$ rpki-client -vvf rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3139392e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: I7aNpMfH7ZHP4Lp/vWgPFU8KVrb9zX35ePeEEjLzIes= Subject key identifier: 0A:02:F2:A0:32:62:97:68:BE:5F:B4:91:BF:69:D0:9E:57:83:EC:5E Certificate issuer: /CN=2E7AB1335C4E07C6D34610DA5B920C496F6B61D0 Certificate serial: 1F2938EBC50E2410D47EE5C54702210BC7816577 Authority key identifier: 2E:7A:B1:33:5C:4E:07:C6:D3:46:10:DA:5B:92:0C:49:6F:6B:61:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa Signing time: Sun 03 May 2026 02:40:31 +0000 ROA not before: Sun 03 May 2026 02:35:31 +0000 ROA not after: Sun 02 May 2027 02:40:31 +0000 asID: 58552 IP address blocks: 202.72.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.crl rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:29:38:eb:c5:0e:24:10:d4:7e:e5:c5:47:02:21:0b:c7:81:65:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E7AB1335C4E07C6D34610DA5B920C496F6B61D0 Validity Not Before: May 3 02:35:31 2026 GMT Not After : May 2 02:40:31 2027 GMT Subject: CN=0A02F2A032629768BE5FB491BF69D09E5783EC5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:9d:9e:c4:74:c4:6d:20:34:84:9f:c5:67: 92:38:06:fa:31:22:eb:cd:b8:b4:e7:58:90:fe:93: 94:ca:33:19:48:d9:f0:ac:b0:21:98:64:d5:8b:49: 68:04:9e:e5:43:61:0e:e1:85:a0:b2:ca:e9:67:fe: 30:6f:e9:48:b5:aa:f7:c5:fa:1e:ea:fb:23:80:c6: 35:5e:f2:ea:58:a8:68:25:47:4c:a6:93:24:c2:ce: d7:27:1c:7e:36:3e:01:d1:8c:dc:6f:a2:62:a2:cf: 9d:90:ed:9b:b9:90:7a:c4:70:c1:6d:04:c5:e8:1c: 57:43:3d:d4:5a:47:c4:69:9c:04:d7:5f:c0:80:73: 33:fe:69:16:31:0b:a3:67:a6:8b:74:42:4c:6a:19: 1f:5b:7b:0e:75:ca:01:e1:38:e4:7b:e1:c7:84:7d: 3a:75:be:1c:83:5b:96:88:71:57:d4:c8:16:45:28: d6:d6:66:e4:60:d8:b4:4f:c1:22:5d:31:ef:2a:3c: fd:9e:60:b1:96:b4:fb:e9:82:af:24:0e:c3:6b:0a: ff:09:3f:60:9f:8d:2d:6d:e2:d2:d4:e6:00:f4:34: 1c:f6:ca:a1:ad:41:11:7e:03:b8:a9:58:03:28:ca: 40:7b:83:ee:42:ff:27:a3:86:82:b8:90:1d:c3:6e: 4c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:02:F2:A0:32:62:97:68:BE:5F:B4:91:BF:69:D0:9E:57:83:EC:5E X509v3 Authority Key Identifier: keyid:2E:7A:B1:33:5C:4E:07:C6:D3:46:10:DA:5B:92:0C:49:6F:6B:61:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.199.0/24 Signature Algorithm: sha256WithRSAEncryption 17:3a:a6:42:41:9e:42:ac:ab:f1:27:e2:70:d1:5c:2d:3e:55: 80:9e:88:e9:35:38:b0:a5:b7:68:ee:11:fc:ae:e6:d0:b1:79: 89:e2:95:58:7c:6b:e1:71:5e:7f:75:eb:1f:a0:3b:b6:0e:d6: a2:ae:84:2d:e9:37:f5:26:4c:e8:fd:43:64:d6:7c:ea:a6:dd: 4b:73:8a:8b:23:59:1d:7f:1c:1b:92:2b:57:fd:a1:65:45:9f: 17:70:96:24:eb:55:fa:7d:7d:b6:6b:f6:e0:97:75:16:e3:f4: 58:4e:be:93:92:cb:28:57:21:e6:cd:2d:f9:76:ea:69:bd:45: 83:8e:8f:8c:5c:b0:a9:5d:f1:7b:8b:bd:0d:e9:da:2f:66:0b: ae:f9:eb:cb:db:95:86:3f:15:7f:25:18:76:8a:63:c9:a5:ef: 0b:06:e4:48:73:a6:32:f0:38:6c:8a:7b:b7:c6:37:8f:21:16: a7:a4:39:36:27:7d:f5:f6:17:54:c4:6e:a4:45:a9:39:a5:e9: ce:b8:3b:37:79:79:50:3c:89:dc:32:bb:27:37:b6:03:7f:43: a8:f4:30:7c:90:43:3e:b3:cc:73:cb:ca:80:12:c6:c6:72:f8: db:69:53:ed:16:47:bb:dd:81:2e:f1:1c:13:6d:15:98:ba:7c: 85:2a:c9:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHyk468UOJBDUfuXFRwIhC8eBZXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU3QUIxMzM1QzRFMDdDNkQzNDYxMERBNUI5MjBDNDk2 RjZCNjFEMDAeFw0yNjA1MDMwMjM1MzFaFw0yNzA1MDIwMjQwMzFaMDMxMTAvBgNV BAMTKDBBMDJGMkEwMzI2Mjk3NjhCRTVGQjQ5MUJGNjlEMDlFNTc4M0VDNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC70Z2exHTEbSA0hJ/FZ5I4Bvox IuvNuLTnWJD+k5TKMxlI2fCssCGYZNWLSWgEnuVDYQ7hhaCyyuln/jBv6Ui1qvfF +h7q+yOAxjVe8upYqGglR0ymkyTCztcnHH42PgHRjNxvomKiz52Q7Zu5kHrEcMFt BMXoHFdDPdRaR8RpnATXX8CAczP+aRYxC6Nnpot0QkxqGR9bew51ygHhOOR74ceE fTp1vhyDW5aIcVfUyBZFKNbWZuRg2LRPwSJdMe8qPP2eYLGWtPvpgq8kDsNrCv8J P2CfjS1t4tLU5gD0NBz2yqGtQRF+A7ipWAMoykB7g+5C/yejhoK4kB3DbkwpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCgLyoDJil2i+X7SRv2nQnleD7F4wHwYDVR0j BBgwFoAULnqxM1xOB8bTRhDaW5IMSW9rYdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjlhY2I0YTgtNzgwNC00NTI2LTg0ZDItODY5YjkxYTY3MTlkLzAvMkU3QUIxMzM1 QzRFMDdDNkQzNDYxMERBNUI5MjBDNDk2RjZCNjFEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRTdBQjEzMzVDNEUwN0M2RDM0NjEwREE1QjkyMEM0OTZGNkI2 MUQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIxzANBgkqhkiG 9w0BAQsFAAOCAQEAFzqmQkGeQqyr8SficNFcLT5VgJ6I6TU4sKW3aO4R/K7m0LF5 ieKVWHxr4XFef3XrH6A7tg7Woq6ELek39SZM6P1DZNZ86qbdS3OKiyNZHX8cG5Ir V/2hZUWfF3CWJOtV+n19tmv24Jd1FuP0WE6+k5LLKFch5s0t+Xbqab1Fg46PjFyw qV3xe4u9DenaL2YLrvnry9uVhj8VfyUYdopjyaXvCwbkSHOmMvA4bIp7t8Y3jyEW p6Q5Nid99fYXVMRupEWpOaXpzrg7N3l5UDyJ3DK7Jze2A39DqPQwfJBDPrPMc8vK gBLGxnL422lT7RZHu92BLvEcE20VmLp8hSrJhg== -----END CERTIFICATE-----Generated at Wed May 13 10:23:40 2026 by rpki-client