$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230362e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: xIMJNAAfJUu4Zk7eKaIYdIfnGIAy47WR2He8EYWfO1w= Subject key identifier: 73:55:B2:C8:F5:EA:D4:27:6B:91:88:DA:B0:52:03:12:E3:16:9E:03 Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 6EAA1AB3F72BAEC6DAA05417700FF0C6F0FC2953 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230362e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:30 +0000 ROA not before: Sun 03 May 2026 03:05:30 +0000 ROA not after: Sun 02 May 2027 03:10:30 +0000 asID: 63859 IP address blocks: 202.152.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:aa:1a:b3:f7:2b:ae:c6:da:a0:54:17:70:0f:f0:c6:f0:fc:29:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:30 2026 GMT Not After : May 2 03:10:30 2027 GMT Subject: CN=7355B2C8F5EAD4276B9188DAB0520312E3169E03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5d:54:4f:8f:56:a0:a6:92:b3:23:d1:c3:04: 08:84:ff:48:19:f7:60:78:f7:1a:c0:45:e0:9a:ce: 50:53:31:9d:b9:c9:6d:a4:25:5d:86:54:9a:fc:47: 6e:0c:59:a9:49:04:9d:89:ea:5f:67:80:dd:a2:9e: 38:7b:6b:cc:d1:0c:d4:fa:f7:34:4a:9c:2e:22:1e: d1:1e:38:8f:18:ae:e1:62:6d:6b:1a:ff:52:64:9b: 8e:29:31:3b:b3:e3:e4:2d:a8:76:14:ae:97:2d:4b: ca:48:f4:78:7b:4b:0a:83:37:ae:c3:9d:4b:9e:20: c2:ba:2f:06:92:a6:24:bb:6d:dc:13:a0:77:e0:83: 55:f7:2b:60:d8:e0:db:91:c0:87:6b:aa:1e:13:f1: 53:1c:66:e8:c7:03:0e:f8:33:cd:02:75:b1:e5:a7: 2e:bf:d7:b1:8c:52:ec:55:4f:24:73:c6:19:2b:b8: 45:9e:4d:2e:be:30:29:67:43:57:a1:69:9d:14:ea: 59:78:a4:d5:90:f4:67:51:80:ed:eb:85:21:31:c3: ee:f1:03:a2:0f:ea:72:2a:0b:59:d6:87:49:0b:20: 47:1f:34:85:3a:11:57:93:b9:55:35:29:6f:4f:f6: c1:60:94:49:37:e0:4f:dc:65:42:6e:98:08:14:4c: 2c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:55:B2:C8:F5:EA:D4:27:6B:91:88:DA:B0:52:03:12:E3:16:9E:03 X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.206.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:35:03:3c:0a:23:22:48:77:31:20:09:9e:5d:68:6c:16:2a: 63:5c:68:ad:3b:3b:ae:86:be:00:fe:1c:3b:a7:14:a6:e5:ab: de:29:53:f5:c7:2c:97:91:7a:fc:3c:c3:12:9b:53:66:82:2c: 93:b8:7d:41:ad:37:33:e4:b6:8e:80:da:cf:39:72:3e:42:af: f2:ed:5f:17:73:f7:b4:83:87:91:ff:cc:3d:bd:db:22:67:ab: dd:00:3d:6c:4a:d7:46:a4:c5:aa:dd:55:c2:d5:72:6d:2c:e1: 5e:2b:7e:14:8d:dd:0a:85:52:a5:25:2d:ab:22:16:e8:43:2b: fd:23:f9:9d:88:ec:2f:53:49:7b:7c:e1:21:b9:1e:42:fa:b0: e9:55:f9:ee:22:45:37:7d:4a:48:b1:e7:3a:78:a0:28:9f:8f: 47:e2:cb:43:5c:fd:a3:04:43:76:c5:9b:db:34:04:0d:79:07: aa:ac:d4:8d:a7:dc:d6:43:ae:ae:15:47:b1:d2:53:46:de:3f: ed:ed:71:66:1a:b2:2e:75:6d:ff:4c:6c:15:a2:c7:bd:0f:00: 7f:01:be:9a:2c:c6:14:e9:b6:2b:24:c5:ad:dd:cc:70:f0:31: b4:72:5d:c8:71:1d:ff:4f:99:20:67:c1:61:63:79:9d:16:60: 63:ab:00:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbqoas/crrsbaoFQXcA/wxvD8KVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzBaFw0yNzA1MDIwMzEwMzBaMDMxMTAvBgNV BAMTKDczNTVCMkM4RjVFQUQ0Mjc2QjkxODhEQUIwNTIwMzEyRTMxNjlFMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeXVRPj1agppKzI9HDBAiE/0gZ 92B49xrAReCazlBTMZ25yW2kJV2GVJr8R24MWalJBJ2J6l9ngN2injh7a8zRDNT6 9zRKnC4iHtEeOI8YruFibWsa/1Jkm44pMTuz4+QtqHYUrpctS8pI9Hh7SwqDN67D nUueIMK6LwaSpiS7bdwToHfgg1X3K2DY4NuRwIdrqh4T8VMcZujHAw74M80CdbHl py6/17GMUuxVTyRzxhkruEWeTS6+MClnQ1ehaZ0U6ll4pNWQ9GdRgO3rhSExw+7x A6IP6nIqC1nWh0kLIEcfNIU6EVeTuVU1KW9P9sFglEk34E/cZUJumAgUTCxJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc1WyyPXq1CdrkYjasFIDEuMWngMwHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjOMA0GCSqG SIb3DQEBCwUAA4IBAQB/NQM8CiMiSHcxIAmeXWhsFipjXGitOzuuhr4A/hw7pxSm 5aveKVP1xyyXkXr8PMMSm1NmgiyTuH1BrTcz5LaOgNrPOXI+Qq/y7V8Xc/e0g4eR /8w9vdsiZ6vdAD1sStdGpMWq3VXC1XJtLOFeK34Ujd0KhVKlJS2rIhboQyv9I/md iOwvU0l7fOEhuR5C+rDpVfnuIkU3fUpIsec6eKAon49H4stDXP2jBEN2xZvbNAQN eQeqrNSNp9zWQ66uFUex0lNG3j/t7XFmGrIudW3/TGwVose9DwB/Ab6aLMYU6bYr JMWt3cxw8DG0cl3IcR3/T5kgZ8FhY3mdFmBjqwDU -----END CERTIFICATE-----Generated at Wed May 13 23:07:37 2026 by rpki-client