$ rpki-client -vvf rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230332e3137342e382e302f32312d3234203d3e203234353233.roa File: 3230332e3137342e382e302f32312d3234203d3e203234353233.roa (raw, json) Hash identifier: jRyjSLa+6p5f7abgpIfoPXK67MLqzEp1oTDyh4FJNKU= Subject key identifier: D2:18:73:31:0F:11:A0:2A:16:ED:EC:2A:A1:59:E1:FD:98:16:B5:12 Certificate issuer: /CN=9541F7A7495AA8918A6FE15016CB396EF2733922 Certificate serial: 5499AB73F649AA0ECD8050AA3E1C210D61CA563D Authority key identifier: 95:41:F7:A7:49:5A:A8:91:8A:6F:E1:50:16:CB:39:6E:F2:73:39:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230332e3137342e382e302f32312d3234203d3e203234353233.roa Signing time: Sun 03 May 2026 02:49:52 +0000 ROA not before: Sun 03 May 2026 02:44:52 +0000 ROA not after: Sun 02 May 2027 02:49:52 +0000 asID: 24523 IP address blocks: 203.174.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.crl rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:99:ab:73:f6:49:aa:0e:cd:80:50:aa:3e:1c:21:0d:61:ca:56:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9541F7A7495AA8918A6FE15016CB396EF2733922 Validity Not Before: May 3 02:44:52 2026 GMT Not After : May 2 02:49:52 2027 GMT Subject: CN=D21873310F11A02A16EDEC2AA159E1FD9816B512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7b:af:4f:99:37:ab:59:75:7a:21:93:e9:cf: 7f:99:4a:ed:26:9b:79:84:c8:14:5c:93:e1:f6:e1: 61:01:51:69:71:67:94:fd:85:8e:14:c2:ad:7f:34: e6:2e:5e:3f:97:02:ad:88:c1:a8:bd:70:51:0c:14: 0c:52:9b:15:06:5a:66:8b:89:12:b6:86:2d:d1:5c: 2a:b0:a4:38:23:12:5a:4a:eb:5f:66:7f:2d:19:9f: 97:f7:b0:db:69:15:c8:ea:d8:01:7f:a1:e4:7b:ba: 27:09:42:c6:07:45:f2:8d:81:13:e5:35:71:8c:23: fb:ff:47:86:e2:fb:75:4d:ac:cc:85:e1:aa:a1:fe: d1:86:8f:88:10:73:42:a0:51:d5:ba:29:b5:2c:73: f8:55:82:fe:9b:31:fc:08:90:1a:9c:ff:0b:1d:07: ff:8f:28:ce:b3:39:66:23:9f:64:5e:7a:15:13:9b: cc:08:40:83:2e:6d:75:5f:c9:d7:af:60:27:b3:7b: 4a:83:2b:23:29:1f:df:c1:7a:39:53:c6:15:7d:24: 59:7c:c1:36:b3:41:63:c0:00:91:4c:72:28:48:79: 33:7a:b0:0c:21:85:61:95:4f:eb:42:14:0a:ee:c6: 48:df:69:ce:d5:4d:46:df:cd:da:bd:2f:24:55:92: 2c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:18:73:31:0F:11:A0:2A:16:ED:EC:2A:A1:59:E1:FD:98:16:B5:12 X509v3 Authority Key Identifier: keyid:95:41:F7:A7:49:5A:A8:91:8A:6F:E1:50:16:CB:39:6E:F2:73:39:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230332e3137342e382e302f32312d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.174.8.0/21 Signature Algorithm: sha256WithRSAEncryption 89:3a:78:3a:98:7e:4d:fe:71:5f:6c:ff:f1:ba:f0:eb:29:fc: b6:ee:6e:77:86:ef:f1:8b:24:c0:b9:55:14:a6:58:35:00:fe: 2d:4a:c9:35:2a:d4:a7:16:27:bc:4d:bc:23:2a:61:e5:c2:97: be:f1:1f:90:1f:d5:d0:53:13:bf:7f:b5:01:12:a7:9f:3f:28: e4:d7:04:73:d4:99:92:0c:ad:1b:27:9f:8a:13:66:a8:ec:65: a2:8d:0a:c9:06:77:1b:37:cb:10:45:88:f0:85:77:01:d1:cd: b4:a3:23:e4:a8:61:b8:04:9e:70:53:3b:6f:80:ea:ac:d0:cb: a3:75:58:18:3d:66:aa:42:d5:94:73:05:ed:d6:d8:ab:b2:9c: 9e:19:94:32:92:bc:e7:fa:bd:44:32:ce:bd:18:45:ad:41:6d: 7b:b7:16:8f:e3:53:7b:b2:b5:94:4c:fb:10:62:33:cc:fc:dc: 4e:ab:46:ea:1a:79:15:68:e8:8a:93:80:b2:d1:a6:89:8d:9c: 9c:8b:9d:61:00:b9:ed:12:ac:f5:a5:e3:9d:23:9e:0c:32:8d: 9f:14:8c:0d:41:cc:85:d8:1a:57:fd:4f:45:0a:09:2c:28:95: 9e:38:6a:5e:9b:23:53:c2:37:f0:4a:61:86:48:f7:ab:27:3d: 5b:66:d9:73 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVJmrc/ZJqg7NgFCqPhwhDWHKVj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU0MUY3QTc0OTVBQTg5MThBNkZFMTUwMTZDQjM5NkVG MjczMzkyMjAeFw0yNjA1MDMwMjQ0NTJaFw0yNzA1MDIwMjQ5NTJaMDMxMTAvBgNV BAMTKEQyMTg3MzMxMEYxMUEwMkExNkVERUMyQUExNTlFMUZEOTgxNkI1MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCde69PmTerWXV6IZPpz3+ZSu0m m3mEyBRck+H24WEBUWlxZ5T9hY4Uwq1/NOYuXj+XAq2Iwai9cFEMFAxSmxUGWmaL iRK2hi3RXCqwpDgjElpK619mfy0Zn5f3sNtpFcjq2AF/oeR7uicJQsYHRfKNgRPl NXGMI/v/R4bi+3VNrMyF4aqh/tGGj4gQc0KgUdW6KbUsc/hVgv6bMfwIkBqc/wsd B/+PKM6zOWYjn2ReehUTm8wIQIMubXVfydevYCeze0qDKyMpH9/BejlTxhV9JFl8 wTazQWPAAJFMcihIeTN6sAwhhWGVT+tCFAruxkjfac7VTUbfzdq9LyRVkiy3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0hhzMQ8RoCoW7ewqoVnh/ZgWtRIwHwYDVR0j BBgwFoAUlUH3p0laqJGKb+FQFss5bvJzOSIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGM2Njc3NjktODBkYy00MDkzLWI1ZjctZGZlN2M1NzIwNDg2LzAvOTU0MUY3QTc0 OTVBQTg5MThBNkZFMTUwMTZDQjM5NkVGMjczMzkyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTQxRjdBNzQ5NUFBODkxOEE2RkUxNTAxNkNCMzk2RUYyNzMz OTIyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzMyMzAzMzJlMzEzNzM0MmUzODJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPLrggwDQYJKoZIhvcN AQELBQADggEBAIk6eDqYfk3+cV9s//G68Osp/LbubneG7/GLJMC5VRSmWDUA/i1K yTUq1KcWJ7xNvCMqYeXCl77xH5Af1dBTE79/tQESp58/KOTXBHPUmZIMrRsnn4oT ZqjsZaKNCskGdxs3yxBFiPCFdwHRzbSjI+SoYbgEnnBTO2+A6qzQy6N1WBg9ZqpC 1ZRzBe3W2KuynJ4ZlDKSvOf6vUQyzr0YRa1BbXu3Fo/jU3uytZRM+xBiM8z83E6r RuoaeRVo6IqTgLLRpomNnJyLnWEAue0SrPWl450jngwyjZ8UjA1BzIXYGlf9T0UK CSwolZ44al6bI1PCN/BKYYZI96snPVtm2XM= -----END CERTIFICATE-----Generated at Wed May 13 09:15:08 2026 by rpki-client