$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230302e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 9UdGVYlr2BpuU278InwTpLs2aULPcIQvnjKIhkcrwaU= Subject key identifier: 5F:7A:B7:28:66:80:36:F6:35:4D:66:4D:F6:B1:F9:7C:3E:E9:D0:AB Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 5FD2BAF965F1417825CFB2A853042F6314D53336 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230302e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:31 +0000 ROA not before: Sun 03 May 2026 03:05:31 +0000 ROA not after: Sun 02 May 2027 03:10:31 +0000 asID: 63859 IP address blocks: 202.152.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:d2:ba:f9:65:f1:41:78:25:cf:b2:a8:53:04:2f:63:14:d5:33:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:31 2026 GMT Not After : May 2 03:10:31 2027 GMT Subject: CN=5F7AB728668036F6354D664DF6B1F97C3EE9D0AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3b:82:6e:9a:ef:21:86:89:b0:66:e2:64:e2: 98:d1:31:fe:e5:94:0e:8f:fb:d7:fa:92:46:a7:f9: fe:72:8f:c2:7e:e6:c9:8b:e1:11:13:ca:81:26:53: 1b:7c:75:0e:50:1f:f0:a1:0a:24:36:9b:d0:31:01: 4e:25:85:4a:8d:d3:54:f8:20:eb:42:1d:58:5d:ac: 42:4f:9d:bf:96:dd:64:e1:09:aa:29:a6:a9:d7:f5: 80:b8:5c:84:98:78:8b:10:9d:34:46:8a:48:d2:b3: 04:6d:3c:e9:66:7b:71:9c:af:3e:20:7b:33:2d:23: 0c:ad:f8:76:9b:b1:dc:e4:fa:d6:ca:7b:df:28:1d: 02:1c:99:52:4f:ee:13:9c:a2:4a:05:4f:3d:78:7a: 47:be:48:ee:65:3b:98:cd:99:4c:20:1b:d1:67:62: 10:5b:19:e3:c7:d4:bf:25:79:60:31:b9:e6:a0:57: 23:31:de:29:9b:44:9d:6a:46:85:02:d3:ef:19:1a: 59:2c:23:f5:d5:b1:0e:c1:43:93:6c:06:59:70:39: aa:e4:4d:d8:00:71:b2:bd:fd:dc:68:40:2e:39:64: ff:7d:5e:98:0b:5d:9e:76:97:b0:38:38:05:ea:80: a6:17:8d:4a:5b:85:a3:71:02:75:6e:77:76:a1:08: 5d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7A:B7:28:66:80:36:F6:35:4D:66:4D:F6:B1:F9:7C:3E:E9:D0:AB X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.200.0/24 Signature Algorithm: sha256WithRSAEncryption 97:79:8b:0c:ca:e6:d3:e4:e4:d0:a6:bb:ed:6c:3d:bc:3d:a9: 04:1a:22:6c:23:ff:2f:fe:ba:a3:7b:68:26:4e:64:31:32:ad: 78:c7:68:5c:3e:1f:10:14:6b:22:43:7e:7e:29:d7:d5:63:f9: dc:14:cd:ff:a1:bd:8c:7c:03:20:91:55:0a:3c:65:8d:b7:3b: fb:04:43:99:f1:9a:2e:30:72:af:b1:0e:3d:e7:ed:2f:e0:a5: 23:97:ea:6e:6b:3a:3b:8c:fb:e6:a1:b6:c9:77:a6:13:ca:b4: 8b:51:af:93:fd:d6:02:e8:fb:c7:28:a6:fd:1a:36:fa:02:77: a1:6d:4b:7f:e1:b8:12:a9:2d:33:aa:fe:1d:7a:85:72:6d:29: 99:09:75:66:ef:f5:17:55:43:05:8f:ba:be:31:2c:ef:86:4d: 7d:a7:ab:1b:30:99:b2:04:78:3e:26:f5:e3:5a:e3:ce:a9:f6: f3:21:cb:b6:17:48:15:9b:c1:ec:24:c2:d6:74:27:18:d1:02: 52:cb:78:41:2b:8f:96:27:8b:a8:9d:37:81:4f:e3:bc:39:c4: a2:51:3f:3c:15:8b:2a:e1:93:b5:c6:e1:c9:61:b6:0f:c9:f1: 3c:1d:bc:fc:cc:f1:d4:94:c6:10:82:2d:5f:4e:e2:46:ad:07: 56:c1:20:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX9K6+WXxQXglz7KoUwQvYxTVMzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzFaFw0yNzA1MDIwMzEwMzFaMDMxMTAvBgNV BAMTKDVGN0FCNzI4NjY4MDM2RjYzNTRENjY0REY2QjFGOTdDM0VFOUQwQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiO4Jumu8hhomwZuJk4pjRMf7l lA6P+9f6kkan+f5yj8J+5smL4RETyoEmUxt8dQ5QH/ChCiQ2m9AxAU4lhUqN01T4 IOtCHVhdrEJPnb+W3WThCaoppqnX9YC4XISYeIsQnTRGikjSswRtPOlme3Gcrz4g ezMtIwyt+Habsdzk+tbKe98oHQIcmVJP7hOcokoFTz14eke+SO5lO5jNmUwgG9Fn YhBbGePH1L8leWAxueagVyMx3imbRJ1qRoUC0+8ZGlksI/XVsQ7BQ5NsBllwOark TdgAcbK9/dxoQC45ZP99XpgLXZ52l7A4OAXqgKYXjUpbhaNxAnVud3ahCF09AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX3q3KGaANvY1TWZN9rH5fD7p0KswHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjIMA0GCSqG SIb3DQEBCwUAA4IBAQCXeYsMyubT5OTQprvtbD28PakEGiJsI/8v/rqje2gmTmQx Mq14x2hcPh8QFGsiQ35+KdfVY/ncFM3/ob2MfAMgkVUKPGWNtzv7BEOZ8ZouMHKv sQ495+0v4KUjl+puazo7jPvmobbJd6YTyrSLUa+T/dYC6PvHKKb9Gjb6AnehbUt/ 4bgSqS0zqv4deoVybSmZCXVm7/UXVUMFj7q+MSzvhk19p6sbMJmyBHg+JvXjWuPO qfbzIcu2F0gVm8HsJMLWdCcY0QJSy3hBK4+WJ4uonTeBT+O8OcSiUT88FYsq4ZO1 xuHJYbYPyfE8Hbz8zPHUlMYQgi1fTuJGrQdWwSA8 -----END CERTIFICATE-----Generated at Wed May 13 23:07:31 2026 by rpki-client