$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: 0JQ/YIuPYh6+OHlzliKy8+T6HQrIEoZ4EoUxcl6YzLg= Subject key identifier: 4B:7D:11:FB:E6:FA:02:24:9E:1F:11:1E:B8:22:48:1A:F5:49:54:43 Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 0F8B7CFB7200D05532664DAB1F31F75CBD6D0F2F Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa Signing time: Sun 03 May 2026 02:36:09 +0000 ROA not before: Sun 03 May 2026 02:31:09 +0000 ROA not after: Sun 02 May 2027 02:36:09 +0000 asID: 141898 IP address blocks: 202.154.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8b:7c:fb:72:00:d0:55:32:66:4d:ab:1f:31:f7:5c:bd:6d:0f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:09 2026 GMT Not After : May 2 02:36:09 2027 GMT Subject: CN=4B7D11FBE6FA02249E1F111EB822481AF5495443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:f8:8d:64:06:1f:cb:77:e2:46:6a:47:40: 6d:39:e7:11:50:ae:6a:ab:66:06:0c:06:7b:ea:f4: d2:e0:f5:e4:86:df:94:81:46:81:22:f7:f2:2f:86: f3:94:89:d0:18:ad:e6:e0:29:fc:40:35:08:13:f5: a8:c5:9e:62:4d:67:78:c2:fa:dc:e1:90:c9:1f:a4: bf:5a:71:37:86:c6:0b:56:14:0d:2b:68:4e:a1:67: ea:aa:85:87:c8:66:46:a6:03:21:d4:69:d6:d1:80: 22:da:6b:af:ed:28:e3:9c:e1:0c:f5:eb:91:42:34: e9:8c:bb:55:42:3a:46:b0:e3:01:6f:8e:3a:34:1a: a3:9f:cc:7a:81:86:b8:71:34:d1:7a:98:8c:15:53: c7:e2:7e:61:cb:a8:e0:59:eb:c8:a3:23:d8:26:29: 87:26:c2:33:6b:08:1e:9c:a0:f9:f0:f5:6d:3e:af: d4:e8:6f:8c:ac:e7:43:77:c8:fb:0d:c1:bb:30:c5: 15:31:fb:be:80:2a:3f:9d:30:1f:40:e2:db:70:1e: d6:67:38:02:27:ab:3a:f2:af:63:83:83:7d:b9:d7: 30:73:0e:35:0d:57:30:18:2e:16:8a:cf:57:32:d2: e1:11:27:b9:ee:f7:0b:d7:9c:68:73:f9:ca:8f:90: 74:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7D:11:FB:E6:FA:02:24:9E:1F:11:1E:B8:22:48:1A:F5:49:54:43 X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.15.0/24 Signature Algorithm: sha256WithRSAEncryption 65:60:93:1c:e7:bc:da:47:6a:57:dd:b3:d2:e4:02:a0:d1:56: 84:ce:3e:cf:b3:fb:61:2e:d9:ca:88:3b:2f:04:3c:56:05:6a: 3b:82:37:9f:83:9f:fa:fb:d5:d8:d7:54:ea:85:52:ca:70:20: d9:78:f9:9d:6e:c4:c8:1f:f2:14:11:6a:04:63:d6:3f:90:9f: 79:d9:5c:d0:a2:17:ae:a5:77:12:6a:f6:0d:af:98:cd:e5:e2: ab:85:c2:1d:52:18:db:0d:f9:2c:e5:7a:b8:a3:5c:03:c9:2b: 7c:74:55:2c:1c:01:3a:12:61:c4:bf:b4:7a:2e:45:04:13:37: 20:e1:c7:06:66:e9:38:5f:41:69:1d:b9:bc:ec:f4:60:c9:b8: c4:79:98:c9:58:fa:01:93:d8:51:dc:86:2e:6f:f4:d7:22:9a: 8a:ca:3e:e6:b7:79:4f:f9:4a:93:6d:c1:c4:7d:53:de:d3:f8: b8:d3:43:b2:66:ad:a0:b4:e8:89:f5:11:a2:89:6f:c5:04:46: ef:fc:58:00:82:10:6e:ed:bb:de:0c:72:e1:2d:51:81:5e:9e: ae:fd:03:cc:7e:96:f7:49:65:31:d6:36:58:0e:20:47:0e:aa: 26:0f:2b:36:be:4b:88:a6:ce:71:88:79:ad:56:1c:0a:f5:8e: 0e:8a:41:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD4t8+3IA0FUyZk2rHzH3XL1tDy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMDlaFw0yNzA1MDIwMjM2MDlaMDMxMTAvBgNV BAMTKDRCN0QxMUZCRTZGQTAyMjQ5RTFGMTExRUI4MjI0ODFBRjU0OTU0NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC90/iNZAYfy3fiRmpHQG055xFQ rmqrZgYMBnvq9NLg9eSG35SBRoEi9/IvhvOUidAYrebgKfxANQgT9ajFnmJNZ3jC +tzhkMkfpL9acTeGxgtWFA0raE6hZ+qqhYfIZkamAyHUadbRgCLaa6/tKOOc4Qz1 65FCNOmMu1VCOkaw4wFvjjo0GqOfzHqBhrhxNNF6mIwVU8fifmHLqOBZ68ijI9gm KYcmwjNrCB6coPnw9W0+r9Tob4ys50N3yPsNwbswxRUx+76AKj+dMB9A4ttwHtZn OAInqzryr2ODg3251zBzDjUNVzAYLhaKz1cy0uERJ7nu9wvXnGhz+cqPkHT5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUS30R++b6AiSeHxEeuCJIGvVJVEMwHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoPMA0GCSqG SIb3DQEBCwUAA4IBAQBlYJMc57zaR2pX3bPS5AKg0VaEzj7Ps/thLtnKiDsvBDxW BWo7gjefg5/6+9XY11TqhVLKcCDZePmdbsTIH/IUEWoEY9Y/kJ952VzQoheupXcS avYNr5jN5eKrhcIdUhjbDfks5Xq4o1wDySt8dFUsHAE6EmHEv7R6LkUEEzcg4ccG Zuk4X0FpHbm87PRgybjEeZjJWPoBk9hR3IYub/TXIpqKyj7mt3lP+UqTbcHEfVPe 0/i400OyZq2gtOiJ9RGiiW/FBEbv/FgAghBu7bveDHLhLVGBXp6u/QPMfpb3SWUx 1jZYDiBHDqomDys2vkuIps5xiHmtVhwK9Y4OikHk -----END CERTIFICATE-----Generated at Tue May 5 15:06:51 2026 by rpki-client