$ rpki-client -vvf rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa File: 3230322e39312e382e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: 1atYO53KPKnfzwdtLkkfQDcEaqY17dJ35gAY7eIGRsI= Subject key identifier: D5:A7:5F:2B:F4:A5:6C:64:D5:3A:AC:DC:0B:18:A6:29:3A:36:65:21 Certificate issuer: /CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Certificate serial: 5E96953E890A6611B74B5C30D1BCCD65ABA9BE33 Authority key identifier: 10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa Signing time: Sun 03 May 2026 02:15:53 +0000 ROA not before: Sun 03 May 2026 02:10:53 +0000 ROA not after: Sun 02 May 2027 02:15:53 +0000 asID: 38150 IP address blocks: 202.91.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:96:95:3e:89:0a:66:11:b7:4b:5c:30:d1:bc:cd:65:ab:a9:be:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Validity Not Before: May 3 02:10:53 2026 GMT Not After : May 2 02:15:53 2027 GMT Subject: CN=D5A75F2BF4A56C64D53AACDC0B18A6293A366521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b4:2e:1f:c5:0f:fa:fb:44:e0:69:a0:4c:ee: 27:cd:29:cb:1a:35:59:ee:c7:59:99:ef:68:5b:c2: 69:58:8b:61:57:b4:c3:1c:ae:d4:20:3c:33:88:14: 91:8a:54:ee:8b:f1:f3:eb:4b:93:f1:aa:fd:26:59: 35:47:8c:78:33:58:ac:99:8a:97:11:88:20:0e:ea: ea:83:17:09:51:e8:07:0a:c8:8d:bf:f3:6c:29:6d: 1a:67:61:24:ac:45:b0:e1:b1:a3:98:c8:f0:a0:76: c5:cf:64:a8:88:20:7b:5a:18:65:5c:67:31:9e:c8: 01:7b:7f:19:f7:1c:24:85:18:31:90:ca:99:d4:1a: 7a:b3:14:7c:2f:ed:15:cd:e8:6f:d1:73:36:75:a2: a8:78:13:39:03:95:56:40:b5:12:25:35:5c:a6:fa: f4:a5:90:75:9a:ef:f4:23:28:e3:b2:11:4c:7a:07: f3:72:58:ac:47:14:3c:15:8c:9a:1d:b0:06:ed:2b: e3:ea:6e:b2:8a:09:32:98:3b:a2:bf:76:fa:e4:c0: f3:04:03:3d:58:5d:79:1d:c7:62:ee:7b:7c:1a:2b: d1:b0:46:13:e8:39:fa:94:d4:49:1f:d2:16:a1:70: bd:e3:91:20:e7:e3:94:15:0f:c4:dd:85:74:60:b6: a9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A7:5F:2B:F4:A5:6C:64:D5:3A:AC:DC:0B:18:A6:29:3A:36:65:21 X509v3 Authority Key Identifier: keyid:10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.8.0/24 Signature Algorithm: sha256WithRSAEncryption c5:ab:f2:0a:b8:32:57:fe:e8:f8:34:df:e1:24:7b:97:0d:80: ee:fb:51:5f:4e:6f:e2:f3:13:dd:be:fb:f3:04:e0:9c:e4:44: 96:ff:b5:b8:ab:87:d4:9d:bd:a3:6f:2e:40:1b:7a:6b:f3:33: 60:55:eb:db:66:2e:09:50:97:d8:b2:da:c0:48:1e:13:ff:ae: 1c:e7:2b:b7:ac:8e:12:10:9b:6e:98:25:f9:95:bf:1e:1c:f2: 7e:42:f7:cf:16:f0:0e:d9:98:8a:5d:74:cb:3c:0b:b6:48:d9: d8:41:a7:c6:42:a0:f3:bb:dc:26:6e:5d:09:9d:0a:d5:f1:8c: 6d:2c:25:8e:ff:74:75:a0:ee:15:e1:e6:df:cf:39:ae:23:f3: be:e8:54:d0:c8:99:9d:43:de:2d:67:b8:ff:01:e1:b7:21:f3: 8e:90:c9:45:25:2b:b0:76:de:52:d6:fd:fe:82:94:3f:a5:c0: a8:50:7c:be:a8:f2:26:e4:e8:9a:2a:16:78:40:24:42:46:26: 39:45:65:6d:82:3f:93:d9:b5:1f:5d:1e:2a:35:1c:c4:aa:d7: 12:3e:c9:8f:cc:60:ee:c0:9d:b6:4a:46:a4:33:c3:ec:61:db: e2:5b:32:3c:be:81:4c:32:d8:63:8e:fd:30:e8:b2:b8:52:f1: ad:ad:0c:e4 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUXpaVPokKZhG3S1ww0bzNZaupvjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAyQ0IyMjgyNTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0 OUNENzJFMTAeFw0yNjA1MDMwMjEwNTNaFw0yNzA1MDIwMjE1NTNaMDMxMTAvBgNV BAMTKEQ1QTc1RjJCRjRBNTZDNjRENTNBQUNEQzBCMThBNjI5M0EzNjY1MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDStC4fxQ/6+0TgaaBM7ifNKcsa NVnux1mZ72hbwmlYi2FXtMMcrtQgPDOIFJGKVO6L8fPrS5Pxqv0mWTVHjHgzWKyZ ipcRiCAO6uqDFwlR6AcKyI2/82wpbRpnYSSsRbDhsaOYyPCgdsXPZKiIIHtaGGVc ZzGeyAF7fxn3HCSFGDGQypnUGnqzFHwv7RXN6G/RczZ1oqh4EzkDlVZAtRIlNVym +vSlkHWa7/QjKOOyEUx6B/NyWKxHFDwVjJodsAbtK+PqbrKKCTKYO6K/dvrkwPME Az1YXXkdx2Lue3waK9GwRhPoOfqU1Ekf0hahcL3jkSDn45QVD8TdhXRgtqkJAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU1adfK/SlbGTVOqzcCximKTo2ZSEwHwYDVR0j BBgwFoAUECyyKCVaxZwG9Wv5KRqr3UnNcuEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdlNjViNjctOTA1Yy00MDNjLThjNzktMjMxNTY1OTY2OGFhLzAvMTAyQ0IyMjgy NTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0OUNENzJFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDJDQjIyODI1NUFDNTlDMDZGNTZCRjkyOTFBQUJERDQ5Q0Q3 MkUxLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMTdlNjViNjctOTA1Yy00MDNjLThj NzktMjMxNTY1OTY2OGFhLzAvMzIzMDMyMmUzOTMxMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwgwDQYJKoZIhvcNAQEL BQADggEBAMWr8gq4Mlf+6Pg03+Eke5cNgO77UV9Ob+LzE92++/ME4JzkRJb/tbir h9SdvaNvLkAbemvzM2BV69tmLglQl9iy2sBIHhP/rhznK7esjhIQm26YJfmVvx4c 8n5C988W8A7ZmIpddMs8C7ZI2dhBp8ZCoPO73CZuXQmdCtXxjG0sJY7/dHWg7hXh 5t/POa4j877oVNDImZ1D3i1nuP8B4bch846QyUUlK7B23lLW/f6ClD+lwKhQfL6o 8ibk6JoqFnhAJEJGJjlFZW2CP5PZtR9dHio1HMSq1xI+yY/MYO7AnbZKRqQzw+xh 2+JbMjy+gUwy2GOO/TDosrhS8a2tDOQ= -----END CERTIFICATE-----Generated at Wed May 13 07:38:30 2026 by rpki-client