$ rpki-client -vvf rpki-rsync.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39362e302f32302d3230203d3e203137393130.roa File: 3230322e3132372e39362e302f32302d3230203d3e203137393130.roa (raw, json) Hash identifier: AfPj1/WANHCA8ksluVDxgnesb53b+Rlio8ADTE+u1pQ= Subject key identifier: B4:2C:C8:1D:A1:1B:CC:FA:14:8D:90:3B:5B:90:A6:27:56:A9:AF:96 Certificate issuer: /CN=EC59C36AB88A35CEA64B4ED019F2F05317672299 Certificate serial: 3AFA2E77C5FB1AC1493B87FB8BBF0914DA36D1C4 Authority key identifier: EC:59:C3:6A:B8:8A:35:CE:A6:4B:4E:D0:19:F2:F0:53:17:67:22:99 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EC59C36AB88A35CEA64B4ED019F2F05317672299.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39362e302f32302d3230203d3e203137393130.roa Signing time: Sun 03 May 2026 02:48:17 +0000 ROA not before: Sun 03 May 2026 02:43:17 +0000 ROA not after: Sun 02 May 2027 02:48:17 +0000 asID: 17910 IP address blocks: 202.127.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/EC59C36AB88A35CEA64B4ED019F2F05317672299.crl rsync://rpki-rsync.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/EC59C36AB88A35CEA64B4ED019F2F05317672299.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EC59C36AB88A35CEA64B4ED019F2F05317672299.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fa:2e:77:c5:fb:1a:c1:49:3b:87:fb:8b:bf:09:14:da:36:d1:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC59C36AB88A35CEA64B4ED019F2F05317672299 Validity Not Before: May 3 02:43:17 2026 GMT Not After : May 2 02:48:17 2027 GMT Subject: CN=B42CC81DA11BCCFA148D903B5B90A62756A9AF96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e3:63:9c:53:58:85:ad:3d:7a:a1:81:a7:7f: 1a:8a:ae:67:c8:ad:58:bf:cd:f7:22:b7:8c:98:d2: 64:7e:8d:cc:95:d1:a9:4e:e3:fe:ec:b8:cc:f6:07: 3d:54:4b:52:03:f9:46:de:cc:69:e8:84:ab:4a:67: bc:9e:1f:eb:fd:4f:d4:16:84:48:60:f7:05:25:3d: 30:98:d6:82:6d:a1:33:4e:3e:31:c8:d6:af:6d:a0: 76:33:a8:42:ed:76:c5:e2:45:5b:d2:c1:89:07:4c: d7:a2:6c:64:06:dd:53:46:f2:c1:78:fb:12:80:f4: 85:fb:ad:ae:b9:33:8f:ce:6c:f7:2d:50:c4:47:4d: f1:fb:70:f0:34:8d:d6:45:fd:e9:28:6d:c1:d0:d0: 40:f9:d2:37:17:37:61:17:fa:20:91:77:81:c8:8d: 31:fc:64:1c:75:0f:de:0e:2e:c8:8b:5f:97:ba:0b: ed:0b:85:c7:80:85:71:3d:5a:cf:8e:dd:da:72:3e: 49:4f:6a:a8:88:a7:bb:f6:37:1b:bb:f0:cc:be:cf: f9:1f:d8:5c:61:ff:6f:bf:59:48:54:28:43:64:24: b3:79:49:bf:a7:f3:04:c5:5c:ab:c4:3f:76:2c:f9: 8f:58:1c:9f:95:f0:e6:34:88:b6:43:5e:c4:e9:55: e3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2C:C8:1D:A1:1B:CC:FA:14:8D:90:3B:5B:90:A6:27:56:A9:AF:96 X509v3 Authority Key Identifier: keyid:EC:59:C3:6A:B8:8A:35:CE:A6:4B:4E:D0:19:F2:F0:53:17:67:22:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/EC59C36AB88A35CEA64B4ED019F2F05317672299.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EC59C36AB88A35CEA64B4ED019F2F05317672299.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39362e302f32302d3230203d3e203137393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.127.96.0/20 Signature Algorithm: sha256WithRSAEncryption 87:ed:2f:8b:43:62:d5:04:c0:3b:bb:69:74:58:77:76:73:ba: ef:75:c1:82:83:a6:0b:37:7c:09:7f:b3:a4:79:7a:ed:65:cb: 5f:19:8e:a0:aa:c9:ff:a8:ca:ef:82:46:b9:36:d9:28:0e:e5: 22:2c:30:2e:64:b5:d0:f2:da:46:ce:c2:81:ed:54:05:eb:0d: 35:16:a3:74:ef:d5:bf:6d:d4:af:b4:9b:ab:4b:35:ba:8f:28: 8d:b2:20:5c:b4:1f:6c:0b:30:05:88:96:b2:79:73:53:e3:74: cf:87:26:ce:37:0e:72:42:82:0f:93:bf:4d:d7:35:71:ed:f3: ce:3b:bf:44:b0:8e:9f:c9:d1:7f:b6:85:4d:7e:03:41:dc:61: b3:90:56:c9:b9:10:ec:ad:49:aa:36:a4:be:0e:f9:fa:60:73: 86:27:6d:c4:34:82:ab:f5:92:9f:ab:64:8c:c9:4a:ac:4f:2c: 08:a3:69:be:3a:99:6d:47:0a:44:1b:ca:0b:0c:96:99:ce:86: b3:bb:b3:99:0a:b3:20:02:91:f2:0e:21:14:8c:7b:92:e8:2e: c7:c1:cc:20:8c:00:82:5b:d9:ce:a3:d6:24:82:f4:72:33:1c: 3a:99:0b:09:6d:1d:f9:81:e2:e2:5a:18:9d:b8:21:ff:7e:54: 4b:d2:82:be -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOvoud8X7GsFJO4f7i78JFNo20cQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM1OUMzNkFCODhBMzVDRUE2NEI0RUQwMTlGMkYwNTMx NzY3MjI5OTAeFw0yNjA1MDMwMjQzMTdaFw0yNzA1MDIwMjQ4MTdaMDMxMTAvBgNV BAMTKEI0MkNDODFEQTExQkNDRkExNDhEOTAzQjVCOTBBNjI3NTZBOUFGOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC942OcU1iFrT16oYGnfxqKrmfI rVi/zfcit4yY0mR+jcyV0alO4/7suMz2Bz1US1ID+UbezGnohKtKZ7yeH+v9T9QW hEhg9wUlPTCY1oJtoTNOPjHI1q9toHYzqELtdsXiRVvSwYkHTNeibGQG3VNG8sF4 +xKA9IX7ra65M4/ObPctUMRHTfH7cPA0jdZF/ekobcHQ0ED50jcXN2EX+iCRd4HI jTH8ZBx1D94OLsiLX5e6C+0LhceAhXE9Ws+O3dpyPklPaqiIp7v2Nxu78My+z/kf 2Fxh/2+/WUhUKENkJLN5Sb+n8wTFXKvEP3Ys+Y9YHJ+V8OY0iLZDXsTpVeOHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtCzIHaEbzPoUjZA7W5CmJ1apr5YwHwYDVR0j BBgwFoAU7FnDariKNc6mS07QGfLwUxdnIpkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODY0NTAwMzItNTQ5Mi00YTVhLTk0M2YtYmRiNDczMzQxMjMzLzAvRUM1OUMzNkFC ODhBMzVDRUE2NEI0RUQwMTlGMkYwNTMxNzY3MjI5OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQzU5QzM2QUI4OEEzNUNFQTY0QjRFRDAxOUYyRjA1MzE3Njcy Mjk5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2NDUwMDMyLTU0OTItNGE1YS05 NDNmLWJkYjQ3MzM0MTIzMy8wLzMyMzAzMjJlMzEzMjM3MmUzOTM2MmUzMDJmMzIz MDJkMzIzMDIwM2QzZTIwMzEzNzM5MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMp/YDANBgkqhkiG 9w0BAQsFAAOCAQEAh+0vi0Ni1QTAO7tpdFh3dnO673XBgoOmCzd8CX+zpHl67WXL XxmOoKrJ/6jK74JGuTbZKA7lIiwwLmS10PLaRs7Cge1UBesNNRajdO/Vv23Ur7Sb q0s1uo8ojbIgXLQfbAswBYiWsnlzU+N0z4cmzjcOckKCD5O/Tdc1ce3zzju/RLCO n8nRf7aFTX4DQdxhs5BWybkQ7K1Jqjakvg75+mBzhidtxDSCq/WSn6tkjMlKrE8s CKNpvjqZbUcKRBvKCwyWmc6Gs7uzmQqzIAKR8g4hFIx7kugux8HMIIwAglvZzqPW JIL0cjMcOpkLCW0d+YHi4loYnbgh/35US9KCvg== -----END CERTIFICATE-----Generated at Wed May 13 10:30:12 2026 by rpki-client