$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33362e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33362e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: vbQLd6cdONw7Pp3qW0mvbEDsNufsb7r6bxU1ZSatIVI= Subject key identifier: A2:90:C3:B5:39:B2:9D:B8:50:D9:8C:EB:B9:68:79:EC:F6:6C:56:E9 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 08B35BC08B33F6891E6C9833D4B1BB42D314A71E Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33362e302f32332d3233203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:56 +0000 ROA not before: Sun 03 May 2026 02:17:56 +0000 ROA not after: Sun 02 May 2027 02:22:56 +0000 asID: 58487 IP address blocks: 202.10.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b3:5b:c0:8b:33:f6:89:1e:6c:98:33:d4:b1:bb:42:d3:14:a7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:56 2026 GMT Not After : May 2 02:22:56 2027 GMT Subject: CN=A290C3B539B29DB850D98CEBB96879ECF66C56E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8b:e1:63:68:a6:b1:dc:03:51:67:cd:9b:fa: 2c:ae:f4:67:26:9b:b7:f1:7e:88:19:e7:ed:6a:ee: 77:45:d1:3f:de:83:59:a4:61:0b:a1:95:05:4b:58: 2e:79:aa:4d:ef:1b:ff:28:72:9c:91:a8:e2:cb:7e: 7a:70:83:ca:79:3a:da:bd:4f:70:7d:de:83:96:90: 4c:9c:88:ac:4e:41:b3:e9:4d:46:e8:b5:6d:cc:a0: 92:0c:55:c4:fe:78:e6:11:bb:13:a2:91:9d:47:62: a4:e7:52:57:50:f1:b7:3d:4b:c2:b4:d5:22:6e:db: 31:47:ae:af:34:16:47:30:a8:13:bf:cd:e7:07:26: ea:80:43:86:40:db:be:0a:46:d1:58:62:b6:16:bc: 78:f8:77:ad:c3:80:43:81:86:99:b6:19:50:97:25: dc:5f:ac:56:fe:e8:0d:2d:87:44:f6:4f:4d:8f:56: 00:c7:90:57:00:6e:52:e3:3d:5b:ee:41:f5:69:f3: 48:2c:2a:c3:d1:4f:2e:ae:44:47:db:be:c1:ed:52: 38:ff:99:2c:c0:33:f5:30:a4:81:3c:a5:99:be:ce: 06:63:a9:6c:1a:fc:ec:47:23:3e:ca:3f:98:0a:18: d9:bf:b4:c6:47:da:17:6d:49:86:7b:1c:df:fb:f6: 4f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:90:C3:B5:39:B2:9D:B8:50:D9:8C:EB:B9:68:79:EC:F6:6C:56:E9 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33362e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.36.0/23 Signature Algorithm: sha256WithRSAEncryption 50:93:5d:96:05:af:bf:4a:33:03:d2:dd:a0:98:84:01:f8:38: 19:c3:2b:d9:a0:da:46:b4:ed:b5:a7:9b:5e:46:59:f5:a5:db: dd:0f:aa:6e:8b:89:f8:f4:8c:81:14:bb:dd:c7:ec:e5:17:c9: 41:92:34:79:68:51:31:c4:83:06:e8:2a:e6:10:dd:a1:ab:3a: 1f:32:9a:9d:e5:19:c6:0a:ae:db:10:14:8a:9d:6b:f7:21:5f: a9:07:36:46:6b:af:0b:b7:34:9c:a2:60:f7:f0:31:e9:67:6e: 47:d0:f0:eb:3f:02:94:57:75:1e:e7:4f:f3:fe:31:81:cc:6d: 97:e3:fa:8d:23:8b:ee:2b:93:14:6f:d7:cf:aa:6b:c2:09:22: 98:53:9c:cc:20:dc:80:63:0a:52:c2:5c:83:b7:fa:21:da:ea: 24:99:a9:0a:a8:43:df:fc:f9:1f:0a:b0:a1:0e:94:84:6a:a4: fe:b5:78:9a:40:66:2a:cf:bf:7a:22:ff:2a:d4:bf:73:b5:16: 30:7a:52:10:4d:9d:95:f6:99:d8:fe:c0:c8:98:2f:72:b3:bc: 4e:8c:82:21:d3:47:6e:bc:77:94:89:22:c3:71:0b:57:ad:38: af:33:64:94:52:2c:04:ae:46:6f:e4:c2:c5:f2:52:00:2d:34: 55:08:6e:b7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCLNbwIsz9okebJgz1LG7QtMUpx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTZaFw0yNzA1MDIwMjIyNTZaMDMxMTAvBgNV BAMTKEEyOTBDM0I1MzlCMjlEQjg1MEQ5OENFQkI5Njg3OUVDRjY2QzU2RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1i+FjaKax3ANRZ82b+iyu9Gcm m7fxfogZ5+1q7ndF0T/eg1mkYQuhlQVLWC55qk3vG/8ocpyRqOLLfnpwg8p5Otq9 T3B93oOWkEyciKxOQbPpTUbotW3MoJIMVcT+eOYRuxOikZ1HYqTnUldQ8bc9S8K0 1SJu2zFHrq80FkcwqBO/zecHJuqAQ4ZA274KRtFYYrYWvHj4d63DgEOBhpm2GVCX JdxfrFb+6A0th0T2T02PVgDHkFcAblLjPVvuQfVp80gsKsPRTy6uREfbvsHtUjj/ mSzAM/UwpIE8pZm+zgZjqWwa/OxHIz7KP5gKGNm/tMZH2hdtSYZ7HN/79k/7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUopDDtTmynbhQ2YzruWh57PZsVukwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiQwDQYJKoZIhvcN AQELBQADggEBAFCTXZYFr79KMwPS3aCYhAH4OBnDK9mg2ka07bWnm15GWfWl290P qm6Lifj0jIEUu93H7OUXyUGSNHloUTHEgwboKuYQ3aGrOh8ymp3lGcYKrtsQFIqd a/chX6kHNkZrrwu3NJyiYPfwMelnbkfQ8Os/ApRXdR7nT/P+MYHMbZfj+o0ji+4r kxRv18+qa8IJIphTnMwg3IBjClLCXIO3+iHa6iSZqQqoQ9/8+R8KsKEOlIRqpP61 eJpAZirPv3oi/yrUv3O1FjB6UhBNnZX2mdj+wMiYL3KzvE6MgiHTR268d5SJIsNx C1etOK8zZJRSLASuRm/kwsXyUgAtNFUIbrc= -----END CERTIFICATE-----Generated at Tue May 12 22:56:42 2026 by rpki-client