$ rpki-client -vvf rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3132302e302f32322d3234203d3e2039393035.roa File: 3230322e37372e3132302e302f32322d3234203d3e2039393035.roa (raw, json) Hash identifier: dijnvbrxw14fcU7sTr4Hi9+AvVCISHBw/XOBUUSQn0M= Subject key identifier: 23:C1:66:C7:72:59:A2:84:27:6A:5D:0D:1B:78:26:66:E2:02:F1:50 Certificate issuer: /CN=38A016716413D0128BA473D046A93A222EF258E1 Certificate serial: 75873099665B557B4074A16AB198596E2A2D5F24 Authority key identifier: 38:A0:16:71:64:13:D0:12:8B:A4:73:D0:46:A9:3A:22:2E:F2:58:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38A016716413D0128BA473D046A93A222EF258E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3132302e302f32322d3234203d3e2039393035.roa Signing time: Sun 03 May 2026 02:44:34 +0000 ROA not before: Sun 03 May 2026 02:39:34 +0000 ROA not after: Sun 02 May 2027 02:44:34 +0000 asID: 9905 IP address blocks: 202.77.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/38A016716413D0128BA473D046A93A222EF258E1.crl rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/38A016716413D0128BA473D046A93A222EF258E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38A016716413D0128BA473D046A93A222EF258E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:87:30:99:66:5b:55:7b:40:74:a1:6a:b1:98:59:6e:2a:2d:5f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38A016716413D0128BA473D046A93A222EF258E1 Validity Not Before: May 3 02:39:34 2026 GMT Not After : May 2 02:44:34 2027 GMT Subject: CN=23C166C77259A284276A5D0D1B782666E202F150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:9b:72:9e:3c:74:31:fe:6c:b5:44:c3:d8: a1:e7:3e:6f:bc:21:69:c2:c7:51:3c:28:8a:93:bf: f2:60:bc:8a:b7:99:34:8d:bd:90:ad:ea:81:c2:fa: 4e:92:81:1c:ef:c6:eb:6e:7e:f0:c2:10:1c:66:6a: 2a:1b:4f:7f:84:5e:24:a8:e2:6e:63:79:d8:75:55: 53:18:13:7d:02:0e:ca:e1:d1:1d:41:bd:aa:c2:b3: 5c:0c:91:5e:8b:9c:34:94:f6:a3:7e:fa:fb:4d:ce: 05:fc:19:f2:3b:7b:92:3f:98:9f:9a:bd:d5:23:fd: 45:47:22:70:15:63:82:dc:e2:27:bc:0f:bf:44:36: 58:25:de:26:dd:93:b3:0e:c9:cf:fe:98:fb:f0:f6: 13:b6:8d:9a:7b:55:4d:8b:aa:df:aa:74:19:ea:3f: b9:cf:5d:60:74:f6:9d:29:3e:bc:68:d0:dd:2d:41: 05:17:17:44:48:b6:a5:af:c1:fd:6a:ee:3d:b0:2b: b7:ea:2a:de:2b:a3:6c:cd:b6:94:65:89:2c:2b:47: 45:be:fa:76:4e:61:a4:ee:e3:d3:48:70:67:c9:49: 6a:a0:13:05:94:0d:2c:9c:78:19:c7:4d:d7:dc:72: 01:64:bb:16:4a:b5:44:1a:d8:4a:e2:8d:5d:ba:23: 7e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C1:66:C7:72:59:A2:84:27:6A:5D:0D:1B:78:26:66:E2:02:F1:50 X509v3 Authority Key Identifier: keyid:38:A0:16:71:64:13:D0:12:8B:A4:73:D0:46:A9:3A:22:2E:F2:58:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/38A016716413D0128BA473D046A93A222EF258E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38A016716413D0128BA473D046A93A222EF258E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3132302e302f32322d3234203d3e2039393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.77.120.0/22 Signature Algorithm: sha256WithRSAEncryption 39:c6:4d:d4:fd:67:d9:36:d5:36:05:e6:96:9e:a4:6d:ac:ae: 73:45:b6:04:6d:5a:37:4b:30:a4:8c:de:27:b5:52:5e:9b:8c: 3e:d5:01:c0:e1:22:29:35:62:17:ac:bb:22:73:7c:29:a9:ec: 13:63:2f:18:ae:5c:c0:68:95:b5:51:49:1e:4a:51:3e:42:8a: 87:29:41:34:9a:8d:23:0d:c0:91:b3:5f:f2:51:63:3e:55:e0: 4f:00:e3:d6:2d:41:87:89:df:73:9b:c4:11:fe:cd:35:f0:2e: 80:fd:f4:b8:cd:7d:0e:cc:38:6f:2d:84:16:38:aa:53:34:c1: 71:46:41:4c:90:dd:0d:89:b4:42:49:b2:25:66:aa:3b:00:16: 4a:72:fe:24:cb:2b:04:28:da:c4:5d:01:c8:e2:b1:ca:ac:01: b6:5f:d9:8a:60:69:bf:6a:eb:78:49:5d:07:a1:54:43:c5:a5: 7b:b0:b2:00:5d:ef:82:e5:fb:1b:d2:16:5d:d8:5f:27:17:a0: 4c:eb:a0:80:cb:01:99:67:c6:17:64:2f:56:6b:30:60:f8:8c: 81:8d:cc:9b:cc:c3:45:8d:4d:5c:3d:cf:97:2a:2e:c3:b0:7a: fb:8a:9c:71:ee:bd:6a:9e:70:5b:d1:ea:45:bd:31:ff:02:44: e4:89:d2:7b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdYcwmWZbVXtAdKFqsZhZbiotXyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhBMDE2NzE2NDEzRDAxMjhCQTQ3M0QwNDZBOTNBMjIy RUYyNThFMTAeFw0yNjA1MDMwMjM5MzRaFw0yNzA1MDIwMjQ0MzRaMDMxMTAvBgNV BAMTKDIzQzE2NkM3NzI1OUEyODQyNzZBNUQwRDFCNzgyNjY2RTIwMkYxNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHT5tynjx0Mf5stUTD2KHnPm+8 IWnCx1E8KIqTv/JgvIq3mTSNvZCt6oHC+k6SgRzvxutufvDCEBxmaiobT3+EXiSo 4m5jedh1VVMYE30CDsrh0R1BvarCs1wMkV6LnDSU9qN++vtNzgX8GfI7e5I/mJ+a vdUj/UVHInAVY4Lc4ie8D79ENlgl3ibdk7MOyc/+mPvw9hO2jZp7VU2Lqt+qdBnq P7nPXWB09p0pPrxo0N0tQQUXF0RItqWvwf1q7j2wK7fqKt4ro2zNtpRliSwrR0W+ +nZOYaTu49NIcGfJSWqgEwWUDSyceBnHTdfccgFkuxZKtUQa2ErijV26I36nAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUI8Fmx3JZooQnal0NG3gmZuIC8VAwHwYDVR0j BBgwFoAUOKAWcWQT0BKLpHPQRqk6Ii7yWOEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzljMDVlZTMtN2ZjOC00NDA3LWIyYzAtY2I0MGJmY2ZiODY2LzAvMzhBMDE2NzE2 NDEzRDAxMjhCQTQ3M0QwNDZBOTNBMjIyRUYyNThFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOEEwMTY3MTY0MTNEMDEyOEJBNDczRDA0NkE5M0EyMjJFRjI1 OEUxLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc5YzA1ZWUzLTdmYzgtNDQwNy1i MmMwLWNiNDBiZmNmYjg2Ni8wLzMyMzAzMjJlMzczNzJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKTXgwDQYJKoZIhvcN AQELBQADggEBADnGTdT9Z9k21TYF5paepG2srnNFtgRtWjdLMKSM3ie1Ul6bjD7V AcDhIik1YhesuyJzfCmp7BNjLxiuXMBolbVRSR5KUT5CiocpQTSajSMNwJGzX/JR Yz5V4E8A49YtQYeJ33ObxBH+zTXwLoD99LjNfQ7MOG8thBY4qlM0wXFGQUyQ3Q2J tEJJsiVmqjsAFkpy/iTLKwQo2sRdAcjiscqsAbZf2Ypgab9q63hJXQehVEPFpXuw sgBd74Ll+xvSFl3YXycXoEzroIDLAZlnxhdkL1ZrMGD4jIGNzJvMw0WNTVw9z5cq LsOwevuKnHHuvWqecFvR6kW9Mf8CROSJ0ns= -----END CERTIFICATE-----Generated at Wed May 13 02:51:45 2026 by rpki-client