$ rpki-client -vvf rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e2039373835.roa File: 3230322e36392e39362e302f32302d3234203d3e2039373835.roa (raw, json) Hash identifier: JPXdi6WPGd4vFTIpgnAdhhx+7oMRZdsbWTFXkRgyRnk= Subject key identifier: 3D:55:2D:EC:63:64:42:7E:2F:F2:6F:A4:2D:D8:AB:F1:0A:9B:85:3A Certificate issuer: /CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Certificate serial: 12E003A7B9AE0E73E65F7CB3FBBB614C129A0172 Authority key identifier: 9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e2039373835.roa Signing time: Sun 03 May 2026 02:40:19 +0000 ROA not before: Sun 03 May 2026 02:35:19 +0000 ROA not after: Sun 02 May 2027 02:40:19 +0000 asID: 9785 IP address blocks: 202.69.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:e0:03:a7:b9:ae:0e:73:e6:5f:7c:b3:fb:bb:61:4c:12:9a:01:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Validity Not Before: May 3 02:35:19 2026 GMT Not After : May 2 02:40:19 2027 GMT Subject: CN=3D552DEC6364427E2FF26FA42DD8ABF10A9B853A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:87:c5:f3:b2:e7:f9:78:31:e9:82:f9:a5:1c: 79:f3:0a:45:85:f5:7a:dd:61:ef:68:a3:34:8e:4a: d6:35:98:e1:9c:46:89:7f:0b:a9:36:42:7a:85:a3: 45:67:b9:06:1e:94:18:c5:cf:98:1b:ef:2f:7e:a9: 27:c5:6c:00:be:fa:89:c5:74:fb:19:eb:f6:64:38: d1:e2:b8:42:24:3a:f2:0f:01:a8:f3:a1:a5:23:c8: a3:fa:3f:b1:1c:57:c1:f9:89:55:2a:97:f6:6b:65: 8f:30:9f:47:35:e8:b2:d9:bb:9f:9b:5f:85:61:43: 3c:30:2d:71:5d:c3:5a:f5:02:9c:82:6e:b4:19:d2: 48:3f:f6:71:09:a2:33:3c:aa:07:69:57:93:c2:50: 01:61:00:6b:1c:ef:5b:3b:7c:3c:00:11:c5:b7:73: 4a:52:53:53:bd:45:7a:ec:e0:5e:dc:a2:98:5b:b4: b6:5b:e2:55:eb:ff:21:28:4a:d1:30:0c:34:62:10: 6c:88:ee:23:fa:ca:11:0a:d9:40:8b:ba:21:42:68: e9:78:c3:9e:26:2d:88:db:27:76:a4:51:d7:13:44: ae:aa:11:cd:12:f8:c5:b4:01:1f:69:58:a4:f5:fa: 78:be:69:b4:fd:dc:ee:c2:1b:85:a8:0a:fc:0a:8d: c2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:55:2D:EC:63:64:42:7E:2F:F2:6F:A4:2D:D8:AB:F1:0A:9B:85:3A X509v3 Authority Key Identifier: keyid:9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.69.96.0/20 Signature Algorithm: sha256WithRSAEncryption 5d:28:d1:08:7e:e9:4b:b2:d4:d8:91:65:e5:ca:02:49:dd:6e: 07:c6:64:45:d1:48:9b:44:3d:b7:a1:52:ba:d9:fd:07:22:2d: ba:c6:eb:11:5b:63:c6:a7:f5:aa:5b:1d:8a:e2:b8:59:2d:be: 3d:79:f7:1b:df:ff:35:3a:9a:a6:a3:ff:75:6f:30:3d:61:21: 00:24:8d:33:43:28:68:9e:76:bb:9f:c8:2b:ae:50:34:a1:9f: d9:c7:65:3a:bb:f6:2a:a4:e2:96:3a:59:8d:ea:b6:55:59:b8: f5:f4:b6:03:5e:78:8c:dd:bb:3a:b9:58:68:d9:51:d9:32:26: cf:dc:8c:d0:18:0b:65:da:b4:de:84:86:c3:a6:94:d7:0c:f8: e9:21:ef:4e:70:55:e4:d3:83:93:2f:fa:8f:c7:8a:5d:8e:8d: 6d:1e:4e:18:09:fb:79:b1:f1:82:8c:5e:dc:ae:a1:e6:6c:18: 9f:8b:51:b3:00:06:48:05:16:03:37:e3:e3:2e:86:6b:bf:2a: 36:38:bd:67:e9:ca:3d:17:b3:9a:61:1a:97:44:c4:0f:ad:9d: 7c:34:85:67:12:10:e9:86:76:83:35:70:9e:7f:a2:d1:ae:39: 03:45:ea:48:79:d1:79:05:ed:92:62:ea:5c:62:90:c0:5d:70: 3d:fc:78:14 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUEuADp7muDnPmX3yz+7thTBKaAXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREN0ZEMUMwQTc0RkUzMTdFREE0MUU0RDFDREM4NTdB RkMxNzc5RDAeFw0yNjA1MDMwMjM1MTlaFw0yNzA1MDIwMjQwMTlaMDMxMTAvBgNV BAMTKDNENTUyREVDNjM2NDQyN0UyRkYyNkZBNDJERDhBQkYxMEE5Qjg1M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMh8Xzsuf5eDHpgvmlHHnzCkWF 9XrdYe9oozSOStY1mOGcRol/C6k2QnqFo0VnuQYelBjFz5gb7y9+qSfFbAC++onF dPsZ6/ZkONHiuEIkOvIPAajzoaUjyKP6P7EcV8H5iVUql/ZrZY8wn0c16LLZu5+b X4VhQzwwLXFdw1r1ApyCbrQZ0kg/9nEJojM8qgdpV5PCUAFhAGsc71s7fDwAEcW3 c0pSU1O9RXrs4F7cophbtLZb4lXr/yEoStEwDDRiEGyI7iP6yhEK2UCLuiFCaOl4 w54mLYjbJ3akUdcTRK6qEc0S+MW0AR9pWKT1+ni+abT93O7CG4WoCvwKjcKTAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUPVUt7GNkQn4v8m+kLdir8QqbhTowHwYDVR0j BBgwFoAUndf9HAp0/jF+2kHk0c3IV6/Bd50wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjkwYzkwMDktYWQ1My00ZmE2LWExODMtMzRiMzQ1N2JlYTAzLzAvOUREN0ZEMUMw QTc0RkUzMTdFREE0MUU0RDFDREM4NTdBRkMxNzc5RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85REQ3RkQxQzBBNzRGRTMxN0VEQTQxRTREMUNEQzg1N0FGQzE3 NzlELmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzMDMyMmUzNjM5MmUzOTM2MmUzMDJmMzIzMDJk MzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKRWAwDQYJKoZIhvcNAQEL BQADggEBAF0o0Qh+6Uuy1NiRZeXKAkndbgfGZEXRSJtEPbehUrrZ/QciLbrG6xFb Y8an9apbHYriuFktvj159xvf/zU6mqaj/3VvMD1hIQAkjTNDKGiedrufyCuuUDSh n9nHZTq79iqk4pY6WY3qtlVZuPX0tgNeeIzduzq5WGjZUdkyJs/cjNAYC2XatN6E hsOmlNcM+Okh705wVeTTg5Mv+o/Hil2OjW0eThgJ+3mx8YKMXtyuoeZsGJ+LUbMA BkgFFgM34+Muhmu/KjY4vWfpyj0Xs5phGpdExA+tnXw0hWcSEOmGdoM1cJ5/otGu OQNF6kh50XkF7ZJi6lxikMBdcD38eBQ= -----END CERTIFICATE-----Generated at Wed May 13 05:58:21 2026 by rpki-client