$ rpki-client -vvf rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3230322e36372e382e302f32312d3234203d3e203234313935.roa File: 3230322e36372e382e302f32312d3234203d3e203234313935.roa (raw, json) Hash identifier: vrQysHXSDOYVY5vPGR7dw/5TLODMWl8YiVoK5Waal3c= Subject key identifier: ED:0A:4B:33:76:A8:88:BC:AD:C0:A8:F1:28:7D:67:51:8F:3D:61:9D Certificate issuer: /CN=FB3286A3734F366E27845180AD985879147BEA5E Certificate serial: A9586DCE8C9FC260EA2388D2F3E169E609CF77 Authority key identifier: FB:32:86:A3:73:4F:36:6E:27:84:51:80:AD:98:58:79:14:7B:EA:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3230322e36372e382e302f32312d3234203d3e203234313935.roa Signing time: Sun 03 May 2026 02:48:36 +0000 ROA not before: Sun 03 May 2026 02:43:36 +0000 ROA not after: Sun 02 May 2027 02:48:36 +0000 asID: 24195 IP address blocks: 202.67.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.crl rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a9:58:6d:ce:8c:9f:c2:60:ea:23:88:d2:f3:e1:69:e6:09:cf:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB3286A3734F366E27845180AD985879147BEA5E Validity Not Before: May 3 02:43:36 2026 GMT Not After : May 2 02:48:36 2027 GMT Subject: CN=ED0A4B3376A888BCADC0A8F1287D67518F3D619D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2a:a0:00:b8:7e:92:59:27:1c:ae:44:89:71: 17:d2:94:09:fb:be:80:66:7f:8b:e6:53:1a:80:5d: 76:f9:f6:c7:e1:37:ce:9c:45:c5:83:61:c5:0b:98: e4:6d:2b:47:0f:c9:fe:14:3b:f2:f9:61:cf:1a:ff: 96:ef:c4:fa:48:09:9b:4a:06:96:ba:f6:e1:ec:f2: 50:ad:8e:e0:ac:b8:2a:92:6c:6a:b7:8e:d8:ee:8e: 70:7d:51:01:f7:59:e5:9a:08:aa:a2:6b:46:99:ac: b8:06:20:be:34:5a:e5:e4:de:44:b4:85:5b:4d:28: 05:c5:ab:13:bc:b1:a5:88:9b:fe:e1:21:63:4e:e8: e6:09:ad:94:a1:cd:c7:10:6e:f3:b0:56:37:b8:cf: 4f:26:55:3f:37:ff:2f:a0:c0:78:16:2b:ca:d1:7f: 7a:98:88:e9:e0:5d:be:f9:38:0f:52:22:8f:50:4b: 60:56:aa:43:37:73:03:e1:3b:08:45:3e:e9:d6:d6: 96:46:ad:11:84:69:56:95:82:93:1d:99:44:6e:9d: e0:4f:84:49:ad:08:76:ee:89:28:fc:4d:db:19:b0: b6:e4:5a:b0:3e:20:db:7f:fe:7c:07:ea:79:3c:c7: 95:56:1a:e8:2d:33:e5:1a:16:21:1e:5f:44:3d:75: 3a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:0A:4B:33:76:A8:88:BC:AD:C0:A8:F1:28:7D:67:51:8F:3D:61:9D X509v3 Authority Key Identifier: keyid:FB:32:86:A3:73:4F:36:6E:27:84:51:80:AD:98:58:79:14:7B:EA:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3230322e36372e382e302f32312d3234203d3e203234313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.67.8.0/21 Signature Algorithm: sha256WithRSAEncryption 75:90:8c:90:bd:3f:c0:9a:2b:bd:7f:fb:ac:e0:9a:f1:71:68: 22:e9:c9:14:b2:cd:90:ad:6a:e6:fb:04:e0:0c:ba:4e:a3:0c: e4:8f:38:f6:8a:f2:ca:bb:5f:d3:12:73:d4:88:7b:a1:4e:34: 51:d8:d9:1d:7d:3b:05:9b:f6:cc:bc:91:45:0c:c1:56:6a:ca: 0b:33:11:b9:9c:fb:3a:1e:09:9d:95:1a:2f:51:28:27:95:17: f1:1a:a1:6b:fe:2a:da:83:a3:b3:2a:ea:04:cd:1c:8a:88:70: fa:a7:e0:fd:ef:e0:94:a9:71:25:21:31:58:f5:ce:c1:6a:53: 05:d8:af:27:4d:71:58:07:e5:56:25:cf:6b:09:fe:80:6e:29: f2:46:f0:42:39:d0:d8:38:e3:f0:46:b7:6c:9b:d5:25:0a:b0: fc:29:6e:94:23:f0:26:d2:77:ff:13:14:e4:08:29:97:23:13: 77:1e:3d:15:92:33:02:a6:39:fc:11:09:c1:5a:e2:b3:33:81: 41:70:0b:73:4b:5b:23:d6:6f:d4:db:50:11:d0:99:71:50:d2: 5a:8b:2f:68:dc:48:25:e7:e2:80:65:5a:2b:80:a0:6c:26:5c: 72:85:fc:24:58:64:ae:a8:c3:03:d6:a4:cf:c2:76:0d:bb:49: cb:f1:ca:78 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUAKlYbc6Mn8Jg6iOI0vPhaeYJz3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIzMjg2QTM3MzRGMzY2RTI3ODQ1MTgwQUQ5ODU4Nzkx NDdCRUE1RTAeFw0yNjA1MDMwMjQzMzZaFw0yNzA1MDIwMjQ4MzZaMDMxMTAvBgNV BAMTKEVEMEE0QjMzNzZBODg4QkNBREMwQThGMTI4N0Q2NzUxOEYzRDYxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWKqAAuH6SWSccrkSJcRfSlAn7 voBmf4vmUxqAXXb59sfhN86cRcWDYcULmORtK0cPyf4UO/L5Yc8a/5bvxPpICZtK Bpa69uHs8lCtjuCsuCqSbGq3jtjujnB9UQH3WeWaCKqia0aZrLgGIL40WuXk3kS0 hVtNKAXFqxO8saWIm/7hIWNO6OYJrZShzccQbvOwVje4z08mVT83/y+gwHgWK8rR f3qYiOngXb75OA9SIo9QS2BWqkM3cwPhOwhFPunW1pZGrRGEaVaVgpMdmURuneBP hEmtCHbuiSj8TdsZsLbkWrA+INt//nwH6nk8x5VWGugtM+UaFiEeX0Q9dToHAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU7QpLM3aoiLytwKjxKH1nUY89YZ0wHwYDVR0j BBgwFoAU+zKGo3NPNm4nhFGArZhYeRR76l4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODc5MmE0Y2QtZGJhYy00M2FjLTgwNjAtMmU4ZDQyZWFlNjU1LzAvRkIzMjg2QTM3 MzRGMzY2RTI3ODQ1MTgwQUQ5ODU4NzkxNDdCRUE1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjMyODZBMzczNEYzNjZFMjc4NDUxODBBRDk4NTg3OTE0N0JF QTVFLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODc5MmE0Y2QtZGJhYy00M2FjLTgw NjAtMmU4ZDQyZWFlNjU1LzAvMzIzMDMyMmUzNjM3MmUzODJlMzAyZjMyMzEyZDMy MzQyMDNkM2UyMDMyMzQzMTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKQwgwDQYJKoZIhvcNAQEL BQADggEBAHWQjJC9P8CaK71/+6zgmvFxaCLpyRSyzZCtaub7BOAMuk6jDOSPOPaK 8sq7X9MSc9SIe6FONFHY2R19OwWb9sy8kUUMwVZqygszEbmc+zoeCZ2VGi9RKCeV F/EaoWv+KtqDo7Mq6gTNHIqIcPqn4P3v4JSpcSUhMVj1zsFqUwXYrydNcVgH5VYl z2sJ/oBuKfJG8EI50Ng44/BGt2yb1SUKsPwpbpQj8CbSd/8TFOQIKZcjE3cePRWS MwKmOfwRCcFa4rMzgUFwC3NLWyPWb9TbUBHQmXFQ0lqLL2jcSCXn4oBlWiuAoGwm XHKF/CRYZK6owwPWpM/Cdg27Scvxyng= -----END CERTIFICATE-----Generated at Tue May 12 22:56:19 2026 by rpki-client