$ rpki-client -vvf rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39362e302f31392d3234203d3e203338313434.roa File: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (raw, json) Hash identifier: NMwe5J+/CXgAi6nFmZAKAhCZ3C0lGwYdxKCNwpdKULE= Subject key identifier: 1C:50:3A:1B:82:5D:0E:89:00:9A:38:F6:06:25:11:68:26:FC:92:40 Certificate issuer: /CN=D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436 Certificate serial: 11E6D28F88F6FB98290B43EBD554404ACCD05BC9 Authority key identifier: D2:0C:1E:0D:D0:2A:A8:B1:CE:1F:EB:A4:76:97:7C:F8:BB:16:14:36 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39362e302f31392d3234203d3e203338313434.roa Signing time: Sun 03 May 2026 02:22:29 +0000 ROA not before: Sun 03 May 2026 02:17:29 +0000 ROA not after: Sun 02 May 2027 02:22:29 +0000 asID: 38144 IP address blocks: 60.253.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.crl rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e6:d2:8f:88:f6:fb:98:29:0b:43:eb:d5:54:40:4a:cc:d0:5b:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436 Validity Not Before: May 3 02:17:29 2026 GMT Not After : May 2 02:22:29 2027 GMT Subject: CN=1C503A1B825D0E89009A38F60625116826FC9240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:e7:72:e2:e1:39:7e:25:5d:05:4b:40:fe: 36:46:41:15:b3:87:ce:23:46:62:01:48:0c:40:d6: 5d:f3:31:55:ee:eb:9b:cc:c2:b7:42:ab:44:f0:d5: 3c:29:11:e1:98:ec:f3:b5:d6:dd:60:ab:57:fe:d1: ee:26:cf:d2:5e:6e:ce:5e:f4:09:71:01:e6:f2:cb: ec:15:4a:67:18:5a:97:f5:ba:3c:fb:0c:14:93:0b: 8f:ce:ff:de:a0:b7:b9:1e:80:d8:5a:4a:68:8e:3c: 97:c1:83:b5:af:fc:cc:5c:f8:03:79:c7:3f:37:5b: c9:db:36:5d:41:1d:13:5d:7d:57:4a:07:89:5f:8b: d2:03:a4:ae:e5:2a:82:de:72:14:41:a0:09:de:8e: 8f:92:6e:99:dc:3e:6f:64:ca:fe:99:96:f7:81:c5: e3:83:a5:e2:2a:a7:a3:17:37:06:4a:0a:2f:a5:b1: fb:fd:ce:90:cd:dd:e9:ab:b4:58:8f:1b:31:50:b0: fd:24:40:d4:40:29:2c:ae:85:be:58:4a:45:58:37: d9:4d:f1:ac:30:59:e8:81:9f:b4:bc:d2:72:2b:e3: 3c:28:a5:5e:fb:f4:1f:e8:a4:8b:7c:04:03:91:33: f4:aa:0a:15:6a:7d:0c:9b:ce:6a:6c:58:d3:6f:80: eb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:50:3A:1B:82:5D:0E:89:00:9A:38:F6:06:25:11:68:26:FC:92:40 X509v3 Authority Key Identifier: keyid:D2:0C:1E:0D:D0:2A:A8:B1:CE:1F:EB:A4:76:97:7C:F8:BB:16:14:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39362e302f31392d3234203d3e203338313434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.253.96.0/19 Signature Algorithm: sha256WithRSAEncryption 65:15:b9:ad:dd:b2:74:40:8f:d2:56:98:b1:69:a2:5d:a1:01: 82:cd:00:8a:58:c7:7f:89:f4:89:00:f1:e6:a4:95:12:69:f8: 36:23:f5:21:b6:25:35:60:9a:98:c1:f1:1c:67:93:54:64:4d: 5f:54:55:14:74:73:30:cc:1f:df:07:41:3d:dc:8a:c9:90:9c: 82:83:b5:83:ff:77:5d:a2:01:67:7d:a5:e8:bc:f2:bc:ff:d6: f7:25:80:3f:5c:b3:e8:17:f0:da:d8:3a:58:78:a5:54:92:81: 78:61:e3:c9:d1:15:6e:4f:45:ef:41:bd:cd:82:e8:26:9c:00: 46:76:0f:86:bf:dd:12:27:2d:75:d9:d1:b0:c8:60:40:76:85: 1d:42:4e:92:9b:7e:c8:25:5d:69:a5:78:94:20:29:d9:48:ea: fd:dc:43:1d:3b:89:86:11:15:42:3f:f4:e3:6d:0f:85:7b:e8: a6:ed:6a:a3:14:3a:c2:a5:b1:57:21:0e:8c:24:cf:b4:1c:bf: be:31:4c:3e:35:e5:2a:64:1e:3b:91:f7:10:57:28:62:76:84: 38:86:78:24:4d:73:36:f8:61:85:3e:02:82:07:dc:72:a7:9b: ba:d5:66:db:cc:f6:aa:05:4e:2a:54:cd:e7:31:a2:92:5c:7b: 32:7c:8a:fc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEebSj4j2+5gpC0Pr1VRASszQW8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIwQzFFMEREMDJBQThCMUNFMUZFQkE0NzY5NzdDRjhC QjE2MTQzNjAeFw0yNjA1MDMwMjE3MjlaFw0yNzA1MDIwMjIyMjlaMDMxMTAvBgNV BAMTKDFDNTAzQTFCODI1RDBFODkwMDlBMzhGNjA2MjUxMTY4MjZGQzkyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3T+dy4uE5fiVdBUtA/jZGQRWz h84jRmIBSAxA1l3zMVXu65vMwrdCq0Tw1TwpEeGY7PO11t1gq1f+0e4mz9Jebs5e 9AlxAebyy+wVSmcYWpf1ujz7DBSTC4/O/96gt7kegNhaSmiOPJfBg7Wv/Mxc+AN5 xz83W8nbNl1BHRNdfVdKB4lfi9IDpK7lKoLechRBoAnejo+SbpncPm9kyv6ZlveB xeODpeIqp6MXNwZKCi+lsfv9zpDN3emrtFiPGzFQsP0kQNRAKSyuhb5YSkVYN9lN 8awwWeiBn7S80nIr4zwopV779B/opIt8BAORM/SqChVqfQybzmpsWNNvgOtdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUHFA6G4JdDokAmjj2BiURaCb8kkAwHwYDVR0j BBgwFoAU0gweDdAqqLHOH+ukdpd8+LsWFDYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmNkNzUzNmQtOWUxMC00ZDQ5LWI2Y2EtMDQxY2M5YTU5MTRlLzAvRDIwQzFFMERE MDJBQThCMUNFMUZFQkE0NzY5NzdDRjhCQjE2MTQzNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMjBDMUUwREQwMkFBOEIxQ0UxRkVCQTQ3Njk3N0NGOEJCMTYx NDM2LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJjZDc1MzZkLTllMTAtNGQ0OS1i NmNhLTA0MWNjOWE1OTE0ZS8wLzM2MzAyZTMyMzUzMzJlMzkzNjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMzMzgzMTM0MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU8/WAwDQYJKoZIhvcN AQELBQADggEBAGUVua3dsnRAj9JWmLFpol2hAYLNAIpYx3+J9IkA8eaklRJp+DYj 9SG2JTVgmpjB8Rxnk1RkTV9UVRR0czDMH98HQT3cismQnIKDtYP/d12iAWd9pei8 8rz/1vclgD9cs+gX8NrYOlh4pVSSgXhh48nRFW5PRe9Bvc2C6CacAEZ2D4a/3RIn LXXZ0bDIYEB2hR1CTpKbfsglXWmleJQgKdlI6v3cQx07iYYRFUI/9ONtD4V76Kbt aqMUOsKlsVchDowkz7Qcv74xTD415SpkHjuR9xBXKGJ2hDiGeCRNczb4YYU+AoIH 3HKnm7rVZtvM9qoFTipUzecxopJcezJ8ivw= -----END CERTIFICATE-----Generated at Wed May 13 02:11:35 2026 by rpki-client