$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: nS2kYK0reE2AsGKi7EPWuF7aJpnOGuNLNpN/XmzL+PQ= Subject key identifier: 7A:4E:0C:BE:FA:5A:8F:83:7F:2C:B8:A2:F2:2C:91:E0:11:74:4D:9C Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 7874F9172FC989F341265CE51E9A8152DC2D2FAA Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:29 +0000 ROA not before: Sun 03 May 2026 03:05:29 +0000 ROA not after: Sun 02 May 2027 03:10:29 +0000 asID: 63859 IP address blocks: 202.152.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:74:f9:17:2f:c9:89:f3:41:26:5c:e5:1e:9a:81:52:dc:2d:2f:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:29 2026 GMT Not After : May 2 03:10:29 2027 GMT Subject: CN=7A4E0CBEFA5A8F837F2CB8A2F22C91E011744D9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0b:fa:dd:51:f1:1f:dc:57:49:42:05:30:37: d8:e2:0b:bd:e2:ff:2b:3c:8b:a3:13:d1:63:09:50: 7c:9a:65:84:48:90:f7:8d:94:68:49:fa:0f:20:f6: 8d:62:de:46:d7:b2:64:b7:7e:0d:29:76:26:d6:b5: 64:c9:fb:6a:29:ee:0d:44:09:f5:3a:35:55:35:b2: 0e:0a:63:2c:3d:a5:11:da:07:75:32:89:81:77:53: 74:d1:8f:b9:97:ab:86:cf:26:07:12:51:07:ca:69: 29:dc:f0:1c:69:06:27:64:6a:49:6a:2d:46:a5:8b: b7:49:39:5d:4c:41:3e:3f:81:a4:6c:30:d2:0a:c3: b6:63:31:80:0a:c6:1a:b1:dc:25:0d:60:5b:99:3f: e5:aa:6e:4f:df:37:5e:06:4c:dc:ba:bc:19:47:a2: ab:0d:4a:a9:9a:78:a7:64:7e:b6:d8:9c:fa:e2:d8: f3:31:0a:7a:09:c8:1a:8c:77:24:4a:c9:1c:67:4f: 71:e1:e8:46:ce:93:1b:cb:33:86:ac:0c:73:a9:93: 00:7c:4e:29:23:fd:c9:99:68:a4:8d:be:cd:f3:a4: d7:15:b7:77:af:32:a4:d9:6a:ed:18:9c:1b:25:94: 5f:51:ad:c0:f0:89:95:5a:80:40:40:69:53:7c:d1: 7b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4E:0C:BE:FA:5A:8F:83:7F:2C:B8:A2:F2:2C:91:E0:11:74:4D:9C X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.207.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:8d:4f:85:bf:eb:35:7c:15:4f:36:28:45:e1:fa:a9:48:a4: 40:e3:9a:2c:69:4a:6e:f7:d7:e2:b8:7e:97:e8:c1:c6:22:85: 56:71:f0:ea:d2:87:d2:ef:d8:b2:58:30:cc:3f:78:95:13:3b: e0:55:ce:86:0a:92:6b:f7:df:63:53:5b:d8:00:d2:6a:e0:ff: 60:7d:73:65:de:bb:0d:cd:72:d0:be:41:d1:e6:95:8b:3f:ca: ba:a3:85:2b:c9:a0:a4:2c:d5:93:44:70:dc:4c:5b:d2:af:95: 54:ee:b0:02:ff:45:9f:a8:ae:18:8c:28:dd:da:1b:3c:e4:a8: 54:3c:cc:fe:a2:f1:7c:a6:7d:40:c8:3a:3e:80:70:fb:5b:a0: 6d:10:05:d6:5e:1c:3a:25:ef:39:f1:67:03:1e:18:29:26:58: 4c:ff:cd:a0:e9:b6:67:21:1a:87:c2:70:87:00:f3:d9:57:f5: 35:66:1f:46:23:51:cf:a6:67:58:57:c8:fb:d8:1d:c2:18:53: e8:76:76:4a:d4:e4:89:8b:34:2a:9b:fb:9e:f8:18:4e:f9:7b: e5:29:de:a3:0c:e1:70:8f:db:ec:13:e6:62:c7:98:68:27:84: 39:f4:2a:a5:5d:90:26:81:db:2a:40:21:d7:2b:67:50:4d:21: b9:73:52:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeHT5Fy/JifNBJlzlHpqBUtwtL6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MjlaFw0yNzA1MDIwMzEwMjlaMDMxMTAvBgNV BAMTKDdBNEUwQ0JFRkE1QThGODM3RjJDQjhBMkYyMkM5MUUwMTE3NDREOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCC/rdUfEf3FdJQgUwN9jiC73i /ys8i6MT0WMJUHyaZYRIkPeNlGhJ+g8g9o1i3kbXsmS3fg0pdibWtWTJ+2op7g1E CfU6NVU1sg4KYyw9pRHaB3UyiYF3U3TRj7mXq4bPJgcSUQfKaSnc8BxpBidkaklq LUali7dJOV1MQT4/gaRsMNIKw7ZjMYAKxhqx3CUNYFuZP+Wqbk/fN14GTNy6vBlH oqsNSqmaeKdkfrbYnPri2PMxCnoJyBqMdyRKyRxnT3Hh6EbOkxvLM4asDHOpkwB8 Tikj/cmZaKSNvs3zpNcVt3evMqTZau0YnBsllF9RrcDwiZVagEBAaVN80XupAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUek4Mvvpaj4N/LLii8iyR4BF0TZwwHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjPMA0GCSqG SIb3DQEBCwUAA4IBAQBLjU+Fv+s1fBVPNihF4fqpSKRA45osaUpu99fiuH6X6MHG IoVWcfDq0ofS79iyWDDMP3iVEzvgVc6GCpJr999jU1vYANJq4P9gfXNl3rsNzXLQ vkHR5pWLP8q6o4UryaCkLNWTRHDcTFvSr5VU7rAC/0WfqK4YjCjd2hs85KhUPMz+ ovF8pn1AyDo+gHD7W6BtEAXWXhw6Je858WcDHhgpJlhM/82g6bZnIRqHwnCHAPPZ V/U1Zh9GI1HPpmdYV8j72B3CGFPodnZK1OSJizQqm/ue+BhO+XvlKd6jDOFwj9vs E+Zix5hoJ4Q59CqlXZAmgdsqQCHXK2dQTSG5c1IN -----END CERTIFICATE-----Generated at Wed May 13 23:07:31 2026 by rpki-client