$ rpki-client -vvf rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e3135312e382e302f32322d3234203d3e2039373835.roa File: 3230322e3135312e382e302f32322d3234203d3e2039373835.roa (raw, json) Hash identifier: Pbg7HMIUocxPePd7OOnLCPLrq3CDhKhitltGyutZn2w= Subject key identifier: A4:05:58:21:6F:84:77:E1:E5:90:88:1E:CD:93:98:F1:AA:69:E5:99 Certificate issuer: /CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Certificate serial: 66BA99B61B6AA0D6C2A665A8EF9B5FD0744C7112 Authority key identifier: 9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e3135312e382e302f32322d3234203d3e2039373835.roa Signing time: Sun 03 May 2026 02:40:21 +0000 ROA not before: Sun 03 May 2026 02:35:21 +0000 ROA not after: Sun 02 May 2027 02:40:21 +0000 asID: 9785 IP address blocks: 202.151.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ba:99:b6:1b:6a:a0:d6:c2:a6:65:a8:ef:9b:5f:d0:74:4c:71:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Validity Not Before: May 3 02:35:21 2026 GMT Not After : May 2 02:40:21 2027 GMT Subject: CN=A40558216F8477E1E590881ECD9398F1AA69E599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:35:f0:c0:5f:52:8c:43:b7:57:73:98:02: fc:59:95:1b:ee:75:44:2d:7d:4a:35:50:fc:64:ad: 80:e3:58:b1:0b:ba:e4:7e:94:86:b3:0c:35:d6:4e: 7e:dc:67:ed:4b:01:76:ef:a4:49:06:b1:4f:4a:b5: 83:a4:4b:66:48:6e:dd:bf:49:61:4b:b0:34:6d:e4: eb:01:ad:0d:6c:ae:03:b2:4b:ec:b9:d9:e5:ee:eb: fc:2c:1e:ad:a2:66:b3:c1:a9:d8:3b:ef:9b:37:70: db:dc:9c:6f:8c:52:2f:a2:75:19:e5:34:58:a4:ea: e9:b4:23:3b:18:bf:6c:56:04:f6:aa:72:4f:e0:50: 17:b7:3b:9d:a0:82:d9:c0:2c:69:1b:11:9a:8e:42: 5a:7f:4a:2a:1d:59:a0:a1:b9:f2:c3:9c:a5:96:41: a0:33:db:1c:cb:2a:43:e0:26:e5:01:1f:f9:b8:dc: 11:f8:b3:d0:1b:2d:45:e3:57:11:c9:5a:83:0a:66: eb:a3:66:22:39:72:6b:85:c9:2f:28:21:ef:e4:8c: 1f:80:ca:3c:e2:e3:7e:93:77:56:00:5e:54:cf:3f: df:ed:b9:b3:37:f8:d6:cc:fd:f1:0e:a8:14:57:cc: c7:54:ee:af:bb:74:b3:2d:e1:e6:70:ea:d7:83:61: 8f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:05:58:21:6F:84:77:E1:E5:90:88:1E:CD:93:98:F1:AA:69:E5:99 X509v3 Authority Key Identifier: keyid:9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e3135312e382e302f32322d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.151.8.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:52:2b:1a:51:71:32:e1:d5:a9:cb:87:00:b2:94:98:5e:63: 6e:87:a5:e1:02:a3:49:7d:f6:b1:0f:2c:2c:56:56:b8:d5:e2: a6:68:6e:d4:43:45:4c:58:f6:4f:54:d7:cd:ef:1c:83:f0:34: 9b:21:42:4b:4a:2e:29:8d:bb:4e:df:b2:71:be:d9:55:25:53: 5d:65:1b:c3:72:66:4f:b6:26:26:e6:8f:d7:a3:6f:44:f9:2b: 02:8d:a5:50:06:73:d2:a0:6c:4d:a7:48:b9:4c:c2:59:b5:bb: 00:0b:f4:75:a5:42:ff:1c:70:c7:4d:e4:f1:5e:d2:7b:0a:c3: d5:90:be:76:a2:3b:8c:5d:90:52:80:3b:32:cb:61:f8:61:6e: 7d:83:5e:cf:d3:2c:b4:3a:df:62:dc:b5:30:7f:a2:3e:f4:ee: ed:61:62:38:06:ab:52:9a:50:25:c1:49:b8:2a:71:26:e9:92: 9c:85:87:27:c9:c0:9d:97:c9:a2:0c:01:a0:68:a6:2e:de:fc: af:ad:e8:52:3b:77:63:cb:8f:6b:c6:50:0e:d1:4c:ce:07:24: 5c:ad:5d:90:72:f0:42:a1:be:2f:70:10:21:04:bf:0a:1a:72: 29:9a:4c:31:3f:4d:e8:85:33:62:48:65:dc:a8:14:e0:f5:dc: 33:04:9e:aa -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUZrqZthtqoNbCpmWo75tf0HRMcRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREN0ZEMUMwQTc0RkUzMTdFREE0MUU0RDFDREM4NTdB RkMxNzc5RDAeFw0yNjA1MDMwMjM1MjFaFw0yNzA1MDIwMjQwMjFaMDMxMTAvBgNV BAMTKEE0MDU1ODIxNkY4NDc3RTFFNTkwODgxRUNEOTM5OEYxQUE2OUU1OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnRjXwwF9SjEO3V3OYAvxZlRvu dUQtfUo1UPxkrYDjWLELuuR+lIazDDXWTn7cZ+1LAXbvpEkGsU9KtYOkS2ZIbt2/ SWFLsDRt5OsBrQ1srgOyS+y52eXu6/wsHq2iZrPBqdg775s3cNvcnG+MUi+idRnl NFik6um0IzsYv2xWBPaqck/gUBe3O52ggtnALGkbEZqOQlp/SiodWaChufLDnKWW QaAz2xzLKkPgJuUBH/m43BH4s9AbLUXjVxHJWoMKZuujZiI5cmuFyS8oIe/kjB+A yjzi436Td1YAXlTPP9/tubM3+NbM/fEOqBRXzMdU7q+7dLMt4eZw6teDYY81AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUpAVYIW+Ed+HlkIgezZOY8app5ZkwHwYDVR0j BBgwFoAUndf9HAp0/jF+2kHk0c3IV6/Bd50wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjkwYzkwMDktYWQ1My00ZmE2LWExODMtMzRiMzQ1N2JlYTAzLzAvOUREN0ZEMUMw QTc0RkUzMTdFREE0MUU0RDFDREM4NTdBRkMxNzc5RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85REQ3RkQxQzBBNzRGRTMxN0VEQTQxRTREMUNEQzg1N0FGQzE3 NzlELmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzMDMyMmUzMTM1MzEyZTM4MmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKlwgwDQYJKoZIhvcNAQEL BQADggEBAGxSKxpRcTLh1anLhwCylJheY26HpeECo0l99rEPLCxWVrjV4qZobtRD RUxY9k9U183vHIPwNJshQktKLimNu07fsnG+2VUlU11lG8NyZk+2Jibmj9ejb0T5 KwKNpVAGc9KgbE2nSLlMwlm1uwAL9HWlQv8ccMdN5PFe0nsKw9WQvnaiO4xdkFKA OzLLYfhhbn2DXs/TLLQ632LctTB/oj707u1hYjgGq1KaUCXBSbgqcSbpkpyFhyfJ wJ2XyaIMAaBopi7e/K+t6FI7d2PLj2vGUA7RTM4HJFytXZBy8EKhvi9wECEEvwoa cimaTDE/TeiFM2JIZdyoFOD13DMEnqo= -----END CERTIFICATE-----Generated at Wed May 13 07:15:07 2026 by rpki-client