$ rpki-client -vvf rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e312e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: ikR/F9w4LitTShzkD+KXZlE08zWYB4wLcQeSOu40MHY= Subject key identifier: C9:0B:0A:FA:75:92:B0:41:A9:83:82:8F:D5:7D:74:AB:16:CE:9F:0D Certificate issuer: /CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Certificate serial: 2D4FA1AC54C0A5D0B1E85D4F1FE86CC7FBC0EC70 Authority key identifier: 00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa Signing time: Sun 03 May 2026 02:38:51 +0000 ROA not before: Sun 03 May 2026 02:33:51 +0000 ROA not after: Sun 02 May 2027 02:38:51 +0000 asID: 24200 IP address blocks: 202.133.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:4f:a1:ac:54:c0:a5:d0:b1:e8:5d:4f:1f:e8:6c:c7:fb:c0:ec:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Validity Not Before: May 3 02:33:51 2026 GMT Not After : May 2 02:38:51 2027 GMT Subject: CN=C90B0AFA7592B041A983828FD57D74AB16CE9F0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9a:9a:d5:df:b6:ff:c6:71:1b:33:c1:7a:b1: f9:75:12:44:a5:48:3a:30:10:31:36:c5:0a:fa:71: 9f:2f:1e:22:f1:c6:ee:83:a9:c8:58:1d:f2:8e:b7: da:e2:ec:e0:a6:ad:01:cb:3f:3d:aa:6b:a5:b9:0f: 4a:50:7d:5c:a3:ac:8a:ad:53:e6:fd:b6:09:1a:9b: dd:9a:3b:d7:c7:a4:d4:d7:c7:1e:8f:2d:2a:72:dd: 53:21:0e:81:f3:1b:34:26:31:ee:8e:81:89:6f:71: a7:40:17:19:70:9e:08:51:70:ca:ed:af:15:0e:7a: 94:0a:f4:ee:9d:e0:51:01:37:be:4a:89:c1:3b:32: dc:dd:b4:fd:db:7a:dc:77:b1:b3:f0:23:b7:91:5e: a7:50:f7:2d:9f:f1:42:05:0d:a4:1f:8c:ee:fc:4d: e1:32:96:b8:01:c7:79:2d:b8:56:d4:1a:9f:22:8a: 76:02:42:bc:07:fd:28:20:60:15:49:3c:1e:3e:10: ed:45:b4:ff:fa:4b:e9:b7:f1:b7:47:2e:30:51:0f: e8:7f:cf:64:86:c8:7e:ad:cd:ec:83:c8:14:44:21: 36:ce:74:74:08:23:d7:72:43:42:56:c1:bc:cc:2d: 94:74:2f:0d:c5:35:d5:c0:69:19:60:53:cf:72:b6: 7d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0B:0A:FA:75:92:B0:41:A9:83:82:8F:D5:7D:74:AB:16:CE:9F:0D X509v3 Authority Key Identifier: keyid:00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.1.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:85:43:ab:b1:b8:83:ef:6b:62:99:60:9d:c3:ce:96:06:dd: 64:4f:1c:99:0e:ef:02:28:ad:6c:37:f8:c7:ba:e8:48:30:c4: cb:c1:59:31:9f:ca:28:e3:58:89:c4:33:ff:23:01:df:d3:96: 19:a4:6a:ab:e0:21:8a:cc:1a:40:f6:16:75:a5:c8:33:84:08: 5f:48:bc:f6:f0:16:e8:82:df:29:10:c6:f8:11:d2:a4:54:02: e5:e7:40:bf:37:19:36:b8:61:62:37:d4:fe:cc:6c:c9:b6:92: 78:b2:2c:96:4c:c5:49:f0:86:98:ab:a2:5d:df:1d:97:0e:9f: 3a:5a:60:83:89:f5:c1:d3:66:52:d7:43:9f:29:da:89:9b:25: 06:00:ca:29:9e:35:41:d2:7f:78:08:d2:bb:3f:c9:8f:0c:07: 0e:d5:ce:24:f1:26:16:ae:4c:01:4b:5a:86:61:37:1d:d2:fb: 8a:26:2c:b3:9d:89:89:82:60:76:10:c8:08:95:83:e9:5d:64: 54:de:db:2d:df:30:b9:09:bd:ea:0f:6f:87:a2:e6:4f:89:25: 45:e4:5d:11:e7:b0:f0:1b:a7:c0:01:a4:25:05:85:b9:c5:ec: 3a:97:67:10:71:da:50:22:17:ee:ae:8a:8d:12:d0:41:d5:5f: 00:86:04:d1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULU+hrFTApdCx6F1PH+hsx/vA7HAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA4RkQ5QzM0QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFD NTg5MDFERjAeFw0yNjA1MDMwMjMzNTFaFw0yNzA1MDIwMjM4NTFaMDMxMTAvBgNV BAMTKEM5MEIwQUZBNzU5MkIwNDFBOTgzODI4RkQ1N0Q3NEFCMTZDRTlGMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXmprV37b/xnEbM8F6sfl1EkSl SDowEDE2xQr6cZ8vHiLxxu6DqchYHfKOt9ri7OCmrQHLPz2qa6W5D0pQfVyjrIqt U+b9tgkam92aO9fHpNTXxx6PLSpy3VMhDoHzGzQmMe6OgYlvcadAFxlwnghRcMrt rxUOepQK9O6d4FEBN75KicE7MtzdtP3betx3sbPwI7eRXqdQ9y2f8UIFDaQfjO78 TeEylrgBx3ktuFbUGp8iinYCQrwH/SggYBVJPB4+EO1FtP/6S+m38bdHLjBRD+h/ z2SGyH6tzeyDyBREITbOdHQII9dyQ0JWwbzMLZR0Lw3FNdXAaRlgU89ytn2ZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyQsK+nWSsEGpg4KP1X10qxbOnw0wHwYDVR0j BBgwFoAUAI/Zw0xQAzRXcFoqj6itMcWJAd8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM2NjllYTQtZTgyZi00NmMzLThkZDMtMmU5ODgxNTliMjAyLzAvMDA4RkQ5QzM0 QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFDNTg5MDFERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMDhGRDlDMzRDNTAwMzM0NTc3MDVBMkE4RkE4QUQzMUM1ODkw MURGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQEwDQYJKoZIhvcN AQELBQADggEBAFyFQ6uxuIPva2KZYJ3DzpYG3WRPHJkO7wIorWw3+Me66EgwxMvB WTGfyijjWInEM/8jAd/TlhmkaqvgIYrMGkD2FnWlyDOECF9IvPbwFuiC3ykQxvgR 0qRUAuXnQL83GTa4YWI31P7MbMm2kniyLJZMxUnwhpirol3fHZcOnzpaYIOJ9cHT ZlLXQ58p2ombJQYAyimeNUHSf3gI0rs/yY8MBw7VziTxJhauTAFLWoZhNx3S+4om LLOdiYmCYHYQyAiVg+ldZFTe2y3fMLkJveoPb4ei5k+JJUXkXRHnsPAbp8ABpCUF hbnF7DqXZxBx2lAiF+6uio0S0EHVXwCGBNE= -----END CERTIFICATE-----Generated at Wed May 13 03:47:51 2026 by rpki-client