$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa File: 3230322e3135382e302e302f31372d3234203d3e2034373837.roa (raw, json) Hash identifier: WW8sIJ6AThc6GzaZsxU3S0vSQEeSjQOfDUvBVqio138= Subject key identifier: 88:48:1E:34:78:99:FA:36:F5:32:DD:A1:EE:BE:DD:56:7F:10:B8:7E Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 59A2F65FFB5150C65DE73C3548EE6E7D3BA435A9 Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa Signing time: Sun 03 May 2026 03:15:12 +0000 ROA not before: Sun 03 May 2026 03:10:12 +0000 ROA not after: Sun 02 May 2027 03:15:12 +0000 asID: 4787 IP address blocks: 202.158.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a2:f6:5f:fb:51:50:c6:5d:e7:3c:35:48:ee:6e:7d:3b:a4:35:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:12 2026 GMT Not After : May 2 03:15:12 2027 GMT Subject: CN=88481E347899FA36F532DDA1EEBEDD567F10B87E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e1:03:46:16:84:9a:b9:8d:71:ca:63:8d:04: a4:b9:df:9e:2b:ef:cc:d0:2e:36:96:21:0d:a7:d0: ac:7f:6d:63:4a:39:73:1b:41:45:db:5e:78:9e:51: db:43:05:f5:bf:21:99:34:41:14:d2:4b:69:df:f7: cf:69:0c:27:e4:bc:70:26:7a:f2:d6:0e:2b:46:62: 42:71:bf:17:50:de:ed:ba:0f:c9:53:0b:a9:fe:6e: f4:06:dd:6f:64:b4:20:7d:3d:92:69:ab:eb:21:95: e6:2c:a7:1c:10:33:54:fa:21:df:b6:92:f2:27:9c: 9c:da:25:01:6c:77:4c:dc:16:43:6e:44:61:34:3c: 13:74:a6:1f:f4:2f:dc:d4:06:53:3f:ac:10:c1:5b: 46:df:5a:54:87:7c:20:b7:4a:6f:c6:ba:95:8d:a9: f9:4e:c2:6d:d6:bb:69:2e:c1:00:26:f8:18:f7:17: c5:8e:b3:5f:6f:df:6e:a1:73:15:d8:f3:67:db:9c: e7:4b:3a:97:73:71:05:86:79:6d:5c:80:50:2f:70: 0b:89:19:90:be:5f:50:b1:47:78:00:fd:59:ab:ed: ea:16:e9:cc:5c:96:55:b6:fe:ae:08:30:54:e2:76: b6:ee:f1:b8:4c:f0:80:ca:fb:5b:f1:bf:77:26:f3: 89:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:48:1E:34:78:99:FA:36:F5:32:DD:A1:EE:BE:DD:56:7F:10:B8:7E X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.158.0.0/17 Signature Algorithm: sha256WithRSAEncryption d6:47:88:17:23:1b:a2:81:44:54:8e:21:61:05:02:07:5a:59: 1b:ea:58:97:31:c6:80:e8:07:8a:d9:fa:45:d3:f9:48:f8:62: 51:e2:75:b4:94:66:c3:e9:d5:91:aa:4f:ed:51:84:e7:67:dd: 98:bb:ee:66:60:f9:a8:f9:fc:76:ab:52:2f:80:8e:06:f8:1c: 11:53:e1:73:f3:63:50:5a:0a:ae:ff:0a:76:9b:4a:41:e7:1b: b9:b0:d6:30:0d:a9:1a:61:1f:8b:f3:a2:3f:82:fb:89:9a:e6: 33:d5:ad:e7:72:44:8a:19:ba:0c:b0:69:3f:47:4f:2c:45:60: b9:c2:18:63:e9:ef:52:b7:a7:ae:f0:a7:ae:f1:3d:ce:90:7a: cf:38:25:b1:14:89:1b:01:f5:67:86:24:74:ac:3e:7b:88:d6: a1:66:b8:6d:14:fb:da:d8:2c:63:6e:0c:22:ce:41:2e:a3:14: 35:63:99:3b:a3:d4:b7:f6:85:5c:3d:bc:11:42:24:6e:84:b1: a4:fd:76:e3:32:eb:cd:42:94:2e:c0:a7:3d:ab:68:7d:be:4a: d8:5d:7a:76:91:cf:5b:ba:d3:ba:ca:ac:e3:d3:28:80:fd:ee: b9:13:a6:61:7c:43:2a:5a:6e:da:13:50:c2:27:6f:35:dc:96: 5b:fe:e8:d0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWaL2X/tRUMZd5zw1SO5ufTukNakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMTJaFw0yNzA1MDIwMzE1MTJaMDMxMTAvBgNV BAMTKDg4NDgxRTM0Nzg5OUZBMzZGNTMyRERBMUVFQkVERDU2N0YxMEI4N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw4QNGFoSauY1xymONBKS5354r 78zQLjaWIQ2n0Kx/bWNKOXMbQUXbXnieUdtDBfW/IZk0QRTSS2nf989pDCfkvHAm evLWDitGYkJxvxdQ3u26D8lTC6n+bvQG3W9ktCB9PZJpq+shleYspxwQM1T6Id+2 kvInnJzaJQFsd0zcFkNuRGE0PBN0ph/0L9zUBlM/rBDBW0bfWlSHfCC3Sm/GupWN qflOwm3Wu2kuwQAm+Bj3F8WOs19v326hcxXY82fbnOdLOpdzcQWGeW1cgFAvcAuJ GZC+X1CxR3gA/Vmr7eoW6cxcllW2/q4IMFTidrbu8bhM8IDK+1vxv3cm84nhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUiEgeNHiZ+jb1Mt2h7r7dVn8QuH4wHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZWE3MDI3MjYtYjJjNi00NmZjLTgy OTctMmRiZGVjNmQ2ZDVkLzAvMzIzMDMyMmUzMTM1MzgyZTMwMmUzMDJmMzEzNzJk MzIzNDIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfKngAwDQYJKoZIhvcNAQEL BQADggEBANZHiBcjG6KBRFSOIWEFAgdaWRvqWJcxxoDoB4rZ+kXT+Uj4YlHidbSU ZsPp1ZGqT+1RhOdn3Zi77mZg+aj5/HarUi+Ajgb4HBFT4XPzY1BaCq7/CnabSkHn G7mw1jANqRphH4vzoj+C+4ma5jPVredyRIoZugywaT9HTyxFYLnCGGPp71K3p67w p67xPc6Qes84JbEUiRsB9WeGJHSsPnuI1qFmuG0U+9rYLGNuDCLOQS6jFDVjmTuj 1Lf2hVw9vBFCJG6EsaT9duMy681ClC7Apz2raH2+SthdenaRz1u607rKrOPTKID9 7rkTpmF8QypabtoTUMInbzXcllv+6NA= -----END CERTIFICATE-----Generated at Wed May 13 02:37:16 2026 by rpki-client