$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa File: 3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa (raw, json) Hash identifier: O2LzRLXok+mZ3QfR1DSrXAD8MHPNKeYGGnfoz+0dZQE= Subject key identifier: AB:C6:B8:99:B0:A0:A8:11:72:E2:B9:AB:3A:5D:56:AA:0C:99:8C:B9 Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 27F956076001B7AF9CA0C9DF53700D5CC9957CB3 Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa Signing time: Sun 03 May 2026 02:36:02 +0000 ROA not before: Sun 03 May 2026 02:31:02 +0000 ROA not after: Sun 02 May 2027 02:36:02 +0000 asID: 138886 IP address blocks: 202.154.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f9:56:07:60:01:b7:af:9c:a0:c9:df:53:70:0d:5c:c9:95:7c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:02 2026 GMT Not After : May 2 02:36:02 2027 GMT Subject: CN=ABC6B899B0A0A81172E2B9AB3A5D56AA0C998CB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:39:11:f1:7a:28:98:80:36:b4:e9:4d:c9:b3: b6:4c:90:c2:91:73:1d:c0:d2:a4:6a:63:79:51:52: 30:78:a6:12:ef:80:5f:f9:6b:03:66:4f:92:d9:24: de:16:57:cb:9e:96:78:2e:83:5f:6c:20:46:e9:78: 7f:74:96:35:92:12:7b:7e:0d:68:5c:a8:46:e3:1e: 00:bc:a4:a3:01:94:e8:11:32:7b:16:b5:90:1e:60: 16:1a:96:cd:8f:c5:8b:75:4d:f3:7c:0f:5f:17:ab: fb:ac:dc:fe:84:a0:82:bf:4b:7c:10:ce:10:64:50: e0:18:53:f0:7f:4d:bd:b9:79:7d:a8:d3:86:c2:97: d8:1b:2f:7b:52:0e:33:58:22:88:8d:b4:14:62:df: 73:93:d9:d8:88:01:9a:50:01:4f:f3:8b:bc:42:2d: f7:70:70:0c:ce:82:31:d7:14:d8:3f:55:b0:d8:3f: 36:a0:ba:1c:77:cc:f7:5c:b2:6c:0d:0a:6d:e0:30: fc:93:53:38:5b:18:75:7f:95:ea:03:a6:03:64:20: 2b:6c:c1:1c:db:8c:86:f7:0d:e7:4f:13:8a:7e:26: 1e:23:4c:93:a8:8c:64:f2:45:76:b5:23:3a:a8:74: c8:f2:b2:a5:8a:ea:4a:c2:41:53:a7:ac:fe:77:4e: f3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C6:B8:99:B0:A0:A8:11:72:E2:B9:AB:3A:5D:56:AA:0C:99:8C:B9 X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.44.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:46:b2:70:86:f7:28:e3:cb:82:c3:51:30:15:bd:21:ed:64: b0:6e:ad:41:e2:6a:5d:6e:7f:34:d6:97:ae:67:21:41:08:54: 5a:cf:e1:fb:b6:3d:82:7b:f8:e8:4a:7b:0e:18:e0:a0:a0:ad: b3:55:ce:23:48:48:1f:ed:6f:dd:46:58:3a:a8:34:50:1b:f2: ae:14:53:12:8e:4d:7a:42:a5:cc:b0:ad:b7:bf:37:1b:b5:14: a1:aa:03:9d:5d:12:46:3e:2e:9b:1a:2e:70:a9:ec:72:b8:24: 96:13:b2:45:7f:df:c3:56:35:01:cd:43:76:21:f7:8f:4d:66: ff:66:b4:aa:ee:dd:76:49:af:fd:b1:39:f5:ff:be:34:65:8b: 7d:c9:77:e0:1b:9a:d7:c6:b5:04:62:f1:03:da:7e:4e:4f:4b: f4:43:3a:22:ac:99:43:b4:ce:c5:89:6f:ec:9b:8c:8d:4f:97: 8a:94:4b:42:98:04:cf:44:e6:ce:ba:d2:49:13:4d:03:6d:26: c3:08:13:8f:8d:e0:1c:ae:6a:50:2b:2b:9a:3c:17:2b:2f:72: cd:99:5e:9b:5d:33:ef:2a:4f:8e:8b:de:f4:43:75:35:52:a6: 7b:39:e2:45:d1:f5:ec:a4:56:e5:76:f2:1e:55:b5:80:76:54: 40:61:2e:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ/lWB2ABt6+coMnfU3ANXMmVfLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMDJaFw0yNzA1MDIwMjM2MDJaMDMxMTAvBgNV BAMTKEFCQzZCODk5QjBBMEE4MTE3MkUyQjlBQjNBNUQ1NkFBMEM5OThDQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBORHxeiiYgDa06U3Js7ZMkMKR cx3A0qRqY3lRUjB4phLvgF/5awNmT5LZJN4WV8uelngug19sIEbpeH90ljWSEnt+ DWhcqEbjHgC8pKMBlOgRMnsWtZAeYBYals2PxYt1TfN8D18Xq/us3P6EoIK/S3wQ zhBkUOAYU/B/Tb25eX2o04bCl9gbL3tSDjNYIoiNtBRi33OT2diIAZpQAU/zi7xC LfdwcAzOgjHXFNg/VbDYPzaguhx3zPdcsmwNCm3gMPyTUzhbGHV/leoDpgNkICts wRzbjIb3DedPE4p+Jh4jTJOojGTyRXa1IzqodMjysqWK6krCQVOnrP53TvOJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUq8a4mbCgqBFy4rmrOl1WqgyZjLkwHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByposMA0GCSqG SIb3DQEBCwUAA4IBAQAPRrJwhvco48uCw1EwFb0h7WSwbq1B4mpdbn801peuZyFB CFRaz+H7tj2Ce/joSnsOGOCgoK2zVc4jSEgf7W/dRlg6qDRQG/KuFFMSjk16QqXM sK23vzcbtRShqgOdXRJGPi6bGi5wqexyuCSWE7JFf9/DVjUBzUN2IfePTWb/ZrSq 7t12Sa/9sTn1/740ZYt9yXfgG5rXxrUEYvED2n5OT0v0QzoirJlDtM7FiW/sm4yN T5eKlEtCmATPRObOutJJE00DbSbDCBOPjeAcrmpQKyuaPBcrL3LNmV6bXTPvKk+O i970Q3U1UqZ7OeJF0fXspFbldvIeVbWAdlRAYS6K -----END CERTIFICATE-----Generated at Tue May 5 15:06:52 2026 by rpki-client