$ rpki-client -vvf rpki-rsync.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa File: 3230322e35302e3230322e302f32342d3234203d3e203535363936.roa (raw, json) Hash identifier: 5tE3feCM9vyNUB/qpwvXZKU/4/GsAVh0LYhHMntcLoo= Subject key identifier: DD:B4:87:6E:91:40:47:5A:56:19:F7:F5:A6:E4:73:95:89:CC:85:39 Certificate issuer: /CN=8FFAA6656CAEB189705F03C7B4148624E4A80597 Certificate serial: 0B59913B1A775FD20B083566B7E97D0B2088D4FC Authority key identifier: 8F:FA:A6:65:6C:AE:B1:89:70:5F:03:C7:B4:14:86:24:E4:A8:05:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8FFAA6656CAEB189705F03C7B4148624E4A80597.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa Signing time: Sun 03 May 2026 02:33:13 +0000 ROA not before: Sun 03 May 2026 02:28:13 +0000 ROA not after: Sun 02 May 2027 02:33:13 +0000 asID: 55696 IP address blocks: 202.50.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/8FFAA6656CAEB189705F03C7B4148624E4A80597.crl rsync://rpki-rsync.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/8FFAA6656CAEB189705F03C7B4148624E4A80597.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8FFAA6656CAEB189705F03C7B4148624E4A80597.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:59:91:3b:1a:77:5f:d2:0b:08:35:66:b7:e9:7d:0b:20:88:d4:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FFAA6656CAEB189705F03C7B4148624E4A80597 Validity Not Before: May 3 02:28:13 2026 GMT Not After : May 2 02:33:13 2027 GMT Subject: CN=DDB4876E9140475A5619F7F5A6E4739589CC8539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:44:36:94:a4:5d:27:9e:84:b7:04:cf:4a:8d: 6c:26:3d:17:17:03:27:f8:ec:ff:93:23:df:bd:50: d1:d7:d1:ed:94:8a:0b:fe:81:25:86:1c:6f:93:e7: bc:74:2b:c2:2b:63:00:da:14:d1:67:4f:d3:f8:d6: 3a:54:d7:f2:2c:f8:e3:0f:82:c8:84:81:12:10:18: 22:4e:f2:dc:54:0c:ac:c6:66:2d:96:36:94:8e:fc: 91:5d:e6:1b:a6:8c:0e:db:ea:38:30:e3:80:4f:07: 9a:43:1a:9f:e0:11:c1:d0:42:43:e9:23:ec:f9:00: 04:71:4b:f6:03:cf:1f:91:60:08:4e:05:9e:e8:6a: 6f:3d:7f:1e:98:a9:b3:00:5a:d8:83:72:91:3a:3d: c1:a7:07:d1:80:c1:30:99:47:dd:33:b2:65:eb:f0: c9:2b:4b:7d:e4:d8:76:a8:0f:86:40:58:05:11:8d: 45:57:6d:a8:d2:b2:65:2c:93:68:d4:ba:5a:a5:33: 83:f5:99:a4:af:d6:ca:41:30:f1:ae:52:37:87:77: bf:c2:f7:aa:2c:de:fc:99:2f:24:81:99:fe:58:37: e0:81:c9:3d:cf:22:8e:25:d1:d1:68:6d:c0:09:fa: 81:40:30:c1:06:c2:0e:c5:0b:3a:5e:2c:a2:f7:a6: 2a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B4:87:6E:91:40:47:5A:56:19:F7:F5:A6:E4:73:95:89:CC:85:39 X509v3 Authority Key Identifier: keyid:8F:FA:A6:65:6C:AE:B1:89:70:5F:03:C7:B4:14:86:24:E4:A8:05:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/8FFAA6656CAEB189705F03C7B4148624E4A80597.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8FFAA6656CAEB189705F03C7B4148624E4A80597.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.50.202.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:e5:d4:87:53:33:29:fe:38:ee:56:ef:8e:a9:85:99:87:f7: 4e:38:ab:ae:4f:38:dd:89:01:aa:35:e4:e4:96:11:93:3a:0b: 9d:79:c1:9f:60:52:c0:9e:0d:da:38:b5:42:25:28:34:ac:c9: 53:16:f5:ca:4e:06:a5:80:60:da:ea:43:4e:6c:1c:d8:d0:b8: 3e:da:d0:e2:7f:13:c1:ed:81:ab:71:fe:63:1e:f7:92:9e:d1: a9:dc:33:d1:bc:91:83:ec:66:fb:9d:e7:ee:3f:7c:f9:a3:74: 6c:73:ef:14:82:5c:ea:aa:15:63:c8:8b:79:aa:2b:a2:86:ef: c0:f6:57:ca:77:e8:99:3b:61:74:b7:ab:0b:b7:28:91:2c:09: 49:da:58:71:e7:46:98:79:b5:be:6b:79:0e:7e:95:86:0f:8a: d3:69:b0:dd:43:f6:b0:c6:98:f1:8f:3e:71:b7:68:6a:51:ba: dc:3f:6e:84:07:1c:a7:8a:ab:13:c5:51:5c:45:00:08:93:11: 84:cc:3e:b0:6b:17:6c:ff:46:da:74:de:62:79:f8:21:e1:c6: 23:b0:e6:36:29:b9:69:13:75:55:90:56:05:2f:ed:a3:5a:47: db:72:f9:dc:e3:18:64:bf:18:9a:30:96:ea:7f:5a:88:84:95: 61:2c:6a:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC1mROxp3X9ILCDVmt+l9CyCI1PwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZGQUE2NjU2Q0FFQjE4OTcwNUYwM0M3QjQxNDg2MjRF NEE4MDU5NzAeFw0yNjA1MDMwMjI4MTNaFw0yNzA1MDIwMjMzMTNaMDMxMTAvBgNV BAMTKEREQjQ4NzZFOTE0MDQ3NUE1NjE5RjdGNUE2RTQ3Mzk1ODlDQzg1MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChRDaUpF0nnoS3BM9KjWwmPRcX Ayf47P+TI9+9UNHX0e2Uigv+gSWGHG+T57x0K8IrYwDaFNFnT9P41jpU1/Is+OMP gsiEgRIQGCJO8txUDKzGZi2WNpSO/JFd5humjA7b6jgw44BPB5pDGp/gEcHQQkPp I+z5AARxS/YDzx+RYAhOBZ7oam89fx6YqbMAWtiDcpE6PcGnB9GAwTCZR90zsmXr 8MkrS33k2HaoD4ZAWAURjUVXbajSsmUsk2jUulqlM4P1maSv1spBMPGuUjeHd7/C 96os3vyZLySBmf5YN+CByT3PIo4l0dFobcAJ+oFAMMEGwg7FCzpeLKL3pio1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3bSHbpFAR1pWGff1puRzlYnMhTkwHwYDVR0j BBgwFoAUj/qmZWyusYlwXwPHtBSGJOSoBZcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTI4ODBkZWUtN2FhMi00YmU0LWJmMzUtY2RiZDExZDc5NTA3LzAvOEZGQUE2NjU2 Q0FFQjE4OTcwNUYwM0M3QjQxNDg2MjRFNEE4MDU5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RkZBQTY2NTZDQUVCMTg5NzA1RjAzQzdCNDE0ODYyNEU0QTgw NTk3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyODgwZGVlLTdhYTItNGJlNC1i ZjM1LWNkYmQxMWQ3OTUwNy8wLzMyMzAzMjJlMzUzMDJlMzIzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoyyjANBgkqhkiG 9w0BAQsFAAOCAQEACuXUh1MzKf447lbvjqmFmYf3Tjirrk843YkBqjXk5JYRkzoL nXnBn2BSwJ4N2ji1QiUoNKzJUxb1yk4GpYBg2upDTmwc2NC4PtrQ4n8Twe2Bq3H+ Yx73kp7Rqdwz0byRg+xm+53n7j98+aN0bHPvFIJc6qoVY8iLeaoroobvwPZXynfo mTthdLerC7cokSwJSdpYcedGmHm1vmt5Dn6Vhg+K02mw3UP2sMaY8Y8+cbdoalG6 3D9uhAccp4qrE8VRXEUACJMRhMw+sGsXbP9G2nTeYnn4IeHGI7DmNim5aRN1VZBW BS/to1pH23L53OMYZL8YmjCW6n9aiISVYSxqpg== -----END CERTIFICATE-----Generated at Wed May 13 00:54:02 2026 by rpki-client