$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34362e302f32332d3234203d3e203538343837.roa File: 3230322e31302e34362e302f32332d3234203d3e203538343837.roa (raw, json) Hash identifier: kKmRE86U5utxwwvOtfvRLdagvzUOQsqXYNn7P0V7LAg= Subject key identifier: 64:4B:39:AD:8A:43:90:3C:2E:D7:FC:A6:0E:D1:CD:FA:13:1D:25:D5 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 6488B77A90D81BDB4F559881B6248E5A67ECF78F Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34362e302f32332d3234203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:57 +0000 ROA not before: Sun 03 May 2026 02:17:57 +0000 ROA not after: Sun 02 May 2027 02:22:57 +0000 asID: 58487 IP address blocks: 202.10.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:88:b7:7a:90:d8:1b:db:4f:55:98:81:b6:24:8e:5a:67:ec:f7:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:57 2026 GMT Not After : May 2 02:22:57 2027 GMT Subject: CN=644B39AD8A43903C2ED7FCA60ED1CDFA131D25D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:34:fe:ad:9f:2c:a6:c2:2b:5a:1c:c4:8c:21: fc:1c:24:90:38:85:5e:a6:6c:2f:66:8e:2d:56:b6: 4a:fb:3c:af:70:ac:1b:54:13:14:2f:f1:51:a4:d2: 32:fe:ea:23:12:d2:57:cf:07:0f:d5:b5:5b:d0:63: cb:2d:68:01:af:26:3f:5e:f8:f8:f7:d0:77:32:ff: 5d:5f:e1:f2:d0:f9:12:d1:e8:0a:e3:8c:24:51:27: 48:dc:0d:f0:c8:d0:23:2e:d9:bf:56:6e:aa:e5:97: 78:0f:cb:0e:e0:83:41:75:c8:b9:2d:3c:f5:18:2e: e4:4f:ea:ca:2e:1e:db:34:26:0f:e8:c4:53:ed:69: e4:3f:7a:1f:48:9e:5d:28:e0:fb:0c:a1:64:b9:9e: ae:12:7d:8e:ad:ef:78:da:25:72:5a:49:00:a9:67: f7:e9:9e:a8:5e:6e:60:d0:1a:c8:16:44:8e:7a:21: 81:45:e9:03:43:f9:58:cf:0a:1e:38:66:1a:f0:86: df:3f:22:de:17:59:cc:05:12:98:04:f1:31:d7:0f: d2:d9:b7:32:67:dc:d9:4e:f0:6e:e8:75:e2:ae:0e: 42:a0:c0:d8:e1:83:92:26:a7:cb:67:7f:49:58:29: 9b:78:68:12:8d:80:bc:f0:db:d3:44:40:03:6d:49: 70:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4B:39:AD:8A:43:90:3C:2E:D7:FC:A6:0E:D1:CD:FA:13:1D:25:D5 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34362e302f32332d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.46.0/23 Signature Algorithm: sha256WithRSAEncryption 14:dc:06:04:e8:fb:97:b0:6f:a5:bc:fb:65:f5:6e:99:bb:57: b9:f7:34:6a:a1:95:69:d2:5c:b6:61:53:29:7e:c0:a2:41:d9: 34:6b:6e:40:26:23:5f:61:36:b8:19:70:63:fb:9a:0e:e4:af: 42:02:ac:c1:5c:95:2c:fe:91:85:86:5b:df:2c:42:52:bf:e4: 70:a1:98:bd:ce:ab:f9:fe:7b:12:1d:3b:8c:c6:79:25:43:7f: 3d:cb:c5:37:1a:b9:5f:0c:9f:b6:00:85:1d:2f:77:65:16:f4: 46:36:3c:85:b5:85:4a:08:64:20:79:0a:77:ef:e1:f0:48:2b: d3:ea:d7:a3:2c:67:eb:03:96:c1:44:3f:88:5b:fa:a4:a5:ff: 19:c0:8e:ef:ba:ee:0c:98:aa:ca:6a:db:e9:e2:a1:a3:65:32: 09:30:02:3b:d5:a1:ac:e6:d8:d8:62:51:b3:e5:02:ed:91:26: ea:32:76:0e:ab:89:b1:c7:48:2d:5f:0f:00:60:bf:4e:a8:36: cd:49:09:70:59:ca:07:db:54:cb:d6:1e:db:95:17:80:39:83: 05:4f:d4:77:21:13:ec:94:43:36:9f:ce:b8:4e:a8:35:6b:91: 7b:58:29:ac:88:50:da:94:c7:27:49:59:a5:85:d3:86:90:3f: 1b:47:4b:42 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZIi3epDYG9tPVZiBtiSOWmfs948wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTdaFw0yNzA1MDIwMjIyNTdaMDMxMTAvBgNV BAMTKDY0NEIzOUFEOEE0MzkwM0MyRUQ3RkNBNjBFRDFDREZBMTMxRDI1RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiNP6tnyymwitaHMSMIfwcJJA4 hV6mbC9mji1Wtkr7PK9wrBtUExQv8VGk0jL+6iMS0lfPBw/VtVvQY8staAGvJj9e +Pj30Hcy/11f4fLQ+RLR6ArjjCRRJ0jcDfDI0CMu2b9Wbqrll3gPyw7gg0F1yLkt PPUYLuRP6souHts0Jg/oxFPtaeQ/eh9Inl0o4PsMoWS5nq4SfY6t73jaJXJaSQCp Z/fpnqhebmDQGsgWRI56IYFF6QND+VjPCh44Zhrwht8/It4XWcwFEpgE8THXD9LZ tzJn3NlO8G7odeKuDkKgwNjhg5Imp8tnf0lYKZt4aBKNgLzw29NEQANtSXANAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZEs5rYpDkDwu1/ymDtHN+hMdJdUwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCi4wDQYJKoZIhvcN AQELBQADggEBABTcBgTo+5ewb6W8+2X1bpm7V7n3NGqhlWnSXLZhUyl+wKJB2TRr bkAmI19hNrgZcGP7mg7kr0ICrMFclSz+kYWGW98sQlK/5HChmL3Oq/n+exIdO4zG eSVDfz3LxTcauV8Mn7YAhR0vd2UW9EY2PIW1hUoIZCB5Cnfv4fBIK9Pq16MsZ+sD lsFEP4hb+qSl/xnAju+67gyYqspq2+nioaNlMgkwAjvVoazm2NhiUbPlAu2RJuoy dg6ribHHSC1fDwBgv06oNs1JCXBZygfbVMvWHtuVF4A5gwVP1HchE+yUQzafzrhO qDVrkXtYKayIUNqUxydJWaWF04aQPxtHS0I= -----END CERTIFICATE-----Generated at Wed May 13 00:45:27 2026 by rpki-client