$ rpki-client -vvf rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa File: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (raw, json) Hash identifier: o6UES+tryYmpIwssyMXnmFCcFcBThAbWf6TdKlMd5ls= Subject key identifier: E8:71:EB:6F:C8:5A:0A:F5:21:61:AA:25:F7:AA:C1:87:74:70:94:B2 Certificate issuer: /CN=3FCFF090C792013040BE1067688C2CB7E3E88FAC Certificate serial: 0E32144A87F5945E41A14ACEEFF0CFE3F8B8BE84 Authority key identifier: 3F:CF:F0:90:C7:92:01:30:40:BE:10:67:68:8C:2C:B7:E3:E8:8F:AC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCFF090C792013040BE1067688C2CB7E3E88FAC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa Signing time: Sun 03 May 2026 03:02:43 +0000 ROA not before: Sun 03 May 2026 02:57:43 +0000 ROA not after: Sun 02 May 2027 03:02:43 +0000 asID: 136119 IP address blocks: 202.10.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3FCFF090C792013040BE1067688C2CB7E3E88FAC.crl rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3FCFF090C792013040BE1067688C2CB7E3E88FAC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCFF090C792013040BE1067688C2CB7E3E88FAC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:32:14:4a:87:f5:94:5e:41:a1:4a:ce:ef:f0:cf:e3:f8:b8:be:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FCFF090C792013040BE1067688C2CB7E3E88FAC Validity Not Before: May 3 02:57:43 2026 GMT Not After : May 2 03:02:43 2027 GMT Subject: CN=E871EB6FC85A0AF52161AA25F7AAC187747094B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:da:58:31:1a:88:e0:3b:b0:23:27:a1:75: f6:3a:89:91:0a:dd:bf:bc:8c:ce:b0:b7:56:fa:54: 10:69:d8:e8:c9:32:34:86:c2:c3:4c:95:1b:4a:9f: 1a:30:5f:1a:9a:b1:66:6c:16:6d:4a:0a:db:7f:d8: 95:59:66:f8:69:5e:ac:dc:29:49:31:ff:8f:06:7c: 6a:f1:3e:d2:2f:9f:dd:8e:24:be:00:ec:46:2f:d3: 55:77:7b:d7:53:ce:a4:52:dd:d1:ad:11:3e:fe:b1: e1:d8:8e:35:04:c1:44:b1:68:55:6e:5f:b2:b7:ea: 49:f8:ee:f7:53:43:2a:2e:45:d9:bb:b2:dd:59:5f: db:f1:b0:c1:cf:91:2d:3c:69:c3:d3:17:d1:90:20: 99:0f:60:71:1f:0f:9a:99:92:34:3e:7a:eb:da:76: b4:8d:67:11:83:bc:cb:dd:0d:a9:a1:41:ad:1e:41: 38:71:a7:47:27:80:0b:c2:90:a2:f4:f3:3e:3a:b8: 1e:8e:61:f7:24:aa:f4:f6:cd:ba:06:18:7d:0e:c0: 4c:b2:a8:b4:cc:ce:5f:24:71:81:49:bc:bd:db:b1: f8:6c:c6:23:26:82:74:c1:c0:a1:c7:4d:77:68:ce: 04:38:84:b9:29:ca:fd:6c:a5:b3:ab:da:0a:28:22: ef:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:71:EB:6F:C8:5A:0A:F5:21:61:AA:25:F7:AA:C1:87:74:70:94:B2 X509v3 Authority Key Identifier: keyid:3F:CF:F0:90:C7:92:01:30:40:BE:10:67:68:8C:2C:B7:E3:E8:8F:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3FCFF090C792013040BE1067688C2CB7E3E88FAC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCFF090C792013040BE1067688C2CB7E3E88FAC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.58.0/24 Signature Algorithm: sha256WithRSAEncryption b7:f9:a6:8d:60:c5:b7:92:63:e7:66:fc:ef:5c:cf:56:84:ff: d6:12:68:a8:b2:a2:0f:b9:b3:38:e6:e1:37:b1:e2:62:1c:8b: 40:f6:19:16:eb:49:ac:10:1c:26:50:d9:01:cf:c4:7a:bc:83: 64:90:a3:32:45:30:fb:11:16:e8:4d:19:d2:64:5e:11:1c:e5: 55:05:f7:7a:16:f6:4f:d5:2f:16:c1:dd:74:03:73:ed:64:a2: b5:d9:d0:01:24:16:e8:6c:63:d6:2e:20:e1:55:68:61:5c:3d: 49:61:6f:46:99:43:36:79:7e:b1:54:f0:f6:ae:68:35:cf:d5: 59:e7:bb:2e:41:b1:6e:c3:e7:59:eb:d1:42:2c:7a:ef:3e:ab: 73:96:60:b3:b6:8f:40:43:79:d1:5b:d8:cc:30:38:6b:c6:48: 52:01:f5:10:75:c5:bd:44:be:81:79:ad:b5:c6:29:a9:aa:31: f7:67:0c:9e:f0:45:d3:8b:a9:59:b1:fd:72:e7:3b:b4:cc:fb: 8d:f5:49:34:7f:bb:1e:e4:46:a0:8f:b7:c0:42:42:0a:59:68: 3b:4c:a5:3d:88:80:5c:22:f2:60:30:4b:58:41:0a:9e:be:4f: 3c:21:bb:f3:61:75:5b:f0:e9:67:09:98:8d:45:50:b2:87:cc: b8:97:aa:81 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDjIUSof1lF5BoUrO7/DP4/i4voQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZDRkYwOTBDNzkyMDEzMDQwQkUxMDY3Njg4QzJDQjdF M0U4OEZBQzAeFw0yNjA1MDMwMjU3NDNaFw0yNzA1MDIwMzAyNDNaMDMxMTAvBgNV BAMTKEU4NzFFQjZGQzg1QTBBRjUyMTYxQUEyNUY3QUFDMTg3NzQ3MDk0QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9i9pYMRqI4DuwIyehdfY6iZEK 3b+8jM6wt1b6VBBp2OjJMjSGwsNMlRtKnxowXxqasWZsFm1KCtt/2JVZZvhpXqzc KUkx/48GfGrxPtIvn92OJL4A7EYv01V3e9dTzqRS3dGtET7+seHYjjUEwUSxaFVu X7K36kn47vdTQyouRdm7st1ZX9vxsMHPkS08acPTF9GQIJkPYHEfD5qZkjQ+euva drSNZxGDvMvdDamhQa0eQThxp0cngAvCkKL08z46uB6OYfckqvT2zboGGH0OwEyy qLTMzl8kcYFJvL3bsfhsxiMmgnTBwKHHTXdozgQ4hLkpyv1spbOr2gooIu8NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6HHrb8haCvUhYaol96rBh3RwlLIwHwYDVR0j BBgwFoAUP8/wkMeSATBAvhBnaIwst+Poj6wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmRhYmMwYmEtOTIyMi00YzQ1LTgzNDItZWI4NjQzYzQ5NjdkLzAvM0ZDRkYwOTBD NzkyMDEzMDQwQkUxMDY3Njg4QzJDQjdFM0U4OEZBQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRkNGRjA5MEM3OTIwMTMwNDBCRTEwNjc2ODhDMkNCN0UzRTg4 RkFDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzAzMjJlMzEzMDJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKOjANBgkqhkiG 9w0BAQsFAAOCAQEAt/mmjWDFt5Jj52b871zPVoT/1hJoqLKiD7mzOObhN7HiYhyL QPYZFutJrBAcJlDZAc/EeryDZJCjMkUw+xEW6E0Z0mReERzlVQX3ehb2T9UvFsHd dANz7WSitdnQASQW6Gxj1i4g4VVoYVw9SWFvRplDNnl+sVTw9q5oNc/VWee7LkGx bsPnWevRQix67z6rc5Zgs7aPQEN50VvYzDA4a8ZIUgH1EHXFvUS+gXmttcYpqaox 92cMnvBF04upWbH9cuc7tMz7jfVJNH+7HuRGoI+3wEJCClloO0ylPYiAXCLyYDBL WEEKnr5PPCG782F1W/DpZwmYjUVQsofMuJeqgQ== -----END CERTIFICATE-----Generated at Wed May 13 09:18:03 2026 by rpki-client