$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33352e302f32342d3234203d3e203538343837.roa File: 3230322e31302e33352e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: xPINf6qMhMNXsRzoY5JvjSNwNPIFtsb12j6CHRo1d8o= Subject key identifier: E8:8E:BF:B2:1F:2D:90:5E:74:DB:25:C2:9E:BF:F1:A9:D1:42:9E:11 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 5758950A58AC672274C0951A858D058F0BD42687 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33352e302f32342d3234203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:49 +0000 ROA not before: Sun 03 May 2026 02:17:49 +0000 ROA not after: Sun 02 May 2027 02:22:49 +0000 asID: 58487 IP address blocks: 202.10.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:58:95:0a:58:ac:67:22:74:c0:95:1a:85:8d:05:8f:0b:d4:26:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:49 2026 GMT Not After : May 2 02:22:49 2027 GMT Subject: CN=E88EBFB21F2D905E74DB25C29EBFF1A9D1429E11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:81:2e:9d:5c:07:86:ac:4d:90:35:03:7e:03: 63:8c:bb:93:ff:d9:dc:85:73:c3:07:fb:fd:dd:37: 2d:e5:1f:03:5f:34:ed:f9:83:46:87:76:f7:98:cf: 74:97:1c:6e:24:f6:08:cf:64:a6:40:4a:53:e3:c0: 75:ed:97:ad:0a:fe:04:4c:ef:96:5a:09:66:ab:d9: 1b:68:e3:aa:68:6c:a8:1c:31:81:62:0e:f9:5a:25: 90:e5:70:32:87:a5:85:c9:2d:35:c5:67:05:6b:ca: f3:3f:d1:a0:06:ec:ad:6f:da:4f:6e:15:e7:5d:c7: bb:f0:0d:6e:50:28:cb:69:b0:38:b7:60:43:ca:c3: 2d:7a:15:cf:ff:f9:59:aa:f5:9c:fa:68:1f:02:9a: d5:f5:eb:a1:ae:28:df:e9:8f:93:54:0e:11:6f:5b: ae:f7:38:7e:7f:d7:a0:36:b4:51:2a:23:93:3f:f1: 66:90:96:0c:63:4d:e4:d5:9e:1a:54:1a:8c:21:52: f3:90:33:79:5e:b2:4f:6b:56:3f:80:30:5d:95:7c: 8b:61:47:40:81:88:62:63:43:25:9d:4a:68:b8:1a: 93:e4:6b:80:15:f1:df:25:41:55:a7:2a:de:50:14: 59:b5:84:1d:50:86:0a:dd:1f:7e:47:e4:9e:d6:db: 6a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:8E:BF:B2:1F:2D:90:5E:74:DB:25:C2:9E:BF:F1:A9:D1:42:9E:11 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33352e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.35.0/24 Signature Algorithm: sha256WithRSAEncryption 94:05:bc:13:1e:4b:06:c7:2c:2f:ad:03:f2:4a:c8:31:b9:fb: 57:61:bb:d9:cb:d3:5f:05:63:0f:1a:08:bb:cf:af:3c:85:f6: b3:17:ad:52:80:5e:e4:15:a2:a8:3a:44:c1:00:b2:d1:63:82: ad:f6:bb:3f:dd:c9:1a:30:0f:c7:ef:22:d3:dd:ab:3f:92:4d: 8a:73:c7:7e:3d:8b:82:b9:88:91:61:a0:1f:80:60:b4:53:f4: 59:6c:53:38:f9:51:b0:6a:d0:21:ad:f3:b3:87:f1:a2:d0:ea: 21:73:ed:02:90:c5:b3:da:99:4a:6f:a6:ae:26:45:2b:a9:63: 86:2d:6b:62:7f:a9:d5:1c:57:54:1b:b5:72:a9:4d:50:fd:71: ed:a3:f0:a9:db:ea:e7:8a:4d:67:62:b5:38:21:14:c6:08:02: ce:24:1e:14:5d:ae:1d:85:d0:7a:c7:ac:9e:b7:86:a4:6b:06: 68:04:09:09:ca:99:5a:2c:d0:6a:6e:61:c0:cb:55:98:89:b6: 93:ae:e1:c8:6c:22:84:55:b6:82:c0:b7:be:3d:4b:39:2a:0b: 76:bf:27:dd:f1:2d:40:4f:54:47:ef:ac:92:b9:a2:6b:fa:f7: 81:84:a6:61:5e:eb:2d:dc:bb:75:cb:37:16:68:01:80:b3:08: 00:74:52:29 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUV1iVClisZyJ0wJUahY0FjwvUJocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NDlaFw0yNzA1MDIwMjIyNDlaMDMxMTAvBgNV BAMTKEU4OEVCRkIyMUYyRDkwNUU3NERCMjVDMjlFQkZGMUE5RDE0MjlFMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDngS6dXAeGrE2QNQN+A2OMu5P/ 2dyFc8MH+/3dNy3lHwNfNO35g0aHdveYz3SXHG4k9gjPZKZASlPjwHXtl60K/gRM 75ZaCWar2Rto46pobKgcMYFiDvlaJZDlcDKHpYXJLTXFZwVryvM/0aAG7K1v2k9u Feddx7vwDW5QKMtpsDi3YEPKwy16Fc//+Vmq9Zz6aB8CmtX166GuKN/pj5NUDhFv W673OH5/16A2tFEqI5M/8WaQlgxjTeTVnhpUGowhUvOQM3lesk9rVj+AMF2VfIth R0CBiGJjQyWdSmi4GpPka4AV8d8lQVWnKt5QFFm1hB1QhgrdH35H5J7W22oVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6I6/sh8tkF502yXCnr/xqdFCnhEwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiMwDQYJKoZIhvcN AQELBQADggEBAJQFvBMeSwbHLC+tA/JKyDG5+1dhu9nL018FYw8aCLvPrzyF9rMX rVKAXuQVoqg6RMEAstFjgq32uz/dyRowD8fvItPdqz+STYpzx349i4K5iJFhoB+A YLRT9FlsUzj5UbBq0CGt87OH8aLQ6iFz7QKQxbPamUpvpq4mRSupY4Yta2J/qdUc V1QbtXKpTVD9ce2j8Knb6ueKTWditTghFMYIAs4kHhRdrh2F0HrHrJ63hqRrBmgE CQnKmVos0GpuYcDLVZiJtpOu4chsIoRVtoLAt749SzkqC3a/J93xLUBPVEfvrJK5 omv694GEpmFe6y3cu3XLNxZoAYCzCAB0Uik= -----END CERTIFICATE-----Generated at Wed May 13 01:11:17 2026 by rpki-client