$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: a6A3usF+sOCIS1GmxqY/nN+2rWHkweMuYXIoyoDHlCA= Subject key identifier: F4:47:86:B5:02:8E:D9:F8:79:09:02:F3:57:D4:D6:B7:FC:E1:BA:35 Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 69CE245A5B1943CB660B182C95D36D99E4C14C13 Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa Signing time: Sun 03 May 2026 02:36:12 +0000 ROA not before: Sun 03 May 2026 02:31:12 +0000 ROA not after: Sun 02 May 2027 02:36:12 +0000 asID: 141898 IP address blocks: 202.154.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ce:24:5a:5b:19:43:cb:66:0b:18:2c:95:d3:6d:99:e4:c1:4c:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:12 2026 GMT Not After : May 2 02:36:12 2027 GMT Subject: CN=F44786B5028ED9F8790902F357D4D6B7FCE1BA35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e7:1a:f9:44:a2:30:ac:68:10:47:98:42:54: 8d:01:d3:0c:47:37:1a:26:a2:ff:83:67:a4:60:da: be:c9:e3:49:77:25:3d:d9:80:1f:50:0a:1c:5a:2b: 22:b8:9b:ce:9c:f3:11:13:fd:92:a8:24:c5:83:9e: 38:f9:ed:ad:21:02:67:38:e3:a4:47:a2:cd:1b:12: 3c:38:10:1c:ed:ae:d1:38:b5:9f:eb:35:0f:f6:fc: d4:11:aa:19:56:3a:19:e6:2b:61:a2:ee:31:cb:71: c3:ee:15:d9:3b:e8:e5:eb:ff:48:ab:8c:9f:bf:58: ba:d3:84:2f:2c:f5:33:9e:3a:a5:6b:9f:48:01:74: 57:07:3a:86:91:71:ca:94:0e:e5:a7:1d:07:2d:68: 61:1d:b7:d3:79:95:a5:08:db:cf:10:dc:b7:15:7b: c0:93:b9:36:8f:4a:95:83:8b:2f:8d:57:04:63:6e: 86:17:ef:d6:2e:33:59:23:4b:df:71:9c:71:17:3a: 01:bc:09:d4:a9:d6:06:59:1c:c1:8a:aa:98:41:ad: a4:55:3e:5a:62:0b:bc:16:01:72:c5:c3:bc:5d:a9: d8:8c:58:75:9a:f6:5b:a9:4c:9b:90:a6:ee:a0:84: fa:72:8c:2d:06:2e:1b:93:88:5a:07:2e:d4:9d:0e: d5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:47:86:B5:02:8E:D9:F8:79:09:02:F3:57:D4:D6:B7:FC:E1:BA:35 X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.11.0/24 Signature Algorithm: sha256WithRSAEncryption 06:fb:bc:c5:f5:2e:92:c3:e9:5c:5b:b6:d0:c6:1f:69:c8:e7: 9a:08:6a:02:3b:33:1b:9a:bc:6a:76:5e:2e:90:4e:2c:93:e3: 92:85:8c:b7:0f:ae:fa:00:5e:25:f2:54:70:a5:af:cc:f7:51: 20:5d:4d:d0:67:14:e3:3d:0b:c8:c4:9c:12:ad:a2:60:53:de: 17:de:d3:f3:89:44:ec:a6:7d:d4:b8:4b:54:b4:8d:69:fe:62: 04:c1:2f:d2:9f:43:66:9a:28:e7:0c:d1:d2:e3:ce:ef:16:6a: 1e:cc:fe:22:98:c6:31:39:3c:a8:32:50:f2:66:6b:a5:0f:86: a9:d3:f3:ac:49:df:bf:b2:7d:2f:61:35:28:cc:98:21:14:36: 23:0a:21:98:a8:36:83:34:00:2a:60:ab:9d:4d:c0:06:6b:e3: 3d:37:3d:36:65:7c:c0:c4:c4:05:9d:72:8e:61:3b:17:1c:85: a1:6c:1a:a4:22:d9:7b:3e:aa:16:06:fc:93:84:77:d9:c1:78: 11:23:27:57:69:8f:ba:9e:99:00:dd:a4:12:d7:ea:ef:cc:1b: a0:78:e9:0b:92:27:b8:26:b9:fc:ee:49:b2:f1:ae:4f:4a:95: 02:e0:fe:28:1c:09:bd:64:e6:e0:9f:97:bf:c3:79:34:55:15: d7:c3:25:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUac4kWlsZQ8tmCxgsldNtmeTBTBMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMTJaFw0yNzA1MDIwMjM2MTJaMDMxMTAvBgNV BAMTKEY0NDc4NkI1MDI4RUQ5Rjg3OTA5MDJGMzU3RDRENkI3RkNFMUJBMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo5xr5RKIwrGgQR5hCVI0B0wxH Nxomov+DZ6Rg2r7J40l3JT3ZgB9QChxaKyK4m86c8xET/ZKoJMWDnjj57a0hAmc4 46RHos0bEjw4EBztrtE4tZ/rNQ/2/NQRqhlWOhnmK2Gi7jHLccPuFdk76OXr/0ir jJ+/WLrThC8s9TOeOqVrn0gBdFcHOoaRccqUDuWnHQctaGEdt9N5laUI288Q3LcV e8CTuTaPSpWDiy+NVwRjboYX79YuM1kjS99xnHEXOgG8CdSp1gZZHMGKqphBraRV PlpiC7wWAXLFw7xdqdiMWHWa9lupTJuQpu6ghPpyjC0GLhuTiFoHLtSdDtXTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9EeGtQKO2fh5CQLzV9TWt/zhujUwHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoLMA0GCSqG SIb3DQEBCwUAA4IBAQAG+7zF9S6Sw+lcW7bQxh9pyOeaCGoCOzMbmrxqdl4ukE4s k+OShYy3D676AF4l8lRwpa/M91EgXU3QZxTjPQvIxJwSraJgU94X3tPziUTspn3U uEtUtI1p/mIEwS/Sn0NmmijnDNHS487vFmoezP4imMYxOTyoMlDyZmulD4ap0/Os Sd+/sn0vYTUozJghFDYjCiGYqDaDNAAqYKudTcAGa+M9Nz02ZXzAxMQFnXKOYTsX HIWhbBqkItl7PqoWBvyThHfZwXgRIydXaY+6npkA3aQS1+rvzBugeOkLkie4Jrn8 7kmy8a5PSpUC4P4oHAm9ZObgn5e/w3k0VRXXwyXX -----END CERTIFICATE-----Generated at Tue May 5 15:06:51 2026 by rpki-client