$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa File: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: lsGPNQll8lHqimmyJl12NLTMwKg8Yil8iz0vwp/l9l4= Subject key identifier: 24:46:EA:2E:97:62:03:AD:2E:40:83:7A:A5:2F:C7:75:9A:8B:0A:7B Certificate issuer: /CN=59406D6B894D2596F895003DEE4D8D96CC43B39F Certificate serial: 28034A31B2E33DB52DACF0192A130EADBB26510B Authority key identifier: 59:40:6D:6B:89:4D:25:96:F8:95:00:3D:EE:4D:8D:96:CC:43:B3:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/59406D6B894D2596F895003DEE4D8D96CC43B39F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa Signing time: Sun 03 May 2026 03:02:31 +0000 ROA not before: Sun 03 May 2026 02:57:31 +0000 ROA not after: Sun 02 May 2027 03:02:31 +0000 asID: 46052 IP address blocks: 202.9.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/59406D6B894D2596F895003DEE4D8D96CC43B39F.crl rsync://rpki-rsync.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/59406D6B894D2596F895003DEE4D8D96CC43B39F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/59406D6B894D2596F895003DEE4D8D96CC43B39F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:03:4a:31:b2:e3:3d:b5:2d:ac:f0:19:2a:13:0e:ad:bb:26:51:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59406D6B894D2596F895003DEE4D8D96CC43B39F Validity Not Before: May 3 02:57:31 2026 GMT Not After : May 2 03:02:31 2027 GMT Subject: CN=2446EA2E976203AD2E40837AA52FC7759A8B0A7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:55:60:a6:e0:4f:69:93:48:26:58:5f:94:4c: cd:d0:a9:03:65:66:eb:81:5c:b5:1a:41:31:3d:c0: cc:f2:13:3d:9e:82:70:38:b7:e7:ad:7b:ee:df:ca: 18:86:7f:fd:29:d0:c5:21:fc:c6:01:de:16:04:81: eb:a0:d4:8e:74:b7:35:a3:e7:4d:20:6b:ee:d1:fb: 53:cd:3a:83:60:7b:d2:50:ca:72:bd:6e:f0:1d:b2: fe:78:36:f0:eb:5d:f3:91:a2:dc:e4:f9:20:52:91: 64:0c:0b:38:29:53:75:da:39:73:dc:ba:27:e3:8f: 8e:e8:0c:b0:52:1b:0c:fb:fa:6a:76:12:e6:b6:fa: fd:df:33:05:72:51:da:84:54:72:49:ce:da:dd:e6: 71:71:ae:85:79:8b:b8:0a:c2:90:a7:2a:fc:14:51: ac:4d:d8:4e:28:6a:0f:51:ea:7d:78:23:f5:8d:24: 32:16:a0:28:87:b5:eb:86:4a:dd:1e:29:5e:f1:7b: 05:0d:79:59:05:a4:47:b1:37:10:c8:b1:cf:b4:d6: 74:cc:02:54:d6:c2:c1:2f:12:c3:0d:b4:2e:66:c3: b2:e4:27:33:65:23:ea:82:9f:27:68:58:f2:f0:d8: ca:7d:8f:f2:a7:f8:fc:35:41:6a:30:cb:6e:4a:33: c7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:46:EA:2E:97:62:03:AD:2E:40:83:7A:A5:2F:C7:75:9A:8B:0A:7B X509v3 Authority Key Identifier: keyid:59:40:6D:6B:89:4D:25:96:F8:95:00:3D:EE:4D:8D:96:CC:43:B3:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/59406D6B894D2596F895003DEE4D8D96CC43B39F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/59406D6B894D2596F895003DEE4D8D96CC43B39F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.9.85.0/24 Signature Algorithm: sha256WithRSAEncryption 13:f4:03:c7:72:28:9e:8b:24:19:bb:77:f1:c7:46:78:13:f6: 9c:3a:6b:45:05:23:60:ef:8f:5f:d2:b5:53:bc:00:80:53:65: 99:d4:a9:40:85:dd:13:eb:03:2a:5e:9b:ef:3b:28:8a:87:b5: 23:52:23:e5:ae:45:b7:82:71:c1:b2:b5:75:e2:3c:e6:07:4f: b1:86:a1:08:70:31:89:20:16:bb:84:3b:5a:5a:bf:36:ce:3c: 6e:95:27:70:66:5d:1a:e7:a5:ae:fe:aa:5d:a7:5e:93:1f:7f: 02:68:3b:58:bf:c2:7b:0b:67:f6:c4:11:c2:4a:ff:b4:e2:8c: 08:58:d3:cf:dc:b8:bf:a8:22:8a:2d:e8:89:74:5e:d6:0d:88: 27:af:52:21:eb:7f:17:a4:b4:3f:b1:f9:cb:21:44:6a:4c:3b: fd:90:34:63:20:47:81:4c:a2:05:72:41:02:5b:af:fb:c5:1e: 32:f3:92:ee:8f:cb:e7:0e:d3:b4:f9:ac:5b:3c:df:f7:2e:d7: 47:91:f8:b4:e6:c6:76:06:0f:13:9c:62:a2:b2:f6:5b:49:8e: 70:56:56:52:c8:d6:4d:6e:f8:9a:ab:00:6e:66:79:f2:9c:9c: 73:83:57:63:4e:ff:35:0d:6d:8f:0e:a4:ba:c8:d3:92:88:11: a4:20:f7:37 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUKANKMbLjPbUtrPAZKhMOrbsmUQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTk0MDZENkI4OTREMjU5NkY4OTUwMDNERUU0RDhEOTZD QzQzQjM5RjAeFw0yNjA1MDMwMjU3MzFaFw0yNzA1MDIwMzAyMzFaMDMxMTAvBgNV BAMTKDI0NDZFQTJFOTc2MjAzQUQyRTQwODM3QUE1MkZDNzc1OUE4QjBBN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbVWCm4E9pk0gmWF+UTM3QqQNl ZuuBXLUaQTE9wMzyEz2egnA4t+ete+7fyhiGf/0p0MUh/MYB3hYEgeug1I50tzWj 500ga+7R+1PNOoNge9JQynK9bvAdsv54NvDrXfORotzk+SBSkWQMCzgpU3XaOXPc uifjj47oDLBSGwz7+mp2Eua2+v3fMwVyUdqEVHJJztrd5nFxroV5i7gKwpCnKvwU UaxN2E4oag9R6n14I/WNJDIWoCiHteuGSt0eKV7xewUNeVkFpEexNxDIsc+01nTM AlTWwsEvEsMNtC5mw7LkJzNlI+qCnydoWPLw2Mp9j/Kn+Pw1QWowy25KM8c1AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUJEbqLpdiA60uQIN6pS/HdZqLCnswHwYDVR0j BBgwFoAUWUBta4lNJZb4lQA97k2NlsxDs58wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQxZWU1ZTItMzM4Yy00ZDIwLTgwN2UtZTUwYjc1NTgzZGI4LzAvNTk0MDZENkI4 OTREMjU5NkY4OTUwMDNERUU0RDhEOTZDQzQzQjM5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81OTQwNkQ2Qjg5NEQyNTk2Rjg5NTAwM0RFRTREOEQ5NkNDNDNC MzlGLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvMzIzMDMyMmUzOTJlMzgzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCVUwDQYJKoZIhvcNAQEL BQADggEBABP0A8dyKJ6LJBm7d/HHRngT9pw6a0UFI2Dvj1/StVO8AIBTZZnUqUCF 3RPrAypem+87KIqHtSNSI+WuRbeCccGytXXiPOYHT7GGoQhwMYkgFruEO1pavzbO PG6VJ3BmXRrnpa7+ql2nXpMffwJoO1i/wnsLZ/bEEcJK/7TijAhY08/cuL+oIoot 6Il0XtYNiCevUiHrfxektD+x+cshRGpMO/2QNGMgR4FMogVyQQJbr/vFHjLzku6P y+cO07T5rFs83/cu10eR+LTmxnYGDxOcYqKy9ltJjnBWVlLI1k1u+JqrAG5mefKc nHODV2NO/zUNbY8OpLrI05KIEaQg9zc= -----END CERTIFICATE-----Generated at Wed May 13 00:21:27 2026 by rpki-client