$ rpki-client -vvf rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa File: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: PInvCtxVVtioPbfgKwU3owF3bAZaDoVKCpPjomKqIrc= Subject key identifier: 8E:17:94:C1:B1:A2:B6:74:12:0D:C3:82:1D:10:8E:F1:08:D9:E9:AB Certificate issuer: /CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Certificate serial: 717FAC170CA2ADC1D131A20C10983AA5B108A6E9 Authority key identifier: 9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa Signing time: Sun 03 May 2026 02:21:08 +0000 ROA not before: Sun 03 May 2026 02:16:08 +0000 ROA not after: Sun 02 May 2027 02:21:08 +0000 asID: 55701 IP address blocks: 202.73.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7f:ac:17:0c:a2:ad:c1:d1:31:a2:0c:10:98:3a:a5:b1:08:a6:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Validity Not Before: May 3 02:16:08 2026 GMT Not After : May 2 02:21:08 2027 GMT Subject: CN=8E1794C1B1A2B674120DC3821D108EF108D9E9AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3d:88:61:e2:b3:4e:e3:45:d2:c0:93:2c:49: e0:81:3d:a9:60:f3:ff:f4:ee:65:92:6e:ff:04:05: cd:30:e5:14:db:13:d8:34:41:da:a6:09:8f:cf:1a: 6b:1b:d2:fc:ab:aa:c8:08:70:27:9f:8e:50:e9:03: b3:5e:da:cb:03:d2:71:a4:f2:0a:69:cd:52:af:06: be:15:be:ab:92:36:91:83:51:95:5a:1c:36:25:e3: 56:ce:b9:4c:ca:56:9c:c8:22:e9:7d:29:9f:8e:91: 0c:09:b6:7b:e9:da:72:ad:fb:60:84:54:e3:be:db: 99:af:11:08:09:9a:07:14:a3:c6:d4:c1:0f:85:65: b1:55:b0:96:6c:11:7c:6d:e8:9f:ac:d6:0b:a7:4b: 51:29:f1:4b:91:70:75:38:61:fd:60:50:c5:2c:9c: d2:94:7f:3c:48:bc:d1:94:1c:58:37:57:f6:f0:8b: 8a:2c:ce:64:a5:cd:52:33:6b:61:ed:94:a3:83:57: 86:e2:98:bf:b3:53:51:a7:85:62:ff:1f:5c:53:c6: 07:97:92:f6:dd:98:50:21:98:fe:c2:cf:41:13:f7: 65:2c:f4:b5:ab:24:f5:b1:10:f0:a4:6e:77:da:d4: 95:34:ce:3f:96:ce:2b:41:44:30:eb:35:df:e9:2f: 12:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:17:94:C1:B1:A2:B6:74:12:0D:C3:82:1D:10:8E:F1:08:D9:E9:AB X509v3 Authority Key Identifier: keyid:9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.24.0/24 Signature Algorithm: sha256WithRSAEncryption c0:3e:4f:13:37:72:c7:87:b6:ba:48:0d:30:8a:c3:1e:ab:1f: 62:d9:c6:a8:0a:b0:98:05:a4:7e:00:f3:15:60:4b:49:c3:15: 2b:00:9c:a0:51:5c:f7:59:50:76:d6:b7:aa:83:9c:d9:77:02: 4c:fa:68:6b:c8:89:f6:df:cb:f8:dd:b2:4a:d3:46:7b:4f:d9: d0:4a:08:26:0a:e4:1c:a1:41:55:bf:22:ae:85:ed:22:00:d2: 03:4b:7b:54:99:ce:20:54:ca:a9:06:7c:06:34:9c:ae:56:48: d3:e4:c6:04:b4:b1:a8:d2:b8:af:c2:8c:25:36:b6:f9:32:86: 8a:75:e9:37:18:96:c0:9c:a6:ab:4c:28:9e:e2:68:0e:f2:5b: f2:93:29:57:71:bb:9c:17:8c:58:83:80:74:57:3d:b3:db:37: e0:b2:ba:ad:77:0d:74:2f:37:ee:a8:24:d5:bc:03:a5:0f:ac: d7:33:27:d3:f6:3f:eb:7f:68:66:ef:a1:73:d8:7b:e5:32:d7: a9:b2:ef:ac:53:22:02:8f:02:f9:a7:ff:d9:d9:2f:8a:6e:91: a9:5b:89:f8:3b:12:c7:5f:45:42:c6:89:c6:c4:66:80:76:19: 54:8b:9b:6f:dc:12:57:55:cb:2b:cf:24:df:4f:c4:6a:8f:f0: 6d:24:58:02 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcX+sFwyircHRMaIMEJg6pbEIpukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZEN0ZGNEQzRkIzNzM0MEZBQThDN0VFNzFEMUNCOUVB RjA4NTlDMTAeFw0yNjA1MDMwMjE2MDhaFw0yNzA1MDIwMjIxMDhaMDMxMTAvBgNV BAMTKDhFMTc5NEMxQjFBMkI2NzQxMjBEQzM4MjFEMTA4RUYxMDhEOUU5QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsPYhh4rNO40XSwJMsSeCBPalg 8//07mWSbv8EBc0w5RTbE9g0QdqmCY/PGmsb0vyrqsgIcCefjlDpA7Ne2ssD0nGk 8gppzVKvBr4VvquSNpGDUZVaHDYl41bOuUzKVpzIIul9KZ+OkQwJtnvp2nKt+2CE VOO+25mvEQgJmgcUo8bUwQ+FZbFVsJZsEXxt6J+s1gunS1Ep8UuRcHU4Yf1gUMUs nNKUfzxIvNGUHFg3V/bwi4oszmSlzVIza2HtlKODV4bimL+zU1GnhWL/H1xTxgeX kvbdmFAhmP7Cz0ET92Us9LWrJPWxEPCkbnfa1JU0zj+WzitBRDDrNd/pLxL7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjheUwbGitnQSDcOCHRCO8QjZ6aswHwYDVR0j BBgwFoAUn9f/TT+zc0D6qMfucdHLnq8IWcEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjdkOWY4NTEtN2U3My00Mzg0LTk1MGUtOGJlOGUxNWZkM2VlLzAvOUZEN0ZGNEQz RkIzNzM0MEZBQThDN0VFNzFEMUNCOUVBRjA4NTlDMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RkQ3RkY0RDNGQjM3MzQwRkFBOEM3RUU3MUQxQ0I5RUFGMDg1 OUMxLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRgwDQYJKoZIhvcN AQELBQADggEBAMA+TxM3cseHtrpIDTCKwx6rH2LZxqgKsJgFpH4A8xVgS0nDFSsA nKBRXPdZUHbWt6qDnNl3Akz6aGvIifbfy/jdskrTRntP2dBKCCYK5ByhQVW/Iq6F 7SIA0gNLe1SZziBUyqkGfAY0nK5WSNPkxgS0sajSuK/CjCU2tvkyhop16TcYlsCc pqtMKJ7iaA7yW/KTKVdxu5wXjFiDgHRXPbPbN+Cyuq13DXQvN+6oJNW8A6UPrNcz J9P2P+t/aGbvoXPYe+Uy16my76xTIgKPAvmn/9nZL4pukalbifg7EsdfRULGicbE ZoB2GVSLm2/cEldVyyvPJN9PxGqP8G0kWAI= -----END CERTIFICATE-----Generated at Wed May 13 02:12:24 2026 by rpki-client