$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa File: 3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa (raw, json) Hash identifier: OA3ZBLGnXRs5yEnHCOfQPyg4orZ7KQmbwDe09LqHOqQ= Subject key identifier: 8A:7C:C8:5F:CE:4D:C4:76:FB:B3:02:53:5A:EC:9A:22:F9:65:40:6F Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 4240762D83185B0240CC51E075DB35E0E5C7B325 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:30 +0000 ROA not before: Sun 03 May 2026 03:05:30 +0000 ROA not after: Sun 02 May 2027 03:10:30 +0000 asID: 63859 IP address blocks: 202.152.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:40:76:2d:83:18:5b:02:40:cc:51:e0:75:db:35:e0:e5:c7:b3:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:30 2026 GMT Not After : May 2 03:10:30 2027 GMT Subject: CN=8A7CC85FCE4DC476FBB302535AEC9A22F965406F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6c:0c:c8:1b:64:4a:39:1f:f4:3a:21:03:ff: 09:7c:1e:1e:72:ea:b4:dd:de:66:4f:d1:ce:5f:b2: 7c:18:18:9c:a9:e0:4a:df:e0:62:b6:91:5d:d6:f9: eb:a9:15:b7:7a:23:d8:99:0c:1c:a5:79:99:1c:7d: 9b:5b:5a:5b:a6:c9:fb:d2:15:50:0f:6d:55:b9:49: 20:ca:45:ca:9e:52:50:f9:a8:b3:15:00:bc:31:ea: bd:35:fb:61:c3:f1:1a:5e:39:12:b5:73:36:96:c9: e1:8c:61:8c:e4:b4:a7:2d:9c:90:35:46:01:c5:e5: 6c:f3:fc:27:ae:8d:95:b0:32:58:64:28:c9:f7:f4: 27:41:38:f0:45:43:ad:21:c5:5f:b2:29:5b:df:ab: 55:14:eb:6c:7a:57:b6:8b:28:18:4e:c5:27:49:63: ee:a3:03:1f:fd:c3:bd:78:54:92:a2:3e:4e:a1:43: b8:67:14:d8:66:eb:d6:3d:5d:1d:8c:f8:e8:0d:c7: 7a:d0:25:fe:24:24:ee:61:74:45:07:9a:2e:ff:ce: e9:62:3d:ac:46:fc:86:d3:c0:5a:81:d3:2a:d4:de: e8:00:2c:88:07:cc:ff:bf:97:57:f6:0c:df:49:2b: 21:42:25:f3:37:35:3c:5b:79:5e:75:b9:80:1e:ba: 42:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7C:C8:5F:CE:4D:C4:76:FB:B3:02:53:5A:EC:9A:22:F9:65:40:6F X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.192.0/20 Signature Algorithm: sha256WithRSAEncryption b0:9f:c3:b2:c7:63:ee:54:cd:af:86:a3:03:24:07:5a:aa:e2: ee:09:2a:bd:d4:70:99:e8:03:7e:fc:07:18:3a:99:9b:67:c1: 40:45:3c:0a:6e:52:d6:01:c6:41:9a:ad:25:ce:3c:31:fc:4a: b9:1a:b7:1f:01:91:17:1e:1c:55:45:9a:f7:02:e3:f9:1b:05: 07:db:fc:d9:9c:6b:7c:3d:b1:1b:99:4f:da:3b:5c:3e:e6:19: 5c:02:1e:c2:8e:c5:2a:2d:3b:bf:1a:c2:4a:95:ed:52:a8:c5: 95:6e:70:b7:ab:c3:a6:60:c0:79:de:23:dc:0d:4c:9c:f5:62: 59:5f:71:b5:07:05:a6:16:03:43:9f:1d:f8:80:94:cf:af:2b: a0:c3:06:26:ac:67:f8:2c:15:71:1d:e8:d5:68:61:64:09:4e: 97:07:ea:e2:53:43:64:30:0c:0d:0e:b5:f2:1f:b0:eb:10:af: 3a:a1:40:d1:d2:dd:76:49:1b:32:04:9a:d3:df:22:48:a3:23: 98:0f:74:7d:01:18:ab:8d:9c:be:ea:86:56:5d:12:4f:95:35: b0:5a:58:08:1e:b0:87:37:3f:77:c4:f9:9a:b7:14:c1:f5:a1: a4:53:6b:15:2e:a1:b2:e9:dc:17:2b:d4:d7:0e:e9:18:24:f0: 1f:92:76:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQkB2LYMYWwJAzFHgdds14OXHsyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzBaFw0yNzA1MDIwMzEwMzBaMDMxMTAvBgNV BAMTKDhBN0NDODVGQ0U0REM0NzZGQkIzMDI1MzVBRUM5QTIyRjk2NTQwNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUbAzIG2RKOR/0OiED/wl8Hh5y 6rTd3mZP0c5fsnwYGJyp4Erf4GK2kV3W+eupFbd6I9iZDByleZkcfZtbWlumyfvS FVAPbVW5SSDKRcqeUlD5qLMVALwx6r01+2HD8RpeORK1czaWyeGMYYzktKctnJA1 RgHF5Wzz/CeujZWwMlhkKMn39CdBOPBFQ60hxV+yKVvfq1UU62x6V7aLKBhOxSdJ Y+6jAx/9w714VJKiPk6hQ7hnFNhm69Y9XR2M+OgNx3rQJf4kJO5hdEUHmi7/zuli PaxG/IbTwFqB0yrU3ugALIgHzP+/l1f2DN9JKyFCJfM3NTxbeV51uYAeukJtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUinzIX85NxHb7swJTWuyaIvllQG8wHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzIyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypjAMA0GCSqG SIb3DQEBCwUAA4IBAQCwn8Oyx2PuVM2vhqMDJAdaquLuCSq91HCZ6AN+/AcYOpmb Z8FARTwKblLWAcZBmq0lzjwx/Eq5GrcfAZEXHhxVRZr3AuP5GwUH2/zZnGt8PbEb mU/aO1w+5hlcAh7CjsUqLTu/GsJKle1SqMWVbnC3q8OmYMB53iPcDUyc9WJZX3G1 BwWmFgNDnx34gJTPryugwwYmrGf4LBVxHejVaGFkCU6XB+riU0NkMAwNDrXyH7Dr EK86oUDR0t12SRsyBJrT3yJIoyOYD3R9ARirjZy+6oZWXRJPlTWwWlgIHrCHNz93 xPmatxTB9aGkU2sVLqGy6dwXK9TXDukYJPAfknYy -----END CERTIFICATE-----Generated at Wed May 13 03:22:46 2026 by rpki-client