$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: /dZrdURzYvKoY+BybyywAvzUWZhz2mxM1IzgDBJyYvU= Subject key identifier: 26:21:B7:64:97:B2:E1:42:3F:20:3D:4F:10:C8:F6:AC:7A:58:0F:D2 Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 254BD29D033B836C3FAC126674B944F160F4AD71 Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32322e302f32332d3234203d3e2034343334.roa Signing time: Sun 03 May 2026 02:36:02 +0000 ROA not before: Sun 03 May 2026 02:31:02 +0000 ROA not after: Sun 02 May 2027 02:36:02 +0000 asID: 4434 IP address blocks: 202.154.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4b:d2:9d:03:3b:83:6c:3f:ac:12:66:74:b9:44:f1:60:f4:ad:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:02 2026 GMT Not After : May 2 02:36:02 2027 GMT Subject: CN=2621B76497B2E1423F203D4F10C8F6AC7A580FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:dd:02:0c:b4:10:97:14:9b:29:e7:4a:83: f2:c2:a6:a4:b3:58:da:93:ba:d8:be:49:d0:0d:7e: 09:08:96:25:d7:28:24:a7:88:22:97:7b:cf:9c:4b: 23:2a:aa:91:9f:88:a0:e9:f9:73:42:ba:40:7f:f2: 39:3a:e7:55:e5:ee:fe:06:80:ed:7b:dc:58:43:4c: 44:32:13:1d:69:58:59:3b:9b:35:ad:19:5a:8a:98: 79:fc:a3:b6:16:1d:52:dd:df:4d:82:00:f5:28:a2: 6b:3f:04:86:9f:c2:83:9a:0a:7e:61:e8:54:65:42: 2a:3c:68:a0:18:75:f9:c3:88:e8:65:f8:a6:ad:60: d1:7d:d1:32:2a:d6:07:90:4a:47:cc:12:42:e4:c9: 84:47:5a:cb:9d:2b:c5:76:09:bc:24:d4:ac:bd:12: 30:32:0f:f7:ad:d3:92:58:bb:15:8c:3a:f0:d7:9b: be:a8:9c:5b:51:b0:8e:49:58:b8:36:77:0e:08:ee: 97:9f:ce:f6:18:2f:a7:98:a8:4e:07:b4:5a:c2:ff: fd:56:89:12:25:16:cb:63:9e:06:bb:f4:6a:96:cb: 5e:e9:95:fb:52:ad:36:fc:94:17:86:11:64:0a:c6: fb:b7:41:4b:49:32:3a:97:a9:da:38:56:c0:bc:6f: 9b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:21:B7:64:97:B2:E1:42:3F:20:3D:4F:10:C8:F6:AC:7A:58:0F:D2 X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.22.0/23 Signature Algorithm: sha256WithRSAEncryption 04:9b:ad:7f:77:53:e3:f9:6e:a5:01:5c:8d:60:f5:9d:9b:1f: f7:48:72:79:e8:03:c5:5e:e3:7e:51:d0:fb:61:4e:e9:41:d8: eb:10:c8:28:07:bd:4b:4e:f7:99:31:15:11:dc:8a:cd:24:e2: bd:d3:83:b8:56:c4:ca:24:1f:58:a9:f5:59:cd:c4:33:d1:f4: c3:49:d2:71:40:d0:47:83:0c:31:6d:52:37:ab:ac:86:a7:7c: ae:6f:7c:d2:ca:ba:46:38:ee:a5:3d:02:99:a4:ac:7c:e5:95: 1d:cb:49:cf:79:84:14:95:9c:b7:c5:4c:df:cb:88:8e:71:18: ce:c5:b6:17:6a:3f:a5:74:e1:96:e5:56:df:fd:87:6e:53:fb: 79:33:9e:a2:eb:b5:85:d1:73:38:35:92:86:13:90:1e:0d:e7: 2c:c9:e8:d2:67:61:2f:b8:be:3f:1b:ce:7e:bb:17:97:51:83: c9:07:75:00:e8:63:e7:ee:50:23:1e:03:5b:28:01:c7:84:f3: e5:f6:f1:a3:31:1c:0f:2b:36:00:ec:56:49:84:ac:c6:38:eb: 02:df:af:83:6f:e9:3e:33:a0:91:bc:3d:55:d0:c7:02:fc:4a: 81:c5:d6:2a:f0:14:ec:8e:51:a1:f9:bb:86:3d:62:24:4d:0b: 37:0d:c4:a2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJUvSnQM7g2w/rBJmdLlE8WD0rXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMDJaFw0yNzA1MDIwMjM2MDJaMDMxMTAvBgNV BAMTKDI2MjFCNzY0OTdCMkUxNDIzRjIwM0Q0RjEwQzhGNkFDN0E1ODBGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw5N0CDLQQlxSbKedKg/LCpqSz WNqTuti+SdANfgkIliXXKCSniCKXe8+cSyMqqpGfiKDp+XNCukB/8jk651Xl7v4G gO173FhDTEQyEx1pWFk7mzWtGVqKmHn8o7YWHVLd302CAPUooms/BIafwoOaCn5h 6FRlQio8aKAYdfnDiOhl+KatYNF90TIq1geQSkfMEkLkyYRHWsudK8V2Cbwk1Ky9 EjAyD/et05JYuxWMOvDXm76onFtRsI5JWLg2dw4I7pefzvYYL6eYqE4HtFrC//1W iRIlFstjnga79GqWy17plftSrTb8lBeGEWQKxvu3QUtJMjqXqdo4VsC8b5vtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJiG3ZJey4UI/ID1PEMj2rHpYD9IwHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhYwDQYJKoZIhvcN AQELBQADggEBAASbrX93U+P5bqUBXI1g9Z2bH/dIcnnoA8Ve435R0PthTulB2OsQ yCgHvUtO95kxFRHcis0k4r3Tg7hWxMokH1ip9VnNxDPR9MNJ0nFA0EeDDDFtUjer rIanfK5vfNLKukY47qU9ApmkrHzllR3LSc95hBSVnLfFTN/LiI5xGM7FthdqP6V0 4ZblVt/9h25T+3kznqLrtYXRczg1koYTkB4N5yzJ6NJnYS+4vj8bzn67F5dRg8kH dQDoY+fuUCMeA1soAceE8+X28aMxHA8rNgDsVkmErMY46wLfr4Nv6T4zoJG8PVXQ xwL8SoHF1irwFOyOUaH5u4Y9YiRNCzcNxKI= -----END CERTIFICATE-----Generated at Tue May 5 15:05:41 2026 by rpki-client