$ rpki-client -vvf rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31352e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: tSpJIXLzQ0pL+aodNvc7ns9K3AjDZr8FDk8CW+jKFio= Subject key identifier: C9:0F:22:21:7F:25:57:5A:15:16:C0:65:89:37:DD:0D:96:85:ED:5A Certificate issuer: /CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Certificate serial: 68147BC83989CB94D25242F409FCDD36F69C8586 Authority key identifier: 10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa Signing time: Sun 03 May 2026 02:15:56 +0000 ROA not before: Sun 03 May 2026 02:10:56 +0000 ROA not after: Sun 02 May 2027 02:15:56 +0000 asID: 38150 IP address blocks: 202.91.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:14:7b:c8:39:89:cb:94:d2:52:42:f4:09:fc:dd:36:f6:9c:85:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Validity Not Before: May 3 02:10:56 2026 GMT Not After : May 2 02:15:56 2027 GMT Subject: CN=C90F22217F25575A1516C0658937DD0D9685ED5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:19:a8:a5:52:12:32:c9:e2:20:64:c4:2e:b0: 26:24:9c:fd:26:85:23:1f:07:62:9f:16:98:1d:76: b6:97:15:f1:92:03:7e:75:e4:a4:6c:8a:5a:35:2c: 33:56:be:ee:31:7d:f8:82:dd:68:f6:24:56:55:95: 7b:5d:f1:a4:5d:3b:b7:53:91:db:00:00:e3:fc:2e: de:fe:e9:8d:99:fb:8c:1c:a9:a7:47:9a:8d:f7:73: 7d:e9:d6:b1:83:73:f4:ed:00:e7:03:30:9e:52:49: d8:2c:1d:32:d9:64:8a:45:55:c1:f6:b3:14:3a:4e: 74:d8:33:e8:31:e5:c2:a6:62:7a:f3:5e:24:18:2c: 2e:ba:75:f2:d2:f0:16:a6:a7:a7:20:5d:a0:25:8a: 3a:e0:05:3e:8c:cb:6f:64:68:a9:b0:f8:20:97:ab: 9f:66:4f:b2:3e:9b:08:c5:0c:ad:d2:e3:95:92:82: ef:f3:25:25:9c:c8:99:de:df:4a:31:5b:1f:ff:43: 68:4d:61:f5:e2:2b:5f:b9:46:03:ad:74:0d:bb:d9: af:b0:09:eb:d7:70:77:0e:8c:de:f5:3c:7d:04:3b: 66:ee:0c:f8:54:55:4a:ea:11:95:cc:c0:02:e7:b8: a9:39:a4:f9:ec:2c:5e:e4:bb:72:b1:74:80:7e:4d: b7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0F:22:21:7F:25:57:5A:15:16:C0:65:89:37:DD:0D:96:85:ED:5A X509v3 Authority Key Identifier: keyid:10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.15.0/24 Signature Algorithm: sha256WithRSAEncryption a3:b8:c3:b9:32:3f:e1:dc:f0:8c:b6:72:61:df:ec:ec:8b:a7: d6:2c:93:ad:6b:30:a9:f4:67:01:a4:45:66:d0:47:7d:1b:e7: 5c:c7:71:77:9d:95:d2:7d:04:55:a4:0c:35:6f:68:16:86:2e: 42:6d:06:62:b2:e7:1e:f2:3e:52:ab:f1:e6:a5:9f:1c:87:c8: 45:1c:5b:e6:e4:5c:60:27:8f:82:e5:83:d4:62:27:4a:92:0f: 35:26:19:cd:53:b8:9f:7b:55:7d:d0:9f:f6:f6:95:67:e8:fd: 89:fc:3c:b7:ac:f4:8a:d5:ad:7a:df:4a:d1:fb:18:85:2d:eb: 11:5d:d2:f7:7d:b4:0b:39:c4:74:be:25:03:11:bd:e1:99:c6: 9b:ff:9b:07:2b:3e:3e:84:fa:75:e6:6e:23:51:51:2a:34:75: 42:de:7c:c0:8f:a7:65:76:f3:47:53:d9:7f:cc:20:da:ea:d1: 6b:01:d2:1b:50:2c:75:b8:5b:bd:b3:8f:55:c2:9a:32:a1:34: 26:11:a0:81:db:0d:c2:4e:ad:fc:02:ef:ea:c6:f0:27:35:bf: 76:64:0c:58:a1:1f:ac:b6:f0:f5:e5:c5:8a:9c:a7:d3:cf:6a: 63:c9:3c:4b:37:47:93:16:86:e0:90:5a:87:3f:51:05:3b:b7: 2c:f4:7d:a7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaBR7yDmJy5TSUkL0CfzdNvachYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAyQ0IyMjgyNTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0 OUNENzJFMTAeFw0yNjA1MDMwMjEwNTZaFw0yNzA1MDIwMjE1NTZaMDMxMTAvBgNV BAMTKEM5MEYyMjIxN0YyNTU3NUExNTE2QzA2NTg5MzdERDBEOTY4NUVENUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXGailUhIyyeIgZMQusCYknP0m hSMfB2KfFpgddraXFfGSA3515KRsilo1LDNWvu4xffiC3Wj2JFZVlXtd8aRdO7dT kdsAAOP8Lt7+6Y2Z+4wcqadHmo33c33p1rGDc/TtAOcDMJ5SSdgsHTLZZIpFVcH2 sxQ6TnTYM+gx5cKmYnrzXiQYLC66dfLS8Bamp6cgXaAlijrgBT6My29kaKmw+CCX q59mT7I+mwjFDK3S45WSgu/zJSWcyJne30oxWx//Q2hNYfXiK1+5RgOtdA272a+w CevXcHcOjN71PH0EO2buDPhUVUrqEZXMwALnuKk5pPnsLF7ku3KxdIB+TbeDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyQ8iIX8lV1oVFsBliTfdDZaF7VowHwYDVR0j BBgwFoAUECyyKCVaxZwG9Wv5KRqr3UnNcuEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdlNjViNjctOTA1Yy00MDNjLThjNzktMjMxNTY1OTY2OGFhLzAvMTAyQ0IyMjgy NTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0OUNENzJFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDJDQjIyODI1NUFDNTlDMDZGNTZCRjkyOTFBQUJERDQ5Q0Q3 MkUxLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw8wDQYJKoZIhvcN AQELBQADggEBAKO4w7kyP+Hc8Iy2cmHf7OyLp9Ysk61rMKn0ZwGkRWbQR30b51zH cXedldJ9BFWkDDVvaBaGLkJtBmKy5x7yPlKr8ealnxyHyEUcW+bkXGAnj4Llg9Ri J0qSDzUmGc1TuJ97VX3Qn/b2lWfo/Yn8PLes9IrVrXrfStH7GIUt6xFd0vd9tAs5 xHS+JQMRveGZxpv/mwcrPj6E+nXmbiNRUSo0dULefMCPp2V280dT2X/MINrq0WsB 0htQLHW4W72zj1XCmjKhNCYRoIHbDcJOrfwC7+rG8Cc1v3ZkDFihH6y28PXlxYqc p9PPamPJPEs3R5MWhuCQWoc/UQU7tyz0fac= -----END CERTIFICATE-----Generated at Wed May 13 08:39:21 2026 by rpki-client