$ rpki-client -vvf rpki-rsync.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa File: 3230322e39332e3131322e302f32302d3234203d3e203233363936.roa (raw, json) Hash identifier: hZL/hi6Qgsw4sgW/mhx3uNInW8MyX4I+jFDzsHcP8Z4= Subject key identifier: E4:E8:16:99:F4:7C:EB:4B:5F:77:60:CC:87:B9:BF:8D:27:5E:0A:63 Certificate issuer: /CN=B5AE7D79B229565DB5A9C4E74CD038E53F984BF5 Certificate serial: 17B85F9B1A4BDAC1BACDAA1AC58C26E88B63C419 Authority key identifier: B5:AE:7D:79:B2:29:56:5D:B5:A9:C4:E7:4C:D0:38:E5:3F:98:4B:F5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B5AE7D79B229565DB5A9C4E74CD038E53F984BF5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa Signing time: Sun 03 May 2026 02:26:05 +0000 ROA not before: Sun 03 May 2026 02:21:05 +0000 ROA not after: Sun 02 May 2027 02:26:05 +0000 asID: 23696 IP address blocks: 202.93.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/B5AE7D79B229565DB5A9C4E74CD038E53F984BF5.crl rsync://rpki-rsync.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/B5AE7D79B229565DB5A9C4E74CD038E53F984BF5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B5AE7D79B229565DB5A9C4E74CD038E53F984BF5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:b8:5f:9b:1a:4b:da:c1:ba:cd:aa:1a:c5:8c:26:e8:8b:63:c4:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5AE7D79B229565DB5A9C4E74CD038E53F984BF5 Validity Not Before: May 3 02:21:05 2026 GMT Not After : May 2 02:26:05 2027 GMT Subject: CN=E4E81699F47CEB4B5F7760CC87B9BF8D275E0A63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:98:8f:60:8d:45:8b:eb:df:3f:b6:d8:dc:4b: ea:b1:fc:fb:42:82:a1:c7:c2:30:b8:d3:13:5b:ca: 07:fb:49:68:8e:23:37:58:b9:b1:8d:ee:1e:e2:8f: 25:27:f4:c5:66:51:05:e4:d1:16:1c:8c:02:51:7b: a4:62:a6:2f:cb:78:96:98:3c:cb:7e:63:0c:e2:12: 92:7a:5d:7c:d3:06:b1:25:5e:1b:9f:e2:3b:c6:9d: 61:30:24:95:07:af:e6:e4:3a:31:e1:64:aa:29:17: 93:0b:ba:27:e1:85:1d:f3:0d:39:cb:1d:a8:20:f5: 32:1d:d7:a1:eb:93:89:ac:18:e1:c9:f5:28:db:1c: d0:d2:e1:78:81:d8:51:eb:f0:15:0c:bd:6f:c7:a3: 30:4e:4c:2d:6e:07:71:db:86:eb:37:28:60:02:e1: 3d:c0:23:41:12:03:24:79:e7:da:93:b5:68:ba:0f: 94:68:17:b0:7d:cb:23:12:65:d5:0e:95:2d:dc:8e: 4c:20:01:e6:04:21:16:3e:d2:f8:dd:bf:f8:50:97: 3b:f9:01:ee:27:48:26:f2:64:86:82:4e:61:b5:59: d3:9b:b6:1c:5c:22:94:95:62:b0:57:d5:cf:04:f6: d6:e4:c2:b1:82:0a:0c:e4:25:73:53:89:4b:d8:42: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E8:16:99:F4:7C:EB:4B:5F:77:60:CC:87:B9:BF:8D:27:5E:0A:63 X509v3 Authority Key Identifier: keyid:B5:AE:7D:79:B2:29:56:5D:B5:A9:C4:E7:4C:D0:38:E5:3F:98:4B:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/B5AE7D79B229565DB5A9C4E74CD038E53F984BF5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B5AE7D79B229565DB5A9C4E74CD038E53F984BF5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.112.0/20 Signature Algorithm: sha256WithRSAEncryption 6f:02:a6:06:f8:94:80:cc:42:aa:5c:3c:cd:4e:68:6d:83:d3: 67:b5:da:3c:08:95:61:05:c2:26:e1:1e:f6:ea:28:32:3d:45: 3c:c4:2e:97:a3:2a:7b:98:13:2f:de:c5:af:af:ad:b1:c0:79: 7c:6a:c1:e6:b4:cf:fb:75:1f:d5:9e:44:60:0d:ca:17:ee:3c: 8d:31:1c:be:52:af:16:d8:b4:05:1c:8d:60:70:37:7e:5a:76: 32:da:66:b5:97:5d:13:02:fe:44:d4:4a:2b:8c:2e:29:7e:ed: d8:34:ba:3b:a0:70:44:74:88:67:0b:11:cc:1b:e9:91:59:2d: e6:ee:5d:dd:af:32:5c:49:8e:40:09:82:11:2e:24:c3:b2:1b: 9f:c5:37:1a:15:55:a5:df:ed:80:4e:ed:02:bf:90:15:62:c4: b3:5c:92:8f:46:b3:e1:f2:52:b1:b6:56:ad:83:70:e3:96:44: 7d:e7:7f:2a:f7:f3:94:29:6e:62:6b:94:f1:2a:63:b0:ac:8e: 00:72:66:c7:b8:22:92:45:2a:90:f6:36:2a:10:52:1d:f6:14: a7:db:6b:c5:04:46:bd:04:96:6b:89:52:67:bb:03:14:c8:62: a3:5d:04:c0:b9:99:23:a6:70:7e:66:52:91:ee:53:7a:20:9e: 47:f7:46:3a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF7hfmxpL2sG6zaoaxYwm6ItjxBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBRTdENzlCMjI5NTY1REI1QTlDNEU3NENEMDM4RTUz Rjk4NEJGNTAeFw0yNjA1MDMwMjIxMDVaFw0yNzA1MDIwMjI2MDVaMDMxMTAvBgNV BAMTKEU0RTgxNjk5RjQ3Q0VCNEI1Rjc3NjBDQzg3QjlCRjhEMjc1RTBBNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQComI9gjUWL698/ttjcS+qx/PtC gqHHwjC40xNbygf7SWiOIzdYubGN7h7ijyUn9MVmUQXk0RYcjAJRe6Ripi/LeJaY PMt+YwziEpJ6XXzTBrElXhuf4jvGnWEwJJUHr+bkOjHhZKopF5MLuifhhR3zDTnL Hagg9TId16Hrk4msGOHJ9SjbHNDS4XiB2FHr8BUMvW/HozBOTC1uB3Hbhus3KGAC 4T3AI0ESAyR559qTtWi6D5RoF7B9yyMSZdUOlS3cjkwgAeYEIRY+0vjdv/hQlzv5 Ae4nSCbyZIaCTmG1WdObthxcIpSVYrBX1c8E9tbkwrGCCgzkJXNTiUvYQsuBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5OgWmfR860tfd2DMh7m/jSdeCmMwHwYDVR0j BBgwFoAUta59ebIpVl21qcTnTNA45T+YS/UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzhjNzM5NmMtNGJiZS00YzZlLThmNTAtNDQyYzIwNWUwNzBjLzAvQjVBRTdENzlC MjI5NTY1REI1QTlDNEU3NENEMDM4RTUzRjk4NEJGNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNUFFN0Q3OUIyMjk1NjVEQjVBOUM0RTc0Q0QwMzhFNTNGOTg0 QkY1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4YzczOTZjLTRiYmUtNGM2ZS04 ZjUwLTQ0MmMyMDVlMDcwYy8wLzMyMzAzMjJlMzkzMzJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpdcDANBgkqhkiG 9w0BAQsFAAOCAQEAbwKmBviUgMxCqlw8zU5obYPTZ7XaPAiVYQXCJuEe9uooMj1F PMQul6Mqe5gTL97Fr6+tscB5fGrB5rTP+3Uf1Z5EYA3KF+48jTEcvlKvFti0BRyN YHA3flp2MtpmtZddEwL+RNRKK4wuKX7t2DS6O6BwRHSIZwsRzBvpkVkt5u5d3a8y XEmOQAmCES4kw7Ibn8U3GhVVpd/tgE7tAr+QFWLEs1ySj0az4fJSsbZWrYNw45ZE fed/KvfzlCluYmuU8SpjsKyOAHJmx7gikkUqkPY2KhBSHfYUp9trxQRGvQSWa4lS Z7sDFMhio10EwLmZI6ZwfmZSke5TeiCeR/dGOg== -----END CERTIFICATE-----Generated at Wed May 13 11:21:38 2026 by rpki-client