$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e33342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: zsHR0wbbkYz2nQI2WOWsj1GB+qei9swaLXw0AIxkQyA= Subject key identifier: 12:8B:50:96:A2:FA:66:E8:D1:68:58:E0:11:8C:B2:E2:DD:AF:A4:DF Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 616ACEB0914A3DE2CAF6BC29FED4A2CCCE41147F Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa Signing time: Sun 03 May 2026 02:36:10 +0000 ROA not before: Sun 03 May 2026 02:31:10 +0000 ROA not after: Sun 02 May 2027 02:36:10 +0000 asID: 4434 IP address blocks: 202.154.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:6a:ce:b0:91:4a:3d:e2:ca:f6:bc:29:fe:d4:a2:cc:ce:41:14:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:10 2026 GMT Not After : May 2 02:36:10 2027 GMT Subject: CN=128B5096A2FA66E8D16858E0118CB2E2DDAFA4DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5a:b9:f3:51:fe:cb:14:84:50:2b:f1:db:3a: 0c:2a:0f:09:e5:96:50:41:b3:a6:07:09:f1:30:6e: 50:32:dd:12:97:b3:b6:18:82:31:b4:81:05:d5:21: 54:89:6a:13:64:91:3f:fa:09:e7:be:48:ef:3c:69: 50:ef:fc:ca:14:01:4d:51:3b:d5:1b:70:28:9d:76: 9b:14:84:4f:f6:e7:7e:83:e6:13:ce:9a:4d:b4:ed: 21:f8:8b:1b:4d:2f:9b:3f:e4:2e:c9:2c:b9:e5:8d: 41:6a:7e:c1:ef:35:be:5d:fc:9f:0e:89:75:12:50: 55:92:b9:95:1e:bd:20:da:50:af:ac:5a:fc:74:b9: 0c:fe:c3:2f:1c:dd:72:23:9e:de:f7:fa:a1:2d:65: b3:5d:f2:53:dc:57:be:ba:8c:3a:2e:22:32:9b:3b: 4e:9f:0a:ac:ec:83:9e:73:25:ac:03:ad:ec:30:cc: fa:a1:60:d5:4c:01:b3:61:a4:3d:50:d7:56:3e:2c: fa:5b:a5:7c:29:85:b0:a0:48:6a:1f:a6:02:0f:6c: 92:c6:d0:0c:13:15:09:ec:c4:1c:8b:0e:a8:5d:6a: 2d:25:37:2b:08:5f:ae:43:34:6d:39:fe:b8:87:5c: 52:53:bb:34:ba:db:d1:98:1b:14:84:24:b3:02:25: 6f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8B:50:96:A2:FA:66:E8:D1:68:58:E0:11:8C:B2:E2:DD:AF:A4:DF X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.34.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:af:46:1f:18:8f:bc:bd:3a:2b:42:ec:34:c7:55:db:84:5c: 36:58:1c:3b:f9:11:79:80:d3:31:6f:21:5a:a6:6e:7f:0e:d8: 03:64:b5:cd:6f:41:6f:5e:e8:bd:8a:f2:6b:ad:80:81:67:0c: 28:99:cd:82:ea:83:e6:75:d0:9c:63:c5:7f:fa:bc:1b:1e:37: 4d:45:a4:ee:30:29:7c:87:7e:f8:d1:a7:fc:fd:e8:6d:3d:f6: 5b:cd:b9:37:57:3d:68:76:0d:2a:ee:df:93:9a:21:30:55:c2: 21:96:14:21:cb:5d:73:02:d2:67:82:28:e9:28:9c:1f:49:a6: cf:b1:2b:6f:0b:ec:d5:e0:d1:43:99:42:76:d2:93:79:8e:8e: db:3f:33:8b:6f:86:41:26:ec:78:73:cd:fa:22:2a:8c:cf:59: e8:af:3d:7a:2a:ad:ab:ea:5c:3f:7a:f3:95:16:cf:59:7c:b6: 07:0c:1a:41:c0:e9:62:03:33:12:5d:d0:e1:ab:15:31:04:3b: 64:ad:d0:c6:c1:54:9e:30:7a:01:88:56:b9:bb:ae:a5:93:c8: b6:ab:eb:9a:ef:06:66:ca:98:e3:69:be:59:21:fe:ca:7a:99: 2e:cd:23:2e:d5:24:5c:b4:34:e2:0d:dc:96:46:c2:5b:45:2a: 1d:03:70:1c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYWrOsJFKPeLK9rwp/tSizM5BFH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMTBaFw0yNzA1MDIwMjM2MTBaMDMxMTAvBgNV BAMTKDEyOEI1MDk2QTJGQTY2RThEMTY4NThFMDExOENCMkUyRERBRkE0REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2WrnzUf7LFIRQK/HbOgwqDwnl llBBs6YHCfEwblAy3RKXs7YYgjG0gQXVIVSJahNkkT/6Cee+SO88aVDv/MoUAU1R O9UbcCiddpsUhE/2536D5hPOmk207SH4ixtNL5s/5C7JLLnljUFqfsHvNb5d/J8O iXUSUFWSuZUevSDaUK+sWvx0uQz+wy8c3XIjnt73+qEtZbNd8lPcV766jDouIjKb O06fCqzsg55zJawDrewwzPqhYNVMAbNhpD1Q11Y+LPpbpXwphbCgSGofpgIPbJLG 0AwTFQnsxByLDqhdai0lNysIX65DNG05/riHXFJTuzS629GYGxSEJLMCJW/dAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEotQlqL6ZujRaFjgEYyy4t2vpN8wHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiIwDQYJKoZIhvcN AQELBQADggEBAI+vRh8Yj7y9OitC7DTHVduEXDZYHDv5EXmA0zFvIVqmbn8O2ANk tc1vQW9e6L2K8mutgIFnDCiZzYLqg+Z10JxjxX/6vBseN01FpO4wKXyHfvjRp/z9 6G099lvNuTdXPWh2DSru35OaITBVwiGWFCHLXXMC0meCKOkonB9Jps+xK28L7NXg 0UOZQnbSk3mOjts/M4tvhkEm7HhzzfoiKozPWeivPXoqravqXD9685UWz1l8tgcM GkHA6WIDMxJd0OGrFTEEO2St0MbBVJ4wegGIVrm7rqWTyLar65rvBmbKmONpvlkh /sp6mS7NIy7VJFy0NOIN3JZGwltFKh0DcBw= -----END CERTIFICATE-----Generated at Tue May 5 15:04:58 2026 by rpki-client