$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa File: 3230322e3135342e302e302f31382d3231203d3e2034343334.roa (raw, json) Hash identifier: vZhS1XwgZkg4XqeGyjwcO7XCROCMRNEA+aNQDOoGS1I= Subject key identifier: 6F:75:E4:3D:C6:95:04:E2:8C:1F:57:9E:09:9E:BF:FB:C6:26:19:05 Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 433BC2C80DCC48619E7E060C2C5D1345C7D0C7FF Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa Signing time: Sun 03 May 2026 02:36:02 +0000 ROA not before: Sun 03 May 2026 02:31:02 +0000 ROA not after: Sun 02 May 2027 02:36:02 +0000 asID: 4434 IP address blocks: 202.154.0.0/18 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:3b:c2:c8:0d:cc:48:61:9e:7e:06:0c:2c:5d:13:45:c7:d0:c7:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:02 2026 GMT Not After : May 2 02:36:02 2027 GMT Subject: CN=6F75E43DC69504E28C1F579E099EBFFBC6261905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c1:f0:63:96:be:92:d0:40:d9:e7:14:41:4a: dd:64:ef:98:67:37:b0:b7:1b:73:d4:5e:64:0e:07: d1:1c:bc:1a:c4:68:fc:be:c6:8a:43:fe:39:fe:6c: db:aa:27:7d:1b:af:98:23:ae:0a:97:3f:7f:db:ee: b3:2d:d1:d0:09:04:95:97:07:43:38:03:6e:d7:11: fe:d6:57:71:a7:74:94:25:0c:a2:6a:50:cd:3a:d6: 3c:ec:b0:ac:91:a9:d3:d6:1a:2d:1b:aa:00:f0:87: c2:e3:f0:7d:14:a3:85:8b:4d:0d:72:42:1a:06:64: d1:2f:41:c7:40:aa:64:dd:10:83:30:b3:a7:cc:ee: 8e:9d:cb:80:8a:e5:31:92:49:99:bf:cf:bb:77:d9: 91:59:8a:a3:ea:5c:60:21:02:7c:ad:b7:d2:44:c2: 13:c4:08:bf:2c:16:3d:fc:29:a5:ee:53:d9:c1:2e: 6c:da:bc:fe:5a:fb:aa:a8:8b:09:9a:92:07:cf:92: b3:0a:3b:08:2d:68:e1:52:45:99:f0:34:18:90:b4: c1:1f:7f:98:ad:d9:36:c0:d4:bd:51:ac:ff:a3:be: f9:26:6a:8d:16:fe:05:36:fb:e7:cd:73:0b:f0:f9: 1a:18:79:35:46:ca:d3:c3:6e:ae:29:d0:51:ed:03: 8b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:75:E4:3D:C6:95:04:E2:8C:1F:57:9E:09:9E:BF:FB:C6:26:19:05 X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.0.0/18 Signature Algorithm: sha256WithRSAEncryption 58:a2:96:ba:7a:ec:8c:3f:a6:ff:c3:73:5d:62:8f:79:22:9e: 60:56:36:0a:cf:fd:09:e0:9e:f3:26:bb:f6:d0:f1:11:d3:a5: 69:d6:91:d4:70:bf:4b:5d:8d:ca:8f:44:02:52:48:e4:cb:c4: ab:91:4f:b5:47:1e:3e:07:e5:ef:ab:22:de:3c:aa:d9:7a:bc: 6f:f9:7a:45:bc:f5:bc:26:46:fe:86:cd:73:2e:96:14:b8:34: d3:64:eb:0f:d0:dc:41:5f:9c:e6:b5:1d:50:58:f0:3b:8e:31: 93:78:bb:6e:b9:bc:d3:bd:7a:b0:80:0a:40:d0:0c:ab:33:47: e8:61:6e:a8:0c:30:d8:af:31:a9:e1:53:28:bc:2e:4c:b5:1d: 99:e1:81:a8:9d:87:e0:7d:8b:cf:a6:7d:90:84:3a:f9:1d:09: 71:cb:9a:84:db:f1:b5:ee:5e:d1:c2:99:a9:e1:26:5f:a5:91: dd:74:f3:9b:f5:05:9e:64:24:d9:e8:54:78:64:80:7a:db:88: 5e:ab:15:69:f6:4e:d2:94:44:28:e1:b7:1e:7e:a5:f7:03:7d: 19:16:7e:ab:5d:0c:d3:8f:ed:a8:75:6d:bd:5f:99:30:43:3b: dd:a4:4a:9c:2f:1d:aa:7f:62:8e:33:34:eb:4f:1f:ba:8d:fb: 73:dd:5c:75 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQzvCyA3MSGGefgYMLF0TRcfQx/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMDJaFw0yNzA1MDIwMjM2MDJaMDMxMTAvBgNV BAMTKDZGNzVFNDNEQzY5NTA0RTI4QzFGNTc5RTA5OUVCRkZCQzYyNjE5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBwfBjlr6S0EDZ5xRBSt1k75hn N7C3G3PUXmQOB9EcvBrEaPy+xopD/jn+bNuqJ30br5gjrgqXP3/b7rMt0dAJBJWX B0M4A27XEf7WV3GndJQlDKJqUM061jzssKyRqdPWGi0bqgDwh8Lj8H0Uo4WLTQ1y QhoGZNEvQcdAqmTdEIMws6fM7o6dy4CK5TGSSZm/z7t32ZFZiqPqXGAhAnytt9JE whPECL8sFj38KaXuU9nBLmzavP5a+6qoiwmakgfPkrMKOwgtaOFSRZnwNBiQtMEf f5it2TbA1L1RrP+jvvkmao0W/gU2++fNcwvw+RoYeTVGytPDbq4p0FHtA4vHAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUb3XkPcaVBOKMH1eeCZ6/+8YmGQUwHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTMwMmUzMDJmMzEzODJk MzIzMTIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbKmgAwDQYJKoZIhvcNAQEL BQADggEBAFiilrp67Iw/pv/Dc11ij3kinmBWNgrP/QngnvMmu/bQ8RHTpWnWkdRw v0tdjcqPRAJSSOTLxKuRT7VHHj4H5e+rIt48qtl6vG/5ekW89bwmRv6GzXMulhS4 NNNk6w/Q3EFfnOa1HVBY8DuOMZN4u265vNO9erCACkDQDKszR+hhbqgMMNivManh Uyi8Lky1HZnhgaidh+B9i8+mfZCEOvkdCXHLmoTb8bXuXtHCmanhJl+lkd1085v1 BZ5kJNnoVHhkgHrbiF6rFWn2TtKURCjhtx5+pfcDfRkWfqtdDNOP7ah1bb1fmTBD O92kSpwvHap/Yo4zNOtPH7qN+3PdXHU= -----END CERTIFICATE-----Generated at Tue May 5 15:04:19 2026 by rpki-client