$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa File: 3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: YFA+tNp8VdnTR944fFEHz8q0/hqhkU+bn3dn8LMTKUE= Subject key identifier: 7A:FC:31:1E:9A:BF:3D:E9:E8:CE:48:43:A7:37:4C:81:BF:FA:B5:14 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 200CAAE2241B30EF4ED817FCC3D953251E441C4C Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa Signing time: Sun 03 May 2026 02:18:59 +0000 ROA not before: Sun 03 May 2026 02:13:59 +0000 ROA not after: Sun 02 May 2027 02:18:59 +0000 asID: 23679 IP address blocks: 202.162.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:0c:aa:e2:24:1b:30:ef:4e:d8:17:fc:c3:d9:53:25:1e:44:1c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:59 2026 GMT Not After : May 2 02:18:59 2027 GMT Subject: CN=7AFC311E9ABF3DE9E8CE4843A7374C81BFFAB514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5e:15:2a:df:ef:21:30:ae:5b:b3:73:33:a5: ea:38:dd:cf:ed:12:ad:bd:f0:71:fb:d6:44:5d:5f: fe:48:71:f5:e0:16:23:4f:be:75:f7:1c:18:9e:7c: a8:a3:69:a7:c3:7c:57:e5:b6:72:9e:21:2d:81:72: 56:64:31:bc:e1:6c:94:7d:8c:b3:fd:b6:bd:0f:7a: 4c:9f:69:3d:7d:95:80:e5:61:84:b7:58:90:00:44: df:4a:cc:a2:0d:b0:a9:56:47:38:05:6e:90:f6:38: 03:38:88:0d:e8:52:56:40:0f:b0:eb:4c:69:80:bb: a9:63:d9:04:e8:eb:4d:c8:49:6b:3f:ae:4f:3a:2b: 17:30:81:e5:94:ad:40:8c:82:3b:69:64:a0:54:be: c6:c5:55:72:b8:9a:55:5e:c4:2b:72:d9:41:d7:87: 1f:aa:7e:5a:f9:52:bf:74:b3:4d:e1:82:e5:47:9a: 6f:3e:1c:41:71:ba:14:8c:27:3c:ce:9e:b0:ae:da: 12:9c:74:56:b2:06:44:e7:9a:73:82:fc:92:71:82: c2:41:9b:00:52:f2:50:84:47:50:2f:f8:e6:64:70: 1b:cd:bd:39:70:f5:b2:1e:f6:24:85:39:05:a0:f7: 2b:1f:48:df:e0:6f:5c:d0:fb:e1:46:c4:c3:29:f1: 23:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FC:31:1E:9A:BF:3D:E9:E8:CE:48:43:A7:37:4C:81:BF:FA:B5:14 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.204.0/24 Signature Algorithm: sha256WithRSAEncryption 68:0a:20:1b:08:db:ee:0b:61:93:f3:ca:eb:56:ea:cf:3b:84: 99:cc:9d:9d:63:0c:e6:d3:d7:83:a9:ed:96:c9:34:c0:47:be: 21:37:89:96:19:61:5f:b9:86:81:df:18:d5:ff:d6:6b:88:df: 00:3d:cb:3c:60:a4:a7:e8:e2:a6:2f:cd:95:ac:41:c2:d2:ec: 0c:f4:b6:4a:46:55:41:7e:59:f1:b1:06:a8:41:90:2d:86:ed: 97:5b:96:d1:0e:61:bc:b6:0a:c1:1b:36:02:84:e2:13:0f:50: f1:c6:d6:e8:46:66:a6:05:7f:f1:b6:30:33:75:1f:70:c2:18: 24:00:ca:d1:28:02:9e:c4:d5:20:75:49:9b:d4:3b:f5:7f:ac: b9:cc:e4:db:45:89:e5:fa:5a:93:81:ff:e9:0c:d2:b1:7c:93: 49:c8:4a:1d:fe:37:54:a1:9c:b3:1c:a1:0d:e8:47:7b:22:37: 8e:c9:22:f5:a8:91:b0:9a:27:f6:e8:89:47:c7:88:70:44:a5: 94:df:b9:40:bb:ca:10:ee:96:95:17:98:78:17:9c:46:9b:76: 94:99:e6:57:8b:af:d3:d5:4a:ae:b6:30:2b:51:f5:a2:47:dd: c7:d5:33:4d:da:13:6d:20:60:9d:2a:59:6a:25:ed:12:09:eb: fe:71:e0:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIAyq4iQbMO9O2Bf8w9lTJR5EHEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTlaFw0yNzA1MDIwMjE4NTlaMDMxMTAvBgNV BAMTKDdBRkMzMTFFOUFCRjNERTlFOENFNDg0M0E3Mzc0QzgxQkZGQUI1MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOXhUq3+8hMK5bs3Mzpeo43c/t Eq298HH71kRdX/5IcfXgFiNPvnX3HBiefKijaafDfFfltnKeIS2BclZkMbzhbJR9 jLP9tr0PekyfaT19lYDlYYS3WJAARN9KzKINsKlWRzgFbpD2OAM4iA3oUlZAD7Dr TGmAu6lj2QTo603ISWs/rk86KxcwgeWUrUCMgjtpZKBUvsbFVXK4mlVexCty2UHX hx+qflr5Ur90s03hguVHmm8+HEFxuhSMJzzOnrCu2hKcdFayBkTnmnOC/JJxgsJB mwBS8lCER1Av+OZkcBvNvTlw9bIe9iSFOQWg9ysfSN/gb1zQ++FGxMMp8SO3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUevwxHpq/PenozkhDpzdMgb/6tRQwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqLMMA0GCSqG SIb3DQEBCwUAA4IBAQBoCiAbCNvuC2GT88rrVurPO4SZzJ2dYwzm09eDqe2WyTTA R74hN4mWGWFfuYaB3xjV/9ZriN8APcs8YKSn6OKmL82VrEHC0uwM9LZKRlVBflnx sQaoQZAthu2XW5bRDmG8tgrBGzYChOITD1DxxtboRmamBX/xtjAzdR9wwhgkAMrR KAKexNUgdUmb1Dv1f6y5zOTbRYnl+lqTgf/pDNKxfJNJyEod/jdUoZyzHKEN6Ed7 IjeOySL1qJGwmif26IlHx4hwRKWU37lAu8oQ7paVF5h4F5xGm3aUmeZXi6/T1Uqu tjArUfWiR93H1TNN2hNtIGCdKllqJe0SCev+ceBg -----END CERTIFICATE-----Generated at Wed May 13 08:02:42 2026 by rpki-client