$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33382e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: FfgCUaM5r0YJEAtUKJB14M1Hd/RxAj7aA8Zb83q8BcM= Subject key identifier: ED:4A:EC:8C:9B:DC:E6:A3:64:B9:29:4A:B6:3A:AE:E7:51:09:A0:F1 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 2C39259D85EBB4EC94DD395581150912B340AB82 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:58 +0000 ROA not before: Sun 03 May 2026 02:17:58 +0000 ROA not after: Sun 02 May 2027 02:22:58 +0000 asID: 58487 IP address blocks: 202.10.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:39:25:9d:85:eb:b4:ec:94:dd:39:55:81:15:09:12:b3:40:ab:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:58 2026 GMT Not After : May 2 02:22:58 2027 GMT Subject: CN=ED4AEC8C9BDCE6A364B9294AB63AAEE75109A0F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bb:bb:d0:2e:f0:cd:19:f2:cf:8f:50:32:42: e6:31:64:26:69:12:8a:53:e8:19:d2:98:e1:4e:4f: d1:cc:eb:18:17:34:c3:1b:d3:59:04:c2:fd:be:a7: 29:fc:d4:8c:e5:0d:58:9b:ed:6f:66:22:aa:42:53: 28:f6:2d:65:c4:ca:a4:a1:d5:0f:ab:fb:e4:2b:da: 6d:fe:8d:f0:dd:44:7d:31:30:f6:6f:41:8d:99:07: c9:26:3f:d2:1b:3c:2a:27:a7:3a:c1:38:b6:c8:95: 8a:69:3d:86:04:17:20:9a:8b:34:3e:a8:85:01:be: 85:e5:11:e8:4f:86:6f:79:a5:f5:c6:c7:ab:16:8a: 60:19:97:3e:b7:c1:f6:fd:83:9a:c6:e3:4e:00:0b: 05:33:7d:47:d3:f1:84:86:ba:58:6d:49:28:22:0b: 64:3f:19:59:b6:b0:bf:4b:61:f5:f0:0d:66:03:8d: bd:a7:7c:b1:67:f6:d7:38:61:71:07:49:2d:53:f9: 38:57:ac:6f:ac:ef:8b:2f:11:a6:bd:13:14:52:3b: 1f:f2:36:58:1b:0d:b9:f2:d0:71:71:36:62:b2:e2: 29:a8:91:f6:c0:a0:ec:89:0d:c0:8e:56:f3:2a:c8: a9:a0:94:4d:5e:c3:f7:fe:59:14:73:e3:78:0c:66: 57:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:4A:EC:8C:9B:DC:E6:A3:64:B9:29:4A:B6:3A:AE:E7:51:09:A0:F1 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.38.0/23 Signature Algorithm: sha256WithRSAEncryption 20:df:2b:5d:8d:72:2d:ba:8e:b9:71:8e:dd:f7:e3:0a:31:ad: 35:7d:05:40:71:86:ef:2e:53:11:a1:a7:21:bd:d0:eb:cd:b3: f4:49:fc:b8:9e:f0:37:31:44:74:02:32:19:97:f1:7e:b0:40: 85:fc:ea:2f:e8:1d:70:d6:42:64:e4:f0:3e:69:8e:b9:43:a3: 40:d0:96:45:c6:af:38:f3:b9:68:cb:02:f4:9b:8a:33:20:07: cd:55:dd:60:37:71:a4:50:a5:89:2e:7c:7f:1b:cf:3f:d2:68: 7d:71:12:09:56:de:e8:d9:96:f1:16:ef:48:69:a6:8c:a3:1a: d1:f3:03:1b:82:20:a0:e8:cf:48:0a:f7:4b:90:91:e9:30:57: 6d:cb:60:76:a8:38:d5:74:b3:a5:d0:ff:79:6a:43:94:db:c7: f0:e3:fa:f6:23:b5:75:1d:d1:bb:d6:77:ad:a1:9c:74:0f:c4: 4a:49:ed:9d:97:13:88:1e:c7:72:a0:7f:6f:85:29:49:e5:05: 5d:68:0d:fa:cd:42:0f:4d:ab:62:04:47:5e:fd:a5:f5:93:01: 25:2f:e1:38:68:cd:7e:f9:8a:28:67:b0:e0:e1:b1:0b:62:ad: 51:e1:a8:84:81:ca:cc:d4:2e:3c:2a:35:67:e7:48:e8:c7:dd: de:d7:90:f7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULDklnYXrtOyU3TlVgRUJErNAq4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NThaFw0yNzA1MDIwMjIyNThaMDMxMTAvBgNV BAMTKEVENEFFQzhDOUJEQ0U2QTM2NEI5Mjk0QUI2M0FBRUU3NTEwOUEwRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmu7vQLvDNGfLPj1AyQuYxZCZp EopT6BnSmOFOT9HM6xgXNMMb01kEwv2+pyn81IzlDVib7W9mIqpCUyj2LWXEyqSh 1Q+r++Qr2m3+jfDdRH0xMPZvQY2ZB8kmP9IbPConpzrBOLbIlYppPYYEFyCaizQ+ qIUBvoXlEehPhm95pfXGx6sWimAZlz63wfb9g5rG404ACwUzfUfT8YSGulhtSSgi C2Q/GVm2sL9LYfXwDWYDjb2nfLFn9tc4YXEHSS1T+ThXrG+s74svEaa9ExRSOx/y NlgbDbny0HFxNmKy4imokfbAoOyJDcCOVvMqyKmglE1ew/f+WRRz43gMZlcfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7UrsjJvc5qNkuSlKtjqu51EJoPEwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiYwDQYJKoZIhvcN AQELBQADggEBACDfK12Nci26jrlxjt334woxrTV9BUBxhu8uUxGhpyG90OvNs/RJ /Lie8DcxRHQCMhmX8X6wQIX86i/oHXDWQmTk8D5pjrlDo0DQlkXGrzjzuWjLAvSb ijMgB81V3WA3caRQpYkufH8bzz/SaH1xEglW3ujZlvEW70hppoyjGtHzAxuCIKDo z0gK90uQkekwV23LYHaoONV0s6XQ/3lqQ5Tbx/Dj+vYjtXUd0bvWd62hnHQPxEpJ 7Z2XE4gex3Kgf2+FKUnlBV1oDfrNQg9Nq2IER179pfWTASUv4ThozX75iihnsODh sQtirVHhqISByszULjwqNWfnSOjH3d7XkPc= -----END CERTIFICATE-----Generated at Tue May 12 22:56:30 2026 by rpki-client