$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34332e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34332e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: 5bOvpLw6b1VcZVTrWaOK+xges8G3zIybqqd+s4sPxNE= Subject key identifier: 44:37:C1:52:AD:F4:2C:8E:46:F2:69:EE:F1:E9:CF:B0:ED:C1:BB:0F Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 56772237A9CAA91FA330519CFA1C6841F259E168 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34332e302f32342d3234203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:48 +0000 ROA not before: Sun 03 May 2026 02:17:48 +0000 ROA not after: Sun 02 May 2027 02:22:48 +0000 asID: 58487 IP address blocks: 202.10.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:77:22:37:a9:ca:a9:1f:a3:30:51:9c:fa:1c:68:41:f2:59:e1:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:48 2026 GMT Not After : May 2 02:22:48 2027 GMT Subject: CN=4437C152ADF42C8E46F269EEF1E9CFB0EDC1BB0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:61:a1:5a:2a:08:9f:6f:c8:01:7d:59:b8:8a: f2:21:ec:56:a3:5e:9d:79:af:84:30:38:72:91:84: 8b:b6:22:50:29:12:a9:65:02:32:41:fe:43:1b:d1: 72:84:68:01:24:88:04:f7:8e:d8:73:41:20:10:a2: 3e:99:17:0d:82:aa:d1:1e:1e:c3:d4:b2:01:08:22: 79:50:9e:e7:d6:1f:31:89:e1:38:2d:68:05:59:3d: 88:df:6c:2c:3c:53:f8:4b:cd:4d:a0:27:f7:69:60: 85:f7:66:50:39:a6:95:00:da:6e:e1:ff:f6:5f:b1: 8e:c7:80:20:db:e3:d9:79:f7:e7:a4:59:2c:5f:53: 8e:7f:f4:e5:34:a7:31:ae:59:d9:17:4f:2c:b1:13: cf:b5:58:60:ef:42:c3:6c:39:cb:96:08:30:c9:2f: 98:a2:f9:20:d4:f5:b6:4a:83:d3:a5:2c:ca:a4:8b: bb:14:bd:c2:b2:2c:e1:bf:fa:57:62:cd:5c:11:29: 5b:e2:06:0a:0a:13:3c:44:93:88:1d:a0:ff:96:2c: 38:a8:99:91:29:d7:71:15:9f:a5:78:45:1d:39:f3: 3a:ca:28:eb:16:5a:0f:10:34:e2:75:9a:d9:50:79: 94:6f:6e:86:9c:89:73:1a:cd:7b:30:f2:e2:0f:0f: fd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:37:C1:52:AD:F4:2C:8E:46:F2:69:EE:F1:E9:CF:B0:ED:C1:BB:0F X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34332e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.43.0/24 Signature Algorithm: sha256WithRSAEncryption a4:98:08:b4:16:91:c4:5a:db:ff:fa:16:ac:d9:ea:72:40:30: d6:2a:c6:30:39:a5:7f:dd:95:f8:34:7a:aa:18:a5:2c:d5:bf: 44:be:cf:28:6b:0f:6f:01:23:8a:af:37:89:b9:97:5f:52:f5: 96:f9:2c:27:72:87:2b:b8:c8:db:ad:dc:2d:d4:00:82:ca:2d: c9:fd:ee:ea:7e:73:d7:43:4f:bc:f0:e0:48:df:1a:ab:91:69: 84:ee:7e:00:98:09:7a:7c:66:3e:ca:f3:a7:11:15:d2:be:7c: f0:ef:23:2d:3b:e7:99:e5:3d:e1:41:3d:b4:96:40:3d:23:54: 51:cc:4d:3c:21:82:86:27:f9:5d:d5:93:ad:37:86:f5:5b:56: 6d:d7:b8:b1:2b:4d:46:fb:63:f9:94:57:ad:ef:49:f2:87:ce: 87:26:5c:7b:4e:be:0b:99:65:9d:28:94:8f:12:92:dc:0e:c1: 8d:e1:61:13:42:20:52:5d:fb:d0:dc:80:ab:67:93:e7:8d:29: 00:2f:93:11:49:b9:9c:62:3b:8d:76:b3:57:12:2d:86:4d:d9: 4c:ea:1f:61:d6:18:b1:3d:ad:27:47:c6:3b:ff:7d:14:50:5a: a0:3c:aa:76:68:ce:e1:f2:f7:bb:75:e7:b4:58:e1:5f:fd:ee: ef:42:0b:cb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVnciN6nKqR+jMFGc+hxoQfJZ4WgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NDhaFw0yNzA1MDIwMjIyNDhaMDMxMTAvBgNV BAMTKDQ0MzdDMTUyQURGNDJDOEU0NkYyNjlFRUYxRTlDRkIwRURDMUJCMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQYaFaKgifb8gBfVm4ivIh7Faj Xp15r4QwOHKRhIu2IlApEqllAjJB/kMb0XKEaAEkiAT3jthzQSAQoj6ZFw2CqtEe HsPUsgEIInlQnufWHzGJ4TgtaAVZPYjfbCw8U/hLzU2gJ/dpYIX3ZlA5ppUA2m7h //ZfsY7HgCDb49l59+ekWSxfU45/9OU0pzGuWdkXTyyxE8+1WGDvQsNsOcuWCDDJ L5ii+SDU9bZKg9OlLMqki7sUvcKyLOG/+ldizVwRKVviBgoKEzxEk4gdoP+WLDio mZEp13EVn6V4RR058zrKKOsWWg8QNOJ1mtlQeZRvboaciXMazXsw8uIPD/0TAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQURDfBUq30LI5G8mnu8enPsO3Buw8wHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiswDQYJKoZIhvcN AQELBQADggEBAKSYCLQWkcRa2//6FqzZ6nJAMNYqxjA5pX/dlfg0eqoYpSzVv0S+ zyhrD28BI4qvN4m5l19S9Zb5LCdyhyu4yNut3C3UAILKLcn97up+c9dDT7zw4Ejf GquRaYTufgCYCXp8Zj7K86cRFdK+fPDvIy0755nlPeFBPbSWQD0jVFHMTTwhgoYn +V3Vk603hvVbVm3XuLErTUb7Y/mUV63vSfKHzocmXHtOvguZZZ0olI8SktwOwY3h YRNCIFJd+9DcgKtnk+eNKQAvkxFJuZxiO412s1cSLYZN2UzqH2HWGLE9rSdHxjv/ fRRQWqA8qnZozuHy97t157RY4V/97u9CC8s= -----END CERTIFICATE-----Generated at Wed May 13 01:14:17 2026 by rpki-client