$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 85ocWH/CGllr8ECiudr/CN5VLg2ydbZ+Y4D2UVzB/yE= Subject key identifier: 1A:06:0F:DB:5B:6E:28:8B:6D:83:4C:C8:B2:CE:E3:9B:1C:C9:6D:2A Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 5FC4BDFD447B48D34FFF2702BF523016E1100825 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:32 +0000 ROA not before: Sun 03 May 2026 03:05:32 +0000 ROA not after: Sun 02 May 2027 03:10:32 +0000 asID: 63859 IP address blocks: 202.152.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c4:bd:fd:44:7b:48:d3:4f:ff:27:02:bf:52:30:16:e1:10:08:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:32 2026 GMT Not After : May 2 03:10:32 2027 GMT Subject: CN=1A060FDB5B6E288B6D834CC8B2CEE39B1CC96D2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:39:96:55:d9:61:1c:9d:3f:43:2d:2a:e0:40: 98:42:29:c7:87:01:39:f9:ea:98:e0:85:e0:3d:c2: 30:b4:02:7c:26:cd:75:5f:a8:5d:c3:0a:53:d4:53: c6:e4:80:ed:2d:d1:8e:0d:ea:c1:da:f2:e7:d8:d8: 1f:23:94:c0:6e:6d:a0:98:76:30:5b:a2:f6:b2:e6: fe:89:36:89:6b:d9:ef:75:a6:67:60:01:02:c4:8b: 05:cf:02:02:3e:cf:f1:03:93:2d:e0:d4:1d:23:de: 58:93:cb:24:19:98:ea:ec:9a:a3:b4:00:1b:f6:c0: 4b:e3:ae:d4:b7:47:f3:ab:ab:15:0a:45:7d:89:d1: c2:22:77:dc:6f:46:02:ff:81:32:de:7a:15:1f:c8: aa:8c:be:b2:d1:67:58:f9:04:d0:a8:53:3c:58:5c: 88:34:11:72:7b:58:32:21:26:42:6c:27:81:aa:7f: a3:41:8d:68:78:f5:7c:89:4d:70:75:7a:b9:59:46: f0:a2:a6:e1:d8:d9:1b:52:94:50:3d:3b:a5:dc:3e: e7:52:cc:18:30:3e:88:fb:e3:7e:76:ef:cd:3a:26: 05:b7:6e:77:20:19:42:c4:79:82:b0:c8:20:95:40: f0:41:17:a8:44:5d:1f:52:f8:70:3c:5a:d5:57:bb: 7d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:06:0F:DB:5B:6E:28:8B:6D:83:4C:C8:B2:CE:E3:9B:1C:C9:6D:2A X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.195.0/24 Signature Algorithm: sha256WithRSAEncryption 53:3e:80:17:63:49:97:65:df:b4:a6:36:5a:d4:c8:8c:26:8e: d4:59:b9:40:1c:33:b8:7b:fb:b0:dd:6c:a7:ed:c6:eb:57:d9: c7:f2:c6:6b:33:22:72:1e:b0:10:2d:95:66:8e:f1:f8:e2:62: 83:6d:67:ee:9a:56:06:ed:d1:df:b1:8e:15:00:ea:e2:a2:38: 14:28:ea:f8:a8:48:fc:29:8e:59:8f:fc:c6:75:67:16:48:13: ab:5e:c1:f6:8a:5e:da:a3:ac:c3:37:13:21:05:e2:d7:af:95: e0:30:f3:4c:1f:e7:44:fa:00:ff:de:07:1d:01:eb:2f:bf:eb: 61:2c:0c:78:4b:ad:cf:ce:ff:bc:e8:3d:09:3e:8c:05:cf:c8: 5d:07:c1:8d:27:80:99:8c:4f:cf:08:ec:9c:9d:d7:99:48:e0: 2c:ff:65:fa:7e:5d:e4:0c:b8:b5:8b:27:bf:50:dc:b6:70:28: 30:c7:65:7b:2d:6b:c5:12:f3:dc:ad:cd:c6:71:3f:b6:51:26: 53:8a:67:68:d7:51:11:58:6d:39:bf:f3:b4:8c:bd:06:43:9f: 11:dd:1a:be:2b:8b:ac:bc:0a:4f:5e:bd:f4:df:b8:e8:3b:8f: 47:b6:52:0f:23:50:51:3c:56:f3:52:24:84:8f:d7:32:49:76: 3a:ec:16:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX8S9/UR7SNNP/ycCv1IwFuEQCCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzJaFw0yNzA1MDIwMzEwMzJaMDMxMTAvBgNV BAMTKDFBMDYwRkRCNUI2RTI4OEI2RDgzNENDOEIyQ0VFMzlCMUNDOTZEMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoOZZV2WEcnT9DLSrgQJhCKceH ATn56pjgheA9wjC0AnwmzXVfqF3DClPUU8bkgO0t0Y4N6sHa8ufY2B8jlMBubaCY djBbovay5v6JNolr2e91pmdgAQLEiwXPAgI+z/EDky3g1B0j3liTyyQZmOrsmqO0 ABv2wEvjrtS3R/OrqxUKRX2J0cIid9xvRgL/gTLeehUfyKqMvrLRZ1j5BNCoUzxY XIg0EXJ7WDIhJkJsJ4Gqf6NBjWh49XyJTXB1erlZRvCipuHY2RtSlFA9O6XcPudS zBgwPoj743527806JgW3bncgGULEeYKwyCCVQPBBF6hEXR9S+HA8WtVXu30XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGgYP21tuKIttg0zIss7jmxzJbSowHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjDMA0GCSqG SIb3DQEBCwUAA4IBAQBTPoAXY0mXZd+0pjZa1MiMJo7UWblAHDO4e/uw3Wyn7cbr V9nH8sZrMyJyHrAQLZVmjvH44mKDbWfumlYG7dHfsY4VAOriojgUKOr4qEj8KY5Z j/zGdWcWSBOrXsH2il7ao6zDNxMhBeLXr5XgMPNMH+dE+gD/3gcdAesvv+thLAx4 S63Pzv+86D0JPowFz8hdB8GNJ4CZjE/PCOycndeZSOAs/2X6fl3kDLi1iye/UNy2 cCgwx2V7LWvFEvPcrc3GcT+2USZTimdo11ERWG05v/O0jL0GQ58R3Rq+K4usvApP Xr3037joO49HtlIPI1BRPFbzUiSEj9cySXY67Bad -----END CERTIFICATE-----Generated at Wed May 13 23:07:37 2026 by rpki-client