$ rpki-client -vvf rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e322e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: 7PYR6KQD363PCA9CqbyRe3Hlyct7YlcslSh5J5MCne8= Subject key identifier: DF:8B:8F:C4:B7:DF:83:B3:BE:E0:F0:B8:DD:C9:3F:50:1A:B0:17:4F Certificate issuer: /CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Certificate serial: 197A6D3310953816341EB9480AE35AC4B4D14153 Authority key identifier: 00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa Signing time: Sun 03 May 2026 02:38:52 +0000 ROA not before: Sun 03 May 2026 02:33:52 +0000 ROA not after: Sun 02 May 2027 02:38:52 +0000 asID: 24200 IP address blocks: 202.133.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:7a:6d:33:10:95:38:16:34:1e:b9:48:0a:e3:5a:c4:b4:d1:41:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Validity Not Before: May 3 02:33:52 2026 GMT Not After : May 2 02:38:52 2027 GMT Subject: CN=DF8B8FC4B7DF83B3BEE0F0B8DDC93F501AB0174F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:02:70:a7:01:5f:8f:c3:c4:fd:39:3b:b8:85: 3d:54:df:06:8b:e4:8b:1f:58:e8:cc:04:f5:f3:d5: 13:5e:be:87:65:15:f6:77:fd:ec:63:37:70:c4:f3: 76:e2:d7:3c:1d:40:4a:9c:2d:0f:18:e6:3a:c5:d2: 72:dc:04:10:ec:d6:a5:e8:29:4a:bf:a2:a2:79:e1: 54:25:f2:aa:24:d1:7a:86:3d:2e:eb:22:61:a7:5a: 6c:2b:6c:98:56:c3:14:57:af:99:4a:fe:6b:ad:26: b5:84:d1:c1:a6:4f:42:64:d6:15:fc:26:0c:6e:ed: e5:69:54:8d:dd:b6:59:be:86:99:ac:c2:5f:ac:cc: 4d:3c:68:23:01:45:f9:25:fc:78:4b:53:49:d3:bf: c1:bd:da:93:cb:36:6c:89:17:80:08:3f:17:da:a2: 04:73:1c:57:b5:91:d2:9b:bc:20:f4:ec:56:21:7f: 2d:98:2d:0a:40:fc:d8:b4:6f:84:ab:ea:a2:4f:5a: c5:d6:24:1a:36:8c:19:0b:d4:6a:d8:ff:e2:62:6f: c5:b6:a6:ac:c2:ec:c2:fc:fb:b4:4d:a6:74:4c:4c: d9:9a:5b:bb:5e:76:9b:2e:e9:8e:6a:bc:58:d9:e5: 91:f0:87:fc:9a:20:1d:99:3d:b6:6f:c7:7f:67:bf: b0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:8B:8F:C4:B7:DF:83:B3:BE:E0:F0:B8:DD:C9:3F:50:1A:B0:17:4F X509v3 Authority Key Identifier: keyid:00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.2.0/24 Signature Algorithm: sha256WithRSAEncryption ba:79:e8:55:c0:51:a7:76:36:ae:a9:c8:1c:1d:04:95:c6:cd: 34:6b:9f:b1:53:20:ea:2d:53:80:32:ff:2b:2c:f4:28:55:75: 71:28:a5:87:91:6f:04:6a:17:2f:28:80:6f:3d:20:66:dc:26: 21:aa:f9:d2:ca:c2:6f:f7:c2:99:65:89:13:d1:05:49:d0:ae: d7:77:e8:11:72:07:f1:39:09:f2:c2:54:6d:e0:aa:4b:f8:0c: d2:b3:b8:2b:ba:ae:d0:ab:f2:ec:71:4d:06:83:3d:34:19:71: 87:35:1a:de:97:27:8a:a3:49:ae:54:ab:fa:8d:10:f3:22:8b: 17:13:92:c7:39:40:03:31:c6:4b:4a:78:c3:2b:f9:ab:6b:4b: 48:03:4b:c5:62:60:82:7e:bb:db:e1:49:9f:02:77:4d:15:ff: 08:c6:c7:9c:b9:b3:4b:d4:c4:aa:cb:e8:91:3c:c2:aa:aa:71: 74:d0:7c:52:ed:24:a1:86:76:f0:cd:1d:c1:49:7f:eb:5f:c7: 32:5d:ff:21:b1:69:ca:f1:e0:b9:1b:9e:73:f0:93:65:c0:4a: 05:e8:9d:36:39:d7:9f:f3:79:2f:42:a7:f9:a8:af:62:32:2f: 2e:e7:d5:de:53:6e:b4:94:8c:3b:c3:8e:c2:f6:90:c9:0c:07: b9:a6:b8:36 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGXptMxCVOBY0HrlICuNaxLTRQVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA4RkQ5QzM0QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFD NTg5MDFERjAeFw0yNjA1MDMwMjMzNTJaFw0yNzA1MDIwMjM4NTJaMDMxMTAvBgNV BAMTKERGOEI4RkM0QjdERjgzQjNCRUUwRjBCOEREQzkzRjUwMUFCMDE3NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqAnCnAV+Pw8T9OTu4hT1U3waL 5IsfWOjMBPXz1RNevodlFfZ3/exjN3DE83bi1zwdQEqcLQ8Y5jrF0nLcBBDs1qXo KUq/oqJ54VQl8qok0XqGPS7rImGnWmwrbJhWwxRXr5lK/mutJrWE0cGmT0Jk1hX8 Jgxu7eVpVI3dtlm+hpmswl+szE08aCMBRfkl/HhLU0nTv8G92pPLNmyJF4AIPxfa ogRzHFe1kdKbvCD07FYhfy2YLQpA/Ni0b4Sr6qJPWsXWJBo2jBkL1GrY/+Jib8W2 pqzC7ML8+7RNpnRMTNmaW7tedpsu6Y5qvFjZ5ZHwh/yaIB2ZPbZvx39nv7DJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU34uPxLffg7O+4PC43ck/UBqwF08wHwYDVR0j BBgwFoAUAI/Zw0xQAzRXcFoqj6itMcWJAd8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM2NjllYTQtZTgyZi00NmMzLThkZDMtMmU5ODgxNTliMjAyLzAvMDA4RkQ5QzM0 QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFDNTg5MDFERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMDhGRDlDMzRDNTAwMzM0NTc3MDVBMkE4RkE4QUQzMUM1ODkw MURGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQIwDQYJKoZIhvcN AQELBQADggEBALp56FXAUad2Nq6pyBwdBJXGzTRrn7FTIOotU4Ay/yss9ChVdXEo pYeRbwRqFy8ogG89IGbcJiGq+dLKwm/3wplliRPRBUnQrtd36BFyB/E5CfLCVG3g qkv4DNKzuCu6rtCr8uxxTQaDPTQZcYc1Gt6XJ4qjSa5Uq/qNEPMiixcTksc5QAMx xktKeMMr+atrS0gDS8ViYIJ+u9vhSZ8Cd00V/wjGx5y5s0vUxKrL6JE8wqqqcXTQ fFLtJKGGdvDNHcFJf+tfxzJd/yGxacrx4LkbnnPwk2XASgXonTY515/zeS9Cp/mo r2IyLy7n1d5TbrSUjDvDjsL2kMkMB7mmuDY= -----END CERTIFICATE-----Generated at Wed May 13 03:55:12 2026 by rpki-client