$ rpki-client -vvf rpki-rsync.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: LirwHaQXjXA15czzCoiWMa5imJInKS6BNFBusFBDU/c= Subject key identifier: B3:51:2D:83:26:DB:40:D9:B8:F9:B0:FE:E4:FB:DF:3B:50:24:90:00 Certificate issuer: /CN=930E7788E3DC483DC5F85C12B8BB0C4F41312BC1 Certificate serial: 22679A6E4EDE3255039C8BABBA47A16C6156390F Authority key identifier: 93:0E:77:88:E3:DC:48:3D:C5:F8:5C:12:B8:BB:0C:4F:41:31:2B:C1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/930E7788E3DC483DC5F85C12B8BB0C4F41312BC1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa Signing time: Sun 03 May 2026 02:58:45 +0000 ROA not before: Sun 03 May 2026 02:53:45 +0000 ROA not after: Sun 02 May 2027 02:58:45 +0000 asID: 38143 IP address blocks: 202.169.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/930E7788E3DC483DC5F85C12B8BB0C4F41312BC1.crl rsync://rpki-rsync.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/930E7788E3DC483DC5F85C12B8BB0C4F41312BC1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/930E7788E3DC483DC5F85C12B8BB0C4F41312BC1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:67:9a:6e:4e:de:32:55:03:9c:8b:ab:ba:47:a1:6c:61:56:39:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=930E7788E3DC483DC5F85C12B8BB0C4F41312BC1 Validity Not Before: May 3 02:53:45 2026 GMT Not After : May 2 02:58:45 2027 GMT Subject: CN=B3512D8326DB40D9B8F9B0FEE4FBDF3B50249000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:24:4f:7e:c0:30:8e:46:cb:45:98:aa:4b:45: e2:e2:b4:fd:c6:ca:48:a5:51:39:49:ae:fe:cc:25: 17:46:73:f5:ab:f5:a6:42:54:67:a6:71:05:2c:ae: d1:11:f1:1d:69:c5:90:cd:9c:ad:cc:f4:05:29:ec: 73:ba:af:3a:48:a0:9d:59:4c:b8:df:e5:7c:4e:e6: a8:80:28:2c:e6:c4:d4:0a:c1:02:c7:46:9f:68:37: d9:22:40:12:9f:65:b9:01:48:0b:e9:3b:b3:5b:c7: 28:09:5a:0e:76:29:d4:04:af:a5:3a:a6:2d:1b:36: 5f:ec:ca:22:0d:39:0d:9e:64:7d:64:c5:a5:0e:4b: 9c:52:56:5d:21:04:5c:d9:e2:1a:db:78:a5:9a:6a: bd:c9:e1:73:f2:72:e2:45:21:f2:06:32:49:0a:fa: b0:bf:43:4a:e3:7a:ea:96:02:25:ab:d0:c8:73:17: 80:32:aa:72:83:0e:fe:24:d7:96:9c:fe:e9:e1:17: 2c:e2:a6:99:30:88:16:62:32:6e:80:f3:97:f2:66: 6d:15:80:27:4b:05:46:af:75:e0:35:b1:dc:e3:fb: f4:05:4f:95:02:2e:53:11:d2:fc:66:f1:48:17:85: f0:f9:db:ed:67:fd:43:32:49:c2:df:5a:62:a2:16: 53:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:51:2D:83:26:DB:40:D9:B8:F9:B0:FE:E4:FB:DF:3B:50:24:90:00 X509v3 Authority Key Identifier: keyid:93:0E:77:88:E3:DC:48:3D:C5:F8:5C:12:B8:BB:0C:4F:41:31:2B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/930E7788E3DC483DC5F85C12B8BB0C4F41312BC1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/930E7788E3DC483DC5F85C12B8BB0C4F41312BC1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.249.0/24 Signature Algorithm: sha256WithRSAEncryption 22:21:7e:80:56:83:84:cb:83:d4:d2:49:52:58:b6:d1:3d:04: df:f2:a2:17:71:f9:67:0f:7d:bd:75:59:f0:e1:a3:91:2c:0e: 26:5e:ff:a8:cd:cf:6f:57:b8:e5:c6:6c:29:dc:65:0d:34:66: 58:f5:33:0a:fc:c9:47:f3:02:1a:7f:34:28:6b:e1:2c:03:75: 49:7b:a6:e1:87:0b:64:10:3d:f2:94:82:b5:05:8e:4f:72:b5: 7e:79:e9:af:d7:ac:6a:27:26:a0:a0:9c:9b:43:d5:70:51:ea: 8e:15:f4:bf:59:98:41:6b:8f:9d:b5:08:2a:26:9e:06:f6:18: 6a:6f:59:11:56:a2:1e:b7:fd:b1:1f:31:a7:ea:86:59:d6:91: 68:be:62:19:9a:21:16:01:dd:37:0d:20:16:72:7e:08:c3:10: 6d:58:19:33:f9:0e:e8:52:96:fe:52:3d:97:27:8c:42:43:34: 5d:2d:ea:41:9a:b0:31:49:b7:4b:60:a1:17:d7:eb:2d:77:7b: a7:08:e0:5b:5d:7d:07:99:a5:f6:82:92:ce:32:75:bc:81:e8: 3d:bf:2b:45:b2:7c:78:da:e3:a1:b0:cd:43:bc:3e:86:c8:4f: 24:03:59:8c:1f:95:c5:88:c6:a6:53:36:39:6d:3b:cd:1c:cc: 55:22:19:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUImeabk7eMlUDnIurukehbGFWOQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMwRTc3ODhFM0RDNDgzREM1Rjg1QzEyQjhCQjBDNEY0 MTMxMkJDMTAeFw0yNjA1MDMwMjUzNDVaFw0yNzA1MDIwMjU4NDVaMDMxMTAvBgNV BAMTKEIzNTEyRDgzMjZEQjQwRDlCOEY5QjBGRUU0RkJERjNCNTAyNDkwMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeJE9+wDCORstFmKpLReLitP3G ykilUTlJrv7MJRdGc/Wr9aZCVGemcQUsrtER8R1pxZDNnK3M9AUp7HO6rzpIoJ1Z TLjf5XxO5qiAKCzmxNQKwQLHRp9oN9kiQBKfZbkBSAvpO7NbxygJWg52KdQEr6U6 pi0bNl/syiINOQ2eZH1kxaUOS5xSVl0hBFzZ4hrbeKWaar3J4XPycuJFIfIGMkkK +rC/Q0rjeuqWAiWr0MhzF4AyqnKDDv4k15ac/unhFyzippkwiBZiMm6A85fyZm0V gCdLBUavdeA1sdzj+/QFT5UCLlMR0vxm8UgXhfD52+1n/UMyScLfWmKiFlPVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUs1EtgybbQNm4+bD+5PvfO1AkkAAwHwYDVR0j BBgwFoAUkw53iOPcSD3F+FwSuLsMT0ExK8EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWNiOWE0YjktNGFlMy00NjdhLWI5MTktNDEwZTE0MmI2NzlmLzAvOTMwRTc3ODhF M0RDNDgzREM1Rjg1QzEyQjhCQjBDNEY0MTMxMkJDMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MzBFNzc4OEUzREM0ODNEQzVGODVDMTJCOEJCMEM0RjQxMzEy QkMxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn5MA0GCSqG SIb3DQEBCwUAA4IBAQAiIX6AVoOEy4PU0klSWLbRPQTf8qIXcflnD329dVnw4aOR LA4mXv+ozc9vV7jlxmwp3GUNNGZY9TMK/MlH8wIafzQoa+EsA3VJe6bhhwtkED3y lIK1BY5PcrV+eemv16xqJyagoJybQ9VwUeqOFfS/WZhBa4+dtQgqJp4G9hhqb1kR VqIet/2xHzGn6oZZ1pFovmIZmiEWAd03DSAWcn4IwxBtWBkz+Q7oUpb+Uj2XJ4xC QzRdLepBmrAxSbdLYKEX1+std3unCOBbXX0HmaX2gpLOMnW8geg9vytFsnx42uOh sM1DvD6GyE8kA1mMH5XFiMamUzY5bTvNHMxVIhkb -----END CERTIFICATE-----Generated at Wed May 13 12:18:08 2026 by rpki-client