$ rpki-client -vvf rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: kaGHUTZEr4BI633+KX6qHXh8OmneAQRf7YHLIlmtSgU= Subject key identifier: 09:0C:C0:FE:7D:1D:01:25:16:CD:FD:75:85:92:79:EA:59:B7:6D:0F Certificate issuer: /CN=0446D571B5FD57D22786B0872C74829904EAAB9F Certificate serial: 0B129A8D575D7E1EBBBF6B3CC917054F7F5CCCBD Authority key identifier: 04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa Signing time: Sun 03 May 2026 02:17:23 +0000 ROA not before: Sun 03 May 2026 02:12:23 +0000 ROA not after: Sun 02 May 2027 02:17:23 +0000 asID: 138074 IP address blocks: 202.43.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:12:9a:8d:57:5d:7e:1e:bb:bf:6b:3c:c9:17:05:4f:7f:5c:cc:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0446D571B5FD57D22786B0872C74829904EAAB9F Validity Not Before: May 3 02:12:23 2026 GMT Not After : May 2 02:17:23 2027 GMT Subject: CN=090CC0FE7D1D012516CDFD75859279EA59B76D0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f8:31:6a:89:97:87:eb:c8:c8:05:60:32:b4: 1f:ee:dd:af:a5:49:d9:6a:a5:2d:74:84:0c:87:cf: 02:8c:46:45:f5:ac:d5:1d:c5:d7:cc:d1:dc:bf:76: e5:9c:23:dc:b3:45:23:32:76:2b:d4:dd:f9:d4:cd: 91:4c:e8:37:8c:63:03:c3:a3:f3:36:52:6f:5f:ce: 73:d4:37:d0:e9:ca:ae:ae:26:15:df:36:20:d6:a8: 75:0c:51:bc:c0:e2:f3:3d:b9:b4:c1:25:a0:2b:8c: e3:c1:6e:ab:2d:60:be:ad:5a:ff:99:e7:9f:69:47: a9:53:8e:fe:de:4f:a2:e7:d3:2f:35:37:23:ea:00: cc:e5:95:55:0c:37:75:8c:4a:8a:d2:83:06:87:6d: 1c:a6:c2:a8:7b:d2:c0:91:c2:3d:27:68:4f:e7:a1: 83:6b:a7:2d:f2:68:ba:69:b5:a2:2b:11:c2:3d:96: a4:7e:63:ff:d9:b6:6e:4b:ee:1f:eb:dc:80:6a:c2: 04:f3:fb:5c:07:61:5c:79:41:05:fe:b4:6b:48:a4: 84:41:0c:75:a6:37:df:a5:8a:d4:d5:0f:6e:79:e1: 0f:df:02:cc:42:20:c7:2a:a2:35:83:4b:20:5f:9d: 71:5c:3c:8f:25:93:13:cb:86:a7:44:7d:4f:8e:d1: c3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0C:C0:FE:7D:1D:01:25:16:CD:FD:75:85:92:79:EA:59:B7:6D:0F X509v3 Authority Key Identifier: keyid:04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.250.0/24 Signature Algorithm: sha256WithRSAEncryption 56:e2:d1:62:69:9f:90:6b:7c:23:32:d7:8f:0e:8a:0c:1f:bd: 76:70:e1:0d:2e:17:83:93:ea:f6:c0:64:67:f3:12:c4:bf:d3: f9:6c:86:ef:f3:79:95:38:b3:87:e9:09:21:51:8a:c3:c9:07: 29:20:13:9a:b2:cc:d5:cb:df:9a:ea:51:89:fa:d6:01:a7:9f: 20:c1:e0:00:ad:23:01:a3:3e:44:10:a6:a1:e1:09:75:4f:aa: b5:45:2b:83:aa:e1:aa:df:fb:3c:62:0b:25:2d:df:bd:28:4a: 38:14:7b:53:67:6d:34:3f:3a:5e:2f:b7:8f:a3:a1:cc:ce:b8: 4d:53:58:29:fb:63:6d:e4:02:ed:87:17:23:f0:dc:d6:24:fd: 4d:e4:3a:17:17:b2:31:99:92:98:78:c6:b6:8e:4b:12:1d:d5: 4d:26:cd:34:46:44:d5:17:a4:26:11:a9:a8:e6:01:74:9c:37: fe:ce:77:ac:94:cd:e1:42:6b:a1:ab:98:b8:dc:06:c9:cb:bb: 12:eb:dc:af:ee:41:ee:6e:3c:09:56:ae:b4:dd:83:0c:42:6b: 67:3d:73:32:f7:88:2a:ac:a5:87:53:98:81:c7:51:32:27:4e: b2:65:4d:52:21:5d:f5:43:10:2b:ad:71:ac:77:b8:e4:18:8a: 59:c1:2b:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCxKajVddfh67v2s8yRcFT39czL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ0NkQ1NzFCNUZENTdEMjI3ODZCMDg3MkM3NDgyOTkw NEVBQUI5RjAeFw0yNjA1MDMwMjEyMjNaFw0yNzA1MDIwMjE3MjNaMDMxMTAvBgNV BAMTKDA5MENDMEZFN0QxRDAxMjUxNkNERkQ3NTg1OTI3OUVBNTlCNzZEMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt+DFqiZeH68jIBWAytB/u3a+l SdlqpS10hAyHzwKMRkX1rNUdxdfM0dy/duWcI9yzRSMydivU3fnUzZFM6DeMYwPD o/M2Um9fznPUN9Dpyq6uJhXfNiDWqHUMUbzA4vM9ubTBJaArjOPBbqstYL6tWv+Z 559pR6lTjv7eT6Ln0y81NyPqAMzllVUMN3WMSorSgwaHbRymwqh70sCRwj0naE/n oYNrpy3yaLpptaIrEcI9lqR+Y//Ztm5L7h/r3IBqwgTz+1wHYVx5QQX+tGtIpIRB DHWmN9+litTVD2554Q/fAsxCIMcqojWDSyBfnXFcPI8lkxPLhqdEfU+O0cNDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCQzA/n0dASUWzf11hZJ56lm3bQ8wHwYDVR0j BBgwFoAUBEbVcbX9V9InhrCHLHSCmQTqq58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWMyODk3MDYtYTRmNC00ZTFmLTlhNmUtMDFjOWM1M2NkOGY5LzAvMDQ0NkQ1NzFC NUZENTdEMjI3ODZCMDg3MkM3NDgyOTkwNEVBQUI5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNDQ2RDU3MUI1RkQ1N0QyMjc4NkIwODcyQzc0ODI5OTA0RUFB QjlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv6MA0GCSqG SIb3DQEBCwUAA4IBAQBW4tFiaZ+Qa3wjMtePDooMH712cOENLheDk+r2wGRn8xLE v9P5bIbv83mVOLOH6QkhUYrDyQcpIBOasszVy9+a6lGJ+tYBp58gweAArSMBoz5E EKah4Ql1T6q1RSuDquGq3/s8YgslLd+9KEo4FHtTZ200PzpeL7ePo6HMzrhNU1gp +2Nt5ALthxcj8NzWJP1N5DoXF7IxmZKYeMa2jksSHdVNJs00RkTVF6QmEamo5gF0 nDf+zneslM3hQmuhq5i43AbJy7sS69yv7kHubjwJVq603YMMQmtnPXMy94gqrKWH U5iBx1EyJ06yZU1SIV31QxArrXGsd7jkGIpZwSsb -----END CERTIFICATE-----Generated at Wed May 6 03:29:25 2026 by rpki-client