$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa File: 3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: iy7wKKK8f0ACccxMWDb+NjAP+nLrjIvI68DwEOfRpQE= Subject key identifier: 31:BD:79:48:64:58:E8:DA:FD:5A:96:6A:9A:3B:AE:5B:10:BE:05:BF Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 72A63B9BD2FBCC7FBC07A9D68AE4D8A583F37D3D Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa Signing time: Sun 03 May 2026 02:36:09 +0000 ROA not before: Sun 03 May 2026 02:31:09 +0000 ROA not after: Sun 02 May 2027 02:36:09 +0000 asID: 141607 IP address blocks: 202.154.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a6:3b:9b:d2:fb:cc:7f:bc:07:a9:d6:8a:e4:d8:a5:83:f3:7d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:09 2026 GMT Not After : May 2 02:36:09 2027 GMT Subject: CN=31BD79486458E8DAFD5A966A9A3BAE5B10BE05BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:60:71:72:3d:1b:82:36:26:c0:c4:83:d5:61: 40:31:d1:25:05:74:52:a5:7c:bc:0c:08:b5:ab:44: 4a:6f:c7:f4:a3:51:e2:21:c1:27:66:01:63:15:fd: 9a:b6:67:02:55:e7:f9:35:f8:c1:48:fd:fb:bc:e6: ad:1b:1a:dc:f2:c7:4d:ea:41:88:01:5e:17:9e:7e: be:9d:00:18:22:f6:0c:b5:bd:de:c9:ee:1f:05:70: 6b:7c:ad:e1:05:c0:87:22:62:b8:f5:d5:ad:f9:24: 41:13:7e:20:65:5e:03:5c:b8:bf:4d:d9:28:a9:2b: 01:da:c7:93:85:ff:41:81:d7:9b:3c:3c:20:d9:36: d0:bb:d1:8a:6c:a3:bb:d9:6e:81:04:f7:dd:82:a2: 44:81:d7:93:86:fe:dc:98:9b:97:97:e1:61:27:63: 97:73:8f:78:25:90:33:dc:48:a8:2e:48:8c:ac:c0: 59:7e:9c:a4:c8:15:c9:63:b1:f7:b9:c2:4f:0c:0d: 34:d4:69:7f:8e:a6:5d:7e:ba:41:a4:41:3d:1d:44: 2a:a4:cd:de:82:58:c7:80:f3:d5:ae:2a:20:eb:53: d5:ca:87:53:cf:8d:96:ee:71:a1:a8:8e:c7:a4:eb: 42:04:9e:38:4c:e2:fd:bd:e8:ab:d6:04:0e:dd:36: 7f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BD:79:48:64:58:E8:DA:FD:5A:96:6A:9A:3B:AE:5B:10:BE:05:BF X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.17.0/24 Signature Algorithm: sha256WithRSAEncryption ac:9f:bb:08:04:d3:a8:6d:c3:84:0f:37:2d:ce:e5:69:d1:9e: 6f:bc:41:82:cd:0d:a5:98:cd:97:80:93:67:96:ea:0c:c8:43: ab:fc:f2:33:5a:3e:b7:15:30:bb:0a:48:50:6d:04:a2:73:f5: 4c:42:fb:81:30:c9:3d:3d:61:f9:52:cc:9a:20:f0:e0:8a:cc: 20:6f:8b:ca:85:42:af:be:ad:4d:07:03:02:8a:cb:03:97:9f: 95:36:88:b0:0d:67:78:6d:3d:6c:6e:36:3c:75:7e:54:a5:fe: 12:f7:34:65:13:ef:a6:1e:fe:47:35:e4:31:2d:46:58:56:30: a5:83:32:cb:15:ca:f5:a4:94:7c:3f:5b:c2:bb:77:8e:79:2d: 8d:f9:40:46:ce:a6:53:cd:62:bf:3f:32:bb:9b:c6:19:1a:78: 1c:83:2d:8d:9d:9c:e2:8a:3c:94:08:81:2a:d2:28:46:e1:ad: a2:3c:33:8c:ef:51:4b:b2:1c:c9:ce:74:57:e6:a7:56:9c:9f: e4:7e:49:17:9d:4b:48:ab:04:4b:14:eb:57:aa:b0:7e:1f:e5: ee:23:d4:8e:38:9f:4d:c5:de:6d:d3:1a:2e:b5:77:50:94:ba: a2:57:4e:82:27:ad:71:07:6c:6f:9e:e5:7e:a7:61:68:2b:91: 92:3d:0f:0c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcqY7m9L7zH+8B6nWiuTYpYPzfT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMDlaFw0yNzA1MDIwMjM2MDlaMDMxMTAvBgNV BAMTKDMxQkQ3OTQ4NjQ1OEU4REFGRDVBOTY2QTlBM0JBRTVCMTBCRTA1QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZYHFyPRuCNibAxIPVYUAx0SUF dFKlfLwMCLWrREpvx/SjUeIhwSdmAWMV/Zq2ZwJV5/k1+MFI/fu85q0bGtzyx03q QYgBXheefr6dABgi9gy1vd7J7h8FcGt8reEFwIciYrj11a35JEETfiBlXgNcuL9N 2SipKwHax5OF/0GB15s8PCDZNtC70Ypso7vZboEE992CokSB15OG/tyYm5eX4WEn Y5dzj3glkDPcSKguSIyswFl+nKTIFcljsfe5wk8MDTTUaX+Opl1+ukGkQT0dRCqk zd6CWMeA89WuKiDrU9XKh1PPjZbucaGojsek60IEnjhM4v296KvWBA7dNn/PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMb15SGRY6Nr9WpZqmjuuWxC+Bb8wHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoRMA0GCSqG SIb3DQEBCwUAA4IBAQCsn7sIBNOobcOEDzctzuVp0Z5vvEGCzQ2lmM2XgJNnluoM yEOr/PIzWj63FTC7CkhQbQSic/VMQvuBMMk9PWH5UsyaIPDgiswgb4vKhUKvvq1N BwMCissDl5+VNoiwDWd4bT1sbjY8dX5Upf4S9zRlE++mHv5HNeQxLUZYVjClgzLL Fcr1pJR8P1vCu3eOeS2N+UBGzqZTzWK/PzK7m8YZGngcgy2NnZziijyUCIEq0ihG 4a2iPDOM71FLshzJznRX5qdWnJ/kfkkXnUtIqwRLFOtXqrB+H+XuI9SOOJ9Nxd5t 0xoutXdQlLqiV06CJ61xB2xvnuV+p2FoK5GSPQ8M -----END CERTIFICATE-----Generated at Tue May 5 13:31:07 2026 by rpki-client