$ rpki-client -vvf rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa File: 3230322e362e3230382e302f32302d3234203d3e203137343530.roa (raw, json) Hash identifier: L1u8e2XMWfhTZprYAXbYQRaFyt6N+m9nwnznZ68xnQo= Subject key identifier: 5C:70:7E:3B:CD:6C:B9:4C:7C:5D:23:DD:F0:6D:CA:CD:02:2B:24:4D Certificate issuer: /CN=C97B9AA5127BAC47DAF01727DFF25E26F638643C Certificate serial: 0605BE8B540918ACDF1119440C41972B665B8BF2 Authority key identifier: C9:7B:9A:A5:12:7B:AC:47:DA:F0:17:27:DF:F2:5E:26:F6:38:64:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa Signing time: Sun 03 May 2026 02:29:25 +0000 ROA not before: Sun 03 May 2026 02:24:25 +0000 ROA not after: Sun 02 May 2027 02:29:25 +0000 asID: 17450 IP address blocks: 202.6.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.crl rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:05:be:8b:54:09:18:ac:df:11:19:44:0c:41:97:2b:66:5b:8b:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C97B9AA5127BAC47DAF01727DFF25E26F638643C Validity Not Before: May 3 02:24:25 2026 GMT Not After : May 2 02:29:25 2027 GMT Subject: CN=5C707E3BCD6CB94C7C5D23DDF06DCACD022B244D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:61:1a:65:af:54:8c:1e:0b:11:93:61:0c:8f: 4f:f6:b7:a9:c4:53:2f:0c:fa:8a:ed:77:40:e5:df: 74:06:6a:cb:2f:0d:30:7a:7f:17:eb:8a:a6:ca:f4: d9:f9:ed:09:01:e5:13:ed:90:24:44:c4:de:db:17: 23:17:2e:20:ff:ea:f9:f4:21:31:75:16:61:18:39: 83:19:e7:f8:d1:30:d3:2a:aa:db:bf:16:09:a1:77: 16:b6:a3:ef:8c:62:27:e3:2a:a6:33:9c:c7:2d:c4: 7c:fe:73:d6:1f:b0:ce:5c:ec:39:bc:27:a8:fe:d4: 36:b3:95:0f:bf:7b:63:c8:9b:10:2f:7e:f7:81:ea: 31:ca:95:2d:3f:73:da:e9:d1:d0:e4:80:75:bc:57: df:b9:db:8a:36:03:d5:52:d5:a5:da:02:78:89:c5: 8d:48:2a:88:2d:02:95:4b:b3:94:a9:d2:85:f4:ae: 6c:a9:c8:62:06:a9:00:8d:bc:21:8a:7c:3a:d8:cc: ff:59:77:ac:71:a7:96:fb:4d:83:0c:4f:6e:b7:fe: 66:6d:1d:03:14:9d:5e:a8:15:9a:c9:1a:d2:e8:9d: d8:06:d7:87:53:b0:0c:1c:26:51:ea:ed:29:01:19: f0:7e:46:ae:a2:0d:73:49:07:17:19:0c:1e:8e:8d: 0e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:70:7E:3B:CD:6C:B9:4C:7C:5D:23:DD:F0:6D:CA:CD:02:2B:24:4D X509v3 Authority Key Identifier: keyid:C9:7B:9A:A5:12:7B:AC:47:DA:F0:17:27:DF:F2:5E:26:F6:38:64:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.6.208.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:1f:27:f0:ad:8f:17:47:fe:6b:ef:36:6b:fa:5a:93:2a:2b: 02:36:71:c3:ed:e3:1a:6a:80:a4:8a:19:76:80:32:ce:5a:fb: cf:92:53:ac:31:c9:da:97:d7:2e:96:a7:25:18:76:5f:f7:96: 5c:bd:66:84:40:3c:fb:9b:4a:a5:a2:f9:a3:e3:ca:31:7c:39: f8:0b:ab:b3:3b:ea:05:d1:d8:6d:01:d5:14:1d:cc:c0:11:84: 77:d8:bf:93:ed:19:fa:2d:2d:f0:27:cb:da:d6:2b:22:c8:e3: 95:11:b8:30:c4:8e:31:59:7a:ee:92:66:d0:8e:39:a9:fe:1d: 62:e4:44:27:ec:b3:da:ee:f5:d7:23:71:b2:d4:ee:d8:2d:ab: 6b:f1:69:09:ca:85:a4:3a:29:df:cb:43:42:c9:7f:c5:ef:4e: 5b:f1:2b:a8:2c:38:67:44:4e:4c:e9:5f:d0:08:13:a6:37:3f: 7e:52:3b:6d:d5:63:ba:d5:16:8b:ae:10:c9:9a:75:e0:7f:a0: 91:9d:a5:a1:51:cc:fc:a1:15:8d:2a:5e:0c:78:ad:44:23:e5: 49:19:c7:fc:75:bc:38:3b:22:c8:31:99:f7:e3:b0:e4:3f:f0: 17:6a:28:8e:56:15:24:c9:50:9b:e7:45:31:5d:b0:fa:88:ef: f2:7e:9d:70 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBgW+i1QJGKzfERlEDEGXK2Zbi/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3QjlBQTUxMjdCQUM0N0RBRjAxNzI3REZGMjVFMjZG NjM4NjQzQzAeFw0yNjA1MDMwMjI0MjVaFw0yNzA1MDIwMjI5MjVaMDMxMTAvBgNV BAMTKDVDNzA3RTNCQ0Q2Q0I5NEM3QzVEMjNEREYwNkRDQUNEMDIyQjI0NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZYRplr1SMHgsRk2EMj0/2t6nE Uy8M+ortd0Dl33QGassvDTB6fxfriqbK9Nn57QkB5RPtkCRExN7bFyMXLiD/6vn0 ITF1FmEYOYMZ5/jRMNMqqtu/Fgmhdxa2o++MYifjKqYznMctxHz+c9YfsM5c7Dm8 J6j+1DazlQ+/e2PImxAvfveB6jHKlS0/c9rp0dDkgHW8V9+524o2A9VS1aXaAniJ xY1IKogtApVLs5Sp0oX0rmypyGIGqQCNvCGKfDrYzP9Zd6xxp5b7TYMMT263/mZt HQMUnV6oFZrJGtLondgG14dTsAwcJlHq7SkBGfB+Rq6iDXNJBxcZDB6OjQ5JAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXHB+O81suUx8XSPd8G3KzQIrJE0wHwYDVR0j BBgwFoAUyXuapRJ7rEfa8Bcn3/JeJvY4ZDwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDM4MDYxZjEtZmEzMC00YmQ2LTgxYTAtMmVjNjcwODM2YzQyLzAvQzk3QjlBQTUx MjdCQUM0N0RBRjAxNzI3REZGMjVFMjZGNjM4NjQzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOTdCOUFBNTEyN0JBQzQ3REFGMDE3MjdERkYyNUUyNkY2Mzg2 NDNDLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQzODA2MWYxLWZhMzAtNGJkNi04 MWEwLTJlYzY3MDgzNmM0Mi8wLzMyMzAzMjJlMzYyZTMyMzAzODJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKBtAwDQYJKoZIhvcN AQELBQADggEBAH4fJ/CtjxdH/mvvNmv6WpMqKwI2ccPt4xpqgKSKGXaAMs5a+8+S U6wxydqX1y6WpyUYdl/3lly9ZoRAPPubSqWi+aPjyjF8OfgLq7M76gXR2G0B1RQd zMARhHfYv5PtGfotLfAny9rWKyLI45URuDDEjjFZeu6SZtCOOan+HWLkRCfss9ru 9dcjcbLU7tgtq2vxaQnKhaQ6Kd/LQ0LJf8XvTlvxK6gsOGdETkzpX9AIE6Y3P35S O23VY7rVFouuEMmadeB/oJGdpaFRzPyhFY0qXgx4rUQj5UkZx/x1vDg7Isgxmffj sOQ/8BdqKI5WFSTJUJvnRTFdsPqI7/J+nXA= -----END CERTIFICATE-----Generated at Tue May 5 10:16:22 2026 by rpki-client