$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3230322e39332e3232342e302f32312d3234203d3e203338373538.roa File: 3230322e39332e3232342e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: uVgnnU99/HNYyepOYAKO/nZDDx5ugki74GZP91MH9r4= Subject key identifier: C5:2B:4A:C5:58:44:73:F0:37:4D:CA:D5:35:CC:12:A8:C7:6C:6A:FA Certificate issuer: /CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Certificate serial: 38134C879651FBED9F967AABB142A852AC03148D Authority key identifier: B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3230322e39332e3232342e302f32312d3234203d3e203338373538.roa Signing time: Sun 03 May 2026 02:17:03 +0000 ROA not before: Sun 03 May 2026 02:12:03 +0000 ROA not after: Sun 02 May 2027 02:17:03 +0000 asID: 38758 IP address blocks: 202.93.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:13:4c:87:96:51:fb:ed:9f:96:7a:ab:b1:42:a8:52:ac:03:14:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Validity Not Before: May 3 02:12:03 2026 GMT Not After : May 2 02:17:03 2027 GMT Subject: CN=C52B4AC5584473F0374DCAD535CC12A8C76C6AFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:e0:1c:53:c0:b1:03:56:be:b6:22:28:b4:61: 57:4a:44:c6:bc:4b:b6:9b:b5:dd:1c:a6:32:47:0a: d5:13:35:a3:fe:fd:e1:75:ed:37:d2:c4:79:14:35: 4a:19:eb:22:b3:53:df:2a:6e:5b:d5:2e:ec:3c:93: f6:42:87:50:3d:42:e3:de:e3:0d:30:ee:65:d0:40: e8:8c:74:3f:9e:af:38:72:f1:70:70:cc:49:61:2c: 2a:7a:b3:cc:a0:c6:57:a2:49:b7:0c:a2:32:4f:02: 80:aa:27:87:50:91:48:92:c4:d5:fc:a7:ab:b3:d6: aa:ef:b8:5d:c6:eb:57:03:48:54:26:4f:7c:46:28: 2b:a2:dd:a5:29:6c:5b:85:1f:e0:24:08:10:84:14: c1:e9:be:29:2a:26:06:53:31:70:33:9a:94:01:1f: eb:c1:0e:a9:58:9b:dc:73:1c:2f:ce:71:7a:67:e9: eb:aa:cd:64:73:73:6a:91:b1:8a:8e:55:fc:12:f8: 0c:ee:4a:ff:59:66:b5:7b:2d:84:39:95:c1:16:a6: 50:5c:85:bb:f4:12:91:2d:99:05:ce:0f:22:a2:70: fc:38:d6:83:2e:58:01:92:b4:3a:ca:a3:c0:7c:1a: 39:c3:a6:cf:71:a8:33:36:35:c8:ff:ca:52:3d:2f: c9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:2B:4A:C5:58:44:73:F0:37:4D:CA:D5:35:CC:12:A8:C7:6C:6A:FA X509v3 Authority Key Identifier: keyid:B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3230322e39332e3232342e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.224.0/21 Signature Algorithm: sha256WithRSAEncryption 21:ea:a7:94:91:64:ca:09:83:84:ef:47:35:42:f5:75:e3:93: 3c:b4:a2:ca:a5:dd:e4:54:98:f6:c6:ea:32:f1:15:c2:6d:12: 18:84:1f:37:8f:e4:a9:58:e1:2e:87:0f:99:86:02:d6:7d:c8: 01:ce:6a:f2:23:1a:76:89:18:d1:eb:84:a3:e1:e3:c4:91:8c: 11:e2:8e:de:37:d6:a7:92:5c:2a:8f:b9:94:46:95:91:32:65: a5:22:70:e6:0e:af:2a:36:dd:f2:ad:92:fb:50:a2:2f:4e:51: 24:e6:06:a6:8f:0d:2b:90:19:45:e0:bd:d5:c7:73:26:5f:96: e8:98:60:ab:03:ce:7f:2c:37:dd:14:24:b2:cf:3e:87:1f:f7: 0d:dc:d6:44:f1:94:9b:d3:2d:83:c6:43:ab:05:d6:6f:11:93: 37:99:dc:53:25:ad:d8:b0:d6:30:06:25:59:55:8e:59:c5:f1: 8e:ab:90:58:24:d8:9b:f1:17:c7:3f:b2:b0:3c:f9:23:e7:3d: 9c:07:42:5e:ca:46:a6:19:b4:48:3d:ee:96:22:dd:7c:54:be: a5:90:d7:4a:6a:5e:e3:b0:65:d3:76:cf:07:51:f4:11:5c:10: 09:88:6f:22:4a:db:c3:59:79:de:e7:21:fb:5f:6c:33:e3:39: dd:8f:6a:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOBNMh5ZR++2flnqrsUKoUqwDFI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhBMUE3ODUwRkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5 MjFDQjBFNzAeFw0yNjA1MDMwMjEyMDNaFw0yNzA1MDIwMjE3MDNaMDMxMTAvBgNV BAMTKEM1MkI0QUM1NTg0NDczRjAzNzREQ0FENTM1Q0MxMkE4Qzc2QzZBRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCK4BxTwLEDVr62Iii0YVdKRMa8 S7abtd0cpjJHCtUTNaP+/eF17TfSxHkUNUoZ6yKzU98qblvVLuw8k/ZCh1A9QuPe 4w0w7mXQQOiMdD+erzhy8XBwzElhLCp6s8ygxleiSbcMojJPAoCqJ4dQkUiSxNX8 p6uz1qrvuF3G61cDSFQmT3xGKCui3aUpbFuFH+AkCBCEFMHpvikqJgZTMXAzmpQB H+vBDqlYm9xzHC/OcXpn6euqzWRzc2qRsYqOVfwS+AzuSv9ZZrV7LYQ5lcEWplBc hbv0EpEtmQXODyKicPw41oMuWAGStDrKo8B8GjnDps9xqDM2Ncj/ylI9L8lPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxStKxVhEc/A3TcrVNcwSqMdsavowHwYDVR0j BBgwFoAUuKGnhQ/kYGZFzbmTYT8DJpIcsOcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI0ZTE5NWUtMTJkZS00YzNjLTkzZTUtNTIyZWU1NDAxOGQ2LzAvQjhBMUE3ODUw RkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5MjFDQjBFNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COEExQTc4NTBGRTQ2MDY2NDVDREI5OTM2MTNGMDMyNjkyMUNC MEU3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMyMzAzMjJlMzkzMzJlMzIzMjM0MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pd4DANBgkqhkiG 9w0BAQsFAAOCAQEAIeqnlJFkygmDhO9HNUL1deOTPLSiyqXd5FSY9sbqMvEVwm0S GIQfN4/kqVjhLocPmYYC1n3IAc5q8iMadokY0euEo+HjxJGMEeKO3jfWp5JcKo+5 lEaVkTJlpSJw5g6vKjbd8q2S+1CiL05RJOYGpo8NK5AZReC91cdzJl+W6JhgqwPO fyw33RQkss8+hx/3DdzWRPGUm9Mtg8ZDqwXWbxGTN5ncUyWt2LDWMAYlWVWOWcXx jquQWCTYm/EXxz+ysDz5I+c9nAdCXspGphm0SD3uliLdfFS+pZDXSmpe47Bl03bP B1H0EVwQCYhvIkrbw1l53uch+19sM+M53Y9q3A== -----END CERTIFICATE-----Generated at Wed May 13 02:11:36 2026 by rpki-client