$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230332e302f32342d3234203d3e203633383539.roa File: 3230322e3135322e3230332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: C04D24vDTd3hbDV5iXxREwC6uGNthkwKxlbfLdfXE1E= Subject key identifier: 10:DE:85:16:37:F6:90:F5:D4:35:02:E8:19:74:6D:BF:33:1B:F4:97 Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 086C4EDBC73FCFC6F0EAFF7F761D42973B767329 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230332e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 03:10:36 +0000 ROA not before: Sun 03 May 2026 03:05:36 +0000 ROA not after: Sun 02 May 2027 03:10:36 +0000 asID: 63859 IP address blocks: 202.152.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:6c:4e:db:c7:3f:cf:c6:f0:ea:ff:7f:76:1d:42:97:3b:76:73:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:36 2026 GMT Not After : May 2 03:10:36 2027 GMT Subject: CN=10DE851637F690F5D43502E819746DBF331BF497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d0:19:18:64:35:1b:83:50:e9:f1:55:b4:81: 8b:4c:52:c2:4d:03:81:04:d6:f5:38:0a:93:7c:fc: 2b:0e:1c:e1:82:df:1f:93:30:47:ba:2c:f9:51:7c: 57:ea:45:b4:18:6b:99:8b:f4:97:44:d3:82:e8:33: 91:49:c5:40:4a:55:8a:84:d6:06:d2:8c:f1:ec:28: 85:1f:00:4a:f1:1a:7c:24:0b:e4:7c:01:e1:f8:d9: 0b:d3:ec:c5:6d:b4:9f:e1:98:ab:bf:a7:2a:b6:fe: bd:5e:a3:81:ed:67:f8:ba:72:59:7c:2a:67:88:a8: e1:66:98:97:cc:d8:94:b7:1f:cd:8d:19:e5:3c:6b: 65:ad:b5:44:35:3c:3b:27:b4:b4:4e:a3:62:b5:d0: 92:37:11:b1:42:c8:69:33:c7:a6:51:a1:0c:18:3d: ea:4f:b6:7c:ab:2c:12:8d:ce:7e:b8:fe:78:1d:44: 46:4d:b2:a4:0d:2a:5e:8f:72:35:5f:c7:f3:64:00: cb:d5:3d:99:cb:f2:17:df:a3:5b:45:05:53:f2:f3: 2c:34:26:0d:9a:d8:90:06:18:82:8a:6b:bf:37:b9: a1:e2:c2:e1:f0:4e:21:07:9a:d0:d3:ce:3d:af:4b: ba:0b:fc:3b:a4:93:5f:fb:e8:d7:10:ab:d3:40:58: 3a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:DE:85:16:37:F6:90:F5:D4:35:02:E8:19:74:6D:BF:33:1B:F4:97 X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.203.0/24 Signature Algorithm: sha256WithRSAEncryption ad:8f:d9:b1:04:68:46:15:15:ee:dd:ac:54:c9:12:b7:36:63: 41:5b:d4:17:00:eb:89:7c:03:7c:a4:21:5e:98:29:7c:bb:f5: 59:6a:e1:97:19:70:63:f5:10:eb:1e:cd:07:87:f5:07:7e:82: 02:cd:d4:be:b1:93:60:f8:7c:f9:69:8a:99:00:6a:0e:93:6d: c0:c0:6c:b8:01:5a:aa:fe:70:4c:37:81:0d:23:b3:b6:b6:12: c3:ee:e9:a9:fe:18:9b:c7:ab:ec:89:aa:06:ee:16:de:f8:43: ae:10:21:8b:0a:30:6a:71:26:f2:0a:b2:c2:a1:e8:89:9c:ca: c9:6f:81:8e:f6:3a:f7:8e:e5:88:cf:67:44:06:60:ff:d0:2f: e4:9d:b8:ad:83:14:e0:6f:82:89:c7:a9:b5:8b:4b:1d:1a:29: e4:28:a3:eb:b1:75:b6:5b:6f:d8:88:4e:14:3c:a8:4c:04:df: 73:b5:e0:c6:49:4a:27:8e:20:74:51:9e:d9:a0:a5:35:9f:d8: 1b:c5:25:78:e5:cf:b0:ae:83:82:9f:78:5c:75:36:f4:b6:09: 48:e8:97:d7:26:1d:86:7c:d8:31:2f:b5:f6:1e:97:19:21:bf: b4:d9:55:92:07:48:da:a0:2d:e7:39:0a:0b:07:a4:20:dd:90: db:ae:7c:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCGxO28c/z8bw6v9/dh1Clzt2cykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzZaFw0yNzA1MDIwMzEwMzZaMDMxMTAvBgNV BAMTKDEwREU4NTE2MzdGNjkwRjVENDM1MDJFODE5NzQ2REJGMzMxQkY0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCP0BkYZDUbg1Dp8VW0gYtMUsJN A4EE1vU4CpN8/CsOHOGC3x+TMEe6LPlRfFfqRbQYa5mL9JdE04LoM5FJxUBKVYqE 1gbSjPHsKIUfAErxGnwkC+R8AeH42QvT7MVttJ/hmKu/pyq2/r1eo4HtZ/i6cll8 KmeIqOFmmJfM2JS3H82NGeU8a2WttUQ1PDsntLROo2K10JI3EbFCyGkzx6ZRoQwY PepPtnyrLBKNzn64/ngdREZNsqQNKl6PcjVfx/NkAMvVPZnL8hffo1tFBVPy8yw0 Jg2a2JAGGIKKa783uaHiwuHwTiEHmtDTzj2vS7oL/Dukk1/76NcQq9NAWDrpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEN6FFjf2kPXUNQLoGXRtvzMb9JcwHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjLMA0GCSqG SIb3DQEBCwUAA4IBAQCtj9mxBGhGFRXu3axUyRK3NmNBW9QXAOuJfAN8pCFemCl8 u/VZauGXGXBj9RDrHs0Hh/UHfoICzdS+sZNg+Hz5aYqZAGoOk23AwGy4AVqq/nBM N4ENI7O2thLD7ump/hibx6vsiaoG7hbe+EOuECGLCjBqcSbyCrLCoeiJnMrJb4GO 9jr3juWIz2dEBmD/0C/knbitgxTgb4KJx6m1i0sdGinkKKPrsXW2W2/YiE4UPKhM BN9zteDGSUonjiB0UZ7ZoKU1n9gbxSV45c+wroOCn3hcdTb0tglI6JfXJh2GfNgx L7X2HpcZIb+02VWSB0jaoC3nOQoLB6Qg3ZDbrnyQ -----END CERTIFICATE-----Generated at Wed May 13 04:51:03 2026 by rpki-client