$ rpki-client -vvf rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa File: 3230322e392e36392e302f32342d3234203d3e203436303437.roa (raw, json) Hash identifier: KpKv9TSmOPjIVOCKaqlmxpQdih6hnZfQUxUapAqUQIw= Subject key identifier: C2:E0:B6:EA:F0:38:A8:F7:BD:7A:C7:82:F6:0D:6A:98:FA:A7:E0:78 Certificate issuer: /CN=855FB1394E274E698967BBB475F8817B92100FB4 Certificate serial: 57181BBB9BAC70072D974B43E3F16EDFAB201E0D Authority key identifier: 85:5F:B1:39:4E:27:4E:69:89:67:BB:B4:75:F8:81:7B:92:10:0F:B4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/855FB1394E274E698967BBB475F8817B92100FB4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa Signing time: Sun 03 May 2026 02:54:54 +0000 ROA not before: Sun 03 May 2026 02:49:54 +0000 ROA not after: Sun 02 May 2027 02:54:54 +0000 asID: 46047 IP address blocks: 202.9.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/855FB1394E274E698967BBB475F8817B92100FB4.crl rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/855FB1394E274E698967BBB475F8817B92100FB4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/855FB1394E274E698967BBB475F8817B92100FB4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:18:1b:bb:9b:ac:70:07:2d:97:4b:43:e3:f1:6e:df:ab:20:1e:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=855FB1394E274E698967BBB475F8817B92100FB4 Validity Not Before: May 3 02:49:54 2026 GMT Not After : May 2 02:54:54 2027 GMT Subject: CN=C2E0B6EAF038A8F7BD7AC782F60D6A98FAA7E078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6f:02:07:18:4b:43:eb:e3:f1:62:8a:1f:cf: a9:1c:fe:b6:13:72:ad:0c:7b:fd:ad:ff:04:45:5f: 1a:ff:f8:03:32:be:18:63:f1:81:0d:a3:c7:3f:7e: 2f:2d:a4:57:10:53:7a:76:2d:52:c9:d9:84:48:ee: d9:b2:45:35:79:e5:9a:14:8c:82:03:62:ec:3f:f3: 5c:77:ba:41:e7:bb:de:ec:8d:8e:8f:bb:6a:3b:eb: 5e:6d:b1:47:f5:ea:be:06:12:b6:30:3b:3b:d0:be: 5a:dc:e6:9f:4e:2a:10:f1:0b:c4:a8:3a:3b:0a:eb: 79:c7:ff:79:ad:51:fb:07:e6:5a:f2:03:50:49:9b: 40:34:78:e2:4a:5c:c3:61:b3:c5:8e:21:65:fb:f2: be:f6:c8:f0:79:c1:22:64:1e:4b:e8:cc:15:73:d7: f3:af:fe:22:07:28:96:15:e8:ec:2d:a8:42:c1:48: 91:76:f1:02:91:2d:3e:a9:5e:fc:22:0c:99:76:c6: a9:30:79:57:dd:e5:e8:ed:f7:ad:a4:fc:ad:c8:4b: d2:df:f4:97:5c:83:39:ad:88:86:df:5b:85:f1:99: 45:29:59:8c:2d:22:25:8b:65:7a:e9:32:0f:77:be: a7:03:04:6d:47:09:82:e7:be:59:89:40:24:4c:9d: fb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E0:B6:EA:F0:38:A8:F7:BD:7A:C7:82:F6:0D:6A:98:FA:A7:E0:78 X509v3 Authority Key Identifier: keyid:85:5F:B1:39:4E:27:4E:69:89:67:BB:B4:75:F8:81:7B:92:10:0F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/855FB1394E274E698967BBB475F8817B92100FB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/855FB1394E274E698967BBB475F8817B92100FB4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.9.69.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:54:9b:24:18:18:0d:13:63:e1:11:ba:80:99:28:11:43:16: eb:e0:8a:ea:66:3b:99:28:10:3e:6f:7e:9d:26:c4:58:ed:d8: 7f:34:16:39:79:5d:0f:eb:d7:ad:dd:89:1e:28:95:d8:1b:cb: 11:d6:e4:e0:08:87:4f:bb:b5:c8:d6:14:06:1b:de:d0:2c:3d: 15:28:89:66:a9:bd:c5:17:b3:34:e8:90:0b:eb:53:c7:4a:9a: 48:cc:f9:86:1d:26:be:11:1d:46:db:06:1e:f1:da:4e:32:de: 5f:19:2f:ac:08:2e:74:f0:b1:7f:25:e7:20:fd:15:fd:da:9f: 14:57:c5:e1:5e:55:97:25:e1:f5:35:6f:30:ca:33:c5:d0:a9: c9:5d:7b:53:7e:64:0f:5d:cd:94:a8:09:da:44:66:37:0e:27: 42:a4:5a:1d:f7:38:0f:e4:ff:20:9a:b1:da:44:94:1b:90:f6: 2a:9d:6a:85:f7:dd:ae:88:e5:e5:aa:db:5f:dd:ba:61:9a:58: 9c:fd:c3:50:35:34:0c:00:0c:09:9e:3b:99:0d:9a:1a:e1:90: 43:ed:a1:e1:d7:32:7c:5a:75:f8:13:1c:33:d2:da:5e:3d:8a: b6:e5:0b:6e:81:8c:c8:d2:7d:ad:cb:f1:5c:4f:3c:ce:12:19: 75:26:c8:35 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUVxgbu5uscActl0tD4/Fu36sgHg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU1RkIxMzk0RTI3NEU2OTg5NjdCQkI0NzVGODgxN0I5 MjEwMEZCNDAeFw0yNjA1MDMwMjQ5NTRaFw0yNzA1MDIwMjU0NTRaMDMxMTAvBgNV BAMTKEMyRTBCNkVBRjAzOEE4RjdCRDdBQzc4MkY2MEQ2QTk4RkFBN0UwNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdbwIHGEtD6+PxYoofz6kc/rYT cq0Me/2t/wRFXxr/+AMyvhhj8YENo8c/fi8tpFcQU3p2LVLJ2YRI7tmyRTV55ZoU jIIDYuw/81x3ukHnu97sjY6Pu2o7615tsUf16r4GErYwOzvQvlrc5p9OKhDxC8So OjsK63nH/3mtUfsH5lryA1BJm0A0eOJKXMNhs8WOIWX78r72yPB5wSJkHkvozBVz 1/Ov/iIHKJYV6OwtqELBSJF28QKRLT6pXvwiDJl2xqkweVfd5ejt962k/K3IS9Lf 9JdcgzmtiIbfW4XxmUUpWYwtIiWLZXrpMg93vqcDBG1HCYLnvlmJQCRMnfvlAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUwuC26vA4qPe9eseC9g1qmPqn4HgwHwYDVR0j BBgwFoAUhV+xOU4nTmmJZ7u0dfiBe5IQD7QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWUxMjljOTQtYzVhNi00ZGQ0LWIzNGEtN2UzNTNkZTZjZTgxLzAvODU1RkIxMzk0 RTI3NEU2OTg5NjdCQkI0NzVGODgxN0I5MjEwMEZCNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTVGQjEzOTRFMjc0RTY5ODk2N0JCQjQ3NUY4ODE3QjkyMTAw RkI0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOWUxMjljOTQtYzVhNi00ZGQ0LWIz NGEtN2UzNTNkZTZjZTgxLzAvMzIzMDMyMmUzOTJlMzYzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCUUwDQYJKoZIhvcNAQEL BQADggEBABxUmyQYGA0TY+ERuoCZKBFDFuvgiupmO5koED5vfp0mxFjt2H80Fjl5 XQ/r163diR4oldgbyxHW5OAIh0+7tcjWFAYb3tAsPRUoiWapvcUXszTokAvrU8dK mkjM+YYdJr4RHUbbBh7x2k4y3l8ZL6wILnTwsX8l5yD9Ff3anxRXxeFeVZcl4fU1 bzDKM8XQqclde1N+ZA9dzZSoCdpEZjcOJ0KkWh33OA/k/yCasdpElBuQ9iqdaoX3 3a6I5eWq21/dumGaWJz9w1A1NAwADAmeO5kNmhrhkEPtoeHXMnxadfgTHDPS2l49 irblC26BjMjSfa3L8VxPPM4SGXUmyDU= -----END CERTIFICATE-----Generated at Wed May 13 06:48:54 2026 by rpki-client