$ rpki-client -vvf rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: +WRWxjAdOAaW9ozUiBysIyJuRRO3IGup2Zv05rrzhoE= Subject key identifier: 0D:CF:73:91:04:A0:5E:83:DA:BA:3B:D2:09:7D:92:2A:EC:C5:BC:42 Certificate issuer: /CN=0446D571B5FD57D22786B0872C74829904EAAB9F Certificate serial: 5BC7A4AE1328E5BD81800AECF627C4F825D4A1E8 Authority key identifier: 04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa Signing time: Sun 03 May 2026 02:17:25 +0000 ROA not before: Sun 03 May 2026 02:12:25 +0000 ROA not after: Sun 02 May 2027 02:17:25 +0000 asID: 138074 IP address blocks: 202.43.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c7:a4:ae:13:28:e5:bd:81:80:0a:ec:f6:27:c4:f8:25:d4:a1:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0446D571B5FD57D22786B0872C74829904EAAB9F Validity Not Before: May 3 02:12:25 2026 GMT Not After : May 2 02:17:25 2027 GMT Subject: CN=0DCF739104A05E83DABA3BD2097D922AECC5BC42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3d:18:03:db:10:0d:24:e8:9f:19:34:0c:05: 32:5e:5d:17:b0:6b:03:7e:30:95:06:01:1e:26:63: 0b:b5:58:92:a3:4a:97:bc:bd:17:09:98:27:56:22: 2a:21:c7:89:9f:74:d7:71:4e:84:31:c1:0d:2a:a6: ac:e3:8a:ee:61:93:67:a5:ed:1d:b7:10:f2:22:e0: 41:78:42:67:64:37:9c:85:1b:b1:7e:5e:7a:d0:b9: 58:74:90:4b:87:1e:d3:e7:4e:7d:e1:81:17:86:bd: 6c:2c:33:35:8a:f5:32:2a:31:16:1c:d2:ff:41:81: f9:5b:39:bc:4d:de:36:c7:77:61:1e:f8:cf:49:91: a9:d6:86:28:50:b0:71:5a:da:e4:c9:b9:62:04:17: 5e:ed:75:80:e4:71:ec:d7:17:57:75:c2:66:35:cb: da:19:4e:9e:93:fa:8b:07:c5:72:f2:35:eb:91:c7: 76:67:bf:5f:e5:70:e4:bc:36:ce:e5:e5:3d:30:81: 2f:71:69:b8:d6:23:61:77:6e:36:fa:d9:96:84:00: a3:48:64:45:ca:42:99:fc:9d:b3:03:d5:22:db:06: 7b:d6:5a:0e:a7:47:5b:eb:57:3c:b4:57:1e:d5:14: cc:d6:47:a7:73:35:69:7e:c5:c3:fa:34:08:04:6b: aa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CF:73:91:04:A0:5E:83:DA:BA:3B:D2:09:7D:92:2A:EC:C5:BC:42 X509v3 Authority Key Identifier: keyid:04:46:D5:71:B5:FD:57:D2:27:86:B0:87:2C:74:82:99:04:EA:AB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/0446D571B5FD57D22786B0872C74829904EAAB9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0446D571B5FD57D22786B0872C74829904EAAB9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235332e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.253.0/24 Signature Algorithm: sha256WithRSAEncryption 48:72:b9:eb:d5:fa:3d:5c:be:0e:03:08:3e:51:fc:b7:53:cb: 01:3b:46:57:39:7e:57:a9:bd:91:17:2f:fd:83:7c:0f:42:71: cd:3e:10:cb:7d:de:3c:65:da:07:06:8a:a1:13:27:1a:66:05: 59:05:84:05:49:b9:4e:83:52:37:8d:e0:46:3b:ac:39:8c:8b: 10:62:0b:00:a8:75:a4:72:8c:ef:e9:f6:d6:4d:15:2c:af:1e: 6a:e2:0b:53:b4:56:9e:b1:1f:11:15:94:8c:53:44:7c:ff:f5: 65:c6:a3:a1:e5:d0:84:44:6d:5b:fa:89:e4:d2:66:ca:7f:e6: 93:0d:d9:eb:2e:5e:3b:f5:e2:bb:88:28:be:f6:a9:9b:4f:86: 3a:2a:32:ca:90:2a:52:8f:bd:21:80:8a:85:ba:43:67:3d:18: 7d:d0:be:46:fe:84:f4:b4:b9:2d:e0:10:4b:dc:97:31:ca:69: d6:ba:8e:5e:bd:e5:90:8a:f3:14:e8:be:db:92:29:70:0a:90: c9:92:6e:f7:f5:82:7a:fe:67:9e:b1:47:ce:24:a3:56:a8:53: db:e7:28:04:96:bf:84:5b:e9:7d:6f:04:e1:d7:57:c2:72:aa: 0b:8b:75:48:f3:19:87:b3:a9:f4:cb:b2:b4:b6:15:c4:29:05: 1a:fd:07:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW8ekrhMo5b2BgArs9ifE+CXUoegwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ0NkQ1NzFCNUZENTdEMjI3ODZCMDg3MkM3NDgyOTkw NEVBQUI5RjAeFw0yNjA1MDMwMjEyMjVaFw0yNzA1MDIwMjE3MjVaMDMxMTAvBgNV BAMTKDBEQ0Y3MzkxMDRBMDVFODNEQUJBM0JEMjA5N0Q5MjJBRUNDNUJDNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrPRgD2xANJOifGTQMBTJeXRew awN+MJUGAR4mYwu1WJKjSpe8vRcJmCdWIiohx4mfdNdxToQxwQ0qpqzjiu5hk2el 7R23EPIi4EF4QmdkN5yFG7F+XnrQuVh0kEuHHtPnTn3hgReGvWwsMzWK9TIqMRYc 0v9BgflbObxN3jbHd2Ee+M9JkanWhihQsHFa2uTJuWIEF17tdYDkcezXF1d1wmY1 y9oZTp6T+osHxXLyNeuRx3Znv1/lcOS8Ns7l5T0wgS9xabjWI2F3bjb62ZaEAKNI ZEXKQpn8nbMD1SLbBnvWWg6nR1vrVzy0Vx7VFMzWR6dzNWl+xcP6NAgEa6q5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDc9zkQSgXoPaujvSCX2SKuzFvEIwHwYDVR0j BBgwFoAUBEbVcbX9V9InhrCHLHSCmQTqq58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWMyODk3MDYtYTRmNC00ZTFmLTlhNmUtMDFjOWM1M2NkOGY5LzAvMDQ0NkQ1NzFC NUZENTdEMjI3ODZCMDg3MkM3NDgyOTkwNEVBQUI5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNDQ2RDU3MUI1RkQ1N0QyMjc4NkIwODcyQzc0ODI5OTA0RUFB QjlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv9MA0GCSqG SIb3DQEBCwUAA4IBAQBIcrnr1fo9XL4OAwg+Ufy3U8sBO0ZXOX5Xqb2RFy/9g3wP QnHNPhDLfd48ZdoHBoqhEycaZgVZBYQFSblOg1I3jeBGO6w5jIsQYgsAqHWkcozv 6fbWTRUsrx5q4gtTtFaesR8RFZSMU0R8//VlxqOh5dCERG1b+onk0mbKf+aTDdnr Ll479eK7iCi+9qmbT4Y6KjLKkCpSj70hgIqFukNnPRh90L5G/oT0tLkt4BBL3Jcx ymnWuo5eveWQivMU6L7bkilwCpDJkm739YJ6/meesUfOJKNWqFPb5ygElr+EW+l9 bwTh11fCcqoLi3VI8xmHs6n0y7K0thXEKQUa/Qfm -----END CERTIFICATE-----Generated at Wed May 6 03:29:55 2026 by rpki-client