$ rpki-client -vvf rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: HRGJ5g7ob2C6LusF30ZyigavwWaGRf5eI1zjWJC6sRM= Subject key identifier: 88:EA:9D:F6:27:8A:D9:7E:02:19:6B:89:83:36:76:A0:EF:F5:13:EE Certificate issuer: /CN=0446D571B5FD57D22786B0872C74829904EAAB9F Certificate serial: 2A19D128357B5DF5BFE971AAC0DB32B276AC0692 Authority key identifier: 04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa Signing time: Sun 03 May 2026 02:17:25 +0000 ROA not before: Sun 03 May 2026 02:12:25 +0000 ROA not after: Sun 02 May 2027 02:17:25 +0000 asID: 138074 IP address blocks: 202.43.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:19:d1:28:35:7b:5d:f5:bf:e9:71:aa:c0:db:32:b2:76:ac:06:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0446D571B5FD57D22786B0872C74829904EAAB9F Validity Not Before: May 3 02:12:25 2026 GMT Not After : May 2 02:17:25 2027 GMT Subject: CN=88EA9DF6278AD97E02196B89833676A0EFF513EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:41:82:f3:73:aa:6c:a8:18:38:ad:79:2a:d0: 3f:11:e9:c2:a3:39:97:7e:cc:44:66:22:6a:21:12: 3a:71:95:9d:61:ac:2b:cb:aa:b7:e2:29:cf:ab:2e: 33:3c:e0:4f:34:25:d5:d6:a2:cb:97:70:11:3f:1e: ba:21:41:6c:c4:07:5f:49:16:2a:d1:15:78:32:b8: b8:ed:11:2e:11:bd:c7:84:4a:ab:a2:a9:5a:e4:03: bd:80:51:38:8b:5d:91:9e:83:e5:22:16:70:71:1d: 46:32:bf:7d:b3:ce:68:9c:76:61:fb:a0:67:dc:c2: 71:ed:c4:d7:39:52:9e:84:79:33:d9:2a:80:4a:e0: 05:2d:11:78:de:0b:9a:83:35:44:8f:6c:72:82:9d: 46:20:06:50:bf:8c:84:50:68:5a:6b:dc:f2:57:b9: 83:7c:9f:b9:75:8a:bb:88:1c:34:42:25:17:ae:4e: 73:45:f7:ed:f3:f3:0f:3a:e9:b2:e1:51:3a:0f:5e: 9e:cf:40:bd:b0:cc:e0:0a:c2:98:19:95:74:c6:a0: 47:c1:15:c7:45:a6:5a:09:1f:20:e0:69:68:f8:55: 20:e9:d8:31:57:21:fe:85:af:59:6b:43:8f:29:09: 1b:ab:98:d6:39:36:81:df:f8:fe:5e:6d:5e:24:58: ce:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EA:9D:F6:27:8A:D9:7E:02:19:6B:89:83:36:76:A0:EF:F5:13:EE X509v3 Authority Key Identifier: keyid:04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235312e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.251.0/24 Signature Algorithm: sha256WithRSAEncryption a0:fa:2c:d5:81:69:8a:f9:8f:65:a0:c4:84:3a:09:72:18:3d: 0d:62:85:87:d1:84:ac:6a:b4:e1:14:08:4f:0c:e9:a4:97:5b: e1:2c:74:b4:34:b7:d4:c9:15:61:67:45:b2:f4:e8:2e:a1:80: be:ec:22:4d:57:d0:a7:50:92:53:c8:83:7a:ba:de:6e:d1:f9: 01:29:be:d1:98:b9:9f:d8:66:d7:e0:dd:14:75:36:ba:7c:23: 25:99:f3:83:4a:e2:45:11:46:0c:c2:55:bb:8d:ed:eb:5b:c8: 7d:2b:4c:b2:de:2c:cc:c7:a0:2f:5f:2e:8c:68:e4:5e:5f:09: 8d:3c:0a:58:fc:86:a8:f7:9f:40:3a:53:ff:3b:9a:bc:db:46: b2:6e:0e:ac:c9:9f:7c:54:59:34:e8:dd:cc:6e:cb:38:e8:5b: 0d:d1:37:42:ec:2d:69:f6:42:45:bd:5b:78:7f:e2:fd:27:2a: 1f:70:f0:5f:af:7d:9c:93:f8:b7:1a:71:8a:5f:ee:0f:b3:0d: 0a:83:6b:06:da:af:26:7e:48:0d:d0:20:eb:17:cf:85:7a:a1: 10:87:4d:c1:b9:9d:db:d4:9f:b4:5b:cd:1d:40:7c:08:a6:75: 8d:66:52:d7:cb:a4:ad:02:6d:bf:7f:55:0b:32:6d:15:60:28: 23:fa:a9:e3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKhnRKDV7XfW/6XGqwNsysnasBpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ0NkQ1NzFCNUZENTdEMjI3ODZCMDg3MkM3NDgyOTkw NEVBQUI5RjAeFw0yNjA1MDMwMjEyMjVaFw0yNzA1MDIwMjE3MjVaMDMxMTAvBgNV BAMTKDg4RUE5REY2Mjc4QUQ5N0UwMjE5NkI4OTgzMzY3NkEwRUZGNTEzRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtQYLzc6psqBg4rXkq0D8R6cKj OZd+zERmImohEjpxlZ1hrCvLqrfiKc+rLjM84E80JdXWosuXcBE/HrohQWzEB19J FirRFXgyuLjtES4RvceESquiqVrkA72AUTiLXZGeg+UiFnBxHUYyv32zzmicdmH7 oGfcwnHtxNc5Up6EeTPZKoBK4AUtEXjeC5qDNUSPbHKCnUYgBlC/jIRQaFpr3PJX uYN8n7l1iruIHDRCJReuTnNF9+3z8w866bLhUToPXp7PQL2wzOAKwpgZlXTGoEfB FcdFploJHyDgaWj4VSDp2DFXIf6Fr1lrQ48pCRurmNY5NoHf+P5ebV4kWM5vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiOqd9ieK2X4CGWuJgzZ2oO/1E+4wHwYDVR0j BBgwFoAUBEbVcbX9V9InhrCHLHSCmQTqq58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWMyODk3MDYtYTRmNC00ZTFmLTlhNmUtMDFjOWM1M2NkOGY5LzAvMDQ0NkQ1NzFC NUZENTdEMjI3ODZCMDg3MkM3NDgyOTkwNEVBQUI5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNDQ2RDU3MUI1RkQ1N0QyMjc4NkIwODcyQzc0ODI5OTA0RUFB QjlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv7MA0GCSqG SIb3DQEBCwUAA4IBAQCg+izVgWmK+Y9loMSEOglyGD0NYoWH0YSsarThFAhPDOmk l1vhLHS0NLfUyRVhZ0Wy9OguoYC+7CJNV9CnUJJTyIN6ut5u0fkBKb7RmLmf2GbX 4N0UdTa6fCMlmfODSuJFEUYMwlW7je3rW8h9K0yy3izMx6AvXy6MaOReXwmNPApY /Iao959AOlP/O5q820aybg6syZ98VFk06N3Mbss46FsN0TdC7C1p9kJFvVt4f+L9 JyofcPBfr32ck/i3GnGKX+4Psw0Kg2sG2q8mfkgN0CDrF8+FeqEQh03BuZ3b1J+0 W80dQHwIpnWNZlLXy6StAm2/f1ULMm0VYCgj+qnj -----END CERTIFICATE-----Generated at Wed May 6 03:28:50 2026 by rpki-client