$ rpki-client -vvf rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32342e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: gQkyLjmlcDwKcd2z2flGb/EQPjqBxcBo5tmP6HZn8gU= Subject key identifier: DC:B4:9A:6B:D8:46:56:BB:34:EE:E2:D6:B4:C4:B5:BA:39:3F:AE:9D Certificate issuer: /CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Certificate serial: 0E2DA6E1739968DBDBD3B16E68D4F7C86E9B7F15 Authority key identifier: 72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa Signing time: Sun 03 May 2026 02:21:35 +0000 ROA not before: Sun 03 May 2026 02:16:35 +0000 ROA not after: Sun 02 May 2027 02:21:35 +0000 asID: 24528 IP address blocks: 202.91.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:2d:a6:e1:73:99:68:db:db:d3:b1:6e:68:d4:f7:c8:6e:9b:7f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Validity Not Before: May 3 02:16:35 2026 GMT Not After : May 2 02:21:35 2027 GMT Subject: CN=DCB49A6BD84656BB34EEE2D6B4C4B5BA393FAE9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:23:2a:05:25:df:e7:2e:3c:be:70:34:a7:2e: 4f:38:19:04:3d:74:8c:7d:f6:0b:03:30:0c:04:82: a7:07:24:7a:3d:49:25:89:94:94:66:b0:4c:8e:a6: 1d:c1:53:90:53:3c:68:d2:83:e5:9b:d2:78:fa:f3: fe:19:57:83:dc:00:cc:29:b0:54:ec:40:5a:59:1e: 7b:c1:cf:5d:17:80:5b:23:68:b1:6a:c6:23:61:0d: 7e:eb:f8:5d:a3:be:29:33:ad:90:bd:db:58:7f:16: eb:23:c8:ac:fd:93:b3:af:e8:9b:23:78:9b:53:96: ee:4c:76:96:2c:b7:1b:5c:64:31:97:5c:c7:64:2e: f1:c2:3e:52:b3:c7:2b:6b:51:83:cc:bc:fe:d5:0c: a2:03:f1:32:c5:05:7e:35:df:9c:75:68:32:b4:45: 0c:4d:c9:fa:eb:01:c7:18:c2:35:eb:be:1a:bc:de: 26:53:41:67:50:3d:cd:df:cb:d2:7e:f3:20:f8:11: 70:d1:de:c3:66:e2:d3:64:a3:21:a6:e0:2a:af:84: ff:1b:c5:51:35:07:89:fa:69:c6:f3:52:41:5a:ce: 63:8e:7c:09:78:66:3e:ec:e3:94:7a:e8:88:7d:ca: a9:14:56:9a:21:8c:6a:26:34:96:8b:14:95:22:13: 15:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:B4:9A:6B:D8:46:56:BB:34:EE:E2:D6:B4:C4:B5:BA:39:3F:AE:9D X509v3 Authority Key Identifier: keyid:72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.24.0/24 Signature Algorithm: sha256WithRSAEncryption 60:46:a0:11:ca:29:29:34:0f:f3:d4:79:e3:39:fa:3b:46:6c: 19:06:9c:a2:27:dc:0e:f7:bc:bf:56:f1:da:80:a6:50:b3:d0: 1c:67:fb:53:41:21:55:b2:8e:9a:0f:f7:e9:c8:c8:eb:2a:10: e7:ab:99:f7:da:c8:87:33:45:ef:8d:6a:29:90:8f:c5:ad:0d: 92:02:d6:65:57:eb:ca:22:a8:a2:2a:d2:dd:2e:a9:78:9f:04: a9:2c:32:ab:07:de:e1:65:7e:e5:78:04:56:c9:6d:32:12:6e: 73:af:31:98:dc:f1:40:57:3d:71:c8:8c:8b:2d:8e:7d:91:59: ea:58:83:8b:ba:9d:a6:7e:63:01:52:f4:ed:4b:57:c4:a6:ed: 6c:2d:e8:13:ab:f5:7a:9e:77:c5:d9:43:a5:5b:9a:60:9d:42: d4:0f:7d:a5:6c:cc:2f:66:b0:cc:46:57:ae:9c:a0:a2:5f:08: 3c:5b:bd:f6:2a:a2:64:c3:8e:4d:8b:8a:c4:4d:7c:c2:5d:11: c0:66:8a:ce:28:fe:18:e3:21:f0:e7:dd:37:6e:ba:7a:c7:cd: 45:7a:ec:3d:b0:d8:52:5d:f8:28:f4:dc:e2:0d:8e:a6:64:cf: 2d:7e:ca:61:77:85:52:b8:33:72:ed:8b:30:15:41:ea:9d:1d: c9:db:cb:ab -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDi2m4XOZaNvb07FuaNT3yG6bfxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIyOURGRTJFMEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZD MENFQUUwNzAeFw0yNjA1MDMwMjE2MzVaFw0yNzA1MDIwMjIxMzVaMDMxMTAvBgNV BAMTKERDQjQ5QTZCRDg0NjU2QkIzNEVFRTJENkI0QzRCNUJBMzkzRkFFOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVIyoFJd/nLjy+cDSnLk84GQQ9 dIx99gsDMAwEgqcHJHo9SSWJlJRmsEyOph3BU5BTPGjSg+Wb0nj68/4ZV4PcAMwp sFTsQFpZHnvBz10XgFsjaLFqxiNhDX7r+F2jvikzrZC921h/FusjyKz9k7Ov6Jsj eJtTlu5MdpYstxtcZDGXXMdkLvHCPlKzxytrUYPMvP7VDKID8TLFBX4135x1aDK0 RQxNyfrrAccYwjXrvhq83iZTQWdQPc3fy9J+8yD4EXDR3sNm4tNkoyGm4CqvhP8b xVE1B4n6acbzUkFazmOOfAl4Zj7s45R66Ih9yqkUVpohjGomNJaLFJUiExXBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3LSaa9hGVrs07uLWtMS1ujk/rp0wHwYDVR0j BBgwFoAUcinf4uCjpXCpNSFgHrGmH8DOrgcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjlhYjYwYjEtYTI0NC00YTc4LWIzMWItZmVjYTNkMTRlZDlmLzAvNzIyOURGRTJF MEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZDMENFQUUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MjI5REZFMkUwQTNBNTcwQTkzNTIxNjAxRUIxQTYxRkMwQ0VB RTA3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxgwDQYJKoZIhvcN AQELBQADggEBAGBGoBHKKSk0D/PUeeM5+jtGbBkGnKIn3A73vL9W8dqAplCz0Bxn +1NBIVWyjpoP9+nIyOsqEOermffayIczRe+NaimQj8WtDZIC1mVX68oiqKIq0t0u qXifBKksMqsH3uFlfuV4BFbJbTISbnOvMZjc8UBXPXHIjIstjn2RWepYg4u6naZ+ YwFS9O1LV8Sm7Wwt6BOr9Xqed8XZQ6VbmmCdQtQPfaVszC9msMxGV66coKJfCDxb vfYqomTDjk2LisRNfMJdEcBmis4o/hjjIfDn3TduunrHzUV67D2w2FJd+Cj03OIN jqZkzy1+ymF3hVK4M3LtizAVQeqdHcnby6s= -----END CERTIFICATE-----Generated at Wed May 13 06:08:08 2026 by rpki-client