$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e33382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: 9TB/VYsPfuqBFBFdOFQFVqyGEu4y9zLknxP8FJHDgW4= Subject key identifier: 38:89:CD:5D:94:2E:7F:DC:B4:E6:47:98:4C:94:67:7D:DC:52:04:06 Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 2B3C5B79B5B7B9256F398B346E5E836CC73BA3DB Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33382e302f32332d3234203d3e2034343334.roa Signing time: Sun 03 May 2026 02:36:06 +0000 ROA not before: Sun 03 May 2026 02:31:06 +0000 ROA not after: Sun 02 May 2027 02:36:06 +0000 asID: 4434 IP address blocks: 202.154.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:3c:5b:79:b5:b7:b9:25:6f:39:8b:34:6e:5e:83:6c:c7:3b:a3:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:06 2026 GMT Not After : May 2 02:36:06 2027 GMT Subject: CN=3889CD5D942E7FDCB4E647984C94677DDC520406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8c:9b:17:6c:6d:41:b1:e4:87:e9:fa:04:99: e3:e1:5f:e7:50:81:9b:93:74:29:c1:5c:30:01:ed: d8:b6:e5:7e:30:99:d3:7c:63:1b:7b:de:21:89:b5: 1f:fd:f6:2e:ab:b7:b8:64:10:31:5a:f9:3f:a2:59: 26:cb:29:7a:bb:72:57:40:5c:67:45:f0:60:49:77: 02:05:6c:9f:5a:3f:4a:28:44:98:19:7b:82:af:ea: b6:31:86:28:43:9c:4f:c2:1f:b1:57:dc:c5:e9:46: c3:61:5d:44:15:fe:72:11:46:eb:66:b5:19:2c:30: 1d:56:2a:ad:fe:ed:e6:ff:83:18:d5:fa:19:6c:16: 7b:00:53:b7:f6:f7:43:89:f3:b0:94:aa:87:6d:1c: 37:9b:61:0a:a5:20:23:e3:1c:1f:49:fd:da:cb:77: e1:f0:a1:d3:c6:ad:b5:1a:31:3e:b9:e7:f4:b3:df: be:13:e1:ca:cc:74:5b:02:92:ac:9e:14:94:45:93: e4:0f:a6:2a:79:12:df:ad:1d:2b:2b:bd:b7:af:f9: be:1a:45:dd:6c:52:a6:b7:37:ca:ab:58:92:42:5d: c0:0e:4e:41:09:77:12:30:90:e5:b3:91:ff:85:57: 61:d6:b0:b5:18:53:ef:84:92:9d:8e:36:00:ef:87: 5a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:89:CD:5D:94:2E:7F:DC:B4:E6:47:98:4C:94:67:7D:DC:52:04:06 X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.38.0/23 Signature Algorithm: sha256WithRSAEncryption 28:eb:95:c1:f9:1e:6b:4d:16:68:f7:37:95:7b:91:65:8f:1c: f6:56:0f:11:40:59:1a:d3:40:44:27:f6:69:7a:4e:14:7c:d9: ef:c5:5f:64:9c:29:68:40:c1:c4:ed:95:d9:f2:b7:34:96:b5: b7:97:84:c8:c8:a9:72:d5:dc:17:cd:2c:e5:33:7f:b1:88:db: 44:22:17:32:8f:c8:b0:97:a0:15:b0:e7:bc:a8:47:b8:42:86: 7b:cd:ad:32:e2:a8:4a:6c:66:f3:ea:0a:66:13:38:ef:f5:b9: 13:29:35:d2:85:9c:22:19:ac:58:78:6d:13:b8:19:f3:9f:39: ac:60:e4:b1:b6:3b:04:28:86:57:89:e9:0d:0f:34:b8:ee:cb: 23:d2:ff:f0:0b:9f:d9:49:6f:e5:fd:75:1d:5a:7f:4b:de:72: 53:08:5c:d6:6f:23:c6:1b:0e:2b:02:7c:3c:c8:7c:eb:db:5b: 40:06:98:c0:ba:0c:2c:72:94:ec:44:3e:bf:5b:d5:72:c7:ba: 6d:5f:a0:27:59:b1:f6:fe:21:ab:bf:84:c7:d0:e1:d9:ac:d3: a7:63:26:b5:04:d9:b1:43:bc:79:71:ca:2d:5d:48:40:b7:6a: b1:b4:f9:89:50:b1:d8:25:68:1b:63:03:66:a2:e2:23:4e:53: d7:16:2f:8b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKzxbebW3uSVvOYs0bl6DbMc7o9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMDZaFw0yNzA1MDIwMjM2MDZaMDMxMTAvBgNV BAMTKDM4ODlDRDVEOTQyRTdGRENCNEU2NDc5ODRDOTQ2NzdEREM1MjA0MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXjJsXbG1BseSH6foEmePhX+dQ gZuTdCnBXDAB7di25X4wmdN8Yxt73iGJtR/99i6rt7hkEDFa+T+iWSbLKXq7cldA XGdF8GBJdwIFbJ9aP0ooRJgZe4Kv6rYxhihDnE/CH7FX3MXpRsNhXUQV/nIRRutm tRksMB1WKq3+7eb/gxjV+hlsFnsAU7f290OJ87CUqodtHDebYQqlICPjHB9J/drL d+HwodPGrbUaMT655/Sz374T4crMdFsCkqyeFJRFk+QPpip5Et+tHSsrvbev+b4a Rd1sUqa3N8qrWJJCXcAOTkEJdxIwkOWzkf+FV2HWsLUYU++Ekp2ONgDvh1r7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOInNXZQuf9y05keYTJRnfdxSBAYwHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiYwDQYJKoZIhvcN AQELBQADggEBACjrlcH5HmtNFmj3N5V7kWWPHPZWDxFAWRrTQEQn9ml6ThR82e/F X2ScKWhAwcTtldnytzSWtbeXhMjIqXLV3BfNLOUzf7GI20QiFzKPyLCXoBWw57yo R7hChnvNrTLiqEpsZvPqCmYTOO/1uRMpNdKFnCIZrFh4bRO4GfOfOaxg5LG2OwQo hleJ6Q0PNLjuyyPS//ALn9lJb+X9dR1af0veclMIXNZvI8YbDisCfDzIfOvbW0AG mMC6DCxylOxEPr9b1XLHum1foCdZsfb+Iau/hMfQ4dms06djJrUE2bFDvHlxyi1d SEC3arG0+YlQsdglaBtjA2ai4iNOU9cWL4s= -----END CERTIFICATE-----Generated at Tue May 5 15:05:24 2026 by rpki-client