$ rpki-client -vvf rpki-rsync.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa File: 3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa (raw, json) Hash identifier: d3W50Pv9IvojYqj5AXX2l3Oy/7lfLR7Ec6qbGSXUUA4= Subject key identifier: CA:5D:31:90:53:EC:F5:08:51:81:C3:85:D0:75:60:A1:4B:70:DF:1C Certificate issuer: /CN=FFF3D8DC5C0C86529F97BB869346A18A1277A59A Certificate serial: 139C9309DF6BCF55BEBB36E966BF961E47B0DDD4 Authority key identifier: FF:F3:D8:DC:5C:0C:86:52:9F:97:BB:86:93:46:A1:8A:12:77:A5:9A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FFF3D8DC5C0C86529F97BB869346A18A1277A59A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa Signing time: Sun 03 May 2026 02:32:00 +0000 ROA not before: Sun 03 May 2026 02:27:00 +0000 ROA not after: Sun 02 May 2027 02:32:00 +0000 asID: 152024 IP address blocks: 202.47.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/FFF3D8DC5C0C86529F97BB869346A18A1277A59A.crl rsync://rpki-rsync.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/FFF3D8DC5C0C86529F97BB869346A18A1277A59A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FFF3D8DC5C0C86529F97BB869346A18A1277A59A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:9c:93:09:df:6b:cf:55:be:bb:36:e9:66:bf:96:1e:47:b0:dd:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFF3D8DC5C0C86529F97BB869346A18A1277A59A Validity Not Before: May 3 02:27:00 2026 GMT Not After : May 2 02:32:00 2027 GMT Subject: CN=CA5D319053ECF5085181C385D07560A14B70DF1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b0:6d:35:17:6b:18:da:70:d2:c5:f4:cf:03: e6:9d:e3:ef:74:23:46:2d:83:82:f3:be:09:0d:d9: bc:0d:17:3b:b1:1c:51:f1:71:90:ec:e3:1d:1b:4c: 2f:9b:f0:23:64:c0:6f:4e:80:b6:5f:52:6a:68:87: a2:85:a5:cf:d4:32:a5:b7:2b:44:ef:cc:d7:e4:d0: 14:34:7e:98:e6:15:29:fe:72:43:07:e2:49:5e:82: ce:7e:aa:73:24:ba:9f:94:a8:f4:08:b2:1a:84:1e: 8b:64:a8:4a:46:3b:24:d8:df:7a:da:b0:84:b5:0e: e8:d8:ec:68:23:1b:0f:d8:cc:ca:db:c8:11:44:55: e0:4c:af:27:79:7f:96:9c:fd:f1:40:ab:04:64:2e: df:71:1e:c3:7b:ce:14:32:0f:79:6e:61:de:f6:c6: 8e:03:aa:ee:1e:a5:68:7c:cf:57:2a:6f:3e:25:2f: 7c:fd:8e:d8:f9:d4:ff:2f:e7:57:ad:8c:86:74:df: d2:40:62:f3:fe:3e:af:78:a6:e3:fe:35:d5:54:66: 94:80:1b:11:5f:59:f6:64:9e:1d:3c:4c:5d:05:07: 79:ce:35:88:41:7b:9b:8b:37:f4:7d:52:1e:ef:ba: 23:63:f5:9f:2c:d4:89:12:74:0f:10:f7:3f:b4:a7: 6a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5D:31:90:53:EC:F5:08:51:81:C3:85:D0:75:60:A1:4B:70:DF:1C X509v3 Authority Key Identifier: keyid:FF:F3:D8:DC:5C:0C:86:52:9F:97:BB:86:93:46:A1:8A:12:77:A5:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/FFF3D8DC5C0C86529F97BB869346A18A1277A59A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FFF3D8DC5C0C86529F97BB869346A18A1277A59A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.186.0/24 Signature Algorithm: sha256WithRSAEncryption 74:5c:0b:d2:89:2a:95:43:33:7e:3e:95:72:0d:fa:10:8d:21: 8f:7d:05:8d:80:dd:2a:f1:bf:e0:d7:87:51:5c:86:03:eb:f1: eb:a2:94:e4:a3:83:a9:33:a7:d4:c1:5f:d4:3b:d4:1d:be:a5: ed:78:c8:56:b3:26:84:85:88:1a:95:d0:f1:bb:3d:fb:41:2f: 11:17:7a:7a:bb:6f:16:67:46:e1:91:3a:61:33:9f:d6:50:6a: 49:97:c3:4f:66:4e:90:90:77:c5:3e:ab:b1:db:54:f2:5d:5b: b8:85:50:43:16:3c:df:c0:88:93:4b:61:e2:9d:c9:6d:52:a5: f2:27:6a:f6:d3:e5:4d:e4:e9:9a:5f:0c:59:66:40:3d:47:13: 9d:f3:37:82:66:17:0f:0b:ab:1d:c4:32:ae:48:d0:ee:96:7d: 23:c0:10:96:1a:9c:b8:1b:6e:64:88:bc:32:73:92:93:ae:f4: 29:5c:49:52:e9:48:23:e8:9f:79:dc:73:94:25:ea:ea:c4:58: 5f:5a:ea:f5:95:c2:bc:e2:da:50:31:3a:42:d5:c6:8e:b9:88: 15:40:0d:21:f9:ac:72:f5:a1:cd:10:48:3f:41:a1:b4:ae:83: 50:2b:ec:a6:d9:40:50:c4:70:ec:d7:4e:5a:3c:bf:54:e4:5e: f1:c5:d5:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE5yTCd9rz1W+uzbpZr+WHkew3dQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkZGM0Q4REM1QzBDODY1MjlGOTdCQjg2OTM0NkExOEEx Mjc3QTU5QTAeFw0yNjA1MDMwMjI3MDBaFw0yNzA1MDIwMjMyMDBaMDMxMTAvBgNV BAMTKENBNUQzMTkwNTNFQ0Y1MDg1MTgxQzM4NUQwNzU2MEExNEI3MERGMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNsG01F2sY2nDSxfTPA+ad4+90 I0Ytg4LzvgkN2bwNFzuxHFHxcZDs4x0bTC+b8CNkwG9OgLZfUmpoh6KFpc/UMqW3 K0TvzNfk0BQ0fpjmFSn+ckMH4klegs5+qnMkup+UqPQIshqEHotkqEpGOyTY33ra sIS1DujY7GgjGw/YzMrbyBFEVeBMryd5f5ac/fFAqwRkLt9xHsN7zhQyD3luYd72 xo4Dqu4epWh8z1cqbz4lL3z9jtj51P8v51etjIZ039JAYvP+Pq94puP+NdVUZpSA GxFfWfZknh08TF0FB3nONYhBe5uLN/R9Uh7vuiNj9Z8s1IkSdA8Q9z+0p2pLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyl0xkFPs9QhRgcOF0HVgoUtw3xwwHwYDVR0j BBgwFoAU//PY3FwMhlKfl7uGk0ahihJ3pZowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGQ2ZmZhZDItMjBiYy00MjQ2LTgyOTMtNDQ2NjZjZTFjZmUwLzAvRkZGM0Q4REM1 QzBDODY1MjlGOTdCQjg2OTM0NkExOEExMjc3QTU5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GRkYzRDhEQzVDMEM4NjUyOUY5N0JCODY5MzQ2QTE4QTEyNzdB NTlBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRkNmZmYWQyLTIwYmMtNDI0Ni04 MjkzLTQ0NjY2Y2UxY2ZlMC8wLzMyMzAzMjJlMzQzNzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+6MA0GCSqG SIb3DQEBCwUAA4IBAQB0XAvSiSqVQzN+PpVyDfoQjSGPfQWNgN0q8b/g14dRXIYD 6/HropTko4OpM6fUwV/UO9QdvqXteMhWsyaEhYgaldDxuz37QS8RF3p6u28WZ0bh kTphM5/WUGpJl8NPZk6QkHfFPqux21TyXVu4hVBDFjzfwIiTS2HincltUqXyJ2r2 0+VN5OmaXwxZZkA9RxOd8zeCZhcPC6sdxDKuSNDuln0jwBCWGpy4G25kiLwyc5KT rvQpXElS6Ugj6J953HOUJerqxFhfWur1lcK84tpQMTpC1caOuYgVQA0h+axy9aHN EEg/QaG0roNQK+ym2UBQxHDs105aPL9U5F7xxdV7 -----END CERTIFICATE-----Generated at Wed May 13 13:28:17 2026 by rpki-client