$ rpki-client -vvf rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: JHRytoLKe3DoWLn6hLaaCfBPYIXsYxniAiTb3PYHUfQ= Subject key identifier: 2A:D9:C2:4F:77:64:91:57:2D:97:D0:51:FC:D2:60:5C:C0:2E:FE:DF Certificate issuer: /CN=0446D571B5FD57D22786B0872C74829904EAAB9F Certificate serial: 13DF6C256443B12914240969894FD7D4C83B684D Authority key identifier: 04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa Signing time: Sun 03 May 2026 02:17:25 +0000 ROA not before: Sun 03 May 2026 02:12:25 +0000 ROA not after: Sun 02 May 2027 02:17:25 +0000 asID: 138074 IP address blocks: 202.43.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:df:6c:25:64:43:b1:29:14:24:09:69:89:4f:d7:d4:c8:3b:68:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0446D571B5FD57D22786B0872C74829904EAAB9F Validity Not Before: May 3 02:12:25 2026 GMT Not After : May 2 02:17:25 2027 GMT Subject: CN=2AD9C24F776491572D97D051FCD2605CC02EFEDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:26:84:00:95:cc:f1:b8:d3:4c:89:c2:23: 62:07:8c:a4:e9:c0:ec:59:05:3d:bf:e4:b2:55:50: 8b:38:64:bb:31:39:76:29:f4:10:c3:32:ea:9a:09: 0e:d5:6c:ef:0a:71:bd:80:90:38:b6:86:3a:62:37: 88:d8:cc:a0:c9:d6:60:3c:d5:b6:87:79:b3:c0:63: f2:06:70:86:63:8d:d0:06:31:5f:d6:0f:66:82:d9: d3:a4:f9:d1:a2:ad:4d:2e:18:4e:1e:3c:c5:9d:b0: 9d:a1:3a:ea:8a:9c:2a:8f:8a:c0:dc:10:ea:b6:1d: 06:44:8b:d4:de:b8:c3:ff:04:2a:e0:ef:9d:23:aa: 4d:35:69:79:8a:65:e9:9f:8b:0b:68:59:bc:97:75: 33:cd:e0:d0:4e:a5:24:a1:cf:df:2f:6f:45:71:ce: 15:5e:36:32:8b:e0:d7:49:fe:b4:a9:08:b1:99:fb: 1a:06:e9:a1:9f:1e:ea:4c:8f:1e:be:d4:4e:41:48: 8d:38:81:49:5b:29:3b:0f:a5:cc:6a:ca:9e:e5:9f: d9:89:8d:b2:cb:64:5b:49:b2:1e:db:b4:d8:17:15: 78:d2:e5:42:3e:af:68:92:fc:ca:50:c8:34:63:58: d1:38:f4:89:7e:d8:c9:e7:0b:f2:28:64:08:35:20: fa:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D9:C2:4F:77:64:91:57:2D:97:D0:51:FC:D2:60:5C:C0:2E:FE:DF X509v3 Authority Key Identifier: keyid:04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.252.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:e1:79:a9:34:65:fc:b4:06:f1:3d:e4:bb:72:34:f7:53:4d: 9a:40:1f:5d:8d:40:36:0a:06:c2:5b:d1:18:e1:2d:1e:2d:9a: 37:56:0c:10:cb:f3:04:e8:39:af:eb:dd:f9:24:36:68:77:12: 50:51:78:b6:64:ef:51:eb:9d:1b:96:e6:ee:50:4a:3b:58:d5: 3a:4f:16:5c:f9:71:bb:40:cd:c3:3e:fa:c8:b6:61:cd:6e:fd: 7b:52:84:5a:de:7e:b2:ed:c7:b0:b1:3a:9e:b6:fe:18:9e:43: 64:91:13:b9:b3:ba:21:27:e1:11:e6:a2:3c:c8:95:a3:ab:c9: b2:72:49:6e:1e:f5:e2:d6:bc:84:ae:f1:9d:4e:69:f5:04:ba: 5c:1a:78:0a:d1:84:36:af:11:9f:0e:fe:f5:a5:22:14:79:4e: cb:f1:dc:44:71:6d:0f:f9:11:71:4c:65:c4:56:9c:eb:a8:c0: 70:90:68:b2:bf:b1:53:bf:1d:3c:ed:01:6a:20:47:77:df:e6: 24:1f:24:83:c2:d6:b8:48:c8:81:46:8b:93:01:7d:2f:34:3b: 06:fd:b1:25:74:e0:de:eb:68:19:c1:68:89:c3:79:f2:72:2f: 53:cc:8f:f5:73:41:5b:20:a1:89:40:a8:68:8b:10:62:f2:ee: f2:d7:7a:5f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE99sJWRDsSkUJAlpiU/X1Mg7aE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ0NkQ1NzFCNUZENTdEMjI3ODZCMDg3MkM3NDgyOTkw NEVBQUI5RjAeFw0yNjA1MDMwMjEyMjVaFw0yNzA1MDIwMjE3MjVaMDMxMTAvBgNV BAMTKDJBRDlDMjRGNzc2NDkxNTcyRDk3RDA1MUZDRDI2MDVDQzAyRUZFREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx2CaEAJXM8bjTTInCI2IHjKTp wOxZBT2/5LJVUIs4ZLsxOXYp9BDDMuqaCQ7VbO8Kcb2AkDi2hjpiN4jYzKDJ1mA8 1baHebPAY/IGcIZjjdAGMV/WD2aC2dOk+dGirU0uGE4ePMWdsJ2hOuqKnCqPisDc EOq2HQZEi9TeuMP/BCrg750jqk01aXmKZemfiwtoWbyXdTPN4NBOpSShz98vb0Vx zhVeNjKL4NdJ/rSpCLGZ+xoG6aGfHupMjx6+1E5BSI04gUlbKTsPpcxqyp7ln9mJ jbLLZFtJsh7btNgXFXjS5UI+r2iS/MpQyDRjWNE49Il+2MnnC/IoZAg1IPqTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKtnCT3dkkVctl9BR/NJgXMAu/t8wHwYDVR0j BBgwFoAUBEbVcbX9V9InhrCHLHSCmQTqq58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWMyODk3MDYtYTRmNC00ZTFmLTlhNmUtMDFjOWM1M2NkOGY5LzAvMDQ0NkQ1NzFC NUZENTdEMjI3ODZCMDg3MkM3NDgyOTkwNEVBQUI5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNDQ2RDU3MUI1RkQ1N0QyMjc4NkIwODcyQzc0ODI5OTA0RUFB QjlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv8MA0GCSqG SIb3DQEBCwUAA4IBAQAb4XmpNGX8tAbxPeS7cjT3U02aQB9djUA2CgbCW9EY4S0e LZo3VgwQy/ME6Dmv6935JDZodxJQUXi2ZO9R650blubuUEo7WNU6TxZc+XG7QM3D PvrItmHNbv17UoRa3n6y7cewsTqetv4YnkNkkRO5s7ohJ+ER5qI8yJWjq8mycklu HvXi1ryErvGdTmn1BLpcGngK0YQ2rxGfDv71pSIUeU7L8dxEcW0P+RFxTGXEVpzr qMBwkGiyv7FTvx087QFqIEd33+YkHySDwta4SMiBRouTAX0vNDsG/bEldODe62gZ wWiJw3nyci9TzI/1c0FbIKGJQKhoixBi8u7y13pf -----END CERTIFICATE-----Generated at Wed May 6 03:29:25 2026 by rpki-client