$ rpki-client -vvf rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa File: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (raw, json) Hash identifier: NHpaZqHC4NTt91PhG1pzzVx+mpzKnTbfgFJI738LnKc= Subject key identifier: 6B:B4:6E:FE:7B:38:E9:F6:BA:8A:17:01:C1:34:DA:C0:F8:72:4A:95 Certificate issuer: /CN=3FCFF090C792013040BE1067688C2CB7E3E88FAC Certificate serial: 065744982C7939F57C79BB1D828A7B435861F4BA Authority key identifier: 3F:CF:F0:90:C7:92:01:30:40:BE:10:67:68:8C:2C:B7:E3:E8:8F:AC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCFF090C792013040BE1067688C2CB7E3E88FAC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa Signing time: Sun 03 May 2026 03:02:42 +0000 ROA not before: Sun 03 May 2026 02:57:42 +0000 ROA not after: Sun 02 May 2027 03:02:42 +0000 asID: 136119 IP address blocks: 202.10.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3FCFF090C792013040BE1067688C2CB7E3E88FAC.crl rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3FCFF090C792013040BE1067688C2CB7E3E88FAC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCFF090C792013040BE1067688C2CB7E3E88FAC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:57:44:98:2c:79:39:f5:7c:79:bb:1d:82:8a:7b:43:58:61:f4:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FCFF090C792013040BE1067688C2CB7E3E88FAC Validity Not Before: May 3 02:57:42 2026 GMT Not After : May 2 03:02:42 2027 GMT Subject: CN=6BB46EFE7B38E9F6BA8A1701C134DAC0F8724A95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:66:78:7b:0d:1a:4b:6a:f9:60:00:36:6a:5d: 95:b2:e6:2e:6b:30:c8:f7:6f:14:55:e2:9a:d4:11: 5c:47:b7:df:28:d0:f8:83:eb:fa:44:39:25:e1:25: 5f:e2:e7:1d:98:e9:cc:77:f1:89:8b:b5:fc:ef:cc: 26:6c:de:61:c7:c5:8c:ae:4a:38:89:de:80:65:e7: 19:6b:0c:13:2c:66:10:47:fe:30:34:b0:e7:b6:ad: ba:b9:fc:f2:51:82:10:be:6d:a8:66:42:69:d5:51: 8b:20:a4:01:c4:44:5a:df:ac:86:25:f1:5e:1b:f8: 24:2e:39:c7:7c:c5:f1:89:65:87:a2:04:71:cb:7e: 17:35:41:99:84:1a:a5:b8:36:f0:f7:7a:9d:e4:3d: 56:05:69:cc:a4:56:d6:25:0c:fa:e1:02:e6:cc:0b: e2:ba:b8:66:53:10:c7:6a:48:ec:b8:7d:b9:00:64: 89:66:29:5f:48:59:8d:82:d2:05:20:c4:10:15:d3: fe:a8:3d:aa:72:06:ec:b2:f3:5c:ed:53:df:93:55: 18:0a:45:9c:60:fc:8f:47:d4:b2:45:59:fb:de:20: 81:03:30:fb:81:a1:d1:d0:9e:0b:e5:2c:79:91:bc: 9c:eb:75:df:6d:21:49:cf:6f:df:d3:99:25:44:9e: 23:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B4:6E:FE:7B:38:E9:F6:BA:8A:17:01:C1:34:DA:C0:F8:72:4A:95 X509v3 Authority Key Identifier: keyid:3F:CF:F0:90:C7:92:01:30:40:BE:10:67:68:8C:2C:B7:E3:E8:8F:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3FCFF090C792013040BE1067688C2CB7E3E88FAC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3FCFF090C792013040BE1067688C2CB7E3E88FAC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.59.0/24 Signature Algorithm: sha256WithRSAEncryption a3:be:fc:4f:cf:28:4f:a4:b4:f7:5b:79:09:07:2d:99:18:c7: b3:0e:65:d8:14:a7:83:81:80:dd:81:ce:cd:4a:d0:a4:37:27: 86:50:61:9b:ee:ea:16:c0:48:d0:62:10:f2:13:b3:8e:aa:97: 11:d7:1e:4e:54:e2:bb:b6:a4:e4:21:2b:45:92:18:77:ae:89: 4c:ef:2a:08:3e:a7:0d:fe:1c:48:f0:9b:1d:12:a4:87:e6:6f: f7:02:dd:12:ce:a5:fd:6c:7b:47:28:ce:f4:a7:fc:af:d8:3f: 25:b3:3c:1c:ec:7d:e5:cf:5d:27:e1:75:94:78:27:f1:35:9e: 8f:8f:9f:7b:87:ea:50:9a:ae:0b:3c:bb:16:5d:b5:cd:44:88: 8c:28:3f:76:a7:e9:fb:49:16:53:a6:18:16:bc:82:bf:fb:f6: 60:3e:7c:71:05:12:12:75:89:7e:22:70:66:49:b9:16:59:4e: b8:cd:e1:3d:bd:2f:ba:5b:58:62:d8:86:f7:5d:ff:33:a7:f9: ef:4b:40:84:84:ce:85:7b:8f:2d:3b:c3:ba:7b:7d:f8:9d:ab: 50:15:bc:4d:50:36:85:b2:39:42:bd:2e:93:47:0f:46:71:b7: f6:64:82:55:7d:05:d2:09:8e:bc:d0:cf:6e:61:b5:19:47:6d: 50:a9:18:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBldEmCx5OfV8ebsdgop7Q1hh9LowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZDRkYwOTBDNzkyMDEzMDQwQkUxMDY3Njg4QzJDQjdF M0U4OEZBQzAeFw0yNjA1MDMwMjU3NDJaFw0yNzA1MDIwMzAyNDJaMDMxMTAvBgNV BAMTKDZCQjQ2RUZFN0IzOEU5RjZCQThBMTcwMUMxMzREQUMwRjg3MjRBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Znh7DRpLavlgADZqXZWy5i5r MMj3bxRV4prUEVxHt98o0PiD6/pEOSXhJV/i5x2Y6cx38YmLtfzvzCZs3mHHxYyu SjiJ3oBl5xlrDBMsZhBH/jA0sOe2rbq5/PJRghC+bahmQmnVUYsgpAHERFrfrIYl 8V4b+CQuOcd8xfGJZYeiBHHLfhc1QZmEGqW4NvD3ep3kPVYFacykVtYlDPrhAubM C+K6uGZTEMdqSOy4fbkAZIlmKV9IWY2C0gUgxBAV0/6oPapyBuyy81ztU9+TVRgK RZxg/I9H1LJFWfveIIEDMPuBodHQngvlLHmRvJzrdd9tIUnPb9/TmSVEniMtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUa7Ru/ns46fa6ihcBwTTawPhySpUwHwYDVR0j BBgwFoAUP8/wkMeSATBAvhBnaIwst+Poj6wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmRhYmMwYmEtOTIyMi00YzQ1LTgzNDItZWI4NjQzYzQ5NjdkLzAvM0ZDRkYwOTBD NzkyMDEzMDQwQkUxMDY3Njg4QzJDQjdFM0U4OEZBQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRkNGRjA5MEM3OTIwMTMwNDBCRTEwNjc2ODhDMkNCN0UzRTg4 RkFDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzAzMjJlMzEzMDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKOzANBgkqhkiG 9w0BAQsFAAOCAQEAo778T88oT6S091t5CQctmRjHsw5l2BSng4GA3YHOzUrQpDcn hlBhm+7qFsBI0GIQ8hOzjqqXEdceTlTiu7ak5CErRZIYd66JTO8qCD6nDf4cSPCb HRKkh+Zv9wLdEs6l/Wx7RyjO9Kf8r9g/JbM8HOx95c9dJ+F1lHgn8TWej4+fe4fq UJquCzy7Fl21zUSIjCg/dqfp+0kWU6YYFryCv/v2YD58cQUSEnWJfiJwZkm5FllO uM3hPb0vultYYtiG913/M6f570tAhITOhXuPLTvDunt9+J2rUBW8TVA2hbI5Qr0u k0cPRnG39mSCVX0F0gmOvNDPbmG1GUdtUKkY1w== -----END CERTIFICATE-----Generated at Wed May 13 10:40:01 2026 by rpki-client