$ rpki-client -vvf rpki-rsync.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/32372e302e3139362e302f32322d3234203d3e203539323838.roa File: 32372e302e3139362e302f32322d3234203d3e203539323838.roa (raw, json) Hash identifier: mZ4ni8RZ+trHAYAq+YWcBinFPw6rEt7xuDt1TTSRtHw= Subject key identifier: 4F:1F:A9:2C:01:15:3F:98:BE:FF:FC:A3:CD:4E:FB:B0:1E:92:C3:5B Certificate issuer: /CN=0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C Certificate serial: 3E84036ABB64400F76FAB4774BD59A7FBDE3B291 Authority key identifier: 0D:CE:F2:10:E6:B2:D9:C5:5C:FF:D3:B1:5E:5E:94:0C:3A:FE:7A:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/32372e302e3139362e302f32322d3234203d3e203539323838.roa Signing time: Sun 03 May 2026 03:10:46 +0000 ROA not before: Sun 03 May 2026 03:05:46 +0000 ROA not after: Sun 02 May 2027 03:10:46 +0000 asID: 59288 IP address blocks: 27.0.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C.crl rsync://rpki-rsync.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:84:03:6a:bb:64:40:0f:76:fa:b4:77:4b:d5:9a:7f:bd:e3:b2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C Validity Not Before: May 3 03:05:46 2026 GMT Not After : May 2 03:10:46 2027 GMT Subject: CN=4F1FA92C01153F98BEFFFCA3CD4EFBB01E92C35B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:80:44:c2:7b:19:ed:d6:b7:06:3f:c3:64:13: ae:59:a2:1b:01:83:7f:f3:28:32:6a:13:68:bd:ca: c4:e7:8d:0b:14:0a:1e:a6:a0:32:96:99:9a:6c:fb: 87:c9:97:fa:07:1b:26:fc:f8:99:e5:3f:33:df:8d: f0:aa:54:e4:2f:24:30:70:6d:73:7a:9e:6c:73:d9: 58:27:87:7b:ff:f2:9d:83:11:cb:bc:af:b9:71:4a: 04:ba:f4:41:c5:0d:b0:36:1e:97:8b:ac:93:96:2d: a7:f3:f3:8d:1c:c8:25:ae:ee:9c:53:eb:e5:e7:b6: c0:7e:b5:e4:86:c8:db:08:15:15:49:bc:90:0c:20: 5e:e0:b1:dc:31:5f:26:b4:a3:9d:70:4c:43:27:8a: fc:92:2e:c6:d3:da:89:80:c2:df:35:9d:33:71:60: 77:70:7b:b7:3b:b6:dc:c0:55:8e:f3:36:86:02:b7: 2f:2a:82:94:6d:d2:79:5f:ad:ba:83:31:fd:18:05: 7e:ef:11:14:64:02:c3:1e:e2:74:d0:ce:80:fd:b9: da:be:e0:63:7f:bf:d5:b5:d4:50:7e:be:3d:df:47: e5:40:a2:dc:e7:a5:71:cf:13:10:9d:79:09:bf:09: 6f:9d:58:01:d7:76:69:2a:76:0a:90:40:95:14:3f: 7e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1F:A9:2C:01:15:3F:98:BE:FF:FC:A3:CD:4E:FB:B0:1E:92:C3:5B X509v3 Authority Key Identifier: keyid:0D:CE:F2:10:E6:B2:D9:C5:5C:FF:D3:B1:5E:5E:94:0C:3A:FE:7A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0DCEF210E6B2D9C55CFFD3B15E5E940C3AFE7A3C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/32372e302e3139362e302f32322d3234203d3e203539323838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.196.0/22 Signature Algorithm: sha256WithRSAEncryption 35:b2:3f:fc:01:be:09:18:9d:61:88:ef:72:a2:7b:7a:fa:85: d6:1c:ee:b2:fc:44:30:9b:f6:6e:08:30:1b:30:4a:0d:8e:85: a6:d9:4a:31:f3:ca:a9:a1:cd:42:61:b6:df:a6:2e:fd:00:3b: 00:0c:a9:65:82:d7:b9:58:a6:94:0a:ac:38:a3:ba:04:dc:93: 6f:f8:da:d6:af:93:cb:eb:15:97:0c:5b:9b:c6:54:61:b3:a6: 9b:20:b0:ba:c3:a3:09:7b:be:a7:47:f0:f8:af:45:cf:4c:2e: 2d:06:2c:1d:dd:a2:97:1e:f7:38:c6:51:b1:35:56:bf:2e:6f: 66:d0:68:fa:d9:dc:22:38:09:86:1a:33:d3:d6:d0:f4:d0:0f: f4:f4:2c:85:59:f2:97:6b:20:a8:82:59:f6:e7:4c:7e:7c:d4: 77:ca:04:f9:34:09:24:8d:f4:fb:3a:3b:2a:67:19:5c:39:14: dd:54:af:35:3a:49:3d:d4:9e:eb:29:a1:e3:18:bd:1d:c3:20: 9d:3d:64:82:0c:e5:f5:21:2c:e1:7a:6e:3d:ab:f7:88:c4:4d: 8e:16:73:9d:3a:9d:43:d0:72:0e:51:20:e0:d8:30:f7:80:bd: e1:11:0f:d1:37:c8:0b:df:d2:00:d7:c8:ea:10:db:8c:57:84: a6:9b:3d:87 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPoQDartkQA92+rR3S9Waf73jspEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMERDRUYyMTBFNkIyRDlDNTVDRkZEM0IxNUU1RTk0MEMz QUZFN0EzQzAeFw0yNjA1MDMwMzA1NDZaFw0yNzA1MDIwMzEwNDZaMDMxMTAvBgNV BAMTKDRGMUZBOTJDMDExNTNGOThCRUZGRkNBM0NENEVGQkIwMUU5MkMzNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNgETCexnt1rcGP8NkE65ZohsB g3/zKDJqE2i9ysTnjQsUCh6moDKWmZps+4fJl/oHGyb8+JnlPzPfjfCqVOQvJDBw bXN6nmxz2Vgnh3v/8p2DEcu8r7lxSgS69EHFDbA2HpeLrJOWLafz840cyCWu7pxT 6+XntsB+teSGyNsIFRVJvJAMIF7gsdwxXya0o51wTEMnivySLsbT2omAwt81nTNx YHdwe7c7ttzAVY7zNoYCty8qgpRt0nlfrbqDMf0YBX7vERRkAsMe4nTQzoD9udq+ 4GN/v9W11FB+vj3fR+VAotznpXHPExCdeQm/CW+dWAHXdmkqdgqQQJUUP36bAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUTx+pLAEVP5i+//yjzU77sB6Sw1swHwYDVR0j BBgwFoAUDc7yEOay2cVc/9OxXl6UDDr+ejwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDkzZWI4ZjYtYmI2Yy00ZWE3LTg2ZGYtYjI0M2M1MTY0ZDIyLzAvMERDRUYyMTBF NkIyRDlDNTVDRkZEM0IxNUU1RTk0MEMzQUZFN0EzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRENFRjIxMEU2QjJEOUM1NUNGRkQzQjE1RTVFOTQwQzNBRkU3 QTNDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDkzZWI4ZjYtYmI2Yy00ZWE3LTg2 ZGYtYjI0M2M1MTY0ZDIyLzAvMzIzNzJlMzAyZTMxMzkzNjJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM1MzkzMjM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIbAMQwDQYJKoZIhvcNAQEL BQADggEBADWyP/wBvgkYnWGI73Kie3r6hdYc7rL8RDCb9m4IMBswSg2OhabZSjHz yqmhzUJhtt+mLv0AOwAMqWWC17lYppQKrDijugTck2/42tavk8vrFZcMW5vGVGGz ppsgsLrDowl7vqdH8PivRc9MLi0GLB3dopce9zjGUbE1Vr8ub2bQaPrZ3CI4CYYa M9PW0PTQD/T0LIVZ8pdrIKiCWfbnTH581HfKBPk0CSSN9Ps6OypnGVw5FN1UrzU6 ST3UnuspoeMYvR3DIJ09ZIIM5fUhLOF6bj2r94jETY4Wc506nUPQcg5RIODYMPeA veERD9E3yAvf0gDXyOoQ24xXhKabPYc= -----END CERTIFICATE-----Generated at Wed May 13 02:16:04 2026 by rpki-client