$ rpki-client -vvf rpki-rsync.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa File: 3230332e39392e39362e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: p1nXgf4HFcxW2Y4PUtsAhVWmj9aD2WMQQIgpZQnsekc= Subject key identifier: 2D:33:70:ED:F8:B6:F2:C3:A8:8F:A1:3E:34:FD:2A:5C:C4:6C:EC:47 Certificate issuer: /CN=12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D Certificate serial: 48673BF58E9FDFA5A48965408698F262C76C558E Authority key identifier: 12:BD:5F:3F:6C:5A:B1:A9:F4:E3:12:A7:DA:FA:AC:BC:22:22:94:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa Signing time: Sun 03 May 2026 02:46:01 +0000 ROA not before: Sun 03 May 2026 02:41:01 +0000 ROA not after: Sun 02 May 2027 02:46:01 +0000 asID: 56241 IP address blocks: 203.99.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D.crl rsync://rpki-rsync.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:67:3b:f5:8e:9f:df:a5:a4:89:65:40:86:98:f2:62:c7:6c:55:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D Validity Not Before: May 3 02:41:01 2026 GMT Not After : May 2 02:46:01 2027 GMT Subject: CN=2D3370EDF8B6F2C3A88FA13E34FD2A5CC46CEC47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e2:4a:a6:66:dd:3a:a5:f0:1a:2f:be:c0:9c: 9b:cf:9d:11:c4:7d:2c:56:3f:2a:bb:84:9b:9a:cf: 2e:f2:14:bd:4a:86:18:db:e5:52:95:35:d4:01:ac: 01:4c:91:4b:e4:28:3f:ff:65:af:c0:04:4e:70:f5: d7:71:1e:4c:78:2b:d5:3d:e8:99:ff:20:62:2e:54: 7c:ab:5f:5c:2b:66:ce:35:cb:67:0f:19:6f:9e:79: bf:04:ae:37:66:c0:7a:a7:ab:d1:65:32:3d:01:ad: 6f:a4:fb:70:3f:4e:99:df:3a:b4:d8:d0:e2:cb:9f: 01:34:f0:c9:d1:6a:94:7f:1a:9c:ee:90:0a:e4:e0: 3f:3e:25:0b:cb:fd:99:02:62:0b:b4:35:31:ce:c7: 75:c3:b9:df:7f:7a:00:67:4b:90:9e:ef:98:ec:bf: 18:03:cb:f7:a6:1c:ef:ef:6c:86:c4:e4:ce:07:18: c9:a3:74:2b:68:4a:ac:ab:53:de:6c:5b:ac:2c:c0: 47:a5:41:28:87:7a:69:54:d4:fd:48:bd:be:9e:44: 2f:5e:a9:0f:c5:22:26:90:fe:f1:35:de:40:7f:a5: d9:ea:b4:85:90:cc:d3:38:0d:2b:28:6f:5f:09:9f: 80:99:42:d9:ef:9a:0e:3d:70:58:41:4c:4d:3e:cf: c1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:33:70:ED:F8:B6:F2:C3:A8:8F:A1:3E:34:FD:2A:5C:C4:6C:EC:47 X509v3 Authority Key Identifier: keyid:12:BD:5F:3F:6C:5A:B1:A9:F4:E3:12:A7:DA:FA:AC:BC:22:22:94:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/12BD5F3F6C5AB1A9F4E312A7DAFAACBC2222946D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.96.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:f5:5f:fd:0b:f9:d7:10:ac:e2:0b:5f:22:35:09:68:fc:e3: 5a:75:f8:72:81:cd:a0:a5:64:cf:54:65:56:57:84:da:e1:24: 55:4b:ef:6f:8c:3e:cd:8d:3b:e7:2d:0d:db:13:4a:a9:0e:51: 23:08:eb:60:9a:b4:56:3d:35:e0:8d:33:96:eb:cd:c5:64:75: 67:15:23:68:a4:92:c5:0a:c2:d8:52:2e:58:2c:d7:cb:7f:8a: 17:dd:63:16:88:62:07:39:6e:92:fd:97:ab:db:f3:12:67:1a: a4:75:fb:1a:50:eb:ea:ee:25:25:f4:a9:eb:a6:9e:08:eb:ac: 51:b6:f1:65:e7:bf:8e:ad:76:e0:c8:2c:59:4e:a2:e4:c1:68: ce:92:24:60:3d:e9:6a:09:55:62:c1:20:68:b8:ee:0a:d8:45: a2:44:8e:30:39:c4:aa:fb:7d:e1:92:b0:ca:5d:8e:bd:7b:9b: 0d:fa:12:ac:1e:01:0c:39:6e:07:94:da:3f:e1:8d:28:7b:26: fb:0e:63:2a:67:0b:a5:69:52:1e:7f:31:2e:f0:f7:02:39:a5: b5:f4:1e:4c:8c:7a:c4:4b:a6:23:9e:94:80:37:d0:ae:ba:b1: e0:e0:0d:77:04:f1:d6:43:dc:0e:86:ee:cd:fc:ce:13:43:be: 86:a9:6b:83 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSGc79Y6f36WkiWVAhpjyYsdsVY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTJCRDVGM0Y2QzVBQjFBOUY0RTMxMkE3REFGQUFDQkMy MjIyOTQ2RDAeFw0yNjA1MDMwMjQxMDFaFw0yNzA1MDIwMjQ2MDFaMDMxMTAvBgNV BAMTKDJEMzM3MEVERjhCNkYyQzNBODhGQTEzRTM0RkQyQTVDQzQ2Q0VDNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU4kqmZt06pfAaL77AnJvPnRHE fSxWPyq7hJuazy7yFL1Khhjb5VKVNdQBrAFMkUvkKD//Za/ABE5w9ddxHkx4K9U9 6Jn/IGIuVHyrX1wrZs41y2cPGW+eeb8ErjdmwHqnq9FlMj0BrW+k+3A/TpnfOrTY 0OLLnwE08MnRapR/GpzukArk4D8+JQvL/ZkCYgu0NTHOx3XDud9/egBnS5Ce75js vxgDy/emHO/vbIbE5M4HGMmjdCtoSqyrU95sW6wswEelQSiHemlU1P1Ivb6eRC9e qQ/FIiaQ/vE13kB/pdnqtIWQzNM4DSsob18Jn4CZQtnvmg49cFhBTE0+z8GrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULTNw7fi28sOoj6E+NP0qXMRs7EcwHwYDVR0j BBgwFoAUEr1fP2xasan04xKn2vqsvCIilG0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2U1OWRiN2UtOTRmNi00MDAyLTk5ZWYtNWU5NmQ4ZTM3ZTUwLzAvMTJCRDVGM0Y2 QzVBQjFBOUY0RTMxMkE3REFGQUFDQkMyMjIyOTQ2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMkJENUYzRjZDNUFCMUE5RjRFMzEyQTdEQUZBQUNCQzIyMjI5 NDZELmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzkzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzYzMjM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLY2AwDQYJKoZIhvcN AQELBQADggEBACz1X/0L+dcQrOILXyI1CWj841p1+HKBzaClZM9UZVZXhNrhJFVL 72+MPs2NO+ctDdsTSqkOUSMI62CatFY9NeCNM5brzcVkdWcVI2ikksUKwthSLlgs 18t/ihfdYxaIYgc5bpL9l6vb8xJnGqR1+xpQ6+ruJSX0qeumngjrrFG28WXnv46t duDILFlOouTBaM6SJGA96WoJVWLBIGi47grYRaJEjjA5xKr7feGSsMpdjr17mw36 EqweAQw5bgeU2j/hjSh7JvsOYypnC6VpUh5/MS7w9wI5pbX0HkyMesRLpiOelIA3 0K66seDgDXcE8dZD3A6G7s38zhNDvoapa4M= -----END CERTIFICATE-----Generated at Wed May 13 01:44:59 2026 by rpki-client