$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3230322e37302e3133362e302f32342d3234203d3e203436303334.roa File: 3230322e37302e3133362e302f32342d3234203d3e203436303334.roa (raw, json) Hash identifier: OElnQGjywIal+TKkNzEv0fSQqUAS10jHhU+dlj8V8js= Subject key identifier: E1:1B:F1:66:85:E3:59:2A:E4:5D:BB:52:44:3E:EA:D6:CA:6F:CF:13 Certificate issuer: /CN=1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692 Certificate serial: 45CBAE4F334BC83670BB5AD39FA497E8BDBE6086 Authority key identifier: 1E:AA:93:7A:23:6D:4A:DA:36:D9:AC:DF:88:F3:B0:7C:1A:FF:E6:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3230322e37302e3133362e302f32342d3234203d3e203436303334.roa Signing time: Sun 03 May 2026 02:32:30 +0000 ROA not before: Sun 03 May 2026 02:27:30 +0000 ROA not after: Sun 02 May 2027 02:32:30 +0000 asID: 46034 IP address blocks: 202.70.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692.crl rsync://rpki-rsync.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:cb:ae:4f:33:4b:c8:36:70:bb:5a:d3:9f:a4:97:e8:bd:be:60:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692 Validity Not Before: May 3 02:27:30 2026 GMT Not After : May 2 02:32:30 2027 GMT Subject: CN=E11BF16685E3592AE45DBB52443EEAD6CA6FCF13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f0:7e:29:ca:1d:d3:14:60:43:dd:e5:bb:60: 60:6a:4c:87:6b:53:4b:64:54:12:db:20:2f:17:a1: 0c:cc:39:94:07:e0:d7:9c:30:65:7a:1c:f5:42:d0: 02:42:f7:b1:39:66:e2:81:53:4a:31:e9:7a:0e:a8: d6:02:54:58:40:0f:b1:43:85:f3:51:b4:03:90:47: 7e:10:ff:1d:5f:c1:49:15:78:79:47:c8:9e:72:00: 79:3d:28:1a:26:ad:7c:3d:32:f9:c4:64:09:63:50: 65:b0:b7:4c:43:c8:3b:e6:79:80:44:24:b3:e6:7f: 88:f0:83:60:54:da:51:94:6d:dd:91:6f:f7:4a:34: cb:b6:0a:0e:69:3e:18:86:4d:62:6b:8c:6b:fc:3a: ff:90:d8:9e:dd:10:a9:f9:a7:80:f9:a8:58:ce:ad: 22:ef:db:cb:17:47:3f:70:c5:c2:b3:34:13:45:f2: 8a:a7:b9:fe:69:c0:e5:4d:4b:70:20:bb:19:5a:ca: 59:04:45:80:eb:c4:cc:6a:bf:23:8c:b6:f4:3d:be: 92:71:f4:61:a4:82:a2:e0:85:99:e7:3d:28:bd:03: fc:75:a4:62:b2:2c:51:b5:e7:6b:a5:81:e8:f3:4d: 31:f5:0e:d5:47:08:7e:06:a6:6d:86:1f:71:a5:28: 48:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1B:F1:66:85:E3:59:2A:E4:5D:BB:52:44:3E:EA:D6:CA:6F:CF:13 X509v3 Authority Key Identifier: keyid:1E:AA:93:7A:23:6D:4A:DA:36:D9:AC:DF:88:F3:B0:7C:1A:FF:E6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1EAA937A236D4ADA36D9ACDF88F3B07C1AFFE692.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3230322e37302e3133362e302f32342d3234203d3e203436303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.136.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:95:b5:dc:2d:1e:99:d3:38:ee:32:9e:c1:8d:c5:03:1b:1d: 45:b4:75:78:a5:b0:fc:36:03:65:16:e5:bd:7e:76:a1:32:77: 5a:40:c9:a7:e5:5e:6e:fe:6c:90:c8:1e:d3:0c:b7:8b:c0:43: 2d:e6:a3:a0:fb:11:c6:b6:75:09:a2:4d:37:e8:93:83:74:b4: 53:d6:53:2e:ed:80:44:3a:c9:f1:00:fb:9e:d7:83:17:2c:66: 51:15:2b:60:26:d9:9f:0c:7f:4d:36:fb:d8:7a:78:84:a9:b2: 99:c8:7d:72:9a:43:bd:a2:b6:38:41:c6:39:06:de:c3:2f:9d: 55:f0:3a:c3:41:36:6d:76:b8:9e:9f:70:97:a6:7f:3a:21:4b: fb:8a:bd:4e:8f:e4:7c:42:1b:4b:cb:60:f5:9e:14:b7:40:72: 08:4b:75:f7:36:f1:29:3d:76:a2:df:7f:1c:c6:72:42:4f:ef: b4:a5:b3:ac:f1:0c:5a:33:0b:02:8f:82:03:73:e7:1b:25:4f: 15:93:40:a6:84:c6:30:35:2a:9a:a4:d2:85:75:ed:38:27:ad: 2e:bb:b4:37:a4:f3:f2:a9:80:3f:d1:91:c4:1e:cb:e3:b0:ec: 9a:9e:9b:0b:55:73:f1:69:65:37:fb:ad:8c:6f:f5:a7:4d:9a: d3:0f:9a:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURcuuTzNLyDZwu1rTn6SX6L2+YIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVBQTkzN0EyMzZENEFEQTM2RDlBQ0RGODhGM0IwN0Mx QUZGRTY5MjAeFw0yNjA1MDMwMjI3MzBaFw0yNzA1MDIwMjMyMzBaMDMxMTAvBgNV BAMTKEUxMUJGMTY2ODVFMzU5MkFFNDVEQkI1MjQ0M0VFQUQ2Q0E2RkNGMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc8H4pyh3TFGBD3eW7YGBqTIdr U0tkVBLbIC8XoQzMOZQH4NecMGV6HPVC0AJC97E5ZuKBU0ox6XoOqNYCVFhAD7FD hfNRtAOQR34Q/x1fwUkVeHlHyJ5yAHk9KBomrXw9MvnEZAljUGWwt0xDyDvmeYBE JLPmf4jwg2BU2lGUbd2Rb/dKNMu2Cg5pPhiGTWJrjGv8Ov+Q2J7dEKn5p4D5qFjO rSLv28sXRz9wxcKzNBNF8oqnuf5pwOVNS3AguxlaylkERYDrxMxqvyOMtvQ9vpJx 9GGkgqLghZnnPSi9A/x1pGKyLFG152ulgejzTTH1DtVHCH4Gpm2GH3GlKEi3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4RvxZoXjWSrkXbtSRD7q1spvzxMwHwYDVR0j BBgwFoAUHqqTeiNtSto22azfiPOwfBr/5pIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGY4ODUxZTUtZWU1Yi00MWUxLTlhYmMtNDQyNjUxZDI3Mjk0LzAvMUVBQTkzN0Ey MzZENEFEQTM2RDlBQ0RGODhGM0IwN0MxQUZGRTY5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRUFBOTM3QTIzNkQ0QURBMzZEOUFDREY4OEYzQjA3QzFBRkZF NjkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmODg1MWU1LWVlNWItNDFlMS05 YWJjLTQ0MjY1MWQyNzI5NC8wLzMyMzAzMjJlMzczMDJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpGiDANBgkqhkiG 9w0BAQsFAAOCAQEAfJW13C0emdM47jKewY3FAxsdRbR1eKWw/DYDZRblvX52oTJ3 WkDJp+Vebv5skMge0wy3i8BDLeajoPsRxrZ1CaJNN+iTg3S0U9ZTLu2ARDrJ8QD7 nteDFyxmURUrYCbZnwx/TTb72Hp4hKmymch9cppDvaK2OEHGOQbewy+dVfA6w0E2 bXa4np9wl6Z/OiFL+4q9To/kfEIbS8tg9Z4Ut0ByCEt19zbxKT12ot9/HMZyQk/v tKWzrPEMWjMLAo+CA3PnGyVPFZNApoTGMDUqmqTShXXtOCetLru0N6Tz8qmAP9GR xB7L47Dsmp6bC1Vz8WllN/utjG/1p02a0w+aeA== -----END CERTIFICATE-----Generated at Wed May 13 10:16:46 2026 by rpki-client