$ rpki-client -vvf rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32382e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: F6rhjUutKa29bUnm7/UxG094I13DCzG5bjD0FGBZBes= Subject key identifier: CE:EC:43:A3:7E:96:77:E1:CA:05:59:58:B5:51:C6:E9:5C:AD:56:7B Certificate issuer: /CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Certificate serial: 71E4C1ABE7167940CEFABB549371E851FECB5BF3 Authority key identifier: 72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa Signing time: Sun 03 May 2026 02:21:33 +0000 ROA not before: Sun 03 May 2026 02:16:33 +0000 ROA not after: Sun 02 May 2027 02:21:33 +0000 asID: 24528 IP address blocks: 202.91.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e4:c1:ab:e7:16:79:40:ce:fa:bb:54:93:71:e8:51:fe:cb:5b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Validity Not Before: May 3 02:16:33 2026 GMT Not After : May 2 02:21:33 2027 GMT Subject: CN=CEEC43A37E9677E1CA055958B551C6E95CAD567B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:33:35:a8:3b:89:f1:8b:f4:62:bf:0c:3a:37: ac:c7:44:44:2e:53:c3:aa:4e:6a:a0:a6:53:17:f3: 99:da:86:a6:4f:81:26:d2:4b:7d:56:d9:21:1e:18: 46:bf:ab:46:50:4d:ee:2c:8a:cf:2d:d1:74:ea:44: f8:9e:79:97:48:b2:a8:51:f1:3d:13:b0:5a:ae:1d: ea:0f:ce:a1:0a:e4:c1:89:6f:43:2d:7a:6b:c1:c8: c7:b3:11:c2:d6:75:d4:36:6a:a4:06:d5:0e:c2:79: 8f:b2:45:00:64:df:44:81:ea:c6:26:d0:5d:aa:1c: f4:93:43:eb:91:68:8d:65:27:0e:c5:a7:1f:b8:3f: 20:d2:0a:ba:1c:fa:1d:0d:89:49:f7:04:96:d7:58: cc:6e:42:de:82:d9:02:e9:7c:71:67:6d:f4:86:89: 8b:d8:41:bf:2e:cf:0a:a4:4c:a7:ef:9f:66:fb:a9: 39:b2:78:5f:15:e4:64:93:0e:b2:97:f4:f3:10:56: 0c:bb:44:53:1f:70:5e:b8:7b:22:82:e0:17:12:02: 6c:db:cb:8b:ad:ff:d9:7e:59:4b:2f:c0:3a:7a:33: a6:cb:2b:92:6b:da:f5:80:8a:49:25:55:35:2f:da: 6b:35:34:e5:b1:b4:62:14:e2:c1:fb:2d:3d:41:3e: dd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EC:43:A3:7E:96:77:E1:CA:05:59:58:B5:51:C6:E9:5C:AD:56:7B X509v3 Authority Key Identifier: keyid:72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.28.0/24 Signature Algorithm: sha256WithRSAEncryption 73:d8:34:e3:6d:1a:05:ab:07:79:40:97:87:7a:aa:93:00:76: 77:06:0a:45:bf:61:a1:62:46:b2:5e:4d:55:d6:0b:07:3b:c0: 45:82:51:5a:77:2f:3c:c4:c3:2e:86:58:09:e5:08:90:59:91: d4:4c:2c:8e:7b:ca:b4:c9:af:bd:10:9b:57:45:0a:72:b8:f2: 9e:3f:86:fd:01:b4:33:7b:c0:d6:bc:f1:26:cd:e3:88:cd:6d: 1d:ba:3c:84:f1:5b:3b:15:27:f4:41:11:12:a2:17:02:6b:85: 97:ba:7d:00:11:7c:a1:9d:2f:c6:41:9a:ca:c6:5e:aa:34:6a: 96:2c:2b:ff:9c:64:43:6b:33:86:4d:31:2d:81:52:86:f1:11: 2a:73:de:ba:0b:4d:6a:98:b6:da:45:7a:9a:d0:30:c9:8a:4b: af:c2:0e:50:d7:97:0e:6a:c1:3f:aa:d3:8e:11:62:df:71:cc: 3e:35:c8:8b:96:6d:eb:a7:94:f0:71:89:6d:1c:de:40:f2:e1: a7:a0:34:98:8e:5a:33:56:2c:70:7c:22:78:76:18:8c:1c:dd: 0d:d4:1c:7a:75:c8:83:e6:d1:47:95:b4:66:a1:0c:b3:15:6d: 25:99:63:74:4f:87:e6:5e:b5:66:cc:8f:6f:13:f5:c5:b6:39: 6e:8c:95:87 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUceTBq+cWeUDO+rtUk3HoUf7LW/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIyOURGRTJFMEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZD MENFQUUwNzAeFw0yNjA1MDMwMjE2MzNaFw0yNzA1MDIwMjIxMzNaMDMxMTAvBgNV BAMTKENFRUM0M0EzN0U5Njc3RTFDQTA1NTk1OEI1NTFDNkU5NUNBRDU2N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWMzWoO4nxi/Rivww6N6zHREQu U8OqTmqgplMX85nahqZPgSbSS31W2SEeGEa/q0ZQTe4sis8t0XTqRPieeZdIsqhR 8T0TsFquHeoPzqEK5MGJb0MtemvByMezEcLWddQ2aqQG1Q7CeY+yRQBk30SB6sYm 0F2qHPSTQ+uRaI1lJw7Fpx+4PyDSCroc+h0NiUn3BJbXWMxuQt6C2QLpfHFnbfSG iYvYQb8uzwqkTKfvn2b7qTmyeF8V5GSTDrKX9PMQVgy7RFMfcF64eyKC4BcSAmzb y4ut/9l+WUsvwDp6M6bLK5Jr2vWAikklVTUv2ms1NOWxtGIU4sH7LT1BPt3VAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzuxDo36Wd+HKBVlYtVHG6VytVnswHwYDVR0j BBgwFoAUcinf4uCjpXCpNSFgHrGmH8DOrgcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjlhYjYwYjEtYTI0NC00YTc4LWIzMWItZmVjYTNkMTRlZDlmLzAvNzIyOURGRTJF MEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZDMENFQUUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MjI5REZFMkUwQTNBNTcwQTkzNTIxNjAxRUIxQTYxRkMwQ0VB RTA3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxwwDQYJKoZIhvcN AQELBQADggEBAHPYNONtGgWrB3lAl4d6qpMAdncGCkW/YaFiRrJeTVXWCwc7wEWC UVp3LzzEwy6GWAnlCJBZkdRMLI57yrTJr70Qm1dFCnK48p4/hv0BtDN7wNa88SbN 44jNbR26PITxWzsVJ/RBERKiFwJrhZe6fQARfKGdL8ZBmsrGXqo0apYsK/+cZENr M4ZNMS2BUobxESpz3roLTWqYttpFeprQMMmKS6/CDlDXlw5qwT+q044RYt9xzD41 yIuWbeunlPBxiW0c3kDy4aegNJiOWjNWLHB8Inh2GIwc3Q3UHHp1yIPm0UeVtGah DLMVbSWZY3RPh+ZetWbMj28T9cW2OW6MlYc= -----END CERTIFICATE-----Generated at Wed May 13 11:59:40 2026 by rpki-client