$ rpki-client -vvf rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa File: 3230322e312e3233362e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: E2CZqc55ytVQ+gL56PQklO6/e15IEHDs3ZeA7hBho40= Subject key identifier: 57:34:E5:A8:8A:2C:2B:1E:25:FD:86:4F:99:00:6F:06:31:F7:20:5E Certificate issuer: /CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Certificate serial: 04A1576FD6AE17A874DD7D1CAD85F4EA90B4CA70 Authority key identifier: 25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa Signing time: Sun 03 May 2026 02:29:04 +0000 ROA not before: Sun 03 May 2026 02:24:04 +0000 ROA not after: Sun 02 May 2027 02:29:04 +0000 asID: 45723 IP address blocks: 202.1.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a1:57:6f:d6:ae:17:a8:74:dd:7d:1c:ad:85:f4:ea:90:b4:ca:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2535F6A9A65395B5881ADB0B432A16679C88CC60 Validity Not Before: May 3 02:24:04 2026 GMT Not After : May 2 02:29:04 2027 GMT Subject: CN=5734E5A88A2C2B1E25FD864F99006F0631F7205E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:ae:12:2d:5e:6f:0c:71:75:8a:c4:5e:f9: b5:3c:79:f3:b4:11:9b:b3:d9:e2:0a:ba:a1:c8:3a: 79:17:b3:66:28:53:03:01:00:b3:02:03:68:d5:4a: 10:8c:74:d3:cb:a7:ff:a3:94:74:bb:5c:c2:81:bb: bf:a5:cc:f8:b0:ac:d3:33:3f:f6:d3:64:63:5f:a8: d4:ce:ae:49:b1:70:74:18:3c:ab:79:0a:c2:2b:26: 06:3f:5e:a7:c8:e2:76:04:8d:b2:f4:56:59:19:e0: c1:45:41:cd:c8:58:da:9a:e2:c0:24:5d:89:4e:bd: 10:b1:94:c6:dc:07:37:ec:79:49:ea:08:10:fc:d8: fb:ea:85:7a:f5:c0:9c:56:5b:88:01:0f:23:5e:54: a8:24:e8:43:15:e5:91:7e:30:f8:7a:81:4c:c3:2a: f9:c6:8c:0f:00:c2:8c:67:eb:b7:20:5d:ba:2f:6d: 4e:85:c8:71:e5:8b:54:a8:7a:2a:00:9e:3d:a8:b6: 96:37:a8:41:fb:54:4e:de:46:68:6c:12:29:c8:66: c8:8f:08:3a:ea:d0:25:ca:8f:0f:4a:6a:a4:af:17: 37:80:65:69:ce:93:88:b4:10:04:2c:78:90:9f:08: 05:c3:cd:05:64:b7:b3:7b:92:9e:94:01:15:7c:81: 95:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:34:E5:A8:8A:2C:2B:1E:25:FD:86:4F:99:00:6F:06:31:F7:20:5E X509v3 Authority Key Identifier: keyid:25:35:F6:A9:A6:53:95:B5:88:1A:DB:0B:43:2A:16:67:9C:88:CC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/2535F6A9A65395B5881ADB0B432A16679C88CC60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2535F6A9A65395B5881ADB0B432A16679C88CC60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.1.236.0/24 Signature Algorithm: sha256WithRSAEncryption a8:99:ba:98:b8:df:8f:d5:79:e4:39:17:27:da:a5:00:2c:68: 39:92:df:08:81:61:fb:ac:97:28:1c:9e:38:d0:75:6d:e1:7f: 90:53:c9:61:1b:e2:a4:82:97:c0:30:e4:40:b5:05:0b:f3:03: 04:b1:ca:5a:21:1d:39:d9:06:54:bf:7f:ed:a2:17:72:59:a2: a9:b6:fe:ce:80:de:24:0d:1b:4b:24:50:eb:d9:d3:31:f2:cb: 26:7e:2d:6f:a6:b4:3f:c6:eb:2a:9c:3a:0b:e5:aa:20:45:e0: 44:0d:60:19:a9:7d:29:95:63:45:b2:26:80:cd:e3:98:c0:30: 71:df:5e:43:18:f5:e9:49:86:ac:6c:e9:96:a9:1b:21:b7:85: 12:d5:b1:53:1b:27:b1:e1:8c:43:90:42:37:a8:ed:d2:d2:02: 41:63:98:b1:d3:5c:f9:80:e0:ed:39:c2:fb:2a:4a:3e:4b:d4: 2a:d7:7f:d2:65:ee:4a:06:b4:78:62:0b:f5:a7:6f:b3:86:01: 55:2e:6f:4e:fe:ef:38:d4:19:44:58:5b:0f:56:45:51:ac:ea: 38:83:96:0f:2e:18:51:24:c4:3c:8b:6d:17:08:3e:fc:05:0e: 67:82:f6:bf:ce:62:ab:d3:d3:cd:ec:b3:ad:07:29:3b:31:bc: a0:f3:0c:62 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBKFXb9auF6h03X0crYX06pC0ynAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzNUY2QTlBNjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5 Qzg4Q0M2MDAeFw0yNjA1MDMwMjI0MDRaFw0yNzA1MDIwMjI5MDRaMDMxMTAvBgNV BAMTKDU3MzRFNUE4OEEyQzJCMUUyNUZEODY0Rjk5MDA2RjA2MzFGNzIwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4xq4SLV5vDHF1isRe+bU8efO0 EZuz2eIKuqHIOnkXs2YoUwMBALMCA2jVShCMdNPLp/+jlHS7XMKBu7+lzPiwrNMz P/bTZGNfqNTOrkmxcHQYPKt5CsIrJgY/XqfI4nYEjbL0VlkZ4MFFQc3IWNqa4sAk XYlOvRCxlMbcBzfseUnqCBD82PvqhXr1wJxWW4gBDyNeVKgk6EMV5ZF+MPh6gUzD KvnGjA8Awoxn67cgXbovbU6FyHHli1SoeioAnj2otpY3qEH7VE7eRmhsEinIZsiP CDrq0CXKjw9KaqSvFzeAZWnOk4i0EAQseJCfCAXDzQVkt7N7kp6UARV8gZWfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUVzTlqIosKx4l/YZPmQBvBjH3IF4wHwYDVR0j BBgwFoAUJTX2qaZTlbWIGtsLQyoWZ5yIzGAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDFkYjM3MzAtZjQ5OS00NDlmLWI2ZjItN2E1ZGViNTMyYjBjLzAvMjUzNUY2QTlB NjUzOTVCNTg4MUFEQjBCNDMyQTE2Njc5Qzg4Q0M2MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNTM1RjZBOUE2NTM5NUI1ODgxQURCMEI0MzJBMTY2NzlDODhD QzYwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzAzMjJlMzEyZTMyMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKAewwDQYJKoZIhvcN AQELBQADggEBAKiZupi434/VeeQ5FyfapQAsaDmS3wiBYfuslygcnjjQdW3hf5BT yWEb4qSCl8Aw5EC1BQvzAwSxylohHTnZBlS/f+2iF3JZoqm2/s6A3iQNG0skUOvZ 0zHyyyZ+LW+mtD/G6yqcOgvlqiBF4EQNYBmpfSmVY0WyJoDN45jAMHHfXkMY9elJ hqxs6ZapGyG3hRLVsVMbJ7HhjEOQQjeo7dLSAkFjmLHTXPmA4O05wvsqSj5L1CrX f9Jl7koGtHhiC/Wnb7OGAVUub07+7zjUGURYWw9WRVGs6jiDlg8uGFEkxDyLbRcI PvwFDmeC9r/OYqvT083ss60HKTsxvKDzDGI= -----END CERTIFICATE-----Generated at Wed May 13 13:31:06 2026 by rpki-client