$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: 1VZvkFvxiNFBFWJdDU35pyqycF+8dUyKHVZ7KUOx3tw= Subject key identifier: 33:A1:76:2C:9D:0C:E0:D2:09:54:FD:66:D0:CE:DA:DC:4E:81:BB:89 Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 51DE7F1402932DB8AB0AEDD96FD598F79E2FFB9E Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa Signing time: Sun 03 May 2026 02:36:08 +0000 ROA not before: Sun 03 May 2026 02:31:08 +0000 ROA not after: Sun 02 May 2027 02:36:08 +0000 asID: 4434 IP address blocks: 202.154.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:de:7f:14:02:93:2d:b8:ab:0a:ed:d9:6f:d5:98:f7:9e:2f:fb:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:08 2026 GMT Not After : May 2 02:36:08 2027 GMT Subject: CN=33A1762C9D0CE0D20954FD66D0CEDADC4E81BB89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ff:da:2f:25:10:9b:8c:f5:3c:51:3a:e1:01: b2:1a:88:7e:aa:77:4c:d5:8d:0c:05:6f:e4:33:a0: 70:8a:18:9d:ed:8d:ef:32:36:de:a7:a7:7e:89:c5: ed:e6:aa:39:bd:bb:a8:06:4b:d2:ca:3d:17:d4:3d: 44:22:1c:f1:04:a9:0f:04:80:47:8a:7f:7f:e8:0b: 39:74:a0:4d:75:eb:91:ae:cb:0c:4b:e6:99:ad:48: 63:f5:e4:e3:47:75:04:34:03:69:d7:cd:73:71:eb: eb:a3:2e:a6:67:1b:30:9d:93:da:ac:7c:4b:e5:1c: 5d:aa:e0:bb:1b:52:39:5b:b4:f4:27:b4:6c:b1:2e: 6f:0d:80:f2:b7:b7:cc:18:70:28:a5:60:bc:5d:98: ac:3e:ac:87:3b:2e:50:fe:8a:40:82:0e:27:76:6f: 4c:86:9a:e3:47:48:9f:95:9c:18:ce:a3:66:bc:ba: f2:ec:ba:5b:4d:75:71:a2:49:85:f5:50:b9:6e:29: 38:4e:06:f6:3f:cb:7e:a3:7b:86:78:bb:07:49:8a: 15:ae:7c:0e:a0:7f:f2:8b:93:89:44:13:d5:03:ca: 55:20:b9:20:68:a9:f9:be:32:b4:24:b4:dd:b7:cb: 19:bd:d9:78:df:9e:16:b1:0d:e0:f9:05:3c:b3:a1: d7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A1:76:2C:9D:0C:E0:D2:09:54:FD:66:D0:CE:DA:DC:4E:81:BB:89 X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 06:dc:68:b1:5d:91:3c:89:5b:d7:56:80:b6:d4:37:a0:aa:2a: 2a:46:d9:12:be:cf:5e:4e:dd:1d:2d:b8:a0:fc:34:43:a1:1b: d9:5e:40:fb:a5:12:16:50:3b:cb:21:69:49:f0:88:88:d9:78: 6e:2d:ff:cb:c0:e4:d1:a2:74:fc:f9:86:4c:36:81:b9:32:aa: 0a:83:ec:41:97:0e:3e:88:3e:72:7a:8e:e1:00:8f:53:54:1f: 8d:de:71:ae:14:c6:97:f1:97:f7:22:b6:4a:4d:b6:37:1e:56: fc:51:be:40:67:1b:05:ae:75:47:0f:21:36:a5:7e:1e:bc:4a: 9e:e8:6c:f8:72:e4:66:31:f8:31:2c:c3:79:e3:ca:c5:17:3d: eb:08:23:ae:ba:93:4c:8e:c5:d6:8c:c6:0b:8c:4b:5f:fa:72: ad:a6:aa:de:29:85:ba:03:06:2c:2c:2f:a3:db:5f:c5:ee:b1: 7d:bd:00:b6:f0:8b:51:89:3f:e2:2d:2e:48:c5:d9:fe:c7:f2: 04:c8:9e:d6:85:40:4a:f9:96:25:57:d4:65:71:10:d8:95:59: 92:78:bf:7e:78:f5:3b:16:14:3f:93:de:2c:c0:5d:12:00:fd: 4d:95:e3:dc:69:8f:ae:e5:22:2c:f0:af:a8:df:60:e9:a9:dd: d7:c1:bc:b4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUd5/FAKTLbirCu3Zb9WY954v+54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMDhaFw0yNzA1MDIwMjM2MDhaMDMxMTAvBgNV BAMTKDMzQTE3NjJDOUQwQ0UwRDIwOTU0RkQ2NkQwQ0VEQURDNEU4MUJCODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR/9ovJRCbjPU8UTrhAbIaiH6q d0zVjQwFb+QzoHCKGJ3tje8yNt6np36Jxe3mqjm9u6gGS9LKPRfUPUQiHPEEqQ8E gEeKf3/oCzl0oE1165GuywxL5pmtSGP15ONHdQQ0A2nXzXNx6+ujLqZnGzCdk9qs fEvlHF2q4LsbUjlbtPQntGyxLm8NgPK3t8wYcCilYLxdmKw+rIc7LlD+ikCCDid2 b0yGmuNHSJ+VnBjOo2a8uvLsultNdXGiSYX1ULluKThOBvY/y36je4Z4uwdJihWu fA6gf/KLk4lEE9UDylUguSBoqfm+MrQktN23yxm92XjfnhaxDeD5BTyzoddPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUM6F2LJ0M4NIJVP1m0M7a3E6Bu4kwHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhgwDQYJKoZIhvcN AQELBQADggEBAAbcaLFdkTyJW9dWgLbUN6CqKipG2RK+z15O3R0tuKD8NEOhG9le QPulEhZQO8shaUnwiIjZeG4t/8vA5NGidPz5hkw2gbkyqgqD7EGXDj6IPnJ6juEA j1NUH43eca4Uxpfxl/citkpNtjceVvxRvkBnGwWudUcPITalfh68Sp7obPhy5GYx +DEsw3njysUXPesII666k0yOxdaMxguMS1/6cq2mqt4phboDBiwsL6PbX8XusX29 ALbwi1GJP+ItLkjF2f7H8gTIntaFQEr5liVX1GVxENiVWZJ4v3549TsWFD+T3izA XRIA/U2V49xpj67lIizwr6jfYOmp3dfBvLQ= -----END CERTIFICATE-----Generated at Tue May 5 15:04:01 2026 by rpki-client