$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34302e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: Hw0kdXNaECW5DIE3IdeWHlxia0Z8ePgN5IvMwxgcTk4= Subject key identifier: EE:D3:14:98:B7:D6:D6:BE:22:4A:A8:48:2F:D5:C8:B8:57:9B:11:22 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 5BB82C2E27DCC76124F443075A28777143B34054 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32342d3234203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:51 +0000 ROA not before: Sun 03 May 2026 02:17:51 +0000 ROA not after: Sun 02 May 2027 02:22:51 +0000 asID: 58487 IP address blocks: 202.10.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b8:2c:2e:27:dc:c7:61:24:f4:43:07:5a:28:77:71:43:b3:40:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:51 2026 GMT Not After : May 2 02:22:51 2027 GMT Subject: CN=EED31498B7D6D6BE224AA8482FD5C8B8579B1122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:0d:0d:7b:86:6c:72:0d:bd:68:92:91:e4: c0:e9:9a:8b:f7:ea:49:56:1e:f2:40:50:29:ea:0d: b1:22:77:3b:6d:5e:b8:ff:48:a9:f3:7a:9c:32:49: 8e:a9:ff:3a:0d:cf:20:26:f5:90:5d:c0:f7:d1:0e: df:31:8e:95:03:d9:14:60:37:8b:38:67:4a:ed:aa: b1:ca:3b:4d:37:71:59:8a:5d:2b:35:e1:7b:bd:f8: 56:f8:e7:ad:69:e3:ad:e1:d0:6f:55:41:6d:58:b0: 54:df:4f:52:1f:f1:0b:18:ff:a8:0f:90:a6:31:d6: 98:63:5e:af:b1:90:b8:bd:51:71:6c:1f:a0:fa:80: e4:54:17:c4:4a:f9:04:fc:27:78:2d:90:4a:d0:25: 3f:80:36:87:61:4d:b0:e4:4a:1f:f1:e0:ea:8e:92: fb:e3:c8:63:e0:de:9e:48:88:85:d6:8f:0a:6b:7e: ce:04:1d:a3:49:20:1b:bb:26:8e:5a:87:a8:fd:f4: c9:ee:98:89:2a:2c:ab:50:c1:75:d6:d0:fc:b4:73: 5a:f7:97:50:21:24:1f:ca:0c:57:a5:b8:12:32:48: d5:ad:30:c6:86:08:c1:77:c2:3f:41:55:2d:b5:16: 57:32:84:ee:fb:69:f9:9a:42:0f:c1:e1:2e:cc:8e: 05:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D3:14:98:B7:D6:D6:BE:22:4A:A8:48:2F:D5:C8:B8:57:9B:11:22 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34302e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.40.0/24 Signature Algorithm: sha256WithRSAEncryption bd:0f:e2:e2:65:91:87:e0:4b:cf:8a:0d:9f:ec:97:76:56:18: 5d:e8:a0:f3:99:f7:28:23:6c:f3:de:fe:41:91:ab:bc:58:61: 37:9c:b5:3c:eb:11:f0:d5:2c:06:26:ee:d2:2f:8c:0b:c3:b8: e6:4a:af:e0:44:74:93:da:df:b3:97:b9:32:9b:39:84:e6:52: 3f:2a:d9:40:ea:1a:78:67:46:88:c7:57:59:f9:e4:66:80:95: 22:ff:7a:17:f9:b6:54:77:6b:7e:9c:1a:fd:8f:0a:31:b9:54: 5b:f8:7c:b9:af:03:28:9c:31:ab:b7:c3:be:1a:27:83:03:e7: a8:f2:e4:22:86:44:2a:ec:72:c1:82:f2:42:58:72:c7:e7:08: 4b:ee:7b:71:e5:4f:49:09:d1:a9:da:45:2f:03:7f:47:4f:74: ee:c5:4d:3f:34:e9:13:7e:da:dc:fc:2f:e6:3d:d4:c3:4b:61: a3:ff:a9:ad:e3:cf:f4:4a:d5:80:01:e6:d4:3d:93:89:25:53: 12:3f:88:f9:3e:a8:6f:d6:d0:23:b2:c7:30:5e:29:33:b6:fc: 9b:d7:5e:de:0e:0b:58:f7:e7:cd:c4:96:84:63:37:dd:09:ae: 6b:1f:b2:89:08:bd:8b:fc:84:fc:bc:b5:ec:5b:60:79:f2:a1: 04:2e:07:b5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUW7gsLifcx2Ek9EMHWih3cUOzQFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTFaFw0yNzA1MDIwMjIyNTFaMDMxMTAvBgNV BAMTKEVFRDMxNDk4QjdENkQ2QkUyMjRBQTg0ODJGRDVDOEI4NTc5QjExMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3sw0Ne4Zscg29aJKR5MDpmov3 6klWHvJAUCnqDbEidzttXrj/SKnzepwySY6p/zoNzyAm9ZBdwPfRDt8xjpUD2RRg N4s4Z0rtqrHKO003cVmKXSs14Xu9+Fb4561p463h0G9VQW1YsFTfT1If8QsY/6gP kKYx1phjXq+xkLi9UXFsH6D6gORUF8RK+QT8J3gtkErQJT+ANodhTbDkSh/x4OqO kvvjyGPg3p5IiIXWjwprfs4EHaNJIBu7Jo5ah6j99MnumIkqLKtQwXXW0Py0c1r3 l1AhJB/KDFeluBIySNWtMMaGCMF3wj9BVS21FlcyhO77afmaQg/B4S7MjgXdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7tMUmLfW1r4iSqhIL9XIuFebESIwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCigwDQYJKoZIhvcN AQELBQADggEBAL0P4uJlkYfgS8+KDZ/sl3ZWGF3ooPOZ9ygjbPPe/kGRq7xYYTec tTzrEfDVLAYm7tIvjAvDuOZKr+BEdJPa37OXuTKbOYTmUj8q2UDqGnhnRojHV1n5 5GaAlSL/ehf5tlR3a36cGv2PCjG5VFv4fLmvAyicMau3w74aJ4MD56jy5CKGRCrs csGC8kJYcsfnCEvue3HlT0kJ0anaRS8Df0dPdO7FTT806RN+2tz8L+Y91MNLYaP/ qa3jz/RK1YAB5tQ9k4klUxI/iPk+qG/W0COyxzBeKTO2/JvXXt4OC1j3583EloRj N90JrmsfsokIvYv8hPy8texbYHnyoQQuB7U= -----END CERTIFICATE-----Generated at Wed May 13 00:45:27 2026 by rpki-client