$ rpki-client -vvf rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313439363735.roa File: 3230322e3136302e3133392e302f32342d3234203d3e20313439363735.roa (raw, json) Hash identifier: HGoEshpetOpXhNr6v4Rw31C6lvgZLfHje+0mfpy78fU= Subject key identifier: C2:A7:D0:2C:E5:54:47:96:36:C9:BB:2C:63:0E:72:A5:D5:F2:53:B5 Certificate issuer: /CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Certificate serial: 1CB118FF5A8D781A406BBC898C72FCD158AA7F2D Authority key identifier: 41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313439363735.roa Signing time: Sun 03 May 2026 02:12:08 +0000 ROA not before: Sun 03 May 2026 02:07:08 +0000 ROA not after: Sun 02 May 2027 02:12:08 +0000 asID: 149675 IP address blocks: 202.160.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b1:18:ff:5a:8d:78:1a:40:6b:bc:89:8c:72:fc:d1:58:aa:7f:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Validity Not Before: May 3 02:07:08 2026 GMT Not After : May 2 02:12:08 2027 GMT Subject: CN=C2A7D02CE554479636C9BB2C630E72A5D5F253B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:30:75:f0:67:c7:11:22:e2:38:84:a7:62:83: 32:7a:2f:30:ea:0d:fc:9f:40:64:a4:73:71:d1:c5: 05:b8:2f:37:e8:5a:9e:16:39:15:a6:e8:b7:fb:11: e3:79:68:52:c9:be:e3:18:54:68:04:08:42:7a:fe: c1:94:da:a8:3f:45:7b:a0:a7:57:fc:20:7c:dd:53: 4a:15:86:43:f5:93:44:58:06:48:eb:0d:ae:aa:13: 4a:93:8c:ff:25:f6:f9:77:88:67:cf:f0:5b:2d:2c: 11:b3:e1:01:a0:6e:59:8c:88:b5:c2:c8:82:d9:76: 62:48:5a:61:6b:da:3c:02:11:c6:38:34:83:cc:b8: 76:82:a7:df:29:0d:dc:17:1a:9b:3b:3a:4d:b7:d9: 43:e7:d8:c5:8f:58:4e:02:29:e0:2c:d7:99:87:87: 19:2e:fd:9d:98:e2:b5:35:e2:68:56:29:5a:eb:9a: 01:ea:d2:b4:c7:fd:c1:05:32:39:12:e6:1b:c4:e3: b4:09:0f:89:ae:6e:67:07:da:1c:b6:df:69:8e:bf: 38:1f:40:55:41:aa:f7:27:49:b4:31:70:bf:a3:ce: b8:97:20:e1:6c:76:8e:22:17:5c:40:1d:97:0e:94: 21:42:07:5d:4e:4c:38:50:47:3b:f2:0b:df:5c:18: e9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A7:D0:2C:E5:54:47:96:36:C9:BB:2C:63:0E:72:A5:D5:F2:53:B5 X509v3 Authority Key Identifier: keyid:41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313439363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.160.139.0/24 Signature Algorithm: sha256WithRSAEncryption 43:34:ee:78:88:f6:62:af:22:82:4c:0c:e1:3d:91:e4:0a:5f: db:8e:97:8d:82:03:66:7a:61:c5:21:d4:bd:a5:53:18:c5:0a: fc:3c:d5:08:5b:e3:21:86:50:45:d5:f7:86:94:48:97:02:dc: cb:b9:13:e8:73:90:80:06:f7:37:d3:08:a2:8a:68:45:32:fc: 01:c1:7e:85:a3:28:0a:14:7e:d2:a9:34:01:16:f4:36:b2:58: 39:3c:3f:fc:26:84:21:44:05:ef:50:9b:50:49:71:78:38:e0: f5:51:c0:85:07:2e:f9:b0:2a:73:1b:cc:93:7d:46:b6:d2:bc: af:e9:86:b8:4e:03:c3:52:44:40:f1:ab:33:62:43:8b:d1:15: 1d:2a:a3:9b:e0:0d:ef:c9:e0:39:97:af:09:18:4b:4f:8f:1c: 6e:66:c3:07:e8:d2:e2:86:bc:b4:16:67:f3:1b:1e:80:94:19: dc:30:5e:1a:56:2e:fd:7e:c3:c4:66:a2:b1:02:1a:10:5c:35: 94:38:7c:42:ac:31:d6:1e:40:56:91:a6:a4:49:d3:1a:d4:45: bf:06:03:71:ce:a4:8c:5d:4e:1f:4e:39:51:e4:43:d0:df:56: 70:0d:c5:16:c3:18:d0:52:60:37:db:b0:ed:92:e0:72:44:c2: d4:d4:44:49 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHLEY/1qNeBpAa7yJjHL80Viqfy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFODFDMTIyQ0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNF MUE3ODk2NjAeFw0yNjA1MDMwMjA3MDhaFw0yNzA1MDIwMjEyMDhaMDMxMTAvBgNV BAMTKEMyQTdEMDJDRTU1NDQ3OTYzNkM5QkIyQzYzMEU3MkE1RDVGMjUzQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrMHXwZ8cRIuI4hKdigzJ6LzDq DfyfQGSkc3HRxQW4LzfoWp4WORWm6Lf7EeN5aFLJvuMYVGgECEJ6/sGU2qg/RXug p1f8IHzdU0oVhkP1k0RYBkjrDa6qE0qTjP8l9vl3iGfP8FstLBGz4QGgblmMiLXC yILZdmJIWmFr2jwCEcY4NIPMuHaCp98pDdwXGps7Ok232UPn2MWPWE4CKeAs15mH hxku/Z2Y4rU14mhWKVrrmgHq0rTH/cEFMjkS5hvE47QJD4mubmcH2hy232mOvzgf QFVBqvcnSbQxcL+jzriXIOFsdo4iF1xAHZcOlCFCB11OTDhQRzvyC99cGOmfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwqfQLOVUR5Y2ybssYw5ypdXyU7UwHwYDVR0j BBgwFoAUQegcEiz+GUdjOqpaUXt5I+GniWYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDc0ZjIxNGEtYmY1NS00MDQ4LTg0NWQtMjA2NzVmYjVmMmE0LzAvNDFFODFDMTIy Q0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNFMUE3ODk2Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUU4MUMxMjJDRkUxOTQ3NjMzQUFBNUE1MTdCNzkyM0UxQTc4 OTY2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzAzMjJlMzEzNjMwMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKoIswDQYJ KoZIhvcNAQELBQADggEBAEM07niI9mKvIoJMDOE9keQKX9uOl42CA2Z6YcUh1L2l UxjFCvw81Qhb4yGGUEXV94aUSJcC3Mu5E+hzkIAG9zfTCKKKaEUy/AHBfoWjKAoU ftKpNAEW9DayWDk8P/wmhCFEBe9Qm1BJcXg44PVRwIUHLvmwKnMbzJN9RrbSvK/p hrhOA8NSREDxqzNiQ4vRFR0qo5vgDe/J4DmXrwkYS0+PHG5mwwfo0uKGvLQWZ/Mb HoCUGdwwXhpWLv1+w8RmorECGhBcNZQ4fEKsMdYeQFaRpqRJ0xrURb8GA3HOpIxd Th9OOVHkQ9DfVnANxRbDGNBSYDfbsO2S4HJEwtTUREk= -----END CERTIFICATE-----Generated at Tue May 5 21:17:07 2026 by rpki-client