$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32332d3233203d3e203538343837.roa File: 3230322e31302e34302e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: bYsTywGdUh8Nwv8Sft0lrumaB+A6L+3snty95MBp9SE= Subject key identifier: F7:2D:09:65:3F:D9:37:F9:BA:B4:EB:C6:A5:59:F0:A3:FA:EA:58:F1 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 369662E5C1F7C6641A60903F220CD8AC261CDC2D Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32332d3233203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:52 +0000 ROA not before: Sun 03 May 2026 02:17:52 +0000 ROA not after: Sun 02 May 2027 02:22:52 +0000 asID: 58487 IP address blocks: 202.10.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:96:62:e5:c1:f7:c6:64:1a:60:90:3f:22:0c:d8:ac:26:1c:dc:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:52 2026 GMT Not After : May 2 02:22:52 2027 GMT Subject: CN=F72D09653FD937F9BAB4EBC6A559F0A3FAEA58F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fa:12:70:ae:60:bc:43:f8:76:84:1e:66:0f: 80:4b:eb:32:4c:a0:f7:f1:b5:88:2e:78:e2:ab:4b: 10:32:4c:fd:52:c9:2f:be:5c:79:fe:f9:79:02:ea: 27:86:84:f7:39:1b:79:a3:3d:42:27:3a:ff:eb:3b: 56:4d:90:58:e1:60:ac:51:2f:77:84:b6:47:1e:f2: d1:b7:2a:0e:6b:bf:de:b3:ce:aa:6c:ef:58:8a:7a: 7b:a1:b9:17:cc:4a:87:68:ab:23:a9:c4:81:74:e7: 6b:fe:fc:ce:1c:a2:ae:ad:04:4c:11:8f:5e:2c:d8: 9f:5a:b2:25:c4:8b:2d:11:7a:25:78:54:e4:b8:ec: b2:d6:19:0d:ed:45:ba:71:b9:a4:9a:dd:b8:d7:8d: 4b:1b:f2:46:9e:e8:a4:c6:06:e6:90:10:5b:5e:93: 03:a3:11:4c:5a:9c:f4:fb:94:56:07:5f:21:ae:69: 31:f7:9d:6b:c1:68:6d:aa:75:93:70:9a:16:e6:51: fb:74:25:f7:64:60:ff:9f:34:52:02:07:9a:d2:da: 90:9d:5d:cf:8e:22:09:d2:ff:9d:2c:fe:2c:48:32: ae:d2:79:0f:eb:e4:e9:ed:8e:89:7a:fb:c6:d4:a7: 62:47:4f:e1:23:c6:d6:e6:9a:1a:e2:d8:d0:4a:3f: e2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:2D:09:65:3F:D9:37:F9:BA:B4:EB:C6:A5:59:F0:A3:FA:EA:58:F1 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.40.0/23 Signature Algorithm: sha256WithRSAEncryption 86:83:44:0c:1c:0e:71:67:98:00:6c:40:d8:d9:17:a2:bd:77: 8b:7f:64:c8:81:82:35:12:46:e9:c5:d5:64:d1:e9:5e:5b:a2: a6:ad:ba:2b:53:38:e4:5e:b3:98:ab:5c:0b:63:ca:d4:a0:f9: 3e:06:4c:93:a7:16:b2:99:c9:6c:56:ea:12:6d:c4:07:dc:08: 45:3b:71:19:68:8e:59:6f:cd:a6:74:bc:b9:8f:19:e2:eb:54: 10:ca:9d:9d:8c:b0:77:b6:98:b6:09:ce:e5:51:12:f9:bf:d6: 87:cc:99:df:d5:69:eb:a3:b4:80:a9:3f:7f:8c:9c:e0:84:13: f8:89:fa:f4:11:78:0d:9e:78:29:c6:20:68:6d:bd:7c:e3:c2: 59:93:7a:05:20:77:3b:4f:cd:ec:cd:46:4b:a6:f7:c1:20:68: 4c:8c:33:bc:f0:12:0d:0a:43:0a:88:07:9f:a3:61:b2:53:c6: 04:82:dc:03:11:df:8d:77:dd:14:a7:dd:1d:ca:d5:e3:e6:d4: 68:47:7c:e3:62:c4:ec:4d:8b:ef:92:4c:7c:46:cb:16:60:41: 54:9b:e1:cb:ca:84:57:27:de:a6:ab:ac:5d:3e:d2:87:02:36: 67:d5:18:79:6c:49:a1:89:a8:6e:23:2e:44:f0:fc:31:39:dd: 68:f1:25:5b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNpZi5cH3xmQaYJA/IgzYrCYc3C0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTJaFw0yNzA1MDIwMjIyNTJaMDMxMTAvBgNV BAMTKEY3MkQwOTY1M0ZEOTM3RjlCQUI0RUJDNkE1NTlGMEEzRkFFQTU4RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6+hJwrmC8Q/h2hB5mD4BL6zJM oPfxtYgueOKrSxAyTP1SyS++XHn++XkC6ieGhPc5G3mjPUInOv/rO1ZNkFjhYKxR L3eEtkce8tG3Kg5rv96zzqps71iKenuhuRfMSodoqyOpxIF052v+/M4coq6tBEwR j14s2J9asiXEiy0ReiV4VOS47LLWGQ3tRbpxuaSa3bjXjUsb8kae6KTGBuaQEFte kwOjEUxanPT7lFYHXyGuaTH3nWvBaG2qdZNwmhbmUft0JfdkYP+fNFICB5rS2pCd Xc+OIgnS/50s/ixIMq7SeQ/r5Ontjol6+8bUp2JHT+Ejxtbmmhri2NBKP+InAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9y0JZT/ZN/m6tOvGpVnwo/rqWPEwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCigwDQYJKoZIhvcN AQELBQADggEBAIaDRAwcDnFnmABsQNjZF6K9d4t/ZMiBgjUSRunF1WTR6V5boqat uitTOORes5irXAtjytSg+T4GTJOnFrKZyWxW6hJtxAfcCEU7cRlojllvzaZ0vLmP GeLrVBDKnZ2MsHe2mLYJzuVREvm/1ofMmd/VaeujtICpP3+MnOCEE/iJ+vQReA2e eCnGIGhtvXzjwlmTegUgdztPzezNRkum98EgaEyMM7zwEg0KQwqIB5+jYbJTxgSC 3AMR34133RSn3R3K1ePm1GhHfONixOxNi++STHxGyxZgQVSb4cvKhFcn3qarrF0+ 0ocCNmfVGHlsSaGJqG4jLkTw/DE53WjxJVs= -----END CERTIFICATE-----Generated at Tue May 12 22:56:39 2026 by rpki-client