$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: z7Um8WvG2teb7OjL83OZQPcUp0FYWY2MqH+ELp6HvUg= Subject key identifier: 99:5E:C6:8C:18:D6:E6:CD:72:6B:AD:7E:BD:7F:5F:86:D3:6D:B9:0B Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 79C54037865334F3630F5EEA6A442DD541013C6B Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e382e302f32332d3234203d3e2034343334.roa Signing time: Sun 03 May 2026 02:36:12 +0000 ROA not before: Sun 03 May 2026 02:31:12 +0000 ROA not after: Sun 02 May 2027 02:36:12 +0000 asID: 4434 IP address blocks: 202.154.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c5:40:37:86:53:34:f3:63:0f:5e:ea:6a:44:2d:d5:41:01:3c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:12 2026 GMT Not After : May 2 02:36:12 2027 GMT Subject: CN=995EC68C18D6E6CD726BAD7EBD7F5F86D36DB90B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:d5:cb:ca:9a:9a:2a:b6:2b:6f:88:a0:33: b0:ee:53:dc:03:9b:d5:e9:c1:f1:5f:49:b6:6a:01: 44:ab:09:86:e1:9b:7e:9a:d5:67:ec:f4:54:27:24: 1f:44:b7:b5:5f:95:4a:49:68:28:2e:e7:b1:af:fd: bd:8c:5c:a7:d7:5e:98:40:84:eb:a3:9e:6e:a5:5b: 91:ed:31:28:53:00:a1:29:4e:33:a4:7a:89:ba:5d: ea:12:ac:9b:aa:95:86:24:3e:1e:6d:5d:12:20:47: 0a:b5:18:1b:3a:34:62:91:c2:fb:22:77:cc:dd:86: d7:e8:68:a4:d8:75:a8:d5:c9:2f:a0:d3:40:d8:7b: 2f:77:95:10:8f:3f:b6:b3:49:a0:cd:05:73:7a:91: cc:99:67:b4:ed:6b:3d:d3:94:f3:ab:30:56:96:7d: 35:d9:24:46:a8:82:86:74:62:0d:f2:db:64:f0:f6: ff:65:87:d5:f0:0b:d1:e0:9e:1b:65:a7:95:33:24: 45:2b:6f:5b:53:e5:2c:a8:b3:29:e8:ff:13:3b:64: 38:d0:c1:7d:2c:8a:03:35:c6:b3:69:03:d2:65:93: f2:b7:44:e2:ab:e4:b7:c3:94:56:0a:fa:40:7b:8e: 0c:63:24:5f:94:7c:d2:03:d3:79:01:61:80:7c:5b: b2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5E:C6:8C:18:D6:E6:CD:72:6B:AD:7E:BD:7F:5F:86:D3:6D:B9:0B X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.8.0/23 Signature Algorithm: sha256WithRSAEncryption ca:d0:0b:e4:33:1e:9f:77:72:57:bc:7c:9b:e1:5e:1a:d2:8d: 4b:04:59:f5:47:8c:76:f9:67:c0:1a:fd:96:71:7e:7f:bc:9e: 6f:64:d2:7b:c6:ee:00:22:55:a6:b8:fd:6b:29:04:92:8a:bf: 83:30:91:f6:db:23:33:8f:35:5d:80:aa:fc:31:0b:00:9e:de: e9:57:95:b1:76:d4:b6:ac:59:f9:fb:29:f0:da:f5:d4:00:4e: 78:0e:63:2b:d6:14:20:3b:4a:59:9f:bf:51:61:c1:f8:cb:d9: 6e:c8:72:fc:0a:b2:cb:4a:e2:3f:47:8d:88:10:99:9b:86:76: 68:be:7f:aa:8f:90:51:59:8e:cd:15:8a:fa:f7:91:d1:0f:36: 59:d8:e1:f6:86:0b:a7:e8:8b:a5:09:01:cb:ed:09:4b:48:71: e1:fc:20:d9:41:6b:dd:77:a3:dc:40:d8:30:a6:2e:57:4a:e0: 31:45:ac:d9:36:e6:ba:05:05:f3:fb:a7:6e:de:ec:d0:d3:f7: b7:5a:3b:67:b2:0d:12:8b:e7:b7:be:99:c2:88:5c:57:49:93: 50:4d:f8:e3:a0:28:02:16:57:31:1e:d2:4a:88:92:66:43:bc: ae:f0:b6:d4:ad:f5:68:f0:2d:b6:9b:28:51:c9:c8:ca:74:1a: 80:13:01:5b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUecVAN4ZTNPNjD17qakQt1UEBPGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMTJaFw0yNzA1MDIwMjM2MTJaMDMxMTAvBgNV BAMTKDk5NUVDNjhDMThENkU2Q0Q3MjZCQUQ3RUJEN0Y1Rjg2RDM2REI5MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrTdXLypqaKrYrb4igM7DuU9wD m9XpwfFfSbZqAUSrCYbhm36a1Wfs9FQnJB9Et7VflUpJaCgu57Gv/b2MXKfXXphA hOujnm6lW5HtMShTAKEpTjOkeom6XeoSrJuqlYYkPh5tXRIgRwq1GBs6NGKRwvsi d8zdhtfoaKTYdajVyS+g00DYey93lRCPP7azSaDNBXN6kcyZZ7Ttaz3TlPOrMFaW fTXZJEaogoZ0Yg3y22Tw9v9lh9XwC9Hgnhtlp5UzJEUrb1tT5Syosyno/xM7ZDjQ wX0sigM1xrNpA9Jlk/K3ROKr5LfDlFYK+kB7jgxjJF+UfNID03kBYYB8W7KNAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUmV7GjBjW5s1ya61+vX9fhtNtuQswHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTM4MmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmggwDQYJKoZIhvcNAQEL BQADggEBAMrQC+QzHp93cle8fJvhXhrSjUsEWfVHjHb5Z8Aa/ZZxfn+8nm9k0nvG 7gAiVaa4/WspBJKKv4MwkfbbIzOPNV2AqvwxCwCe3ulXlbF21LasWfn7KfDa9dQA TngOYyvWFCA7Slmfv1FhwfjL2W7IcvwKsstK4j9HjYgQmZuGdmi+f6qPkFFZjs0V ivr3kdEPNlnY4faGC6foi6UJAcvtCUtIceH8INlBa913o9xA2DCmLldK4DFFrNk2 5roFBfP7p27e7NDT97daO2eyDRKL57e+mcKIXFdJk1BN+OOgKAIWVzEe0kqIkmZD vK7wttSt9WjwLbabKFHJyMp0GoATAVs= -----END CERTIFICATE-----Generated at Tue May 5 15:04:58 2026 by rpki-client