$ rpki-client -vvf rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa File: 3230322e36392e39362e302f32302d3234203d3e20313331363931.roa (raw, json) Hash identifier: npHUpI+a7i9Ge4o0vqbUWZs/Np3+nJB1Rs4IQBwLbvY= Subject key identifier: 4E:1F:E5:B0:FD:65:80:44:58:B7:A7:C4:F6:77:87:98:01:57:25:E3 Certificate issuer: /CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Certificate serial: 56FBC23C0F519024A19327131BF949817240EF5B Authority key identifier: 9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa Signing time: Sun 03 May 2026 02:40:22 +0000 ROA not before: Sun 03 May 2026 02:35:22 +0000 ROA not after: Sun 02 May 2027 02:40:22 +0000 asID: 131691 IP address blocks: 202.69.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:fb:c2:3c:0f:51:90:24:a1:93:27:13:1b:f9:49:81:72:40:ef:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Validity Not Before: May 3 02:35:22 2026 GMT Not After : May 2 02:40:22 2027 GMT Subject: CN=4E1FE5B0FD65804458B7A7C4F6778798015725E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5d:34:6d:cf:cf:8c:3a:6c:03:97:4a:cc:7e: e7:76:87:d4:71:1d:0f:02:5d:90:85:5a:88:14:3a: f5:2c:03:40:0b:8f:07:81:f9:ce:99:81:8a:f2:fb: 69:6e:68:52:ed:36:7e:d3:47:3f:ac:52:18:f3:11: 18:82:fa:9a:ee:51:1d:06:df:b2:20:8f:88:cf:15: d4:88:03:a4:ab:fe:7c:64:00:4d:53:c9:ea:b2:25: c3:ee:03:09:57:77:36:5a:5a:bf:cb:83:db:64:e5: e6:27:cd:05:f0:58:98:27:88:5a:b7:ab:d2:48:72: ef:07:cd:ee:41:13:81:41:e0:0b:98:1d:f6:72:22: 70:bf:99:5a:3d:34:7b:e1:22:cf:7e:46:db:b2:56: 65:36:8c:60:36:aa:ba:38:bc:e1:3f:dc:8b:0c:48: 92:c3:72:ff:63:12:8e:38:94:bc:34:f6:51:fe:b3: 26:d9:00:02:11:70:b1:22:b1:aa:e0:85:5c:4b:0e: 66:59:87:dc:f3:43:00:1e:bd:e0:e9:5e:bc:0b:9e: bf:15:e9:d8:c4:17:dc:d1:31:cf:ce:c8:c8:2c:ea: 5d:99:a6:4b:20:b8:ce:ba:f8:d4:1a:3d:51:f6:0c: 09:83:d8:d4:bd:8c:77:2c:56:45:28:36:77:97:71: 8b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1F:E5:B0:FD:65:80:44:58:B7:A7:C4:F6:77:87:98:01:57:25:E3 X509v3 Authority Key Identifier: keyid:9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.69.96.0/20 Signature Algorithm: sha256WithRSAEncryption 43:96:81:94:20:be:19:b0:5e:64:aa:d2:53:e3:99:b4:35:57: a9:eb:e4:4c:6c:42:21:0f:b5:b0:f5:29:d6:57:34:85:33:a7: 48:bf:d5:12:37:65:fe:9a:10:58:95:90:fa:18:18:f2:06:09: b4:96:f6:41:db:7a:58:bb:22:f9:ae:82:6c:7d:55:98:2b:f2: d9:c1:15:b7:3a:81:aa:e8:fd:9e:28:06:d4:4d:d2:67:08:21: d4:a7:c2:7d:c0:00:5e:b4:8b:3c:98:e9:98:7b:3b:12:ea:21: 73:8c:d0:a3:53:ec:17:69:84:2a:4a:15:58:fe:cc:64:cd:eb: 75:1f:4a:be:16:48:ed:e8:5a:69:0f:91:8c:02:b2:76:5d:bc: 3e:c5:63:6b:ac:03:e2:13:80:e5:fd:24:df:01:49:b6:f2:78: 3e:e5:ca:5b:de:9b:35:1a:d6:e8:6d:cd:c5:86:5d:90:c8:b9: 26:54:6a:f6:72:84:56:c2:f5:54:1e:8a:c4:1c:05:16:99:d3: 84:c5:f0:b0:09:2f:0b:6e:5a:1a:55:13:00:0c:dd:f3:11:61: 9d:0b:0d:b7:b5:3f:2a:d2:ae:bb:fa:30:d6:4e:e7:3f:1a:44: ed:57:9d:84:64:f8:de:71:30:b8:1e:10:b5:eb:e5:47:5d:0d: a9:c2:86:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVvvCPA9RkCShkycTG/lJgXJA71swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREN0ZEMUMwQTc0RkUzMTdFREE0MUU0RDFDREM4NTdB RkMxNzc5RDAeFw0yNjA1MDMwMjM1MjJaFw0yNzA1MDIwMjQwMjJaMDMxMTAvBgNV BAMTKDRFMUZFNUIwRkQ2NTgwNDQ1OEI3QTdDNEY2Nzc4Nzk4MDE1NzI1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRXTRtz8+MOmwDl0rMfud2h9Rx HQ8CXZCFWogUOvUsA0ALjweB+c6ZgYry+2luaFLtNn7TRz+sUhjzERiC+pruUR0G 37Igj4jPFdSIA6Sr/nxkAE1TyeqyJcPuAwlXdzZaWr/Lg9tk5eYnzQXwWJgniFq3 q9JIcu8Hze5BE4FB4AuYHfZyInC/mVo9NHvhIs9+RtuyVmU2jGA2qro4vOE/3IsM SJLDcv9jEo44lLw09lH+sybZAAIRcLEisarghVxLDmZZh9zzQwAeveDpXrwLnr8V 6djEF9zRMc/OyMgs6l2ZpksguM66+NQaPVH2DAmD2NS9jHcsVkUoNneXcYsrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTh/lsP1lgERYt6fE9neHmAFXJeMwHwYDVR0j BBgwFoAUndf9HAp0/jF+2kHk0c3IV6/Bd50wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjkwYzkwMDktYWQ1My00ZmE2LWExODMtMzRiMzQ1N2JlYTAzLzAvOUREN0ZEMUMw QTc0RkUzMTdFREE0MUU0RDFDREM4NTdBRkMxNzc5RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85REQ3RkQxQzBBNzRGRTMxN0VEQTQxRTREMUNEQzg1N0FGQzE3 NzlELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY5MGM5MDA5LWFkNTMtNGZhNi1h MTgzLTM0YjM0NTdiZWEwMy8wLzMyMzAzMjJlMzYzOTJlMzkzNjJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpFYDANBgkqhkiG 9w0BAQsFAAOCAQEAQ5aBlCC+GbBeZKrSU+OZtDVXqevkTGxCIQ+1sPUp1lc0hTOn SL/VEjdl/poQWJWQ+hgY8gYJtJb2Qdt6WLsi+a6CbH1VmCvy2cEVtzqBquj9nigG 1E3SZwgh1KfCfcAAXrSLPJjpmHs7Euohc4zQo1PsF2mEKkoVWP7MZM3rdR9KvhZI 7ehaaQ+RjAKydl28PsVja6wD4hOA5f0k3wFJtvJ4PuXKW96bNRrW6G3NxYZdkMi5 JlRq9nKEVsL1VB6KxBwFFpnThMXwsAkvC25aGlUTAAzd8xFhnQsNt7U/KtKuu/ow 1k7nPxpE7VedhGT43nEwuB4QtevlR10NqcKGEw== -----END CERTIFICATE-----Generated at Wed May 13 09:17:22 2026 by rpki-client