$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Kr9n+dToJ4+otMGr8yT+9Vb2SsgZx8Pi5NiSfTBJmck= Subject key identifier: D5:3A:86:AD:3F:2D:93:2F:8E:ED:4F:C3:94:1A:2A:A7:65:2E:B9:AE Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 5412D6973CF94A23A874A689DFA3709A2E35C0B9 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:38 +0000 ROA not before: Sun 03 May 2026 03:05:38 +0000 ROA not after: Sun 02 May 2027 03:10:38 +0000 asID: 63859 IP address blocks: 202.152.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:12:d6:97:3c:f9:4a:23:a8:74:a6:89:df:a3:70:9a:2e:35:c0:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:38 2026 GMT Not After : May 2 03:10:38 2027 GMT Subject: CN=D53A86AD3F2D932F8EED4FC3941A2AA7652EB9AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3d:70:57:6c:2d:80:5c:b9:95:ab:87:11:45: ec:00:67:a4:9f:b3:91:cd:2e:6a:f2:48:f1:a2:2b: 38:2b:b2:9b:96:5f:6f:f0:3b:2a:52:2d:bd:41:b3: 1e:45:29:48:ca:45:c1:43:70:15:df:88:65:d5:c3: 2b:fc:11:f5:79:e9:31:50:17:cc:ad:9e:fe:f9:1f: 8a:44:c4:0e:43:ab:d7:4f:1f:d0:a9:83:e2:63:b9: 3b:b1:3b:a4:a2:8b:9a:a6:af:91:b9:69:e4:3b:83: dc:55:ad:b7:a3:3e:1b:24:f1:3a:7b:7f:33:62:a9: 94:ce:43:3a:a4:c1:f4:21:09:98:c6:b9:69:bf:c5: 69:9c:56:83:64:f3:ea:27:34:0c:af:b3:40:09:ec: 98:8c:63:78:d4:13:3e:08:e4:8a:06:32:aa:da:08: a4:3f:55:31:f1:9c:9c:ae:a4:67:9b:f8:65:9a:6c: 40:74:cb:9f:c9:6e:b3:89:0c:d5:83:ec:7b:df:e2: 71:d8:f6:c8:2a:09:f9:ae:a3:55:fd:ac:2a:00:c4: 80:72:8a:70:6f:40:c3:76:9c:6b:49:4a:e3:ee:01: a2:d1:e4:51:cb:71:91:26:55:4c:ba:e7:4c:cd:5c: fe:09:57:8e:81:2d:63:11:e2:42:c7:ce:05:46:07: 20:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3A:86:AD:3F:2D:93:2F:8E:ED:4F:C3:94:1A:2A:A7:65:2E:B9:AE X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.201.0/24 Signature Algorithm: sha256WithRSAEncryption 20:fb:1c:d3:c8:0b:90:cc:46:d7:6f:31:f0:2c:65:20:29:b0: 8d:ba:b9:c5:fb:0d:22:c6:55:7f:dc:59:8a:33:71:fe:f5:3b: 53:49:7b:2b:8c:32:e9:6b:4f:50:4b:6e:40:ee:c5:55:93:11: 97:1b:ab:c9:b0:13:d0:fc:fa:76:6b:e9:40:e4:d6:03:d1:60: 1d:ca:4a:bb:6a:23:1c:4d:61:69:e7:1b:94:c5:2d:b3:17:76: 6b:44:bb:c0:8d:cf:5d:23:57:19:dd:69:8d:48:8b:f2:50:73: 83:d2:77:9c:9e:5a:d9:08:78:1a:87:19:11:49:36:06:f7:09: 3b:de:3d:86:f9:2d:4e:64:35:db:e2:8e:ed:b1:ac:6e:1f:fe: 9b:80:ea:47:e0:90:21:8c:a0:87:e0:ca:68:5a:7d:e0:29:91: 6a:de:e8:83:96:ac:eb:a9:cd:1f:ce:c7:c5:f7:2e:fc:9a:df: 47:ea:7a:2c:7b:8f:4b:41:c3:ed:0a:e0:61:39:2e:b2:bb:98: ee:51:4f:0d:32:8f:6b:f2:b3:43:00:35:16:cf:b6:12:f5:c3: 9d:d0:7f:35:05:ed:65:83:18:b0:6b:40:70:1e:b6:27:66:03: f1:b4:50:63:19:37:f4:d0:a6:6e:1c:c4:26:ce:54:20:75:7f: 03:4e:f1:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVBLWlzz5SiOodKaJ36Nwmi41wLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzhaFw0yNzA1MDIwMzEwMzhaMDMxMTAvBgNV BAMTKEQ1M0E4NkFEM0YyRDkzMkY4RUVENEZDMzk0MUEyQUE3NjUyRUI5QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpPXBXbC2AXLmVq4cRRewAZ6Sf s5HNLmrySPGiKzgrspuWX2/wOypSLb1Bsx5FKUjKRcFDcBXfiGXVwyv8EfV56TFQ F8ytnv75H4pExA5Dq9dPH9Cpg+JjuTuxO6Sii5qmr5G5aeQ7g9xVrbejPhsk8Tp7 fzNiqZTOQzqkwfQhCZjGuWm/xWmcVoNk8+onNAyvs0AJ7JiMY3jUEz4I5IoGMqra CKQ/VTHxnJyupGeb+GWabEB0y5/JbrOJDNWD7Hvf4nHY9sgqCfmuo1X9rCoAxIBy inBvQMN2nGtJSuPuAaLR5FHLcZEmVUy650zNXP4JV46BLWMR4kLHzgVGByDtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1TqGrT8tky+O7U/DlBoqp2Uuua4wHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjJMA0GCSqG SIb3DQEBCwUAA4IBAQAg+xzTyAuQzEbXbzHwLGUgKbCNurnF+w0ixlV/3FmKM3H+ 9TtTSXsrjDLpa09QS25A7sVVkxGXG6vJsBPQ/Pp2a+lA5NYD0WAdykq7aiMcTWFp 5xuUxS2zF3ZrRLvAjc9dI1cZ3WmNSIvyUHOD0necnlrZCHgahxkRSTYG9wk73j2G +S1OZDXb4o7tsaxuH/6bgOpH4JAhjKCH4MpoWn3gKZFq3uiDlqzrqc0fzsfF9y78 mt9H6nose49LQcPtCuBhOS6yu5juUU8NMo9r8rNDADUWz7YS9cOd0H81Be1lgxiw a0BwHrYnZgPxtFBjGTf00KZuHMQmzlQgdX8DTvHR -----END CERTIFICATE-----Generated at Wed May 13 05:57:16 2026 by rpki-client