$ rpki-client -vvf rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32332d3233203d3e203538353532.roa File: 3230322e37322e3230342e302f32332d3233203d3e203538353532.roa (raw, json) Hash identifier: F2TMv35JZK5AIuzdcDqCbXvGPGE/OVFOpnP/LxPgY6M= Subject key identifier: 04:0E:CF:CF:0E:3B:66:E6:71:08:17:DC:01:1E:68:3E:CB:35:2A:B8 Certificate issuer: /CN=2E7AB1335C4E07C6D34610DA5B920C496F6B61D0 Certificate serial: 011BFFCEC032551FDD82A1BE9BE9D04090ED8BBC Authority key identifier: 2E:7A:B1:33:5C:4E:07:C6:D3:46:10:DA:5B:92:0C:49:6F:6B:61:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32332d3233203d3e203538353532.roa Signing time: Sun 03 May 2026 02:40:36 +0000 ROA not before: Sun 03 May 2026 02:35:36 +0000 ROA not after: Sun 02 May 2027 02:40:36 +0000 asID: 58552 IP address blocks: 202.72.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.crl rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:1b:ff:ce:c0:32:55:1f:dd:82:a1:be:9b:e9:d0:40:90:ed:8b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E7AB1335C4E07C6D34610DA5B920C496F6B61D0 Validity Not Before: May 3 02:35:36 2026 GMT Not After : May 2 02:40:36 2027 GMT Subject: CN=040ECFCF0E3B66E6710817DC011E683ECB352AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a3:c9:26:bb:86:4c:49:20:af:6d:df:9e:5b: 82:12:46:e2:6c:3c:9c:66:cb:9f:4a:f5:45:09:a0: e1:83:de:f7:f8:6f:c8:f0:f5:a6:8e:f6:cc:52:2a: 7c:4e:74:97:51:02:53:fa:c7:44:ef:f3:58:6c:6d: 8a:4e:66:3a:b9:56:b9:34:2e:5b:cd:ad:83:a0:41: 33:c7:14:bb:5b:26:f8:ed:f0:dd:e9:fb:ae:bf:8f: f7:7d:a3:d8:e1:cd:62:1f:32:03:59:5e:1b:7f:96: 86:90:5c:1c:dd:5f:d4:5b:19:d6:e2:de:fa:c0:e1: 96:f7:4e:75:88:6a:41:4d:16:d9:a8:29:78:26:6e: 57:ad:71:af:be:05:a7:cf:a5:9e:5a:ff:67:02:54: 0f:ed:d0:f0:a4:f7:70:4c:58:8b:a5:58:eb:ed:fb: d3:77:cc:6d:df:2a:61:38:26:ff:33:d1:ae:f7:6f: 8b:29:ff:13:94:cb:77:b4:6a:7d:a9:fb:35:33:ab: 35:6f:a4:aa:b9:7a:ad:9a:c5:79:a1:7a:69:d2:05: 16:25:e4:e3:95:76:e2:1a:ea:9d:e9:6e:6f:0e:84: dc:a8:68:a0:9c:19:59:8b:3f:cd:13:e0:5a:8d:29: cf:82:84:9e:88:8a:ab:51:f2:62:37:65:2c:3d:eb: bf:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:0E:CF:CF:0E:3B:66:E6:71:08:17:DC:01:1E:68:3E:CB:35:2A:B8 X509v3 Authority Key Identifier: keyid:2E:7A:B1:33:5C:4E:07:C6:D3:46:10:DA:5B:92:0C:49:6F:6B:61:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2E7AB1335C4E07C6D34610DA5B920C496F6B61D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32332d3233203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.204.0/23 Signature Algorithm: sha256WithRSAEncryption a3:bf:e2:77:91:e3:b9:05:82:96:49:13:04:8e:3d:cd:85:39: 98:06:07:89:bc:f2:d2:60:c6:83:17:c4:ee:7d:ac:f5:d7:6d: 49:f2:4a:ed:02:79:6f:4d:62:46:8e:3b:72:45:17:fd:c6:3f: e9:c4:c4:a0:bd:ad:03:12:ec:e6:84:e6:20:c2:c1:55:1f:20: 5a:97:3b:c2:c1:87:80:bd:5a:19:2f:66:3f:ca:83:51:88:e6: 89:4c:bb:c1:fa:33:8b:40:90:88:55:b3:7f:60:75:86:93:b0: 94:7d:58:04:fe:df:2e:ce:5c:e9:bf:fa:e1:d1:1e:bd:3e:6d: c0:2a:36:ad:72:4a:57:94:3a:4a:26:f7:a5:bd:42:88:43:3e: 9e:fb:a2:fa:d7:ac:05:80:57:d9:9c:d9:ba:47:c4:82:88:22: 83:d7:8a:2d:7c:b3:3c:c2:6b:ee:56:18:f7:f9:c9:83:22:c1: cb:9e:5a:b1:97:73:6a:8b:df:be:4b:4e:a8:0b:7d:1e:9f:ab: 4b:cb:1d:d4:fc:d1:0f:1b:e1:d9:5d:ec:58:53:15:1f:8e:aa: b5:a9:76:53:2d:8d:4a:3d:39:f7:49:86:8a:9c:b2:31:25:2c: e8:48:81:2e:c4:92:82:8c:4b:d0:51:d2:51:10:c9:8c:24:c5: 74:24:0f:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUARv/zsAyVR/dgqG+m+nQQJDti7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU3QUIxMzM1QzRFMDdDNkQzNDYxMERBNUI5MjBDNDk2 RjZCNjFEMDAeFw0yNjA1MDMwMjM1MzZaFw0yNzA1MDIwMjQwMzZaMDMxMTAvBgNV BAMTKDA0MEVDRkNGMEUzQjY2RTY3MTA4MTdEQzAxMUU2ODNFQ0IzNTJBQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8o8kmu4ZMSSCvbd+eW4ISRuJs PJxmy59K9UUJoOGD3vf4b8jw9aaO9sxSKnxOdJdRAlP6x0Tv81hsbYpOZjq5Vrk0 LlvNrYOgQTPHFLtbJvjt8N3p+66/j/d9o9jhzWIfMgNZXht/loaQXBzdX9RbGdbi 3vrA4Zb3TnWIakFNFtmoKXgmbletca++BafPpZ5a/2cCVA/t0PCk93BMWIulWOvt +9N3zG3fKmE4Jv8z0a73b4sp/xOUy3e0an2p+zUzqzVvpKq5eq2axXmhemnSBRYl 5OOVduIa6p3pbm8OhNyoaKCcGVmLP80T4FqNKc+ChJ6IiqtR8mI3ZSw967/hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBA7Pzw47ZuZxCBfcAR5oPss1KrgwHwYDVR0j BBgwFoAULnqxM1xOB8bTRhDaW5IMSW9rYdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjlhY2I0YTgtNzgwNC00NTI2LTg0ZDItODY5YjkxYTY3MTlkLzAvMkU3QUIxMzM1 QzRFMDdDNkQzNDYxMERBNUI5MjBDNDk2RjZCNjFEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRTdBQjEzMzVDNEUwN0M2RDM0NjEwREE1QjkyMEM0OTZGNkI2 MUQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcpIzDANBgkqhkiG 9w0BAQsFAAOCAQEAo7/id5HjuQWClkkTBI49zYU5mAYHibzy0mDGgxfE7n2s9ddt SfJK7QJ5b01iRo47ckUX/cY/6cTEoL2tAxLs5oTmIMLBVR8gWpc7wsGHgL1aGS9m P8qDUYjmiUy7wfozi0CQiFWzf2B1hpOwlH1YBP7fLs5c6b/64dEevT5twCo2rXJK V5Q6Sib3pb1CiEM+nvui+tesBYBX2ZzZukfEgogig9eKLXyzPMJr7lYY9/nJgyLB y55asZdzaovfvktOqAt9Hp+rS8sd1PzRDxvh2V3sWFMVH46qtal2Uy2NSj0590mG ipyyMSUs6EiBLsSSgoxL0FHSURDJjCTFdCQP/A== -----END CERTIFICATE-----Generated at Wed May 13 04:19:04 2026 by rpki-client