$ rpki-client -vvf rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e332e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e332e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: NbNZZ1h00KtVz1iU/OgERwDxHBaHy3Lol9PQ30yLH20= Subject key identifier: D7:B8:61:69:58:DD:11:C8:6D:66:61:14:FA:18:C7:D2:F4:3F:87:BC Certificate issuer: /CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Certificate serial: 4D54389C2732578A321E3B675EE8E6B7288760C6 Authority key identifier: 00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e332e302f32342d3234203d3e203234323030.roa Signing time: Sun 03 May 2026 02:38:53 +0000 ROA not before: Sun 03 May 2026 02:33:53 +0000 ROA not after: Sun 02 May 2027 02:38:53 +0000 asID: 24200 IP address blocks: 202.133.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:54:38:9c:27:32:57:8a:32:1e:3b:67:5e:e8:e6:b7:28:87:60:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Validity Not Before: May 3 02:33:53 2026 GMT Not After : May 2 02:38:53 2027 GMT Subject: CN=D7B8616958DD11C86D666114FA18C7D2F43F87BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:05:a2:f3:50:fa:47:9f:bc:d0:a4:82:96:4b: c3:b6:8a:d5:ae:c8:db:b5:71:a9:b2:4f:89:d2:1b: 05:37:ad:c0:a6:a2:fc:ad:65:c6:cf:20:5f:df:5e: 83:52:1d:6d:ba:2f:51:1c:dc:41:07:3a:bb:cd:b6: af:d2:ae:64:05:2d:ac:91:62:ae:cc:b4:1a:ea:b9: 4e:9d:d7:fd:0c:d3:05:1e:df:89:24:80:40:7b:3d: d5:e4:33:56:a8:4a:90:6d:ed:fe:ed:44:2a:e5:17: f2:a0:45:c2:d0:f2:f1:ee:10:92:85:63:d2:48:5e: 41:9d:f4:fb:38:90:14:ae:0a:57:6e:54:e4:14:d6: 03:d9:c7:fb:78:48:cc:2f:fd:da:b7:cb:5a:2b:7d: e3:0f:b0:25:83:8f:f9:a9:15:49:08:c6:bd:f0:99: 9c:8f:5b:8e:82:b8:8f:43:5f:23:e1:19:88:a8:a1: 54:1e:7a:2d:13:a7:7f:f0:4d:51:f3:41:a0:89:0d: f6:98:d8:27:da:3f:42:97:c6:de:75:0c:49:1f:b1: 89:0e:bb:1f:c5:53:d8:50:72:7a:d2:aa:db:7d:b8: 2f:16:9e:42:44:3e:de:d9:de:1b:fc:0e:4d:71:66: 67:fd:f8:63:a8:c3:c4:2a:26:f6:92:95:66:84:93: 2f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B8:61:69:58:DD:11:C8:6D:66:61:14:FA:18:C7:D2:F4:3F:87:BC X509v3 Authority Key Identifier: keyid:00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e332e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.3.0/24 Signature Algorithm: sha256WithRSAEncryption 41:7e:7a:9c:b5:6c:c5:91:a4:24:69:be:9a:61:d6:00:67:24: 6a:53:cd:4f:e8:84:83:a9:65:08:b3:fe:6a:4e:1b:7c:4a:82: 4b:a7:99:2d:3c:a7:3f:5f:45:aa:7f:de:9a:71:eb:28:65:64: 72:75:c7:24:a4:83:62:5e:a1:0f:d1:49:6c:16:27:67:96:bf: 98:f3:ef:fe:02:25:2b:8b:4a:8d:11:1a:bd:c9:58:89:f1:fb: 18:49:22:9f:b9:02:76:5a:65:d7:5c:59:fa:96:0d:d3:45:16: 9a:49:34:bf:b0:bb:a5:d0:33:fc:40:90:8b:ae:05:99:02:3e: a5:ca:3b:a3:91:43:5a:f2:52:d3:5d:c6:93:80:e7:70:fd:d3: 2d:47:35:65:4b:97:03:d7:05:7e:e9:e1:5d:ab:12:dd:89:9a: cf:60:1e:42:a9:f5:98:4a:4e:4d:72:9d:d0:e0:54:24:23:67: 19:ea:fc:f3:a0:41:f0:b8:70:b9:94:de:ea:59:13:77:63:0a: a9:b4:fe:f7:c5:75:01:75:d3:c3:70:55:35:82:14:65:11:b8: e4:a5:d3:2a:34:68:d1:f6:7d:cd:62:71:3e:9f:2b:ff:58:f7: 0d:7a:ce:9f:d3:ec:9b:28:8c:f6:b7:26:82:11:d1:33:45:a2: 3b:eb:e2:1a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTVQ4nCcyV4oyHjtnXujmtyiHYMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA4RkQ5QzM0QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFD NTg5MDFERjAeFw0yNjA1MDMwMjMzNTNaFw0yNzA1MDIwMjM4NTNaMDMxMTAvBgNV BAMTKEQ3Qjg2MTY5NThERDExQzg2RDY2NjExNEZBMThDN0QyRjQzRjg3QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMBaLzUPpHn7zQpIKWS8O2itWu yNu1camyT4nSGwU3rcCmovytZcbPIF/fXoNSHW26L1Ec3EEHOrvNtq/SrmQFLayR Yq7MtBrquU6d1/0M0wUe34kkgEB7PdXkM1aoSpBt7f7tRCrlF/KgRcLQ8vHuEJKF Y9JIXkGd9Ps4kBSuClduVOQU1gPZx/t4SMwv/dq3y1orfeMPsCWDj/mpFUkIxr3w mZyPW46CuI9DXyPhGYiooVQeei0Tp3/wTVHzQaCJDfaY2CfaP0KXxt51DEkfsYkO ux/FU9hQcnrSqtt9uC8WnkJEPt7Z3hv8Dk1xZmf9+GOow8QqJvaSlWaEky+jAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU17hhaVjdEchtZmEU+hjH0vQ/h7wwHwYDVR0j BBgwFoAUAI/Zw0xQAzRXcFoqj6itMcWJAd8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM2NjllYTQtZTgyZi00NmMzLThkZDMtMmU5ODgxNTliMjAyLzAvMDA4RkQ5QzM0 QzUwMDMzNDU3NzA1QTJBOEZBOEFEMzFDNTg5MDFERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMDhGRDlDMzRDNTAwMzM0NTc3MDVBMkE4RkE4QUQzMUM1ODkw MURGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQMwDQYJKoZIhvcN AQELBQADggEBAEF+epy1bMWRpCRpvpph1gBnJGpTzU/ohIOpZQiz/mpOG3xKgkun mS08pz9fRap/3ppx6yhlZHJ1xySkg2JeoQ/RSWwWJ2eWv5jz7/4CJSuLSo0RGr3J WInx+xhJIp+5AnZaZddcWfqWDdNFFppJNL+wu6XQM/xAkIuuBZkCPqXKO6ORQ1ry UtNdxpOA53D90y1HNWVLlwPXBX7p4V2rEt2Jms9gHkKp9ZhKTk1yndDgVCQjZxnq /POgQfC4cLmU3upZE3djCqm0/vfFdQF108NwVTWCFGURuOSl0yo0aNH2fc1icT6f K/9Y9w16zp/T7JsojPa3JoIR0TNFojvr4ho= -----END CERTIFICATE-----Generated at Wed May 13 03:23:40 2026 by rpki-client