$ rpki-client -vvf rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32352e302f32342d3234203d3e20313431383932.roa File: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: ZdJ+uJ+H3LCclcBMDstVIbOnA5HzlWlzhGq8cMXXKag= Subject key identifier: 8A:86:DE:90:42:01:D8:C1:97:EE:D4:D8:C7:3C:AD:A3:AA:74:D7:FC Certificate issuer: /CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Certificate serial: 18FA9F3E91C4AD3F75D5A36532FCAD7225051644 Authority key identifier: 9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32352e302f32342d3234203d3e20313431383932.roa Signing time: Sun 03 May 2026 02:21:07 +0000 ROA not before: Sun 03 May 2026 02:16:07 +0000 ROA not after: Sun 02 May 2027 02:21:07 +0000 asID: 141892 IP address blocks: 202.73.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:fa:9f:3e:91:c4:ad:3f:75:d5:a3:65:32:fc:ad:72:25:05:16:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Validity Not Before: May 3 02:16:07 2026 GMT Not After : May 2 02:21:07 2027 GMT Subject: CN=8A86DE904201D8C197EED4D8C73CADA3AA74D7FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:b0:be:62:44:51:20:7c:7c:80:62:57:08: 35:df:a5:47:66:21:dd:5d:c4:b8:6d:ab:65:2e:af: 6a:89:d7:d3:42:b3:4d:e1:c1:ff:72:50:d0:6f:6a: 02:ef:a4:41:63:6c:16:ca:ff:1f:3d:6e:cd:12:6c: fa:04:a3:b6:b5:50:1b:c2:0f:9a:27:53:ac:d5:c1: ec:c4:df:36:6f:6f:80:94:ea:89:d8:d3:4e:65:6d: 29:c7:af:c4:5f:44:a9:ab:da:c9:26:cc:c0:db:7a: f6:72:d8:85:dc:23:61:16:cb:d3:f2:13:ef:7f:a2: 04:2e:2f:2f:c2:4b:a8:9f:83:64:fb:90:46:d1:79: 56:44:cd:f1:90:a1:a2:8d:c5:dc:49:0a:2b:88:9c: 39:bf:c0:fc:a0:37:60:d6:9e:d0:48:c8:e5:cb:1b: 5a:e3:12:54:aa:ba:eb:cb:3e:cb:2e:e0:04:b9:63: 85:35:47:4d:b2:c6:4b:f2:7b:c5:f5:05:48:78:02: df:e4:c6:a7:de:45:23:eb:02:d4:dd:45:2d:af:90: 44:b2:b3:d7:c9:0a:5e:7e:e3:9c:f4:7f:aa:46:f5: 6a:4b:70:6a:e6:85:ad:f1:4a:8d:a8:0e:ed:82:68: b2:30:ef:08:69:4d:96:50:98:b0:10:57:c6:eb:84: 61:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:86:DE:90:42:01:D8:C1:97:EE:D4:D8:C7:3C:AD:A3:AA:74:D7:FC X509v3 Authority Key Identifier: keyid:9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32352e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.25.0/24 Signature Algorithm: sha256WithRSAEncryption 63:f7:0a:fc:ef:ba:da:57:38:7e:28:b2:2f:85:b9:5a:c3:38: b1:af:45:ed:52:c2:c0:77:26:9a:11:b5:07:4c:f2:c3:2e:16: 84:68:83:4f:da:59:b6:aa:2b:d9:ed:d7:76:c7:d3:9d:ef:0d: 16:43:3d:99:64:c7:94:68:e5:d7:68:d3:11:02:ea:a4:2f:3c: 80:cc:1b:4e:57:40:14:75:05:9d:b8:a1:f6:86:a5:b0:cc:5e: cc:da:cf:8d:4d:5b:ef:46:86:f0:69:18:20:d7:61:06:cd:fd: 36:d1:da:b8:ad:3a:d2:68:00:a4:c6:2e:b9:db:98:c6:43:09: 97:8b:d4:ba:5b:24:a5:a7:02:d3:f3:6d:ed:69:4d:15:3b:b0: ba:0a:12:2b:d0:42:51:39:9b:57:ce:34:0a:f2:12:c7:bc:b2: 6e:93:c1:96:65:f6:a3:e6:0a:b7:89:32:dc:80:1a:fb:4e:cd: dc:b2:ed:27:ba:bb:6d:bf:78:d5:49:d8:72:a1:5c:27:17:dd: 50:00:58:c4:ff:0f:d7:81:49:6f:1d:a7:66:45:a1:8c:0c:1d: c1:23:fd:27:cf:7d:7f:e1:87:35:c0:65:fd:c5:a0:e7:b4:bf: 4f:c3:89:f8:26:0b:5a:dc:8d:ba:6b:cc:83:44:60:e3:f6:4f: c9:fa:27:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGPqfPpHErT911aNlMvytciUFFkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZEN0ZGNEQzRkIzNzM0MEZBQThDN0VFNzFEMUNCOUVB RjA4NTlDMTAeFw0yNjA1MDMwMjE2MDdaFw0yNzA1MDIwMjIxMDdaMDMxMTAvBgNV BAMTKDhBODZERTkwNDIwMUQ4QzE5N0VFRDREOEM3M0NBREEzQUE3NEQ3RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp0LC+YkRRIHx8gGJXCDXfpUdm Id1dxLhtq2Uur2qJ19NCs03hwf9yUNBvagLvpEFjbBbK/x89bs0SbPoEo7a1UBvC D5onU6zVwezE3zZvb4CU6onY005lbSnHr8RfRKmr2skmzMDbevZy2IXcI2EWy9Py E+9/ogQuLy/CS6ifg2T7kEbReVZEzfGQoaKNxdxJCiuInDm/wPygN2DWntBIyOXL G1rjElSquuvLPssu4AS5Y4U1R02yxkvye8X1BUh4At/kxqfeRSPrAtTdRS2vkESy s9fJCl5+45z0f6pG9WpLcGrmha3xSo2oDu2CaLIw7whpTZZQmLAQV8brhGHnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiobekEIB2MGX7tTYxzyto6p01/wwHwYDVR0j BBgwFoAUn9f/TT+zc0D6qMfucdHLnq8IWcEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjdkOWY4NTEtN2U3My00Mzg0LTk1MGUtOGJlOGUxNWZkM2VlLzAvOUZEN0ZGNEQz RkIzNzM0MEZBQThDN0VFNzFEMUNCOUVBRjA4NTlDMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RkQ3RkY0RDNGQjM3MzQwRkFBOEM3RUU3MUQxQ0I5RUFGMDg1 OUMxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpJGTANBgkqhkiG 9w0BAQsFAAOCAQEAY/cK/O+62lc4fiiyL4W5WsM4sa9F7VLCwHcmmhG1B0zywy4W hGiDT9pZtqor2e3XdsfTne8NFkM9mWTHlGjl12jTEQLqpC88gMwbTldAFHUFnbih 9oalsMxezNrPjU1b70aG8GkYINdhBs39NtHauK060mgApMYuuduYxkMJl4vUulsk pacC0/Nt7WlNFTuwugoSK9BCUTmbV840CvISx7yybpPBlmX2o+YKt4ky3IAa+07N 3LLtJ7q7bb941UnYcqFcJxfdUABYxP8P14FJbx2nZkWhjAwdwSP9J899f+GHNcBl /cWg57S/T8OJ+CYLWtyNumvMg0Rg4/ZPyfon3g== -----END CERTIFICATE-----Generated at Wed May 13 05:55:10 2026 by rpki-client