$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: NlqJ6u6BebCxJ7bsse0gRH5h6BQukMf2w3tldo1PwRQ= Subject key identifier: 4F:63:79:04:1E:51:D8:0C:17:4B:4D:82:C2:E9:AD:52:84:07:6F:1E Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 49D0D99396DA7A6317D23CF8D311B0051ECDCB6F Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:38 +0000 ROA not before: Sun 03 May 2026 03:05:38 +0000 ROA not after: Sun 02 May 2027 03:10:38 +0000 asID: 63859 IP address blocks: 202.152.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d0:d9:93:96:da:7a:63:17:d2:3c:f8:d3:11:b0:05:1e:cd:cb:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:38 2026 GMT Not After : May 2 03:10:38 2027 GMT Subject: CN=4F6379041E51D80C174B4D82C2E9AD5284076F1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:94:36:d2:b3:19:5a:92:f1:79:42:dd:cf:53: c7:39:77:e9:16:ca:d9:fc:32:2f:17:b8:43:cf:bd: 26:71:58:8c:56:e9:7f:fa:e3:70:7f:69:8c:0b:31: e4:70:27:2f:81:a3:3b:de:45:9b:c3:a5:e0:70:9d: df:9d:2a:1b:73:29:e7:eb:cd:df:a8:7a:5c:0c:04: 94:a7:83:02:92:29:0e:c2:fc:78:52:d3:bd:a9:32: e0:2c:5b:e0:f4:1b:a1:e6:fa:e1:9c:02:14:42:79: a7:a9:0a:33:5a:0c:46:d7:d3:52:8e:88:40:7d:94: d8:d5:32:99:58:e3:d3:d5:e5:68:d8:8a:ca:a8:f2: d2:01:46:f1:24:be:85:c0:61:f5:da:82:10:4d:6a: b6:71:ef:9d:57:34:1b:1d:d4:05:b9:02:9d:29:95: c7:44:45:96:24:10:8f:5f:22:1f:ec:09:da:f8:be: 89:ac:ab:1b:93:ba:e5:e1:25:54:6f:92:69:55:0f: 62:41:1a:55:3f:be:01:a2:66:22:92:21:58:13:d2: 3f:b2:21:df:04:d0:7c:78:1d:72:92:ff:7e:84:cc: 9d:e4:3d:18:03:11:2f:b7:f2:08:b7:b6:ce:d0:33: aa:b9:27:ce:22:81:1f:b7:27:4a:a3:3f:7f:db:be: 21:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:63:79:04:1E:51:D8:0C:17:4B:4D:82:C2:E9:AD:52:84:07:6F:1E X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.197.0/24 Signature Algorithm: sha256WithRSAEncryption 68:d4:14:1a:78:ee:3a:71:19:d0:e5:54:44:1a:fe:79:9f:a4: 58:0c:9a:87:fe:59:1c:7c:08:17:32:c1:5a:1f:26:3c:50:c9: f6:96:3f:75:7d:5d:7d:87:3a:25:b9:42:81:95:de:ba:93:02: a8:85:74:98:1e:d3:8d:71:6b:f1:0b:ae:3a:90:bb:43:64:a0: 3c:59:34:59:35:80:76:24:4f:b8:a9:ec:c0:8f:3b:ca:b8:7d: 73:ad:0a:be:a4:0b:99:11:bd:73:38:c4:07:f6:f8:7d:c7:f4: 01:ec:4b:d0:e0:b1:f9:4e:ef:da:2d:0c:e0:32:5c:00:1f:e1: 5c:f0:81:37:0f:ce:a0:0b:6c:19:54:75:8a:f6:60:43:85:66: 61:99:85:82:a5:14:74:87:3f:c1:50:52:37:d0:08:db:3a:0a: c8:ec:72:8c:00:59:29:8d:2a:48:8e:d3:9f:5c:e8:2c:ca:0b: 9c:b9:88:3d:ab:20:b7:2f:f7:26:93:ce:a8:f1:f0:4c:e3:c9: 1a:d9:4a:5f:9c:52:fe:4d:80:b2:61:69:32:c4:78:90:3b:a9: a5:67:0b:54:fb:38:fd:8f:fb:33:ce:72:6a:a0:1b:50:d0:73: 9e:e9:c7:67:a2:57:66:3f:d3:58:d4:7c:7d:1d:0c:b2:fb:06: e6:a1:a8:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSdDZk5baemMX0jz40xGwBR7Ny28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzhaFw0yNzA1MDIwMzEwMzhaMDMxMTAvBgNV BAMTKDRGNjM3OTA0MUU1MUQ4MEMxNzRCNEQ4MkMyRTlBRDUyODQwNzZGMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCylDbSsxlakvF5Qt3PU8c5d+kW ytn8Mi8XuEPPvSZxWIxW6X/643B/aYwLMeRwJy+BozveRZvDpeBwnd+dKhtzKefr zd+oelwMBJSngwKSKQ7C/HhS072pMuAsW+D0G6Hm+uGcAhRCeaepCjNaDEbX01KO iEB9lNjVMplY49PV5WjYisqo8tIBRvEkvoXAYfXaghBNarZx751XNBsd1AW5Ap0p lcdERZYkEI9fIh/sCdr4vomsqxuTuuXhJVRvkmlVD2JBGlU/vgGiZiKSIVgT0j+y Id8E0Hx4HXKS/36EzJ3kPRgDES+38gi3ts7QM6q5J84igR+3J0qjP3/bviE3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT2N5BB5R2AwXS02CwumtUoQHbx4wHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjFMA0GCSqG SIb3DQEBCwUAA4IBAQBo1BQaeO46cRnQ5VREGv55n6RYDJqH/lkcfAgXMsFaHyY8 UMn2lj91fV19hzoluUKBld66kwKohXSYHtONcWvxC646kLtDZKA8WTRZNYB2JE+4 qezAjzvKuH1zrQq+pAuZEb1zOMQH9vh9x/QB7EvQ4LH5Tu/aLQzgMlwAH+Fc8IE3 D86gC2wZVHWK9mBDhWZhmYWCpRR0hz/BUFI30AjbOgrI7HKMAFkpjSpIjtOfXOgs ygucuYg9qyC3L/cmk86o8fBM48ka2UpfnFL+TYCyYWkyxHiQO6mlZwtU+zj9j/sz znJqoBtQ0HOe6cdnoldmP9NY1Hx9HQyy+wbmoail -----END CERTIFICATE-----Generated at Wed May 13 23:07:37 2026 by rpki-client