:84: 2f:d5:6d:8b:28:18:b8:22:e3:bb:21:5e:ff:6c:2b: ef:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:FB:A2:3E:FB:B6:8C:46:DE:47:6C:CD:B4:F7:5B:B3:F3:47:02:7B X509v3 Authority Key Identifier: keyid:1F:D1:38:81:4E:D6:ED:10:A7:4A:ED:E6:20:EC:C6:CB:41:4D:8D:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS24520.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.78.96.0/21 202.87.190.0/23 Signature Algorithm: sha256WithRSAEncryption 64:95:60:39:9d:51:62:ff:9b:ce:be:9d:72:3d:df:33:4d:02: 81:14:19:ac:bd:cf:e4:2a:1e:8f:14:55:90:b6:63:11:50:d1: f9:7f:c2:3a:ca:c4:12:2a:16:3e:50:ae:b3:3e:56:fe:69:c3: ec:18:98:c1:e6:ed:7b:99:3a:79:05:a2:97:e0:9c:de:d0:c1: 5b:0f:47:36:e2:9c:2e:9a:74:82:f5:6b:97:33:40:b7:1c:bd: 10:a5:cd:47:95:b7:ba:97:d9:a5:97:66:e8:a5:42:75:4e:ee: 2b:58:0f:16:c5:5b:11:46:15:25:a4:f8:1a:48:48:99:b7:66: 56:90:76:51:fe:9b:c7:b4:4e:35:11:4a:8a:fb:56:19:f1:67: dc:7e:2a:71:9d:75:bf:c7:a0:36:aa:08:a1:b4:42:c3:15:29: 89:da:ca:fe:85:ed:7b:c6:fb:7d:36:9e:f8:75:bd:6b:d1:3e: e7:1f:97:e3:e2:3e:00:bf:e9:a8:5e:44:07:e8:da:a5:74:fd: 8a:82:6a:2e:03:0e:e7:20:a3:6c:c2:a0:72:65:3c:42:ed:85: ad:48:0e:0e:be:fe:c7:87:df:79:5f:e0:34:13:72:08:29:cc: 1e:40:b7:18:a4:ed:80:05:64:a7:51:9c:1c:7d:5d:46:7c:83: 09:95:70:35 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUKAbG+YTCikmUBixRE1hQHqCvcHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZEMTM4ODE0RUQ2RUQxMEE3NEFFREU2MjBFQ0M2Q0I0 MTREOEQ0OTAeFw0yNjA1MDMwMzA5NDFaFw0yNzA1MDIwMzE0NDFaMDMxMTAvBgNV BAMTKDIzRkJBMjNFRkJCNjhDNDZERTQ3NkNDREI0Rjc1QkIzRjM0NzAyN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMqe2G8IET+olLHImLSJpV259i sHgmLgXo0ZGIKYZ71NQmYlyB8naCAUPpT9KIO58zsHhHfzn9ln64KTrRZWgrsvNp GfWJccC3wpNMAds76pDbZ0fRQiyFbTI8joM7iRNLzUhFo0sqH3bWghhUEeqyBUQt u8IWseiRu6YweaEl0e8eqAlo+qCftocxYiS9xvijfpwaZ7lL+94u5w+HpKRx4MXp 6h/HnWYQ15ktTeoKapnE6xFlDrChXVIf4zfWOMtg1ERpM/3sUrbfqLg+5Tp6Nmfu 0jRWw1ZLMEr0IxVPCG6Cd1j1o4GWbeT1+INahC/VbYsoGLgi47shXv9sK+8BAgMB AAGjggIEMIICADAdBgNVHQ4EFgQUI/uiPvu2jEbeR2zNtPdbs/NHAnswHwYDVR0j BBgwFoAUH9E4gU7W7RCnSu3mIOzGy0FNjUkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTg3MzQ5ZmItNDY1ZS00ZThiLWE5NzQtOTBlOTM5YmNiMGZiLzAvMUZEMTM4ODE0 RUQ2RUQxMEE3NEFFREU2MjBFQ0M2Q0I0MTREOEQ0OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRkQxMzg4MTRFRDZFRDEwQTc0QUVERTYyMEVDQzZDQjQxNEQ4 RDQ5LmNlcjBwBggrBgEFBQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBr aS1yc3luYy5pZG5pYy5uZXQvcmVwby9lODczNDlmYi00NjVlLTRlOGItYTk3NC05 MGU5MzliY2IwZmIvMC9BUzI0NTIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDcE5gAwQByle+MA0GCSqG SIb3DQEBCwUAA4IBAQBklWA5nVFi/5vOvp1yPd8zTQKBFBmsvc/kKh6PFFWQtmMR UNH5f8I6ysQSKhY+UK6zPlb+acPsGJjB5u17mTp5BaKX4Jze0MFbD0c24pwumnSC 9WuXM0C3HL0Qpc1Hlbe6l9mll2bopUJ1Tu4rWA8WxVsRRhUlpPgaSEiZt2ZWkHZR /pvHtE41EUqK+1YZ8WfcfipxnXW/x6A2qgihtELDFSmJ2sr+he17xvt9Np74db1r 0T7nH5fj4j4Av+moXkQH6NqldP2KgmouAw7nIKNswqByZTxC7YWtSA4Ovv7Hh995 X+A0E3IIKcweQLcYpO2ABWSnUZwcfV1GfIMJlXA1 -----END CERTIFICATE-----Generated at Tue May 12 23:00:50 2026 by rpki-client