$ rpki-client -vvf rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32332d3233203d3e203338373530.roa File: 3230322e3137392e3139302e302f32332d3233203d3e203338373530.roa (raw, json) Hash identifier: /g2f6okgGj8HKNPWnvqkUbF7FmFrL81D5X1Q6gvNPZk= Subject key identifier: A2:99:A9:FF:A8:B6:BB:BD:91:8F:F0:E0:26:2F:6E:B0:AA:EB:CD:44 Certificate issuer: /CN=99F0E6DE02C602D1E485455474F4B21207D2D7F8 Certificate serial: 2B6B6941EBE70543F09BDAE0C15352D737A72C43 Authority key identifier: 99:F0:E6:DE:02:C6:02:D1:E4:85:45:54:74:F4:B2:12:07:D2:D7:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32332d3233203d3e203338373530.roa Signing time: Sun 03 May 2026 02:42:31 +0000 ROA not before: Sun 03 May 2026 02:37:31 +0000 ROA not after: Sun 02 May 2027 02:42:31 +0000 asID: 38750 IP address blocks: 202.179.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.crl rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6b:69:41:eb:e7:05:43:f0:9b:da:e0:c1:53:52:d7:37:a7:2c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99F0E6DE02C602D1E485455474F4B21207D2D7F8 Validity Not Before: May 3 02:37:31 2026 GMT Not After : May 2 02:42:31 2027 GMT Subject: CN=A299A9FFA8B6BBBD918FF0E0262F6EB0AAEBCD44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5e:f0:ec:db:86:61:18:9e:0b:25:ec:fc:c5: 2b:d2:61:a1:e9:a3:88:0c:e9:fb:d7:98:9b:e2:d6: 83:d0:0e:96:62:bf:91:3b:07:f3:24:ea:32:c7:06: ce:d3:89:38:a3:7b:10:37:f0:f8:c1:47:08:c1:2c: ef:bf:88:4b:4b:62:54:79:a0:56:21:21:76:c5:54: 52:68:b1:3b:2d:5d:43:de:b1:f4:9f:95:4f:c6:31: 3d:ad:ec:68:5c:c7:1e:af:7e:73:ac:35:46:32:83: 4a:ec:b3:de:f3:50:44:46:7b:bf:f8:ae:95:04:d4: 11:a5:de:e1:81:cf:0c:0d:86:96:4e:aa:18:46:09: f2:bf:d0:5f:9e:56:a9:4d:ea:69:fa:ed:28:4b:46: 28:2e:08:b9:c2:3a:09:56:a2:97:7a:aa:bc:68:09: 9e:12:28:4d:8e:8d:71:8a:11:51:03:37:ff:d6:24: de:7b:e0:21:be:9c:89:74:5a:3d:56:01:10:d8:09: 67:f6:8f:ad:8c:3f:3f:f8:1a:57:a9:48:7b:92:ac: 3f:32:77:f5:80:b3:fd:5e:e0:c0:4d:b9:71:35:34: f1:35:08:35:6e:28:08:37:02:d4:07:c2:46:f2:c0: 82:3f:a7:e2:89:d7:4a:6a:ef:cc:74:cb:e4:ff:31: 65:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:99:A9:FF:A8:B6:BB:BD:91:8F:F0:E0:26:2F:6E:B0:AA:EB:CD:44 X509v3 Authority Key Identifier: keyid:99:F0:E6:DE:02:C6:02:D1:E4:85:45:54:74:F4:B2:12:07:D2:D7:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/99F0E6DE02C602D1E485455474F4B21207D2D7F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99F0E6DE02C602D1E485455474F4B21207D2D7F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32332d3233203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.190.0/23 Signature Algorithm: sha256WithRSAEncryption 05:8d:fe:d3:fb:ba:db:3c:f6:fc:d3:e2:fc:37:20:d4:88:1e: 40:04:42:e1:a3:c6:29:eb:4f:e4:01:12:a8:e8:ed:3c:00:eb: 43:2c:30:b5:f9:94:21:9b:c1:87:47:be:a3:6d:ad:2f:bf:a6: d5:04:db:76:1c:8c:3c:d2:14:c4:cc:7f:fd:79:95:3e:1a:fb: 16:7f:58:4d:fe:57:96:f9:d2:cc:66:98:f4:66:7c:ae:44:2d: 2d:fb:08:3b:16:1a:67:2d:9b:98:84:98:f2:03:8e:cc:be:cb: e6:eb:4a:18:0d:ea:a7:00:79:b7:ab:55:15:75:bd:19:b0:78: 92:b4:60:af:c5:be:74:85:55:80:f5:74:c9:97:da:99:86:c1: 94:67:64:86:28:2a:bb:28:77:97:db:63:7d:a8:d2:aa:c7:a9: 0b:c6:bf:44:d0:60:a5:f8:60:bb:ef:ed:c0:38:2b:ad:6f:30: f0:2a:21:d3:ef:35:e8:c1:23:01:d4:cc:75:27:3d:ad:a2:46: 72:c5:a0:5a:4f:bc:bc:e9:3e:07:9f:c6:20:9b:f1:c9:38:b0: c4:2a:85:51:9e:c8:84:a0:fe:9d:d8:c0:cd:c0:e5:0b:fc:8f: 90:e4:87:55:50:b7:a2:ab:5e:39:9e:44:2d:5e:04:01:ee:5a: 10:dd:5e:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK2tpQevnBUPwm9rgwVNS1zenLEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlGMEU2REUwMkM2MDJEMUU0ODU0NTU0NzRGNEIyMTIw N0QyRDdGODAeFw0yNjA1MDMwMjM3MzFaFw0yNzA1MDIwMjQyMzFaMDMxMTAvBgNV BAMTKEEyOTlBOUZGQThCNkJCQkQ5MThGRjBFMDI2MkY2RUIwQUFFQkNENDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnXvDs24ZhGJ4LJez8xSvSYaHp o4gM6fvXmJvi1oPQDpZiv5E7B/Mk6jLHBs7TiTijexA38PjBRwjBLO+/iEtLYlR5 oFYhIXbFVFJosTstXUPesfSflU/GMT2t7Ghcxx6vfnOsNUYyg0rss97zUERGe7/4 rpUE1BGl3uGBzwwNhpZOqhhGCfK/0F+eVqlN6mn67ShLRiguCLnCOglWopd6qrxo CZ4SKE2OjXGKEVEDN//WJN574CG+nIl0Wj1WARDYCWf2j62MPz/4GlepSHuSrD8y d/WAs/1e4MBNuXE1NPE1CDVuKAg3AtQHwkbywII/p+KJ10pq78x0y+T/MWXvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUopmp/6i2u72Rj/DgJi9usKrrzUQwHwYDVR0j BBgwFoAUmfDm3gLGAtHkhUVUdPSyEgfS1/gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzBmNWNmZGItNzk4Ny00MzUxLWJjMmUtNjZjMjRmNDlmNDQwLzAvOTlGMEU2REUw MkM2MDJEMUU0ODU0NTU0NzRGNEIyMTIwN0QyRDdGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUYwRTZERTAyQzYwMkQxRTQ4NTQ1NTQ3NEY0QjIxMjA3RDJE N0Y4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM5MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByrO+MA0GCSqG SIb3DQEBCwUAA4IBAQAFjf7T+7rbPPb80+L8NyDUiB5ABELho8Yp60/kARKo6O08 AOtDLDC1+ZQhm8GHR76jba0vv6bVBNt2HIw80hTEzH/9eZU+GvsWf1hN/leW+dLM Zpj0ZnyuRC0t+wg7FhpnLZuYhJjyA47Mvsvm60oYDeqnAHm3q1UVdb0ZsHiStGCv xb50hVWA9XTJl9qZhsGUZ2SGKCq7KHeX22N9qNKqx6kLxr9E0GCl+GC77+3AOCut bzDwKiHT7zXowSMB1Mx1Jz2tokZyxaBaT7y86T4Hn8Ygm/HJOLDEKoVRnsiEoP6d 2MDNwOUL/I+Q5IdVULeiq145nkQtXgQB7loQ3V6K -----END CERTIFICATE-----Generated at Wed May 13 04:16:56 2026 by rpki-client