$ rpki-client -vvf rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa File: 3230322e35312e39362e302f31392d3234203d3e203137393935.roa (raw, json) Hash identifier: uWmFLlX2vKr3w52aVaDh5ySgp7qWBvDwzZ9R+thGqi8= Subject key identifier: 2A:C3:7A:27:8D:53:AC:65:DA:ED:72:11:D2:21:DF:B1:46:0A:D4:49 Certificate issuer: /CN=6410D3838A65954BC1C301FEAAE74108F878E75C Certificate serial: 51EC0998ABC97892D2D28082CC0390FB20F59ED3 Authority key identifier: 64:10:D3:83:8A:65:95:4B:C1:C3:01:FE:AA:E7:41:08:F8:78:E7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6410D3838A65954BC1C301FEAAE74108F878E75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:55:04 +0000 ROA not before: Sun 03 May 2026 02:50:04 +0000 ROA not after: Sun 02 May 2027 02:55:04 +0000 asID: 17995 IP address blocks: 202.51.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/6410D3838A65954BC1C301FEAAE74108F878E75C.crl rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/6410D3838A65954BC1C301FEAAE74108F878E75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6410D3838A65954BC1C301FEAAE74108F878E75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 19:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ec:09:98:ab:c9:78:92:d2:d2:80:82:cc:03:90:fb:20:f5:9e:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6410D3838A65954BC1C301FEAAE74108F878E75C Validity Not Before: May 3 02:50:04 2026 GMT Not After : May 2 02:55:04 2027 GMT Subject: CN=2AC37A278D53AC65DAED7211D221DFB1460AD449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f9:cc:1a:e0:a6:bd:15:e5:bd:4b:95:34:5c: 5b:94:32:27:f3:09:8a:3b:8a:3a:be:81:32:4b:83: 8d:fa:d9:19:d6:fe:c9:94:0b:7b:c3:d7:a0:00:a0: e1:52:52:d3:1a:65:59:80:4f:9b:0c:0e:2d:94:97: 25:3c:76:b1:d1:ce:b3:63:98:89:e4:a8:01:16:16: 01:cd:2b:c2:a7:56:3d:cd:84:3b:44:73:6e:29:b2: 1c:3b:32:fa:48:0f:1e:9b:a9:22:c9:ce:d2:f2:a6: 44:41:75:81:2f:14:dd:af:e6:e5:da:78:24:29:f6: 74:8c:b4:69:11:a7:6e:02:2b:86:be:47:8a:eb:5a: 01:59:75:06:fb:81:28:31:88:4c:56:c1:b4:b2:9d: a1:13:58:a7:d7:50:64:fb:4f:8c:86:57:12:ed:99: be:72:da:89:9d:55:55:75:9d:5a:67:bf:44:43:27: 36:30:df:13:be:08:fa:88:22:4c:d3:ac:21:3a:ad: d0:2e:2a:26:c2:37:e4:36:8d:aa:2b:87:e4:bc:55: c7:9e:04:4c:b3:b4:da:30:8b:52:49:2e:85:51:80: b7:c1:85:09:49:03:99:a9:2a:8b:1f:57:cf:0b:ae: 32:ae:fd:71:d8:1f:e7:99:dd:22:7b:29:2b:6a:f8: 9d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C3:7A:27:8D:53:AC:65:DA:ED:72:11:D2:21:DF:B1:46:0A:D4:49 X509v3 Authority Key Identifier: keyid:64:10:D3:83:8A:65:95:4B:C1:C3:01:FE:AA:E7:41:08:F8:78:E7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/6410D3838A65954BC1C301FEAAE74108F878E75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6410D3838A65954BC1C301FEAAE74108F878E75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.96.0/19 Signature Algorithm: sha256WithRSAEncryption 6f:5e:bc:47:22:8c:c2:2d:c6:fd:af:21:70:e3:b1:a7:da:c7: df:aa:5c:89:f0:10:c9:d9:e1:cf:ef:24:0c:35:9c:3b:2f:7e: 55:b0:19:91:8b:de:ee:08:9d:6a:df:59:be:ca:7e:63:68:11: 2a:20:ac:8a:c6:2b:0f:a6:96:a3:e7:2c:57:43:77:9a:cf:72: b6:ae:e2:69:9f:e1:0e:64:19:7a:cd:78:bb:d8:9e:c1:ff:9d: c5:d0:9c:6a:de:57:68:b4:b7:07:cb:3e:03:97:c6:8f:c9:92: c9:e9:2d:d3:4f:d5:87:0d:54:6b:d8:84:f6:57:45:1a:12:6f: 75:a1:ba:17:e3:4b:e8:63:37:de:fb:4b:67:5f:f4:6a:e8:08: c7:34:98:ae:ff:0f:8b:3a:97:ed:52:92:ac:e9:09:37:ce:00: d4:9f:21:8c:7e:c0:bf:26:a9:89:30:73:a1:ec:f2:b0:2b:c0: 58:b3:ea:fd:d0:4f:3d:2d:09:89:58:e5:d5:96:95:dd:4f:d2: bd:fc:d6:5d:6e:a9:68:0c:c5:c1:b0:2a:a0:c9:65:2b:4e:bc: cf:e9:32:76:3c:0d:e2:96:94:12:a7:a4:b7:52:93:9e:1b:1e: 14:d7:fc:7e:85:30:7d:77:10:0e:2e:b5:52:96:70:36:43:0f: 85:bb:85:5e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUewJmKvJeJLS0oCCzAOQ+yD1ntMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQxMEQzODM4QTY1OTU0QkMxQzMwMUZFQUFFNzQxMDhG ODc4RTc1QzAeFw0yNjA1MDMwMjUwMDRaFw0yNzA1MDIwMjU1MDRaMDMxMTAvBgNV BAMTKDJBQzM3QTI3OEQ1M0FDNjVEQUVENzIxMUQyMjFERkIxNDYwQUQ0NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk+cwa4Ka9FeW9S5U0XFuUMifz CYo7ijq+gTJLg4362RnW/smUC3vD16AAoOFSUtMaZVmAT5sMDi2UlyU8drHRzrNj mInkqAEWFgHNK8KnVj3NhDtEc24pshw7MvpIDx6bqSLJztLypkRBdYEvFN2v5uXa eCQp9nSMtGkRp24CK4a+R4rrWgFZdQb7gSgxiExWwbSynaETWKfXUGT7T4yGVxLt mb5y2omdVVV1nVpnv0RDJzYw3xO+CPqIIkzTrCE6rdAuKibCN+Q2jaorh+S8Vcee BEyztNowi1JJLoVRgLfBhQlJA5mpKosfV88LrjKu/XHYH+eZ3SJ7KStq+J2DAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKsN6J41TrGXa7XIR0iHfsUYK1EkwHwYDVR0j BBgwFoAUZBDTg4pllUvBwwH+qudBCPh451wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWVkOTU1YzgtZTZkMy00OWMyLWFiZDgtZTBmOTJjMDgxMjQ3LzAvNjQxMEQzODM4 QTY1OTU0QkMxQzMwMUZFQUFFNzQxMDhGODc4RTc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NDEwRDM4MzhBNjU5NTRCQzFDMzAxRkVBQUU3NDEwOEY4NzhF NzVDLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzllZDk1NWM4LWU2ZDMtNDljMi1h YmQ4LWUwZjkyYzA4MTI0Ny8wLzMyMzAzMjJlMzUzMTJlMzkzNjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKM2AwDQYJKoZIhvcN AQELBQADggEBAG9evEcijMItxv2vIXDjsafax9+qXInwEMnZ4c/vJAw1nDsvflWw GZGL3u4InWrfWb7KfmNoESogrIrGKw+mlqPnLFdDd5rPcrau4mmf4Q5kGXrNeLvY nsH/ncXQnGreV2i0twfLPgOXxo/JksnpLdNP1YcNVGvYhPZXRRoSb3WhuhfjS+hj N977S2df9GroCMc0mK7/D4s6l+1SkqzpCTfOANSfIYx+wL8mqYkwc6Hs8rArwFiz 6v3QTz0tCYlY5dWWld1P0r381l1uqWgMxcGwKqDJZStOvM/pMnY8DeKWlBKnpLdS k54bHhTX/H6FMH13EA4utVKWcDZDD4W7hV4= -----END CERTIFICATE-----Generated at Fri May 8 06:33:43 2026 by rpki-client