$ rpki-client -vvf rpki-rsync.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32352e302f32342d3234203d3e203233393532.roa File: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (raw, json) Hash identifier: XDcl778T4rloVqTTjGoVuGMqfUdN427riMbFlonBX50= Subject key identifier: 4B:49:B7:36:EB:1E:D7:18:2B:ED:55:43:01:20:A4:43:9F:44:8B:05 Certificate issuer: /CN=C2A90AC36481A19EE414BB5ACAA800241E570A1F Certificate serial: 21C08AC75949240633E30802F41040075610EA34 Authority key identifier: C2:A9:0A:C3:64:81:A1:9E:E4:14:BB:5A:CA:A8:00:24:1E:57:0A:1F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C2A90AC36481A19EE414BB5ACAA800241E570A1F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32352e302f32342d3234203d3e203233393532.roa Signing time: Sun 03 May 2026 02:27:50 +0000 ROA not before: Sun 03 May 2026 02:22:50 +0000 ROA not after: Sun 02 May 2027 02:27:50 +0000 asID: 23952 IP address blocks: 202.93.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/C2A90AC36481A19EE414BB5ACAA800241E570A1F.crl rsync://rpki-rsync.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/C2A90AC36481A19EE414BB5ACAA800241E570A1F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C2A90AC36481A19EE414BB5ACAA800241E570A1F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c0:8a:c7:59:49:24:06:33:e3:08:02:f4:10:40:07:56:10:ea:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2A90AC36481A19EE414BB5ACAA800241E570A1F Validity Not Before: May 3 02:22:50 2026 GMT Not After : May 2 02:27:50 2027 GMT Subject: CN=4B49B736EB1ED7182BED55430120A4439F448B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3f:17:eb:2c:37:1a:bb:88:c4:4a:ce:d1:43: 15:76:60:d1:b4:18:74:0e:67:3e:44:4d:03:0a:72: bd:80:af:93:db:90:b0:bc:92:2a:6f:cf:07:77:e7: 8b:0c:54:b9:31:39:75:8f:e0:3a:d9:ca:33:94:35: 1f:40:7e:a0:8a:39:f2:a5:ec:e3:d9:dd:02:e6:d6: 15:b1:02:6e:4e:58:1f:23:1b:e4:7e:53:35:fa:ea: 1c:a7:94:e9:d3:99:c0:65:a2:69:a0:de:5d:d1:96: 8a:ba:03:0f:10:39:26:9d:8f:03:6e:05:90:33:4d: 4b:b1:de:d9:64:25:cd:a5:40:ac:2c:28:65:07:3d: 90:44:69:22:c2:b6:ca:43:e9:0e:c8:7d:00:50:37: 97:24:fd:73:89:8d:ab:50:92:23:7c:78:b9:2e:1a: 86:80:ef:3e:88:e3:3e:37:ba:b7:63:a5:a5:7d:f8: d2:c8:48:36:40:3a:8f:79:9b:1f:95:1d:02:79:1d: 4d:fc:48:74:8e:18:bb:1c:ba:22:82:4c:1c:9a:a5: 9a:d5:5d:f5:2a:9a:c3:2c:79:2d:c5:7b:44:93:01: 9f:e4:9e:c6:35:91:97:46:f8:45:a7:8d:61:1f:09: 07:ef:82:aa:a6:16:bd:1c:d6:cb:12:c0:6d:40:53: 3b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:49:B7:36:EB:1E:D7:18:2B:ED:55:43:01:20:A4:43:9F:44:8B:05 X509v3 Authority Key Identifier: keyid:C2:A9:0A:C3:64:81:A1:9E:E4:14:BB:5A:CA:A8:00:24:1E:57:0A:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/C2A90AC36481A19EE414BB5ACAA800241E570A1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C2A90AC36481A19EE414BB5ACAA800241E570A1F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/3230322e39332e32352e302f32342d3234203d3e203233393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.25.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:dd:9d:74:99:12:e8:81:50:1d:88:d3:d8:ee:64:44:3e:26: cf:c7:82:a1:60:08:ba:03:31:2d:14:70:63:d1:04:88:12:8e: d4:67:b3:0f:4c:b6:d7:c1:49:a8:05:ad:65:5c:f6:51:7d:43: 66:61:47:81:c6:4b:ba:04:78:a1:34:3c:51:53:a7:dd:dd:e7: fb:5d:8b:13:af:84:48:cc:dc:ea:45:79:c1:d4:46:7c:e9:c5: 18:35:23:43:aa:4f:43:29:29:ac:60:11:99:0e:b5:c9:59:72: 2f:91:94:93:29:ab:26:46:97:89:93:c0:15:1c:d5:92:18:78: 87:45:72:0d:7b:04:c2:22:25:6c:1c:21:cb:6b:1a:cd:14:bb: 59:c8:96:8c:7a:14:7e:ea:a9:ed:af:f0:91:fa:92:46:fe:19: aa:f2:0d:50:d7:3b:c0:2b:8c:83:c1:83:8e:ba:9c:3a:44:cd: b3:a3:d6:76:e8:80:4d:6d:ec:e6:4d:63:c6:82:f6:4d:4c:34: bc:c8:63:0d:b9:a8:38:68:c2:a7:ec:c5:02:b7:f7:ed:b8:cb: 73:12:8b:6f:6f:77:7b:67:a8:b3:e7:04:b0:b5:cb:67:c9:7a: ed:b0:bd:1c:a8:51:43:e0:ff:f9:38:f9:57:60:7f:44:fa:93: e2:fa:da:27 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIcCKx1lJJAYz4wgC9BBAB1YQ6jQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJBOTBBQzM2NDgxQTE5RUU0MTRCQjVBQ0FBODAwMjQx RTU3MEExRjAeFw0yNjA1MDMwMjIyNTBaFw0yNzA1MDIwMjI3NTBaMDMxMTAvBgNV BAMTKDRCNDlCNzM2RUIxRUQ3MTgyQkVENTU0MzAxMjBBNDQzOUY0NDhCMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgPxfrLDcau4jESs7RQxV2YNG0 GHQOZz5ETQMKcr2Ar5PbkLC8kipvzwd354sMVLkxOXWP4DrZyjOUNR9AfqCKOfKl 7OPZ3QLm1hWxAm5OWB8jG+R+UzX66hynlOnTmcBlommg3l3Rloq6Aw8QOSadjwNu BZAzTUux3tlkJc2lQKwsKGUHPZBEaSLCtspD6Q7IfQBQN5ck/XOJjatQkiN8eLku GoaA7z6I4z43urdjpaV9+NLISDZAOo95mx+VHQJ5HU38SHSOGLscuiKCTByapZrV XfUqmsMseS3Fe0STAZ/knsY1kZdG+EWnjWEfCQfvgqqmFr0c1ssSwG1AUzv/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUS0m3Nuse1xgr7VVDASCkQ59EiwUwHwYDVR0j BBgwFoAUwqkKw2SBoZ7kFLtayqgAJB5XCh8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2M4YWIzZTAtY2E2OC00MmY2LTk4ZjYtNjU0YTI1MmE4NjQ4LzAvQzJBOTBBQzM2 NDgxQTE5RUU0MTRCQjVBQ0FBODAwMjQxRTU3MEExRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMkE5MEFDMzY0ODFBMTlFRTQxNEJCNUFDQUE4MDAyNDFFNTcw QTFGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjOGFiM2UwLWNhNjgtNDJmNi05 OGY2LTY1NGEyNTJhODY0OC8wLzMyMzAzMjJlMzkzMzJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzMzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXRkwDQYJKoZIhvcN AQELBQADggEBAE7dnXSZEuiBUB2I09juZEQ+Js/HgqFgCLoDMS0UcGPRBIgSjtRn sw9MttfBSagFrWVc9lF9Q2ZhR4HGS7oEeKE0PFFTp93d5/tdixOvhEjM3OpFecHU RnzpxRg1I0OqT0MpKaxgEZkOtclZci+RlJMpqyZGl4mTwBUc1ZIYeIdFcg17BMIi JWwcIctrGs0Uu1nIlox6FH7qqe2v8JH6kkb+GaryDVDXO8ArjIPBg466nDpEzbOj 1nbogE1t7OZNY8aC9k1MNLzIYw25qDhowqfsxQK39+24y3MSi29vd3tnqLPnBLC1 y2fJeu2wvRyoUUPg//k4+Vdgf0T6k+L62ic= -----END CERTIFICATE-----Generated at Wed May 13 06:25:56 2026 by rpki-client