$ rpki-client -vvf rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32392e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: dBMRidIHmDJpAXQnRb7chQxbiE61M8MP8MR8WVkobdk= Subject key identifier: E7:81:5C:CA:3D:CE:E0:42:40:10:69:4B:70:73:A0:61:FF:C5:A0:5C Certificate issuer: /CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Certificate serial: 680F560845B989595165EB5605C69FB44F819B66 Authority key identifier: 72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa Signing time: Sun 03 May 2026 02:21:34 +0000 ROA not before: Sun 03 May 2026 02:16:34 +0000 ROA not after: Sun 02 May 2027 02:21:34 +0000 asID: 24528 IP address blocks: 202.91.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0f:56:08:45:b9:89:59:51:65:eb:56:05:c6:9f:b4:4f:81:9b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Validity Not Before: May 3 02:16:34 2026 GMT Not After : May 2 02:21:34 2027 GMT Subject: CN=E7815CCA3DCEE0424010694B7073A061FFC5A05C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a5:f4:1d:a5:a0:e5:ec:39:c7:3a:c4:f8:33: b3:0c:ee:21:cd:4a:51:c2:e6:36:bd:ad:d0:9f:a5: 87:b6:92:5d:ed:db:3f:d2:23:ea:aa:8e:35:08:8a: 52:c0:5a:da:5b:a3:b0:36:9a:63:6e:f2:18:2e:8c: d9:96:51:1a:3c:64:88:6a:22:e7:80:f2:e6:f8:82: 53:23:43:f5:a8:95:a9:19:c7:81:2e:70:d4:12:8a: 5a:3b:32:b0:c7:f7:84:3e:40:21:92:0f:1c:67:fb: 40:cb:b8:62:6d:0a:44:88:97:ab:f4:c5:f9:80:63: d3:f8:af:22:94:78:38:38:cb:6e:8c:09:00:91:9a: b4:9b:7a:cb:bd:27:12:00:8f:5e:ef:4d:31:4a:8d: 67:62:2c:04:82:98:f2:b0:71:03:21:bd:49:36:03: 10:f5:48:78:2e:f6:25:41:65:bc:88:67:8c:ef:f9: 33:8f:77:53:df:7d:d8:fd:52:57:79:e5:7e:91:4c: 7b:46:6b:54:68:36:cb:13:88:71:2e:d1:fd:e6:cf: 35:33:cb:07:ba:78:33:84:ff:4e:f6:a5:17:a9:62: e2:dc:4c:65:db:82:71:79:2b:3a:05:82:77:39:68: 8e:ac:82:cc:fa:28:df:46:df:2c:f8:f1:86:38:67: 8e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:81:5C:CA:3D:CE:E0:42:40:10:69:4B:70:73:A0:61:FF:C5:A0:5C X509v3 Authority Key Identifier: keyid:72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.29.0/24 Signature Algorithm: sha256WithRSAEncryption 31:0e:4f:81:4a:07:58:b9:28:89:ee:b8:48:7f:5e:b6:ae:f0: 65:ac:e6:df:51:ae:4c:78:88:2f:87:b4:d1:e1:78:e0:4d:94: ed:45:ef:a9:6c:cc:48:83:8f:c3:bc:03:7e:88:e2:2e:52:d6: 70:a6:49:08:47:3d:b4:b6:74:db:2b:b3:90:1e:b5:8a:ea:c7: b0:28:e4:84:1a:67:d0:f8:b8:43:cb:50:71:76:d3:32:e2:1b: 5f:f6:86:0b:f3:05:2f:17:16:02:27:88:e5:ab:b6:76:84:27: 43:0e:da:af:a9:9b:c3:fb:e5:e6:29:60:4f:77:83:ad:a7:97: 2e:f7:41:11:6e:3f:e2:bb:33:c0:be:99:95:41:81:e1:21:b1: a0:17:34:22:fe:e2:85:e9:74:1a:c9:f5:8e:60:9d:b4:2a:db: db:b2:58:b0:a2:c7:dd:91:7d:2e:f3:ce:83:c2:07:9e:21:63: 0f:b3:4e:40:76:71:b1:17:a4:6d:8a:90:b6:51:d6:24:c6:86: 05:f1:46:63:f4:e8:6e:c1:f8:08:15:2f:a2:e0:98:33:10:a2: 8b:7c:8a:a0:81:e0:41:c1:10:1b:e2:60:a8:dd:68:e7:05:23: 5b:8a:2a:f4:55:15:1a:e5:e3:6b:d3:3c:37:e9:a3:7e:be:98: 4d:64:d2:95 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaA9WCEW5iVlRZetWBcaftE+Bm2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIyOURGRTJFMEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZD MENFQUUwNzAeFw0yNjA1MDMwMjE2MzRaFw0yNzA1MDIwMjIxMzRaMDMxMTAvBgNV BAMTKEU3ODE1Q0NBM0RDRUUwNDI0MDEwNjk0QjcwNzNBMDYxRkZDNUEwNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjpfQdpaDl7DnHOsT4M7MM7iHN SlHC5ja9rdCfpYe2kl3t2z/SI+qqjjUIilLAWtpbo7A2mmNu8hgujNmWURo8ZIhq IueA8ub4glMjQ/WolakZx4EucNQSilo7MrDH94Q+QCGSDxxn+0DLuGJtCkSIl6v0 xfmAY9P4ryKUeDg4y26MCQCRmrSbesu9JxIAj17vTTFKjWdiLASCmPKwcQMhvUk2 AxD1SHgu9iVBZbyIZ4zv+TOPd1Pffdj9Uld55X6RTHtGa1RoNssTiHEu0f3mzzUz ywe6eDOE/072pRepYuLcTGXbgnF5KzoFgnc5aI6sgsz6KN9G3yz48YY4Z44hAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU54Fcyj3O4EJAEGlLcHOgYf/FoFwwHwYDVR0j BBgwFoAUcinf4uCjpXCpNSFgHrGmH8DOrgcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjlhYjYwYjEtYTI0NC00YTc4LWIzMWItZmVjYTNkMTRlZDlmLzAvNzIyOURGRTJF MEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZDMENFQUUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MjI5REZFMkUwQTNBNTcwQTkzNTIxNjAxRUIxQTYxRkMwQ0VB RTA3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWx0wDQYJKoZIhvcN AQELBQADggEBADEOT4FKB1i5KInuuEh/Xrau8GWs5t9Rrkx4iC+HtNHheOBNlO1F 76lszEiDj8O8A36I4i5S1nCmSQhHPbS2dNsrs5AetYrqx7Ao5IQaZ9D4uEPLUHF2 0zLiG1/2hgvzBS8XFgIniOWrtnaEJ0MO2q+pm8P75eYpYE93g62nly73QRFuP+K7 M8C+mZVBgeEhsaAXNCL+4oXpdBrJ9Y5gnbQq29uyWLCix92RfS7zzoPCB54hYw+z TkB2cbEXpG2KkLZR1iTGhgXxRmP06G7B+AgVL6LgmDMQoot8iqCB4EHBEBviYKjd aOcFI1uKKvRVFRrl42vTPDfpo36+mE1k0pU= -----END CERTIFICATE-----Generated at Wed May 13 11:55:31 2026 by rpki-client