$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Dl92bN4KroHhoU6iZvn5AO9/ktEfnB98FdoOajolvAY= Subject key identifier: D0:9D:77:34:4E:01:58:38:E1:16:47:7A:87:8E:38:94:B2:2F:5A:7D Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 30D6AB649815AEC9096A1BB2DE4FD35F9D05FD50 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:33 +0000 ROA not before: Sun 03 May 2026 03:05:33 +0000 ROA not after: Sun 02 May 2027 03:10:33 +0000 asID: 63859 IP address blocks: 202.152.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d6:ab:64:98:15:ae:c9:09:6a:1b:b2:de:4f:d3:5f:9d:05:fd:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:33 2026 GMT Not After : May 2 03:10:33 2027 GMT Subject: CN=D09D77344E015838E116477A878E3894B22F5A7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:33:69:4c:8f:57:38:95:01:64:67:4e:68:e8: 13:22:a7:f3:25:12:5f:30:53:c4:57:36:59:ce:55: 29:b3:c0:7d:2f:42:9b:bc:f1:7f:4e:43:95:78:04: d9:14:4b:0b:d0:df:f8:cf:56:84:6f:2e:38:1f:2e: 36:94:96:71:da:f0:e4:05:04:76:ba:db:f3:b3:62: 3c:2e:7c:87:44:81:e0:3a:82:69:b7:df:02:c6:d7: 0d:24:da:09:26:75:17:63:13:a9:cb:cf:8e:76:51: b6:c3:01:61:73:60:f9:1a:56:aa:67:80:cb:a8:b2: d3:b5:7c:bc:f8:cf:f2:45:8b:f5:9c:64:af:6e:29: 43:bc:1b:da:6d:61:5c:7f:e4:f4:37:c9:99:bf:1b: 49:35:78:24:f8:70:46:3b:2c:e6:43:ad:79:d5:81: af:c4:4c:84:71:34:38:0a:bb:f1:99:e4:84:a5:23: 65:2f:0a:75:aa:a3:53:ba:94:6f:5c:d7:93:6e:1d: 7c:05:95:8a:14:51:03:c6:4c:cb:93:49:5d:27:4a: 0d:31:b3:71:cf:01:9c:87:2b:58:1a:d5:e3:ee:58: 13:51:7e:80:5d:51:22:cf:1c:13:0b:c0:51:98:ad: c1:7a:88:f0:30:e3:18:5f:f2:78:ac:a6:aa:6a:ae: a8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9D:77:34:4E:01:58:38:E1:16:47:7A:87:8E:38:94:B2:2F:5A:7D X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.199.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:f9:88:7f:0a:48:16:dc:95:ae:a7:e1:c8:57:43:27:9f:a5: 7b:5f:c5:f2:ff:e8:29:71:43:89:61:8a:db:43:a5:85:90:78: 41:4b:35:c3:7f:82:58:74:4e:70:8e:01:5c:25:af:2a:fd:66: 42:76:84:9c:6d:1c:67:fc:ab:12:aa:d2:3c:8f:8d:d6:5a:06: 7d:07:4e:f9:54:14:33:a3:33:c5:84:a8:f9:d7:a3:55:bf:ed: d7:3e:e7:e0:34:01:6a:a9:a5:bb:3b:bf:76:00:74:31:15:15: 1e:39:8d:a5:09:0d:a9:80:d9:d8:c8:95:e2:55:79:b0:a2:cb: 6b:c3:64:5c:15:4a:52:31:29:3d:9e:e6:f0:32:ca:31:e2:f4: fc:e3:a3:73:21:08:e3:88:3f:97:b8:98:eb:f3:d5:6f:5f:a2: cc:ff:13:64:20:3f:16:30:00:d9:e6:c6:58:ca:51:a4:52:32: a4:13:42:7b:22:7c:d7:ce:33:5f:b0:94:b4:c1:95:80:c2:3c: 8c:c1:5d:ca:50:10:7b:f4:f0:c4:cd:e8:c4:3f:c6:55:a2:a4: 71:42:00:4c:3c:34:db:a5:d3:77:fc:bc:71:61:45:9c:46:26: da:c8:18:e6:f4:78:07:9f:bf:94:dc:7a:90:eb:ce:23:75:a0: ed:97:63:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMNarZJgVrskJahuy3k/TX50F/VAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzNaFw0yNzA1MDIwMzEwMzNaMDMxMTAvBgNV BAMTKEQwOUQ3NzM0NEUwMTU4MzhFMTE2NDc3QTg3OEUzODk0QjIyRjVBN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6M2lMj1c4lQFkZ05o6BMip/Ml El8wU8RXNlnOVSmzwH0vQpu88X9OQ5V4BNkUSwvQ3/jPVoRvLjgfLjaUlnHa8OQF BHa62/OzYjwufIdEgeA6gmm33wLG1w0k2gkmdRdjE6nLz452UbbDAWFzYPkaVqpn gMuostO1fLz4z/JFi/WcZK9uKUO8G9ptYVx/5PQ3yZm/G0k1eCT4cEY7LOZDrXnV ga/ETIRxNDgKu/GZ5ISlI2UvCnWqo1O6lG9c15NuHXwFlYoUUQPGTMuTSV0nSg0x s3HPAZyHK1ga1ePuWBNRfoBdUSLPHBMLwFGYrcF6iPAw4xhf8nispqpqrqinAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0J13NE4BWDjhFkd6h444lLIvWn0wHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjHMA0GCSqG SIb3DQEBCwUAA4IBAQAt+Yh/CkgW3JWup+HIV0Mnn6V7X8Xy/+gpcUOJYYrbQ6WF kHhBSzXDf4JYdE5wjgFcJa8q/WZCdoScbRxn/KsSqtI8j43WWgZ9B075VBQzozPF hKj516NVv+3XPufgNAFqqaW7O792AHQxFRUeOY2lCQ2pgNnYyJXiVXmwostrw2Rc FUpSMSk9nubwMsox4vT846NzIQjjiD+XuJjr89VvX6LM/xNkID8WMADZ5sZYylGk UjKkE0J7InzXzjNfsJS0wZWAwjyMwV3KUBB79PDEzejEP8ZVoqRxQgBMPDTbpdN3 /LxxYUWcRibayBjm9HgHn7+U3HqQ684jdaDtl2Oc -----END CERTIFICATE-----Generated at Wed May 13 23:07:36 2026 by rpki-client