$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33342e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: NFc2WVD68KvDyLGSXGxgzJXnsXBUY7x8VG9AIvZ5nuk= Subject key identifier: 89:6B:E6:AA:52:67:CB:A6:8D:46:42:DB:57:9F:EC:7A:4D:2E:E7:29 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 1A9DF166A7EE291F9C5A88A821F725E75A21D44F Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:57 +0000 ROA not before: Sun 03 May 2026 02:17:57 +0000 ROA not after: Sun 02 May 2027 02:22:57 +0000 asID: 58487 IP address blocks: 202.10.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:9d:f1:66:a7:ee:29:1f:9c:5a:88:a8:21:f7:25:e7:5a:21:d4:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:57 2026 GMT Not After : May 2 02:22:57 2027 GMT Subject: CN=896BE6AA5267CBA68D4642DB579FEC7A4D2EE729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:56:2c:95:30:6f:0d:8c:53:97:6f:c4:31:31: 67:cf:a1:11:16:80:1a:d0:80:26:9a:b8:17:f0:bd: 72:90:97:4e:9d:26:e8:98:4f:57:d5:55:0f:2b:e7: 9f:01:49:2f:51:33:5b:5a:40:6e:9b:69:5e:c9:0b: 90:43:d0:99:75:a1:f1:bb:f3:4d:d9:59:fa:1e:77: 6a:5e:9d:a6:fb:5a:95:b5:2f:fe:ef:d3:4e:da:3f: 46:9b:c5:19:24:66:d0:9a:c4:76:e9:42:f2:e2:01: b2:00:e4:5e:8d:75:49:c9:73:3a:73:11:4d:27:8e: da:1d:3d:24:bf:78:08:e0:98:a3:60:21:b3:29:e6: 72:c0:3f:43:9a:aa:34:fb:40:8e:e8:bc:14:61:e6: 3a:83:a9:ef:4d:97:d8:55:ca:f1:4f:6f:14:6f:31: 13:2b:59:5b:2e:bb:e5:d3:4b:64:dc:d2:01:9b:98: 7d:1d:0c:28:02:11:e0:f5:de:5b:24:e2:54:fb:7a: a7:54:1a:76:6f:08:ed:22:92:c9:c4:c2:61:f4:31: 7e:ab:94:87:15:81:f6:9c:61:1b:fd:67:d3:5a:5b: 37:3c:d5:68:91:cf:11:33:a3:86:5b:a1:8e:53:14: 78:48:3c:af:08:b4:de:f3:ea:40:72:f5:8a:ed:4b: 0f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6B:E6:AA:52:67:CB:A6:8D:46:42:DB:57:9F:EC:7A:4D:2E:E7:29 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.34.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:e7:a8:c3:a3:85:37:c5:7d:0e:c1:77:13:02:15:94:ef:b5: 69:a5:b4:cc:38:a5:4a:44:d1:f4:15:cc:1e:82:ba:3f:c1:0d: 94:4c:13:c4:10:ff:61:e8:bd:3a:6a:d0:39:7b:22:bc:82:cd: f1:3f:10:4f:72:1b:a8:b5:0e:f1:52:05:94:19:8a:d4:28:ce: de:6a:15:77:c5:67:bc:ad:a6:9c:50:56:bd:f6:ff:86:d6:c6: 88:4c:ba:34:87:53:f6:14:1d:63:ce:28:dc:5a:24:7c:03:fd: d5:35:88:e5:78:3b:27:d6:86:c8:ee:47:be:d4:a8:dd:7f:25: d4:77:fa:0b:57:ce:30:95:07:97:f9:e6:b3:6b:7a:40:e5:4e: 94:cb:6d:0e:a1:ba:0e:7c:10:17:30:53:fb:bc:30:22:d3:8c: 2c:c8:21:de:44:f8:28:3a:63:b4:44:4c:be:18:87:99:76:50: 93:e0:b8:05:18:02:5b:32:82:4f:f7:8f:90:4f:e0:42:25:17: c9:97:7e:fe:2e:df:59:32:41:c7:a8:23:5b:b4:69:d0:22:f8: 11:45:73:d1:55:44:24:0f:6c:ac:ae:12:f7:c2:e8:38:a1:38: 30:c9:ff:83:d7:c2:28:c1:47:d2:55:37:fb:75:a0:db:f0:ef: fc:39:b0:22 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGp3xZqfuKR+cWoioIfcl51oh1E8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTdaFw0yNzA1MDIwMjIyNTdaMDMxMTAvBgNV BAMTKDg5NkJFNkFBNTI2N0NCQTY4RDQ2NDJEQjU3OUZFQzdBNEQyRUU3MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ViyVMG8NjFOXb8QxMWfPoREW gBrQgCaauBfwvXKQl06dJuiYT1fVVQ8r558BSS9RM1taQG6baV7JC5BD0Jl1ofG7 803ZWfoed2penab7WpW1L/7v007aP0abxRkkZtCaxHbpQvLiAbIA5F6NdUnJczpz EU0njtodPSS/eAjgmKNgIbMp5nLAP0OaqjT7QI7ovBRh5jqDqe9Nl9hVyvFPbxRv MRMrWVsuu+XTS2Tc0gGbmH0dDCgCEeD13lsk4lT7eqdUGnZvCO0iksnEwmH0MX6r lIcVgfacYRv9Z9NaWzc81WiRzxEzo4ZboY5TFHhIPK8ItN7z6kBy9YrtSw8PAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiWvmqlJny6aNRkLbV5/sek0u5ykwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiIwDQYJKoZIhvcN AQELBQADggEBAB3nqMOjhTfFfQ7BdxMCFZTvtWmltMw4pUpE0fQVzB6Cuj/BDZRM E8QQ/2HovTpq0Dl7IryCzfE/EE9yG6i1DvFSBZQZitQozt5qFXfFZ7ytppxQVr32 /4bWxohMujSHU/YUHWPOKNxaJHwD/dU1iOV4OyfWhsjuR77UqN1/JdR3+gtXzjCV B5f55rNrekDlTpTLbQ6hug58EBcwU/u8MCLTjCzIId5E+Cg6Y7RETL4Yh5l2UJPg uAUYAlsygk/3j5BP4EIlF8mXfv4u31kyQceoI1u0adAi+BFFc9FVRCQPbKyuEvfC 6DihODDJ/4PXwijBR9JVN/t1oNvw7/w5sCI= -----END CERTIFICATE-----Generated at Tue May 12 22:56:42 2026 by rpki-client